$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/731/ZtCdtaLAbK0Yu6CkPOLtf8kV3Vc.roa File: ZtCdtaLAbK0Yu6CkPOLtf8kV3Vc.roa (raw, json) Hash identifier: gyHLf7zDdM44vrDyKIUqjcZStkbZECJjB243Wk+vCuc= Subject key identifier: 66:D0:9D:B5:A2:C0:6C:AD:18:BB:A0:A4:3C:E2:ED:7F:C9:15:DD:57 Certificate issuer: /CN=91ACA44275EC0572BC6921502B241C14D44A9AA1 Certificate serial: 81 Authority key identifier: 91:AC:A4:42:75:EC:05:72:BC:69:21:50:2B:24:1C:14:D4:4A:9A:A1 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/kaykQnXsBXK8aSFQKyQcFNRKmqE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/731/ZtCdtaLAbK0Yu6CkPOLtf8kV3Vc.roa Signing time: Fri 31 Jan 2025 01:32:01 +0000 ROA not before: Fri 31 Jan 2025 01:32:01 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 18260 IP address blocks: 210.87.224.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/731/kaykQnXsBXK8aSFQKyQcFNRKmqE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/731/kaykQnXsBXK8aSFQKyQcFNRKmqE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/kaykQnXsBXK8aSFQKyQcFNRKmqE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91ACA44275EC0572BC6921502B241C14D44A9AA1 Validity Not Before: Jan 31 01:32:01 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=66D09DB5A2C06CAD18BBA0A43CE2ED7FC915DD57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1f:da:75:e8:23:01:9a:a2:e2:e5:76:4f:e4: 31:b2:1a:93:b1:79:5d:f5:67:52:46:db:64:3c:1f: 77:03:20:13:d6:55:f1:b4:55:c0:a3:95:1b:b2:1d: 6b:e4:85:c1:73:08:df:d2:86:94:e0:2b:68:86:49: c6:1b:bd:38:89:2b:8d:bd:78:26:0d:85:13:57:81: 69:01:cb:5b:22:fc:56:c3:27:fd:b2:c9:91:e0:f8: 5e:8b:55:f5:75:54:bb:3b:21:2a:eb:e3:07:55:43: e6:5a:a4:6d:a7:4c:69:d8:bd:a2:04:d4:82:6d:d1: 2c:53:ff:a5:ed:69:13:3c:25:3d:e8:e0:32:cc:95: 47:6f:15:13:4f:ee:06:d2:1a:c5:f9:e1:84:3e:ac: 32:f6:51:84:17:57:d2:79:c2:7f:25:21:2e:85:03: cb:5b:84:38:d2:fd:7a:5a:79:2c:d3:5d:0a:7e:48: 34:11:a5:1b:35:5f:70:36:7e:23:40:f5:89:f6:c1: 2e:61:28:b6:56:2d:44:0a:e1:df:d7:20:1c:f0:e5: fa:fc:96:cb:e9:40:fc:89:bd:7d:a6:a3:2e:7a:7e: c3:fc:59:db:5f:e8:d7:e9:25:04:ef:a1:69:76:54: 4c:63:24:77:23:ac:25:c3:13:32:01:af:24:23:83: 47:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:D0:9D:B5:A2:C0:6C:AD:18:BB:A0:A4:3C:E2:ED:7F:C9:15:DD:57 X509v3 Authority Key Identifier: keyid:91:AC:A4:42:75:EC:05:72:BC:69:21:50:2B:24:1C:14:D4:4A:9A:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/731/kaykQnXsBXK8aSFQKyQcFNRKmqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/kaykQnXsBXK8aSFQKyQcFNRKmqE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/731/ZtCdtaLAbK0Yu6CkPOLtf8kV3Vc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.87.224.0/20 