$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/462/3Ykwkc-j4f5UkvOr3kfC3PMy9Xc.roa File: 3Ykwkc-j4f5UkvOr3kfC3PMy9Xc.roa (raw, json) Hash identifier: IShhOic6dRh4z1Ko86tCfPAK2Apd/Kq1hJ4rw39T/hk= Subject key identifier: DD:89:30:91:CF:A3:E1:FE:54:92:F3:AB:DE:47:C2:DC:F3:32:F5:77 Certificate issuer: /CN=43917B23074524E9E6EA8E40FA4A0672C9620318 Certificate serial: 71 Authority key identifier: 43:91:7B:23:07:45:24:E9:E6:EA:8E:40:FA:4A:06:72:C9:62:03:18 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/3Ykwkc-j4f5UkvOr3kfC3PMy9Xc.roa Signing time: Sat 01 Mar 2025 01:28:11 +0000 ROA not before: Sat 01 Mar 2025 01:28:11 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 10019 IP address blocks: 219.100.20.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/Q5F7IwdFJOnm6o5A-koGcsliAxg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/Q5F7IwdFJOnm6o5A-koGcsliAxg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43917B23074524E9E6EA8E40FA4A0672C9620318 Validity Not Before: Mar 1 01:28:11 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=DD893091CFA3E1FE5492F3ABDE47C2DCF332F577 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b9:d2:a5:1f:fd:39:7e:84:ad:a7:d7:cc:a9: bf:3a:ac:3e:15:87:9c:e1:40:82:ab:d2:b1:9e:f5: d8:91:f8:92:d3:be:05:64:f6:9a:e7:f6:62:7e:2e: d9:90:fb:40:61:e4:a9:02:4d:a8:7b:fb:0e:26:79: 19:62:a5:81:b4:ec:b3:79:19:4e:60:84:f2:8c:e4: 18:a4:f2:f0:1f:c5:79:2b:e2:62:70:35:a9:06:91: 2a:c9:05:08:5e:c4:16:40:6d:7d:2a:d8:57:f9:2d: 0b:2f:6d:25:86:19:05:b9:f5:5d:80:8d:d3:b5:f6: 4a:93:e4:16:5a:22:6e:a1:bf:cc:22:9b:a5:69:42: 72:3a:cd:69:db:a5:f5:1e:92:87:d3:27:a0:c6:4d: c3:e2:b6:58:43:41:4f:f1:28:4d:07:8a:46:04:db: ac:76:39:bb:c3:2e:85:3f:53:c2:09:ed:a8:ca:85: 37:49:11:4a:b9:0a:5b:29:51:ac:c8:53:38:14:d3: 70:6b:0f:95:b3:44:e6:3b:9a:7a:28:40:b7:ed:5b: 22:ed:dc:c8:1d:52:3c:93:36:f1:73:f5:4a:60:11: db:72:50:dc:b5:eb:02:29:67:75:d3:12:b2:eb:10: 33:2e:26:0d:5d:24:b6:cc:75:85:bb:6f:74:81:70: 1b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:89:30:91:CF:A3:E1:FE:54:92:F3:AB:DE:47:C2:DC:F3:32:F5:77 X509v3 Authority Key Identifier: keyid:43:91:7B:23:07:45:24:E9:E6:EA:8E:40:FA:4A:06:72:C9:62:03:18 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/Q5F7IwdFJOnm6o5A-koGcsliAxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/3Ykwkc-j4f5UkvOr3kfC3PMy9Xc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.100.20.0/22 Signature Algorithm: