$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/655/NX3ec05WMomt1Eb9XOfW36LRNz0.roa File: NX3ec05WMomt1Eb9XOfW36LRNz0.roa (raw, json) Hash identifier: DFjtISdmaQSylnMbEy7TI/2VhVP8FvMzjFe6chV+saQ= Subject key identifier: 35:7D:DE:73:4E:56:32:89:AD:D4:46:FD:5C:E7:D6:DF:A2:D1:37:3D Certificate issuer: /CN=59639EA27DED460F3C9B43216EFC51955F6289C9 Certificate serial: 15 Authority key identifier: 59:63:9E:A2:7D:ED:46:0F:3C:9B:43:21:6E:FC:51:95:5F:62:89:C9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WWOeon3tRg88m0MhbvxRlV9iick.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/655/NX3ec05WMomt1Eb9XOfW36LRNz0.roa Signing time: Tue 01 Apr 2025 01:31:22 +0000 ROA not before: Tue 01 Apr 2025 01:31:22 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 7690 IP address blocks: 202.240.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/655/WWOeon3tRg88m0MhbvxRlV9iick.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/655/WWOeon3tRg88m0MhbvxRlV9iick.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WWOeon3tRg88m0MhbvxRlV9iick.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59639EA27DED460F3C9B43216EFC51955F6289C9 Validity Not Before: Apr 1 01:31:22 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=357DDE734E563289ADD446FD5CE7D6DFA2D1373D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:30:63:b8:65:2d:b7:a9:99:0a:57:f0:1c:da: a1:cc:03:0c:7e:97:ce:a2:17:b7:ff:19:aa:e6:64: a2:71:be:d1:ce:ac:7c:0e:0b:33:e0:94:30:3a:8e: 0a:57:50:1a:4b:7a:70:22:3e:d9:24:1d:4f:a6:15: 05:f8:e5:09:8b:d6:4c:a5:29:a9:74:77:af:b3:ab: fa:0b:d4:3c:09:2f:5b:f9:b5:d2:cd:12:03:d9:29: 52:d1:51:d6:57:be:f0:4b:0d:cd:8e:24:d3:f5:49: 15:74:bc:62:d0:f7:1d:02:f3:c4:95:4c:e5:f0:1f: 6e:70:2a:06:a7:c6:7f:0a:48:38:de:40:65:02:30: 85:03:5d:cb:02:21:d1:d7:21:8e:cc:c2:85:60:12: e6:37:5b:98:07:c4:ab:55:63:50:92:91:68:b0:89: 1d:54:18:c2:e1:34:b4:7c:11:8b:99:32:ec:f9:a7: 55:1e:8f:b1:d7:00:e3:7c:24:8e:ec:28:6d:f5:a2: c9:b1:c1:f0:2a:a5:18:8c:f4:5b:d6:85:ce:dc:bd: 24:5c:e2:0e:09:f7:50:fc:52:a6:d6:2b:d5:03:68: ee:b9:69:e8:e9:2e:4d:c9:81:d1:ab:08:88:57:88: 50:56:22:17:7d:90:b6:d6:02:4c:a9:49:ed:4d:27: db:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:7D:DE:73:4E:56:32:89:AD:D4:46:FD:5C:E7:D6:DF:A2:D1:37:3D X509v3 Authority Key Identifier: keyid:59:63:9E:A2:7D:ED:46:0F:3C:9B:43:21:6E:FC:51:95:5F:62:89:C9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/655/WWOeon3tRg88m0MhbvxRlV9iick.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WWOeon3tRg88m0MhbvxRlV9iick.