$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/655/ziE2KznsWQUHfB0he0iG7mOr53M.roa File: ziE2KznsWQUHfB0he0iG7mOr53M.roa (raw, json) Hash identifier: cwjZzXEzKjKtkC9khFjr/sBTEdWmQyUC5HOx7ZDhYgo= Subject key identifier: CE:21:36:2B:39:EC:59:05:07:7C:1D:21:7B:48:86:EE:63:AB:E7:73 Certificate issuer: /CN=59639EA27DED460F3C9B43216EFC51955F6289C9 Certificate serial: 16 Authority key identifier: 59:63:9E:A2:7D:ED:46:0F:3C:9B:43:21:6E:FC:51:95:5F:62:89:C9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WWOeon3tRg88m0MhbvxRlV9iick.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/655/ziE2KznsWQUHfB0he0iG7mOr53M.roa Signing time: Tue 01 Apr 2025 01:31:23 +0000 ROA not before: Tue 01 Apr 2025 01:31:23 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 7690 IP address blocks: 210.172.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/655/WWOeon3tRg88m0MhbvxRlV9iick.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/655/WWOeon3tRg88m0MhbvxRlV9iick.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WWOeon3tRg88m0MhbvxRlV9iick.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59639EA27DED460F3C9B43216EFC51955F6289C9 Validity Not Before: Apr 1 01:31:23 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=CE21362B39EC5905077C1D217B4886EE63ABE773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b6:e5:bb:47:c0:5d:25:0b:1c:cf:57:87:5a: 00:20:59:ba:8a:f9:cc:16:08:5e:fd:cb:f3:c1:0f: 9b:01:de:5f:95:65:34:5d:d1:df:e7:a0:3b:6c:7a: c4:dc:bf:65:c5:81:8b:ba:3a:46:49:28:76:98:58: 3c:2d:bb:19:3e:6e:08:ab:e1:94:90:eb:7b:27:58: ba:01:78:44:b8:dd:32:e0:70:4b:4f:ae:69:ab:ae: ad:b6:67:55:fc:f7:7f:c6:5a:11:58:6d:c7:96:80: d1:18:df:d1:c1:b7:68:89:61:a7:0c:9c:b1:10:09: 9b:11:10:5b:86:83:56:6b:89:5a:7c:ed:2d:c9:10: 89:15:a5:60:db:43:ef:a4:99:3b:93:6a:97:92:bb: 99:c2:62:cd:cf:f5:58:a0:b4:c6:4f:31:12:22:e6: 27:29:60:f0:f5:90:77:a2:25:61:6a:ab:2c:d0:da: 74:58:e5:49:25:e1:8c:ae:c3:25:ca:55:9a:e1:2d: 2b:46:7c:90:de:b0:e0:01:f0:6a:12:44:78:03:de: 3d:ee:aa:23:5c:1c:2c:de:2c:be:b5:05:90:c1:90: 23:33:30:aa:60:1e:ef:40:9b:ce:34:3b:9a:1f:f6: 24:33:1f:d1:7a:ca:85:22:22:ab:68:a3:82:e6:a2: ca:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:21:36:2B:39:EC:59:05:07:7C:1D:21:7B:48:86:EE:63:AB:E7:73 X509v3 Authority Key Identifier: keyid:59:63:9E:A2:7D:ED:46:0F:3C:9B:43:21:6E:FC:51:95:5F:62:89:C9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/655/WWOeon3tRg88m0MhbvxRlV9iick.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WWOeon3tRg88m0MhbvxRlV9iick.