$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/440/B2nDdH2yqgPUIG9Rrbxd5WDYCkc.roa File: B2nDdH2yqgPUIG9Rrbxd5WDYCkc.roa (raw, json) Hash identifier: STh/l/cqgDz6FeXC0gXe5CGAihyLmeFmxXokEimYosU= Subject key identifier: 07:69:C3:74:7D:B2:AA:03:D4:20:6F:51:AD:BC:5D:E5:60:D8:0A:47 Certificate issuer: /CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF Certificate serial: 7E Authority key identifier: E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/B2nDdH2yqgPUIG9Rrbxd5WDYCkc.roa Signing time: Tue 01 Apr 2025 01:28:04 +0000 ROA not before: Tue 01 Apr 2025 01:28:04 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 24289 IP address blocks: 126.251.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF Validity Not Before: Apr 1 01:28:04 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=0769C3747DB2AA03D4206F51ADBC5DE560D80A47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:55:d6:ea:f2:75:3d:2b:a9:96:d8:f2:41:44: 5f:66:1a:54:bc:7e:66:9b:fd:ca:3f:fe:3f:1d:4e: 75:30:20:fe:e2:f1:12:61:5d:56:74:f5:09:68:b4: 5e:95:77:9e:ad:05:fe:c8:2a:f1:2a:59:00:6e:c3: 33:09:f5:2b:49:1a:63:c2:db:b9:be:04:c3:9a:08: 6c:de:ba:13:fd:ce:27:c5:17:2f:c4:f8:5a:29:17: 70:8e:10:10:ca:07:60:19:0c:aa:74:6b:af:fb:51: 73:e1:b6:87:b2:02:ce:1c:b4:e4:b7:d3:73:84:bc: 13:be:fb:ff:ed:6f:74:7d:16:b1:5d:a1:79:e7:bb: ca:74:66:41:a9:45:d1:d9:cc:6e:03:9c:9a:59:1a: f3:8b:f9:25:95:37:c8:b6:7e:dd:02:a8:fd:15:f2: 71:68:ca:db:35:0f:b5:51:14:88:cb:a2:a9:ef:46: fb:57:4a:fd:68:72:3b:1d:af:a5:6f:21:25:c6:66: 55:2d:f3:53:b5:6d:b8:7b:cd:19:a9:f1:1e:26:5d: 36:34:b1:9f:6d:5a:1b:40:0a:90:e9:d8:37:a0:87: 71:d6:24:8d:3f:3a:1c:c9:78:df:ff:55:5c:44:59: 41:4c:2e:1c:ae:9e:3d:89:76:f4:75:e9:39:64:9b: e3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:69:C3:74:7D:B2:AA:03:D4:20:6F:51:AD:BC:5D:E5:60:D8:0A:47 X509v3 Authority Key Identifier: keyid:E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/B2nDdH2yqgPUIG9Rrbxd5WDYCkc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 126.251.64.0/20 Signature Algorithm: sha256WithRSAEncryption 42:14:1f:ff:5e:a7:b7:7f:d3:bf:50:51:4a:e5:2e:3f:51:e7: f8:bf:30:65:94:d9:2a:cc:cb:8f:b7:13:ad:0b:fe:28:77:73: e7:38:4d:36:a4:6d:f8:81:d7:cf:8c:c5:b5:9f:3e:ea:a6:08: f9:53:ce:52:fb:87:bb:33:43:4f:1c:68:b1:e8:35:fd:70:dc: 99:0d:ad:4a:87:bc:dd:95:c8:3d:00:40:e0:31:26:9b:ab:77: 73:2f:9e:6a:ba:e7:cc:ea:e1:7f:c1:a8:00:d5:11:0b:88:0b: 84:7e:b8:66:77:8c:d6:ae:a0:93:ed:73:f7:f1:94:f8:ac:4a: 3b:fb:91:73:5d:f4:a5:db:c9:38:7f:12:03:29:b9:02:7f:f5: 08:d0:71:6c:ea:e1:a4:d6:99:c0:1c:af:18:ef:19:94:5b:df: 08:9b:ef:76:dd:00:1a:a5:79:94:1e:e8:3e:48:b1:9b:ad:e8: f4:94:13:af:84:89:ce:da:a7:1d:09:c2:23:c9:18:18:40:0f: 4c:6b:6e:24:2d:d7:ec:54:9d:2c:22:b3:8e:71:8f:05:e2:2b: 60:3b:a3:19:b8:f8:77:69:17:4c:df:49:f0:b1:29:a0:b5:c7: 94:4c:fd:ad:f1:6a:4f:f8:74:96:79:54:df:45:33:45:ec:be: 0e:62:4a:8b -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBfjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFNjIz MzhERTMzMkM2RjRCOUUyNTk2RUU1REMzNzlBMjVFRkU1OENGMB4XDTI1MDQwMTAx MjgwNFoXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoMDc2OUMzNzQ3REIyQUEw M0Q0MjA2RjUxQURCQzVERTU2MEQ4MEE0NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJ1V1urydT0rqZbY8kFEX2YaVLx+Zpv9yj/+Px1OdTAg/uLxEmFd VnT1CWi0XpV3nq0F/sgq8SpZAG7DMwn1K0kaY8Lbub4Ew5oIbN66E/3OJ8UXL8T4 WikXcI4QEMoHYBkMqnRrr/tRc+G2h7ICzhy05LfTc4S8E777/+1vdH0WsV2heee7 ynRmQalF0dnMbgOcmlka84v5JZU3yLZ+3QKo/RXycWjK2zUPtVEUiMuiqe9G+1dK /WhyOx2vpW8hJcZmVS3zU7VtuHvNGanxHiZdNjSxn21aG0AKkOnYN6CHcdYkjT86 HMl43/9VXERZQUwuHK6ePYl29HXpOWSb418CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQHacN0fbKqA9Qgb1GtvF3lYNgKRzAfBgNVHSMEGDAWgBTmIzjeMyxvS54llu5d w3miXv5YzzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDQwLzVpTTQzak1zYjB1ZUpaYnVYY041b2w3LVdNOC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzVpTTQzak1zYjB1ZUpaYnVYY041b2w3 LVdNOC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NDAvQjJuRGRIMnlxZ1BVSUc5UnJieGQ1V0RZQ2tjLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBH77QDANBgkqhkiG9w0BAQsFAAOCAQEAQhQf/16nt3/Tv1BRSuUuP1Hn+L8w ZZTZKszLj7cTrQv+KHdz5zhNNqRt+IHXz4zFtZ8+6qYI+VPOUvuHuzNDTxxoseg1 /XDcmQ2tSoe83ZXIPQBA4DEmm6t3cy+earrnzOrhf8GoANURC4gLhH64ZneM1q6g k+1z9/GU+KxKO/uRc130pdvJOH8SAym5An/1CNBxbOrhpNaZwByvGO8ZlFvfCJvv dt0AGqV5lB7oPkixm63o9JQTr4SJztqnHQnCI8kYGEAPTGtuJC3X7FSdLCKzjnGP BeIrYDujGbj4d2kXTN9J8LEpoLXHlEz9rfFqT/h0lnlU30UzRey+DmJKiw== -----END CERTIFICATE-----Generated at Sat Apr 5 17:48:18 2025 by rpki-client