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/655/NX3ec05WMomt1Eb9XOfW36LRNz0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.240.84.0/23 Signature Algorithm: sha256WithRSAEncryption 97:1e:30:61:31:33:81:47:2b:32:23:6e:22:b9:02:71:b0:1d: 38:37:d4:82:23:b5:06:17:81:90:9e:11:3c:25:82:0f:c3:76: b9:7f:65:30:3d:7c:cd:f6:1b:b1:42:3f:ec:ea:d8:5d:af:ba: 19:0d:4d:c1:c6:fb:31:8d:b4:f5:cc:be:28:4a:e6:81:76:24: f1:e0:a5:17:fe:13:ee:44:ea:d8:38:dd:28:e3:7b:42:ed:68: 8f:3c:9f:5a:56:c7:94:e3:69:7f:78:7f:33:df:41:65:8e:f3: a8:8e:61:17:98:79:41:a2:70:76:74:e2:ef:d9:88:0e:7f:f3: 24:ad:e3:ae:c5:01:dd:3b:af:a1:2e:94:0e:d6:a1:27:08:a3: 92:aa:b1:5b:b4:ed:fe:30:ef:c6:92:2c:9a:1f:08:65:46:93: de:99:5e:47:3d:f4:91:0b:39:bd:51:eb:2f:9b:cf:41:25:44: 9f:af:c2:d8:b0:20:51:c8:51:3e:23:b1:00:e9:3c:76:67:1b: f5:34:8a:7e:07:6b:7a:ce:ff:61:13:88:5e:c0:1d:31:c2:bb: 5a:ec:3a:4d:d0:93:a6:44:49:99:71:d7:9d:99:19:5d:0f:02: 42:2c:c4:ab:0b:a5:72:1c:15:7f:de:5a:1a:4e:f1:66:45:e7: 4c:65:fc:c7 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBFTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1OTYz OUVBMjdERUQ0NjBGM0M5QjQzMjE2RUZDNTE5NTVGNjI4OUM5MB4XDTI1MDQwMTAx MzEyMloXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoMzU3RERFNzM0RTU2MzI4 OUFERDQ0NkZENUNFN0Q2REZBMkQxMzczRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOswY7hlLbepmQpX8BzaocwDDH6XzqIXt/8ZquZkonG+0c6sfA4L M+CUMDqOCldQGkt6cCI+2SQdT6YVBfjlCYvWTKUpqXR3r7Or+gvUPAkvW/m10s0S A9kpUtFR1le+8EsNzY4k0/VJFXS8YtD3HQLzxJVM5fAfbnAqBqfGfwpION5AZQIw hQNdywIh0dchjszChWAS5jdbmAfEq1VjUJKRaLCJHVQYwuE0tHwRi5ky7PmnVR6P sdcA43wkjuwobfWiybHB8CqlGIz0W9aFzty9JFziDgn3UPxSptYr1QNo7rlp6Oku TcmB0asIiFeIUFYiF32QttYCTKlJ7U0n2xMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ1fd5zTlYyia3URv1c59bfotE3PTAfBgNVHSMEGDAWgBRZY56ife1GDzybQyFu /FGVX2KJyTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjU1L1dXT2VvbjN0Umc4OG0wTWhidnhSbFY5aWljay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dXT2VvbjN0Umc4OG0wTWhidnhSbFY5 aWljay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC82NTUvTlgzZWMwNVdNb210MUViOVhPZlczNkxSTnowLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAcrwVDANBgkqhkiG9w0BAQsFAAOCAQEAlx4wYTEzgUcrMiNuIrkCcbAdODfU giO1BheBkJ4RPCWCD8N2uX9lMD18zfYbsUI/7OrYXa+6GQ1Nwcb7MY209cy+KErm gXYk8eClF/4T7kTq2DjdKON7Qu1ojzyfWlbHlONpf3h/M99BZY7zqI5hF5h5QaJw dnTi79mIDn/zJK3jrsUB3TuvoS6UDtahJwijkqqxW7Tt/jDvxpIsmh8IZUaT3ple Rz30kQs5vVHrL5vPQSVEn6/C2LAgUchRPiOxAOk8dmcb9TSKfgdres7/YROIXsAd McK7Wuw6TdCTpkRJmXHXnZkZXQ8CQizEqwulchwVf95aGk7xZkXnTGX8xw== -----END CERTIFICATE-----Generated at Sat Apr 5 23:07:28 2025 by rpki-client