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/655/ziE2KznsWQUHfB0he0iG7mOr53M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.172.192.0/19 Signature Algorithm: sha256WithRSAEncryption a3:84:51:fe:96:38:1f:02:35:90:f4:f3:86:f1:3f:7c:fe:33: 4e:88:d3:70:5f:28:53:e5:30:5d:e9:ab:17:e1:b1:2b:db:33: ab:c4:b8:a4:3f:de:08:46:2a:a8:38:3b:14:1b:eb:1f:64:13: 4e:da:60:65:36:79:ea:75:09:e2:fa:7b:ad:5c:eb:41:27:28: 2d:53:4d:cc:eb:65:32:8d:da:71:42:99:18:72:05:d9:08:9e: fd:7c:eb:12:22:09:ed:c9:f9:d9:ce:1c:86:55:b3:cf:d2:58: 4f:ed:0c:19:fb:3f:5a:1c:7c:b1:d6:0f:41:2e:c1:21:e1:30: 7d:d5:56:86:28:b3:28:be:65:07:96:78:ef:5a:d7:df:1d:23: 83:a6:18:fb:5d:e3:e3:11:78:16:df:fa:e3:1b:6b:a1:cc:e3: 14:14:67:f2:60:bb:6e:1f:0f:db:d1:69:88:24:f4:eb:ae:59: 1c:d3:26:f0:b2:de:9d:b7:51:d0:26:1e:68:7d:76:a0:16:bc: 58:0a:76:50:13:20:6e:65:e0:89:64:00:1f:b2:a8:d3:8b:00: 61:7f:1f:f0:3c:4a:e4:0d:51:84:15:69:70:51:72:ae:f0:93: 59:37:26:58:a0:e8:3a:73:b0:bb:71:63:73:05:c2:d4:50:71: ac:b1:5d:08 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBFjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1OTYz OUVBMjdERUQ0NjBGM0M5QjQzMjE2RUZDNTE5NTVGNjI4OUM5MB4XDTI1MDQwMTAx MzEyM1oXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoQ0UyMTM2MkIzOUVDNTkw NTA3N0MxRDIxN0I0ODg2RUU2M0FCRTc3MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMC25btHwF0lCxzPV4daACBZuor5zBYIXv3L88EPmwHeX5VlNF3R 3+egO2x6xNy/ZcWBi7o6RkkodphYPC27GT5uCKvhlJDreydYugF4RLjdMuBwS0+u aauurbZnVfz3f8ZaEVhtx5aA0Rjf0cG3aIlhpwycsRAJmxEQW4aDVmuJWnztLckQ iRWlYNtD76SZO5Nql5K7mcJizc/1WKC0xk8xEiLmJylg8PWQd6IlYWqrLNDadFjl SSXhjK7DJcpVmuEtK0Z8kN6w4AHwahJEeAPePe6qI1wcLN4svrUFkMGQIzMwqmAe 70CbzjQ7mh/2JDMf0XrKhSIiq2ijguaiyikCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTOITYrOexZBQd8HSF7SIbuY6vnczAfBgNVHSMEGDAWgBRZY56ife1GDzybQyFu /FGVX2KJyTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjU1L1dXT2VvbjN0Umc4OG0wTWhidnhSbFY5aWljay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dXT2VvbjN0Umc4OG0wTWhidnhSbFY5 aWljay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC82NTUvemlFMkt6bnNXUVVIZkIwaGUwaUc3bU9yNTNNLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBdKswDANBgkqhkiG9w0BAQsFAAOCAQEAo4RR/pY4HwI1kPTzhvE/fP4zTojT cF8oU+UwXemrF+GxK9szq8S4pD/eCEYqqDg7FBvrH2QTTtpgZTZ56nUJ4vp7rVzr QScoLVNNzOtlMo3acUKZGHIF2Qie/XzrEiIJ7cn52c4chlWzz9JYT+0MGfs/Whx8 sdYPQS7BIeEwfdVWhiizKL5lB5Z471rX3x0jg6YY+13j4xF4Ft/64xtroczjFBRn 8mC7bh8P29FpiCT0665ZHNMm8LLenbdR0CYeaH12oBa8WAp2UBMgbmXgiWQAH7Ko 04sAYX8f8DxK5A1RhBVpcFFyrvCTWTcmWKDoOnOwu3FjcwXC1FBxrLFdCA== -----END CERTIFICATE-----Generated at Sat Apr 5 17:46:05 2025 by rpki-client