$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/YzmKJg9Rzo35h8fdRS1N2kXYZ08.roa File: YzmKJg9Rzo35h8fdRS1N2kXYZ08.roa (raw, json) Hash identifier: ZDTvVBVA/8sXwhiwDeH9+HwBPBmkIt60CvkeXaHDAJk= Subject key identifier: 63:39:8A:26:0F:51:CE:8D:F9:87:C7:DD:45:2D:4D:DA:45:D8:67:4F Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D Certificate serial: 0180 Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/YzmKJg9Rzo35h8fdRS1N2kXYZ08.roa Signing time: Tue 01 Apr 2025 01:30:19 +0000 ROA not before: Tue 01 Apr 2025 01:30:19 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 2527 IP address blocks: 36.2.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 384 (0x180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D Validity Not Before: Apr 1 01:30:19 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=63398A260F51CE8DF987C7DD452D4DDA45D8674F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:44:64:ef:0f:58:82:2e:24:29:e8:df:f7:13: 29:63:56:16:92:40:c6:3f:57:a9:31:df:2c:5d:64: e5:04:da:d5:d7:df:c7:33:64:e4:36:9d:ab:4d:ac: 60:19:78:22:51:a6:7d:d4:39:88:1f:3e:e6:4e:7a: 3a:f0:64:50:ad:57:db:b0:9e:4e:62:9b:5a:a2:12: 3b:1c:77:32:5b:4e:45:a4:a0:35:15:1d:c5:f3:cc: ee:c5:fe:3d:e2:92:31:42:66:63:aa:ed:d1:15:0a: 18:8a:89:8f:9d:a3:09:8d:36:7d:cd:4c:b2:8a:4a: 0f:8b:3a:1f:02:41:59:11:6b:70:30:24:b0:a7:23: b2:e8:c7:4b:92:b2:b7:9a:70:71:cd:bd:eb:b9:2d: 33:e5:c8:c6:5d:c0:fe:a2:74:57:9c:e7:7b:ad:e7: 60:0e:96:f5:c3:ba:15:0d:ff:c8:00:53:70:b0:d3: 55:36:a5:b6:8c:e2:a9:83:0d:e0:c3:ce:1f:39:af: 68:3b:73:9a:3c:97:60:43:7f:b0:b5:07:cc:dc:ee: 02:54:75:06:94:2b:f1:b3:85:1d:aa:e4:df:2c:8b: 2d:02:72:d1:b1:8e:b0:2f:a7:23:48:d2:01:5b:09: 82:e4:13:3a:39:11:65:66:86:02:9f:5c:8e:c0:ff: db:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:39:8A:26:0F:51:CE:8D:F9:87:C7:DD:45:2D:4D:DA:45:D8:67:4F X509v3 Authority Key Identifier: keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/YzmKJg9Rzo35h8fdRS1N2kXYZ08.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.2.160.0/19 Signature Algorithm: sha256WithRSAEncryption 18:99:a5:c9:c6:40:a1:5f:ef:e6:47:1b:29:0b:ce:85:00:46: 5a:0f:2f:da:92:19:e0:b4:f4:45:07:d2:fb:64:08:d6:3e:20: 05:28:7e:76:a6:f6:05:55:1a:85:49:a7:7f:d2:64:e7:f6:d3: 6d:64:f8:88:55:99:ed:d1:9c:04:bd:79:5f:07:89:7c:86:ec: 5a:07:84:01:e1:b6:b5:1f:54:6a:eb:f2:c0:e6:1f:8e:68:ff: c8:b7:ee:02:83:4c:d5:37:c1:47:c4:2d:23:83:ad:5e:f2:3c: 9b:33:7b:d4:c4:23:bf:ee:76:5b:9f:b2:28:b0:4e:5c:d2:48: a0:46:0c:9e:58:c0:47:77:4e:74:38:95:48:8b:0c:59:44:43: 91:e3:c4:1e:70:a0:45:25:20:16:cf:4b:96:c7:b9:b6:92:f1: 7e:23:80:42:ce:df:70:ca:93:ff:1a:5f:51:21:2b:16:3b:dc: 84:40:04:69:9c:9d:0c:46:64:0f:d4:f0:f9:c6:46:0f:4e:76: e9:85:8e:9d:ba:7d:ca:76:a3:ba:89:d0:11:d8:46:d8:d5:80: d5:d9:cf:53:8e:0a:50:53:19:f7:d6:a3:08:ad:93:b7:16:e1: 5f:d0:56:1f:23:e6:8c:8e:8c:08:53:6d:75:c9:11:56:37:93: b1:9f:9f:a4 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAYAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1 QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yNTA0MDEw MTMwMTlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDYzMzk4QTI2MEY1MUNF OERGOTg3QzdERDQ1MkQ0RERBNDVEODY3NEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbRGTvD1iCLiQp6N/3EyljVhaSQMY/V6kx3yxdZOUE2tXX38cz ZOQ2natNrGAZeCJRpn3UOYgfPuZOejrwZFCtV9uwnk5im1qiEjscdzJbTkWkoDUV HcXzzO7F/j3ikjFCZmOq7dEVChiKiY+dowmNNn3NTLKKSg+LOh8CQVkRa3AwJLCn I7Lox0uSsreacHHNveu5LTPlyMZdwP6idFec53ut52AOlvXDuhUN/8gAU3Cw01U2 pbaM4qmDDeDDzh85r2g7c5o8l2BDf7C1B8zc7gJUdQaUK/GzhR2q5N8siy0CctGx jrAvpyNI0gFbCYLkEzo5EWVmhgKfXI7A/9sTAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUYzmKJg9Rzo35h8fdRS1N2kXYZ08wHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo 3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1 ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My9Zem1LSmc5UnpvMzVoOGZkUlMxTjJrWFlaMDgucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQFJAKgMA0GCSqGSIb3DQEBCwUAA4IBAQAYmaXJxkChX+/mRxspC86FAEZaDy/a khngtPRFB9L7ZAjWPiAFKH52pvYFVRqFSad/0mTn9tNtZPiIVZnt0ZwEvXlfB4l8 huxaB4QB4ba1H1Rq6/LA5h+OaP/It+4Cg0zVN8FHxC0jg61e8jybM3vUxCO/7nZb n7IosE5c0kigRgyeWMBHd050OJVIiwxZREOR48QecKBFJSAWz0uWx7m2kvF+I4BC zt9wypP/Gl9RISsWO9yEQARpnJ0MRmQP1PD5xkYPTnbphY6dun3KdqO6idAR2EbY 1YDV2c9TjgpQUxn31qMIrZO3FuFf0FYfI+aMjowIU211yRFWN5Oxn5+k -----END CERTIFICATE-----Generated at Sun Apr 6 04:20:55 2025 by rpki-client