$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/447/AqSWshU_dMxQOH7siMPW7xy9_GA.roa File: AqSWshU_dMxQOH7siMPW7xy9_GA.roa (raw, json) Hash identifier: /xQpsdt+4t2PdLU5OIS8tceET3fa5Xu6jnhml8vfeRg= Subject key identifier: 02:A4:96:B2:15:3F:74:CC:50:38:7E:EC:88:C3:D6:EF:1C:BD:FC:60 Certificate issuer: /CN=C5034FBBCE0799A0F28683BD3BA339A9BD645BDC Certificate serial: 17 Authority key identifier: C5:03:4F:BB:CE:07:99:A0:F2:86:83:BD:3B:A3:39:A9:BD:64:5B:DC Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xQNPu84HmaDyhoO9O6M5qb1kW9w.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/447/AqSWshU_dMxQOH7siMPW7xy9_GA.roa Signing time: Wed 19 Mar 2025 05:28:30 +0000 ROA not before: Wed 19 Mar 2025 05:28:30 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 10002 IP address blocks: 218.231.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/447/xQNPu84HmaDyhoO9O6M5qb1kW9w.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/447/xQNPu84HmaDyhoO9O6M5qb1kW9w.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xQNPu84HmaDyhoO9O6M5qb1kW9w.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C5034FBBCE0799A0F28683BD3BA339A9BD645BDC Validity Not Before: Mar 19 05:28:30 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=02A496B2153F74CC50387EEC88C3D6EF1CBDFC60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c9:d4:90:d7:19:7a:11:44:69:5c:75:4d:8c: 6e:4a:c7:84:16:fe:21:d4:e0:b4:24:1c:1b:d2:4a: 28:7e:a1:85:78:9e:ce:03:16:f9:9c:c3:5b:44:1e: 64:ce:9d:0e:08:24:a8:b8:34:ae:93:82:72:60:4b: 6d:5b:17:d6:97:b6:0b:10:e4:dc:44:b8:79:53:7f: 4e:e4:f8:51:ed:8a:1b:c8:b1:ed:a3:c0:af:72:a2: 65:c7:78:3a:a8:c1:ab:05:99:47:97:87:a2:9f:c5: 7e:45:8d:0c:41:1d:9a:c9:aa:bf:17:0f:40:76:36: 01:eb:41:35:1c:48:48:eb:65:00:96:5c:a3:3a:1b: 72:78:f2:f0:75:d9:df:25:eb:89:be:82:4e:59:5d: c3:59:df:30:26:5e:e1:95:96:8a:9a:91:a8:7d:8a: fa:ee:d5:d5:c0:b9:61:f4:69:5c:29:b9:cc:4d:97: 4d:e2:7d:d8:4a:54:28:ef:3c:6d:13:f4:95:00:1c: 22:2a:49:8b:a9:cc:e6:2d:2e:10:c6:82:66:b4:b5: 38:01:3f:02:f9:8c:5f:75:49:08:31:31:17:5c:e0: 97:a1:1b:88:7d:e4:88:b2:aa:5c:cd:37:d8:ba:3f: 68:e2:bf:fb:93:cc:ea:b4:06:dc:9d:df:3e:13:fb: ec:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:A4:96:B2:15:3F:74:CC:50:38:7E:EC:88:C3:D6:EF:1C:BD:FC:60 X509v3 Authority Key Identifier: keyid:C5:03:4F:BB:CE:07:99:A0:F2:86:83:BD:3B:A3:39:A9:BD:64:5B:DC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/447/xQNPu84HmaDyhoO9O6M5qb1kW9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xQNPu84HmaDyhoO9O6M5qb1kW9w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/447/AqSWshU_dMxQOH7siMPW7xy9_GA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.231.224.0/20 