$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/447/sM3ty5pFm4loE5-eQbZ0vyhR5Yw.roa File: sM3ty5pFm4loE5-eQbZ0vyhR5Yw.roa (raw, json) Hash identifier: PV0VkCa6PL4rwdikVQR8oZtEHUOS32HI90pbUd2f6Js= Subject key identifier: B0:CD:ED:CB:9A:45:9B:89:68:13:9F:9E:41:B6:74:BF:28:51:E5:8C Certificate issuer: /CN=C5034FBBCE0799A0F28683BD3BA339A9BD645BDC Certificate serial: 1A Authority key identifier: C5:03:4F:BB:CE:07:99:A0:F2:86:83:BD:3B:A3:39:A9:BD:64:5B:DC Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xQNPu84HmaDyhoO9O6M5qb1kW9w.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/447/sM3ty5pFm4loE5-eQbZ0vyhR5Yw.roa Signing time: Wed 02 Apr 2025 03:55:48 +0000 ROA not before: Wed 02 Apr 2025 03:55:48 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 10002 IP address blocks: 120.50.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/447/xQNPu84HmaDyhoO9O6M5qb1kW9w.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/447/xQNPu84HmaDyhoO9O6M5qb1kW9w.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xQNPu84HmaDyhoO9O6M5qb1kW9w.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C5034FBBCE0799A0F28683BD3BA339A9BD645BDC Validity Not Before: Apr 2 03:55:48 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=B0CDEDCB9A459B8968139F9E41B674BF2851E58C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:89:41:82:92:4e:8b:bc:eb:90:ac:70:ba:e7: 54:50:77:1c:05:c0:55:de:71:ad:b5:49:1c:80:d5: 65:c8:b3:db:bf:3b:09:2d:57:80:a7:53:bc:f9:ba: 3f:5c:7b:a0:3d:a0:a4:80:12:ba:bc:b7:78:23:52: 9b:8a:84:54:57:79:85:39:7f:a7:b2:b1:be:7e:e6: 58:86:09:2c:5c:93:df:35:60:c7:5f:2a:a0:15:d2: 82:bf:15:91:0f:c7:3e:2b:64:b1:6b:31:ba:fc:f3: f4:5f:5e:05:64:56:1d:08:e1:61:ec:95:3e:86:bc: 0d:f9:6d:5e:ce:ba:fd:1e:a4:cb:84:92:0d:f4:ce: 39:d9:33:3f:5c:bd:19:a3:0f:dc:87:56:cf:be:ac: db:11:de:01:69:4f:41:66:67:79:60:2e:0e:03:b9: 1e:75:82:d0:9f:c2:3f:4e:65:18:ba:4c:e3:0c:f1: 9c:e8:04:59:72:c8:3a:b5:fd:ec:e5:0e:c7:c2:df: d9:f0:33:d0:6d:d5:71:de:3e:1d:f4:d2:21:83:ff: ae:51:ee:3e:db:a3:cf:7d:72:75:c9:e9:c6:c9:39: c0:11:4e:59:81:8d:a7:c9:1a:58:9f:db:8c:d9:03: a9:b1:e4:e3:6e:36:d3:91:73:de:8b:e8:94:31:e6: 3b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:CD:ED:CB:9A:45:9B:89:68:13:9F:9E:41:B6:74:BF:28:51:E5:8C X509v3 Authority Key Identifier: keyid:C5:03:4F:BB:CE:07:99:A0:F2:86:83:BD:3B:A3:39:A9:BD:64:5B:DC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/447/xQNPu84HmaDyhoO9O6M5qb1kW9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xQNPu84HmaDyhoO9O6M5qb1kW9w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/447/sM3ty5pFm4loE5-eQbZ0vyhR5Yw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.50.224.0/19 