$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/FXalhLfgKMafIMjjvh9hvA2K3ak.roa File: FXalhLfgKMafIMjjvh9hvA2K3ak.roa (raw, json) Hash identifier: iueUR+L3k7ltXc9/McKiwqwUciniGgyGyxC/BIjendI= Subject key identifier: 15:76:A5:84:B7:E0:28:C6:9F:20:C8:E3:BE:1F:61:BC:0D:8A:DD:A9 Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Certificate serial: 9B Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/FXalhLfgKMafIMjjvh9hvA2K3ak.roa Signing time: Sat 01 Mar 2025 01:31:27 +0000 ROA not before: Sat 01 Mar 2025 01:31:27 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 2527 IP address blocks: 152.117.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 06:50:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Validity Not Before: Mar 1 01:31:27 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=1576A584B7E028C69F20C8E3BE1F61BC0D8ADDA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8b:24:27:43:2d:e6:f0:3f:42:67:e3:41:61: 08:3e:c6:1a:e8:9d:93:3c:5f:cb:d2:9f:15:ae:21: db:5d:4e:70:2c:9f:72:d4:45:56:5b:99:ad:62:ed: 04:cb:a8:d3:8c:72:05:c9:4a:45:f2:9b:dc:b5:49: e3:50:f4:7e:2a:36:74:8a:34:21:10:ed:2e:44:73: 03:f7:8b:c6:b6:cd:c0:23:92:3e:35:03:3e:02:cd: f7:7f:10:51:71:d0:db:26:7b:bd:cc:a3:41:68:9f: 5f:69:dd:b6:6b:b7:71:e9:53:c2:07:3d:30:74:ed: 33:ed:2d:e9:e6:58:42:c2:fe:6b:43:a9:6e:c3:f7: ca:8b:f6:5e:42:d6:a3:10:51:ab:a1:0b:45:3d:0f: b5:ed:68:46:97:db:8e:04:92:19:84:8a:b6:c6:92: bc:85:b0:6e:67:08:99:69:d5:b8:3f:ad:c7:fe:00: 2e:25:ef:3a:fd:fb:3b:46:cf:3c:31:b8:86:f6:41: 2e:fb:68:b1:68:cf:1b:ea:e4:e0:87:8e:5b:14:8d: 40:93:8e:18:ea:de:45:be:4e:0a:11:e6:1c:13:12: f7:b7:0c:33:ef:16:22:17:b6:ad:48:94:34:3e:64: 0c:4d:0c:ce:95:f4:81:22:15:7f:88:e9:a9:df:24: 66:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:76:A5:84:B7:E0:28:C6:9F:20:C8:E3:BE:1F:61:BC:0D:8A:DD:A9 X509v3 Authority Key Identifier: keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/FXalhLfgKMafIMjjvh9hvA2K3ak.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.117.128.0/17 Signature Algorithm: sha256WithRSAEncryption 9e:65:30:53:c1:c2:48:b9:11:46:15:7e:99:60:7f:f1:8d:ea: f0:23:ad:09:51:5b:5d:33:14:ff:f9:17:71:b6:11:78:4a:8c: 61:20:b9:75:7e:36:0b:39:9e:9d:ef:96:c3:66:14:0a:3f:2c: d2:99:03:35:0a:5d:75:fd:84:c3:4d:b1:7b:96:41:74:b4:6c: 06:79:ce:6d:e5:0d:d0:a2:71:50:ad:62:a0:1c:44:d7:b4:6b: b9:24:b6:a1:96:bd:88:f4:ef:ad:34:de:14:d7:6f:06:54:46: b0:f9:c3:29:79:29:8a:53:f7:6b:83:c8:ca:0f:d1:77:0d:4f: 28:f2:43:e9:63:32:a3:60:f7:55:d6:75:9a:c9:4e:15:86:11: bd:9f:b8:71:c4:35:7b:9d:77:27:f8:a2:dd:f0:7e:65:e9:69: 08:31:59:a5:a7:7d:a6:c5:3d:b8:18:6b:99:dc:ae:bc:14:e7: 1e:c9:ce:21:39:bf:c0:b2:86:cc:ff:26:44:8d:0b:99:28:4c: 77:22:57:b6:2a:65:50:d9:1d:e1:24:77:5a:76:b5:8d:16:cc: 03:3d:7c:c8:f4:54:76:6b:13:5c:f8:27:15:7c:a0:9a:07:70: 4a:3d:79:b9:3a:24:8e:28:e3:56:b7:7b:c1:04:7a:48:e7:ce: b0:84:51:5b -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAJswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDRD QTdGMzVBRjFBOEY1MjU3NUE5RkVGRkYyMUM0QTQ3MDgwRERGQTAeFw0yNTAzMDEw MTMxMjdaFw0yNjAyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDE1NzZBNTg0QjdFMDI4 QzY5RjIwQzhFM0JFMUY2MUJDMEQ4QUREQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6iyQnQy3m8D9CZ+NBYQg+xhronZM8X8vSnxWuIdtdTnAsn3LU RVZbma1i7QTLqNOMcgXJSkXym9y1SeNQ9H4qNnSKNCEQ7S5EcwP3i8a2zcAjkj41 Az4Czfd/EFFx0Nsme73Mo0Fon19p3bZrt3HpU8IHPTB07TPtLenmWELC/mtDqW7D 98qL9l5C1qMQUauhC0U9D7XtaEaX244EkhmEirbGkryFsG5nCJlp1bg/rcf+AC4l 7zr9+ztGzzwxuIb2QS77aLFozxvq5OCHjlsUjUCTjhjq3kW+TgoR5hwTEve3DDPv FiIXtq1IlDQ+ZAxNDM6V9IEiFX+I6anfJGYpAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUFXalhLfgKMafIMjjvh9hvA2K3akwHwYDVR0jBBgwFoAUBMp/Na8aj1JXWp/v /yHEpHCA3fowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhDQTNmby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhD QTNmby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My9GWGFsaExmZ0tNYWZJTWpqdmg5aHZBMkszYWsucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQHmHWAMA0GCSqGSIb3DQEBCwUAA4IBAQCeZTBTwcJIuRFGFX6ZYH/xjerwI60J UVtdMxT/+RdxthF4SoxhILl1fjYLOZ6d75bDZhQKPyzSmQM1Cl11/YTDTbF7lkF0 tGwGec5t5Q3QonFQrWKgHETXtGu5JLahlr2I9O+tNN4U128GVEaw+cMpeSmKU/dr g8jKD9F3DU8o8kPpYzKjYPdV1nWayU4VhhG9n7hxxDV7nXcn+KLd8H5l6WkIMVml p32mxT24GGuZ3K68FOceyc4hOb/AsobM/yZEjQuZKEx3Ile2KmVQ2R3hJHdadrWN FswDPXzI9FR2axNc+CcVfKCaB3BKPXm5OiSOKONWt3vBBHpI586whFFb -----END CERTIFICATE-----Generated at Mon Apr 7 15:11:45 2025 by rpki-client