Signature Algorithm: sha256WithRSAEncryption 22:7b:8a:0c:37:4f:01:a1:c0:6b:6d:8d:0d:18:12:a2:0e:3c: 97:98:5a:9a:05:d8:aa:f5:a5:09:ab:97:63:a8:ff:d6:dc:77: 03:22:d8:17:4c:60:53:2a:cf:9d:86:c0:26:d0:cb:14:af:52: 2c:21:f2:57:ba:91:4d:74:c9:f5:c3:93:0f:30:fd:cd:ef:d1: 10:7d:5c:95:99:1e:c8:94:a8:b8:ad:75:44:77:98:bf:86:6b: 2f:0d:98:21:f7:5f:b5:07:f4:d4:6c:b3:92:32:bf:72:27:1e: 9c:a2:29:c3:d8:43:ba:37:e1:ca:61:4c:6e:e7:d1:10:7f:ea: 91:c4:54:c9:64:2b:bb:d2:6f:b7:c7:da:b9:69:b7:13:6c:05: ff:bd:4e:26:00:09:5d:f8:38:18:d1:cf:8f:ac:a5:85:24:58: 40:c6:96:b4:09:fe:09:d1:80:15:50:7e:ff:74:5d:c4:fa:af: 9a:d5:af:a8:ab:0e:bf:a0:d3:37:ec:8e:a4:5b:92:29:af:d1: a2:e6:a4:3a:35:06:76:7e:00:13:46:6b:cf:60:98:61:25:44: 3e:0b:64:e9:8c:7b:93:34:19:29:e1:b9:b3:71:82:c9:86:00: fc:72:ec:3e:46:30:6d:19:14:52:1b:38:1c:75:aa:60:6d:71: 61:ec:b8:f6 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBFzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDNTAz NEZCQkNFMDc5OUEwRjI4NjgzQkQzQkEzMzlBOUJENjQ1QkRDMB4XDTI1MDMxOTA1 MjgzMFoXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoMDJBNDk2QjIxNTNGNzRD QzUwMzg3RUVDODhDM0Q2RUYxQ0JERkM2MDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOPJ1JDXGXoRRGlcdU2MbkrHhBb+IdTgtCQcG9JKKH6hhXiezgMW +ZzDW0QeZM6dDggkqLg0rpOCcmBLbVsX1pe2CxDk3ES4eVN/TuT4Ue2KG8ix7aPA r3KiZcd4OqjBqwWZR5eHop/FfkWNDEEdmsmqvxcPQHY2AetBNRxISOtlAJZcozob cnjy8HXZ3yXrib6CTlldw1nfMCZe4ZWWipqRqH2K+u7V1cC5YfRpXCm5zE2XTeJ9 2EpUKO88bRP0lQAcIipJi6nM5i0uEMaCZrS1OAE/AvmMX3VJCDExF1zgl6EbiH3k iLKqXM032Lo/aOK/+5PM6rQG3J3fPhP77GcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQCpJayFT90zFA4fuyIw9bvHL38YDAfBgNVHSMEGDAWgBTFA0+7zgeZoPKGg707 ozmpvWRb3DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDQ3L3hRTlB1ODRIbWFEeWhvTzlPNk01cWIxa1c5dy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3hRTlB1ODRIbWFEeWhvTzlPNk01cWIx a1c5dy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NDcvQXFTV3NoVV9kTXhRT0g3c2lNUFc3eHk5X0dBLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNrn4DANBgkqhkiG9w0BAQsFAAOCAQEAInuKDDdPAaHAa22NDRgSog48l5ha mgXYqvWlCauXY6j/1tx3AyLYF0xgUyrPnYbAJtDLFK9SLCHyV7qRTXTJ9cOTDzD9 ze/REH1clZkeyJSouK11RHeYv4ZrLw2YIfdftQf01GyzkjK/cicenKIpw9hDujfh ymFMbufREH/qkcRUyWQru9Jvt8fauWm3E2wF/71OJgAJXfg4GNHPj6ylhSRYQMaW tAn+CdGAFVB+/3RdxPqvmtWvqKsOv6DTN+yOpFuSKa/RouakOjUGdn4AE0Zrz2CY YSVEPgtk6Yx7kzQZKeG5s3GCyYYA/HLsPkYwbRkUUhs4HHWqYG1xYey49g== -----END CERTIFICATE-----Generated at Sat Apr 5 12:02:49 2025 by rpki-client