sha256WithRSAEncryption 17:88:dd:a0:52:e1:a2:bb:d0:a0:ac:aa:ee:04:a0:d3:f1:be: 83:52:22:67:56:e2:9f:2c:02:ad:d0:dc:6d:e5:19:6b:b5:d8: 13:59:a2:1e:7e:a0:06:63:42:d7:6d:e3:43:42:8f:c8:b5:21: d0:c6:72:63:4b:6a:f7:b9:d7:7c:fd:a9:21:db:29:78:f5:89: b1:f9:2b:51:e9:7d:9c:8a:ed:05:d5:0c:0c:fb:e3:2b:af:7a: a7:5b:36:81:c3:77:40:a8:e3:d6:52:69:0a:a5:ac:09:2d:86: 2e:b3:f7:ef:be:66:38:89:17:68:59:d9:6d:18:75:e7:f8:c1: 02:38:21:ef:12:d4:98:47:54:2f:75:42:03:01:2e:ce:91:85: d0:54:cb:5f:b8:a4:65:e2:ed:2c:9c:92:f3:99:dc:d3:f6:36: 2b:05:02:2a:f1:27:43:e5:8a:12:9a:e2:89:3e:1b:eb:51:ac: 0e:4c:51:3f:75:ad:7b:46:81:6e:c3:09:49:6a:b1:03:50:95: e4:7b:cb:42:d7:bc:a2:49:e5:8b:4f:77:6a:41:06:c9:cc:b2: 58:11:c8:53:24:72:7e:af:2b:6c:2b:5c:bb:bd:d3:27:06:a5: 74:2c:db:e2:93:0a:5b:45:66:0b:3d:79:4d:d0:22:8b:3d:87: 13:1c:42:7e -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBcTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0Mzkx N0IyMzA3NDUyNEU5RTZFQThFNDBGQTRBMDY3MkM5NjIwMzE4MB4XDTI1MDMwMTAx MjgxMVoXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoREQ4OTMwOTFDRkEzRTFG RTU0OTJGM0FCREU0N0MyRENGMzMyRjU3NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALy50qUf/Tl+hK2n18ypvzqsPhWHnOFAgqvSsZ712JH4ktO+BWT2 muf2Yn4u2ZD7QGHkqQJNqHv7DiZ5GWKlgbTss3kZTmCE8ozkGKTy8B/FeSviYnA1 qQaRKskFCF7EFkBtfSrYV/ktCy9tJYYZBbn1XYCN07X2SpPkFloibqG/zCKbpWlC cjrNadul9R6Sh9MnoMZNw+K2WENBT/EoTQeKRgTbrHY5u8MuhT9TwgntqMqFN0kR SrkKWylRrMhTOBTTcGsPlbNE5juaeihAt+1bIu3cyB1SPJM28XP1SmAR23JQ3LXr AilnddMSsusQMy4mDV0ktsx1hbtvdIFwG/0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTdiTCRz6Ph/lSS86veR8Lc8zL1dzAfBgNVHSMEGDAWgBRDkXsjB0Uk6ebqjkD6 SgZyyWIDGDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDYyL1E1RjdJd2RGSk9ubTZvNUEta29HY3NsaUF4Zy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1E1RjdJd2RGSk9ubTZvNUEta29HY3Ns aUF4Zy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NjIvM1lrd2tjLWo0ZjVVa3ZPcjNrZkMzUE15OVhjLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAttkFDANBgkqhkiG9w0BAQsFAAOCAQEAF4jdoFLhorvQoKyq7gSg0/G+g1Ii Z1binywCrdDcbeUZa7XYE1miHn6gBmNC123jQ0KPyLUh0MZyY0tq97nXfP2pIdsp ePWJsfkrUel9nIrtBdUMDPvjK696p1s2gcN3QKjj1lJpCqWsCS2GLrP3775mOIkX aFnZbRh15/jBAjgh7xLUmEdUL3VCAwEuzpGF0FTLX7ikZeLtLJyS85nc0/Y2KwUC KvEnQ+WKEpriiT4b61GsDkxRP3Wte0aBbsMJSWqxA1CV5HvLQte8oknli093akEG ycyyWBHIUyRyfq8rbCtcu73TJwaldCzb4pMKW0VmCz15TdAiiz2HExxCfg== -----END CERTIFICATE-----Generated at Sun Apr 6 01:44:17 2025 by rpki-client