Signature Algorithm: sha256WithRSAEncryption 94:28:2f:f3:cc:c5:cd:5d:49:b7:82:bd:66:a4:da:e1:17:37: 8a:27:78:bf:95:39:ee:70:6f:79:d6:8c:cb:96:b0:be:7b:de: d3:2e:2d:d6:f0:cf:a9:3b:67:5d:a2:fa:5a:fa:a9:ed:28:63: c1:39:03:06:62:4c:82:a8:27:31:96:80:e4:46:f4:b0:a5:34: 48:d6:09:54:ed:a2:26:04:ca:3e:ed:c1:89:56:fd:e7:58:e5: 45:31:54:d0:9f:b5:08:b7:7b:c0:81:16:c4:51:a3:2c:cd:a4: 56:22:39:79:d8:eb:9c:04:27:6a:1b:a5:d1:70:35:5c:e4:37: 89:d8:8f:9e:9b:f3:20:df:4a:7e:bc:fd:46:0c:ef:6f:38:f1: f6:4d:84:0a:d4:d7:55:6c:0b:ae:9d:db:41:a7:a4:0e:3c:3e: ae:59:eb:b2:c6:e4:f2:a5:fb:06:6c:d1:26:60:3d:ca:3d:eb: e3:f6:c2:fb:37:31:52:bf:5b:33:5e:0e:5d:aa:d5:b7:ff:72: c7:c1:4e:3d:4c:f2:05:5b:05:f4:c9:f6:9a:b6:d6:c0:af:47: 9d:a0:ca:98:18:c6:aa:4c:01:eb:2c:e3:8d:03:3f:c0:77:2a: b5:d2:ee:b3:00:31:1e:a8:45:88:07:b8:97:5d:1c:9c:4a:21: 0b:5a:a5:63 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBGjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDNTAz NEZCQkNFMDc5OUEwRjI4NjgzQkQzQkEzMzlBOUJENjQ1QkRDMB4XDTI1MDQwMjAz NTU0OFoXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoQjBDREVEQ0I5QTQ1OUI4 OTY4MTM5RjlFNDFCNjc0QkYyODUxRTU4QzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOWJQYKSTou865CscLrnVFB3HAXAVd5xrbVJHIDVZciz2787CS1X gKdTvPm6P1x7oD2gpIASury3eCNSm4qEVFd5hTl/p7Kxvn7mWIYJLFyT3zVgx18q oBXSgr8VkQ/HPitksWsxuvzz9F9eBWRWHQjhYeyVPoa8DfltXs66/R6ky4SSDfTO OdkzP1y9GaMP3IdWz76s2xHeAWlPQWZneWAuDgO5HnWC0J/CP05lGLpM4wzxnOgE WXLIOrX97OUOx8Lf2fAz0G3Vcd4+HfTSIYP/rlHuPtujz31ydcnpxsk5wBFOWYGN p8kaWJ/bjNkDqbHk424205Fz3ovolDHmO48CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSwze3LmkWbiWgTn55BtnS/KFHljDAfBgNVHSMEGDAWgBTFA0+7zgeZoPKGg707 ozmpvWRb3DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDQ3L3hRTlB1ODRIbWFEeWhvTzlPNk01cWIxa1c5dy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3hRTlB1ODRIbWFEeWhvTzlPNk01cWIx a1c5dy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NDcvc00zdHk1cEZtNGxvRTUtZVFiWjB2eWhSNVl3LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBXgy4DANBgkqhkiG9w0BAQsFAAOCAQEAlCgv88zFzV1Jt4K9ZqTa4Rc3iid4 v5U57nBvedaMy5awvnve0y4t1vDPqTtnXaL6Wvqp7ShjwTkDBmJMgqgnMZaA5Eb0 sKU0SNYJVO2iJgTKPu3BiVb951jlRTFU0J+1CLd7wIEWxFGjLM2kViI5edjrnAQn ahul0XA1XOQ3idiPnpvzIN9Kfrz9Rgzvbzjx9k2ECtTXVWwLrp3bQaekDjw+rlnr ssbk8qX7BmzRJmA9yj3r4/bC+zcxUr9bM14OXarVt/9yx8FOPUzyBVsF9Mn2mrbW wK9HnaDKmBjGqkwB6yzjjQM/wHcqtdLuswAxHqhFiAe4l10cnEohC1qlYw== -----END CERTIFICATE-----Generated at Sat Apr 5 12:00:25 2025 by rpki-client