$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/859/P7xio0KA9JvheLkPt86LjIPBYec.roa File: P7xio0KA9JvheLkPt86LjIPBYec.roa (raw, json) Hash identifier: rykWYT1aJFmJwifYoq3qoc6T0JxhaAR2am91Wf0Mf6Q= Subject key identifier: 3F:BC:62:A3:42:80:F4:9B:E1:78:B9:0F:B7:CE:8B:8C:83:C1:61:E7 Certificate issuer: /CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B Certificate serial: 5B Authority key identifier: 3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P7xio0KA9JvheLkPt86LjIPBYec.roa Signing time: Sat 01 Mar 2025 01:28:31 +0000 ROA not before: Sat 01 Mar 2025 01:28:31 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 23778 IP address blocks: 211.19.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B Validity Not Before: Mar 1 01:28:31 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=3FBC62A34280F49BE178B90FB7CE8B8C83C161E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:cd:e4:c2:b4:ea:ea:91:d3:0d:e3:d2:2e:fa: 95:cf:a7:fb:24:2e:38:04:d2:23:73:b2:58:e5:a7: 5c:8a:26:10:d7:5f:6f:b2:b2:55:06:a4:a9:b5:2b: d4:1b:d8:cc:be:f1:01:de:77:5d:d7:11:3c:39:d3: 7a:1a:05:3d:59:95:6f:43:95:84:b6:ff:5f:40:0b: 3b:96:07:23:05:24:b7:fd:ce:fe:45:00:7a:dd:8e: 1b:54:6f:5e:65:ae:7e:a5:63:a3:3b:56:9d:00:cf: c8:0d:1a:04:76:fc:ae:b2:92:a7:51:d7:52:fb:34: 98:1d:fa:95:14:61:c2:88:6f:1b:51:d3:3b:75:17: 2e:4d:cc:af:49:96:9b:80:a9:ea:74:eb:e8:f5:c9: 78:4a:28:59:3c:2b:94:6b:24:e2:e6:c5:7e:56:16: 52:85:25:e4:ec:d1:31:9d:68:a0:b9:99:b1:62:9d: 1b:c7:15:5f:72:8c:b5:6f:bf:a0:b2:55:e5:f2:94: 72:96:b1:96:ef:c6:d0:43:24:6b:fc:c8:a3:6a:7f: 39:d9:c8:da:d2:71:49:b2:89:e8:68:44:20:15:9c: 33:2c:01:03:b3:1e:e3:eb:e8:22:dd:67:22:38:01: 30:2b:d0:2a:a3:ad:f0:c1:ca:eb:29:ec:c7:0d:6a: bf:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:BC:62:A3:42:80:F4:9B:E1:78:B9:0F:B7:CE:8B:8C:83:C1:61:E7 X509v3 Authority Key Identifier: keyid:3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P7xio0KA9JvheLkPt86LjIPBYec.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.19.196.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:27:53:39:01:98:71:1a:e8:ef:67:2a:9f:8b:ca:bd:3c:c1: 36:cf:70:de:56:a7:7c:cb:3f:c8:cf:f1:0c:05:17:38:b8:5d: 33:58:e3:8d:54:81:92:eb:ef:8d:49:95:15:98:20:57:f7:1f: 09:29:6d:4d:e6:61:c8:ba:87:a1:44:03:fb:04:eb:c1:56:aa: 00:99:e7:6f:22:7d:83:eb:66:ef:e8:5d:bd:10:85:13:34:f8: 8c:d0:ee:4c:4c:35:eb:de:1c:a5:42:79:67:b6:7d:cb:8e:be: 73:0b:d8:76:53:df:55:fd:36:82:f9:ab:2c:c3:cf:29:dd:f4: 08:aa:9a:30:55:40:be:5b:f4:8d:65:55:a1:d5:32:f9:86:de: fd:69:a9:dc:ec:95:6b:c2:8e:4e:0a:1d:81:02:f5:c6:2d:7d: 04:66:14:d9:db:2f:e8:38:bd:2f:9d:d4:c0:da:c3:1b:0b:2c: 10:14:59:d4:49:2b:24:23:eb:95:9a:05:45:c1:58:28:8c:9d: 82:df:2e:c1:4c:4a:e2:e4:33:35:31:65:45:93:77:76:92:3d: d9:f7:17:51:f9:52:bb:f4:a8:04:27:6d:65:d6:c0:3d:aa:f8: 4f:ca:5d:c6:bd:37:68:2f:38:18:b2:7a:4a:ad:6c:53:51:74: 51:cb:3f:d9 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBWzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzRjkw RjJGQkNBQTI1MzhDQTY1NzRGQjIyRDhDNkVCM0U5Q0EwNDZCMB4XDTI1MDMwMTAx MjgzMVoXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoM0ZCQzYyQTM0MjgwRjQ5 QkUxNzhCOTBGQjdDRThCOEM4M0MxNjFFNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMjN5MK06uqR0w3j0i76lc+n+yQuOATSI3OyWOWnXIomENdfb7Ky VQakqbUr1BvYzL7xAd53XdcRPDnTehoFPVmVb0OVhLb/X0ALO5YHIwUkt/3O/kUA et2OG1RvXmWufqVjoztWnQDPyA0aBHb8rrKSp1HXUvs0mB36lRRhwohvG1HTO3UX Lk3Mr0mWm4Cp6nTr6PXJeEooWTwrlGsk4ubFflYWUoUl5OzRMZ1ooLmZsWKdG8cV X3KMtW+/oLJV5fKUcpaxlu/G0EMka/zIo2p/OdnI2tJxSbKJ6GhEIBWcMywBA7Me 4+voIt1nIjgBMCvQKqOt8MHK6ynsxw1qv2ECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ/vGKjQoD0m+F4uQ+3zouMg8Fh5zAfBgNVHSMEGDAWgBQ/kPL7yqJTjKZXT7It jG6z6coEazAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODU5L1A1RHktOHFpVTR5bVYwLXlMWXh1cy1uS0JHcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1A1RHktOHFpVTR5bVYwLXlMWXh1cy1u S0JHcy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84NTkvUDd4aW8wS0E5SnZoZUxrUHQ4NkxqSVBCWWVjLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAtMTxDANBgkqhkiG9w0BAQsFAAOCAQEAmydTOQGYcRro72cqn4vKvTzBNs9w 3lanfMs/yM/xDAUXOLhdM1jjjVSBkuvvjUmVFZggV/cfCSltTeZhyLqHoUQD+wTr wVaqAJnnbyJ9g+tm7+hdvRCFEzT4jNDuTEw1694cpUJ5Z7Z9y46+cwvYdlPfVf02 gvmrLMPPKd30CKqaMFVAvlv0jWVVodUy+Ybe/Wmp3OyVa8KOTgodgQL1xi19BGYU 2dsv6Di9L53UwNrDGwssEBRZ1EkrJCPrlZoFRcFYKIydgt8uwUxK4uQzNTFlRZN3 dpI92fcXUflSu/SoBCdtZdbAPar4T8pdxr03aC84GLJ6Sq1sU1F0Ucs/2Q== -----END CERTIFICATE-----Generated at Sun Apr 6 01:51:55 2025 by rpki-client