$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/LFJZl8mTCaUx9ws3YBp6nA0Tq1M.roa File: LFJZl8mTCaUx9ws3YBp6nA0Tq1M.roa (raw, json) Hash identifier: V2pNeMxfOlPywpMwounGM8LQG6nJvTE2XQWyMqpfCA4= Subject key identifier: 2C:52:59:97:C9:93:09:A5:31:F7:0B:37:60:1A:7A:9C:0D:13:AB:53 Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 056F Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/LFJZl8mTCaUx9ws3YBp6nA0Tq1M.roa Signing time: Fri 31 Jan 2025 01:39:44 +0000 ROA not before: Fri 31 Jan 2025 01:39:44 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10010 IP address blocks: 42.125.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1391 (0x56f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Jan 31 01:39:44 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=2C525997C99309A531F70B37601A7A9C0D13AB53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:43:3c:c4:49:43:e1:cd:26:35:3c:d6:82:dc: 62:c7:43:b1:38:c3:74:bd:e5:43:a0:8e:0c:51:41: 0e:7f:69:df:c9:c5:fd:1e:0d:c3:f2:fc:a1:46:18: 91:0b:75:44:5f:6e:48:5f:20:bc:59:75:3f:aa:0c: 8b:28:01:da:dd:f1:19:da:01:8f:cb:5e:5f:8f:f9: e8:46:59:35:a3:33:8f:b5:9b:37:b5:c9:0a:96:a4: 05:55:93:20:04:98:85:b4:91:58:55:96:88:50:6e: fa:9a:0c:52:ff:3f:ed:2d:44:f2:5e:78:58:9f:d7: 8d:7d:f8:af:f1:0b:b8:ef:6e:69:ef:9e:93:19:d1: 5d:db:b7:db:d3:ce:21:f3:59:d1:dd:49:2c:06:92: 4e:05:ea:15:8a:f1:6b:6d:f2:93:ee:59:98:5d:c8: e0:77:0d:3e:17:31:73:29:91:e4:4d:21:9d:32:40: 46:d2:58:df:d8:3e:45:c9:80:04:38:5e:9f:35:9a: 4b:7f:9e:91:13:ab:b4:f2:da:09:32:d2:3d:1d:05: a5:61:62:53:e1:c9:42:79:51:09:44:f2:f9:1d:e5: a4:5b:89:20:93:6f:5b:97:dd:3b:7f:6e:f6:a4:9e: ff:0c:c7:ff:b8:46:86:44:bb:f8:37:5d:40:e6:f8: d3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:52:59:97:C9:93:09:A5:31:F7:0B:37:60:1A:7A:9C:0D:13:AB:53 X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/LFJZl8mTCaUx9ws3YBp6nA0Tq1M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 42.125.196.0/24 Signature Algorithm: sha256WithRSAEncryption c3:a6:b4:14:7b:27:f1:04:de:e5:8e:61:ef:ed:80:b1:66:f6: 58:1c:a9:a9:ec:20:4d:e5:73:a1:9d:1d:e0:1e:70:45:b5:48: 7d:95:87:fa:49:94:b9:42:48:d1:80:4e:d3:d7:16:2f:2a:3d: 10:d1:1a:d2:98:4b:3b:46:24:e0:09:52:7f:8a:fa:f3:8a:d2: bb:70:42:9a:f0:14:47:49:29:2c:6c:a8:98:31:8c:ed:6f:ee: 88:0a:fe:7f:2d:3b:59:2b:27:ee:c6:f4:96:91:65:66:68:7c: c4:87:95:8b:84:0e:d9:fa:0a:92:7b:c7:b5:a6:b8:c0:6a:18: 5d:b2:fd:f9:d7:63:3d:6c:0f:d0:d1:aa:f4:29:e6:0f:4a:76: 8f:20:f4:a4:ee:a5:f5:38:25:0a:73:03:39:ac:4f:e3:6e:14: b3:4b:8c:40:5a:a1:2f:16:01:c9:c4:38:2d:94:73:d7:c3:8c: ed:f2:3d:70:e7:25:43:e9:e2:73:38:ba:28:83:8f:76:71:aa: 5b:58:31:48:9d:e2:24:62:ae:19:19:f2:22:6a:ae:ea:4d:ba: 8d:48:c2:02:55:58:3d:4c:01:2b:62:77:17:e9:1a:36:7e:ee: 93:8c:eb:6d:c6:7c:45:26:0b:78:c9:e3:98:95:2e:79:46:e5: ba:20:9b:c4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBW8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNTAxMzEw MTM5NDRaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDJDNTI1OTk3Qzk5MzA5 QTUzMUY3MEIzNzYwMUE3QTlDMEQxM0FCNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDvQzzESUPhzSY1PNaC3GLHQ7E4w3S95UOgjgxRQQ5/ad/Jxf0e DcPy/KFGGJELdURfbkhfILxZdT+qDIsoAdrd8RnaAY/LXl+P+ehGWTWjM4+1mze1 yQqWpAVVkyAEmIW0kVhVlohQbvqaDFL/P+0tRPJeeFif1419+K/xC7jvbmnvnpMZ 0V3bt9vTziHzWdHdSSwGkk4F6hWK8Wtt8pPuWZhdyOB3DT4XMXMpkeRNIZ0yQEbS WN/YPkXJgAQ4Xp81mkt/npETq7Ty2gky0j0dBaVhYlPhyUJ5UQlE8vkd5aRbiSCT b1uX3Tt/bvaknv8Mx/+4RoZEu/g3XUDm+NM7AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQULFJZl8mTCaUx9ws3YBp6nA0Tq1MwHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTQ1L0xGSlpsOG1UQ2FVeDl3czNZQnA2bkEwVHExTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAqfcQwDQYJKoZIhvcNAQELBQADggEBAMOmtBR7J/EE3uWOYe/tgLFm9lgc qansIE3lc6GdHeAecEW1SH2Vh/pJlLlCSNGATtPXFi8qPRDRGtKYSztGJOAJUn+K +vOK0rtwQprwFEdJKSxsqJgxjO1v7ogK/n8tO1krJ+7G9JaRZWZofMSHlYuEDtn6 CpJ7x7WmuMBqGF2y/fnXYz1sD9DRqvQp5g9Kdo8g9KTupfU4JQpzAzmsT+NuFLNL jEBaoS8WAcnEOC2Uc9fDjO3yPXDnJUPp4nM4uiiDj3ZxqltYMUid4iRirhkZ8iJq rupNuo1IwgJVWD1MAStidxfpGjZ+7pOM623GfEUmC3jJ45iVLnlG5bogm8Q= -----END CERTIFICATE-----Generated at Sat Apr 5 17:38:16 2025 by rpki-client