Signature Algorithm: sha256WithRSAEncryption 04:1a:40:85:62:ba:b2:6b:62:55:8d:ba:a5:3d:b6:73:26:70: 97:89:7e:d4:f5:87:bb:a2:3d:a9:3d:17:16:d1:6f:9a:25:ab: 01:b1:8c:c0:4b:4b:2d:a4:41:98:c3:b9:53:8a:c0:76:c5:41: ec:b5:08:49:6c:2c:ee:18:cf:35:84:06:12:c2:81:d7:b8:09: 3b:ee:b5:67:2d:0f:f1:c4:52:d7:0b:91:06:66:6b:02:0a:bb: 5d:5c:1b:2a:f8:80:d8:f7:13:83:0b:21:3f:57:4b:4a:ab:dd: cb:09:93:2b:db:be:ef:87:1a:d3:3f:20:d7:7c:0b:88:4a:c2: f6:ec:47:6a:c5:0e:0c:dd:df:09:99:4b:8e:14:f3:63:8e:e4: 5e:8a:7a:2a:a3:b0:d6:f7:c8:ac:10:78:18:33:6a:30:a4:52: f9:fe:26:ef:29:aa:92:ed:36:e1:c3:7a:f7:12:35:2e:f8:b8: 43:8d:78:13:f1:8a:2b:c2:fd:a9:9b:15:af:f8:e2:f2:a6:51: 6b:39:b6:4b:59:95:07:2e:78:30:ee:30:3c:78:78:c3:2e:0d: 90:a5:04:01:79:7a:06:14:a4:76:b4:5e:a0:a8:c2:a4:1b:5a: 58:3d:05:82:5c:2d:25:01:38:78:2a:58:87:d1:f3:5c:43:2b: 6b:39:63:8d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTFB Q0E0NDI3NUVDMDU3MkJDNjkyMTUwMkIyNDFDMTRENDRBOUFBMTAeFw0yNTAxMzEw MTMyMDFaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDY2RDA5REI1QTJDMDZD QUQxOEJCQTBBNDNDRTJFRDdGQzkxNURENTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKH9p16CMBmqLi5XZP5DGyGpOxeV31Z1JG22Q8H3cDIBPWVfG0 VcCjlRuyHWvkhcFzCN/ShpTgK2iGScYbvTiJK429eCYNhRNXgWkBy1si/FbDJ/2y yZHg+F6LVfV1VLs7ISrr4wdVQ+ZapG2nTGnYvaIE1IJt0SxT/6XtaRM8JT3o4DLM lUdvFRNP7gbSGsX54YQ+rDL2UYQXV9J5wn8lIS6FA8tbhDjS/XpaeSzTXQp+SDQR pRs1X3A2fiNA9Yn2wS5hKLZWLUQK4d/XIBzw5fr8lsvpQPyJvX2moy56fsP8Wdtf 6NfpJQTvoWl2VExjJHcjrCXDEzIBryQjg0d7AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUZtCdtaLAbK0Yu6CkPOLtf8kV3VcwHwYDVR0jBBgwFoAUkaykQnXsBXK8aSFQ KyQcFNRKmqEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzczMS9rYXlrUW5Yc0JYSzhhU0ZRS3lRY0ZOUkttcUUuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9rYXlrUW5Yc0JYSzhhU0ZRS3lRY0ZO UkttcUUuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNzMxL1p0Q2R0YUxBYkswWXU2Q2tQT0x0ZjhrVjNWYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATSV+AwDQYJKoZIhvcNAQELBQADggEBAAQaQIViurJrYlWNuqU9tnMmcJeJ ftT1h7uiPak9FxbRb5olqwGxjMBLSy2kQZjDuVOKwHbFQey1CElsLO4YzzWEBhLC gde4CTvutWctD/HEUtcLkQZmawIKu11cGyr4gNj3E4MLIT9XS0qr3csJkyvbvu+H GtM/INd8C4hKwvbsR2rFDgzd3wmZS44U82OO5F6KeiqjsNb3yKwQeBgzajCkUvn+ Ju8pqpLtNuHDevcSNS74uEONeBPxiivC/ambFa/44vKmUWs5tktZlQcueDDuMDx4 eMMuDZClBAF5egYUpHa0XqCowqQbWlg9BYJcLSUBOHgqWIfR81xDK2s5Y40= -----END CERTIFICATE-----Generated at Sat Apr 5 20:02:07 2025 by rpki-client