$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/859/cPPtPhw2z4LG6OYrDRpgkW_0C-o.roa File: cPPtPhw2z4LG6OYrDRpgkW_0C-o.roa (raw, json) Hash identifier: dtwettJTfHG1EU6GmD7qDvj7M81or3dZeGj7kB3j4js= Subject key identifier: 70:F3:ED:3E:1C:36:CF:82:C6:E8:E6:2B:0D:1A:60:91:6F:F4:0B:EA Certificate issuer: /CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B Certificate serial: 5A Authority key identifier: 3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/cPPtPhw2z4LG6OYrDRpgkW_0C-o.roa Signing time: Sat 01 Mar 2025 01:28:30 +0000 ROA not before: Sat 01 Mar 2025 01:28:30 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 23778 IP address blocks: 210.235.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B Validity Not Before: Mar 1 01:28:30 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=70F3ED3E1C36CF82C6E8E62B0D1A60916FF40BEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:46:7e:91:a5:d5:9e:7b:af:19:b6:7c:63:86: 7f:fd:e3:54:43:5d:1d:11:83:c9:54:eb:91:bc:a8: 47:41:93:4f:1f:fe:88:e6:4f:0b:54:aa:f6:cc:93: ee:17:2b:17:2c:42:92:26:76:e0:31:be:3e:64:05: 43:aa:ce:f0:84:01:57:e3:36:5c:3c:87:d2:a4:13: 01:c2:60:32:ae:0f:fc:e0:5a:15:73:ef:06:fe:df: 56:f6:8e:17:af:28:7c:b8:b2:ec:3a:10:40:a8:b7: 2a:67:9d:0d:36:c6:02:a2:78:fe:e6:19:da:92:07: 84:4a:b0:cd:ca:76:18:c1:aa:c1:07:90:e5:b0:2b: 0f:a6:e6:d4:25:25:3b:e4:ff:7b:62:46:d4:65:31: 2a:fc:17:c4:0c:bb:de:97:1a:43:a7:36:ca:dd:cf: ad:b0:36:d2:65:2a:f7:fe:5c:3b:ec:5b:23:9c:f1: f1:09:05:80:6f:84:d3:02:53:a3:35:28:2e:9d:6f: d4:10:b5:08:6f:7f:0c:2f:6b:b0:5a:81:67:9b:24: 23:e0:1a:8c:cf:c7:a0:f3:d6:98:1e:14:72:06:e8: ab:18:f3:bf:20:0b:4b:e1:5b:75:5a:03:f6:76:b7: e5:15:b8:22:ab:d9:62:f4:dd:cf:01:6f:ea:2c:b6: 21:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:F3:ED:3E:1C:36:CF:82:C6:E8:E6:2B:0D:1A:60:91:6F:F4:0B:EA X509v3 Authority Key Identifier: keyid:3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/cPPtPhw2z4LG6OYrDRpgkW_0C-o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.235.40.0/21 Signature Algorithm: sha256WithRSAEncryption 50:80:31:85:b1:10:57:19:c3:2a:a6:51:9f:1f:9a:ac:c2:9b: fb:af:2d:96:f7:67:ef:ef:82:98:50:0f:ae:69:d9:a0:dd:69: 07:26:d6:4d:5b:99:68:fd:6c:11:9e:af:0e:5c:b4:e7:0e:a9: 03:19:bc:b2:e2:b3:f9:3f:79:fe:2b:58:0b:a3:c0:1a:81:98: ac:6b:ff:06:01:f5:06:c8:23:56:cd:e5:f1:e5:58:99:f8:91: 07:15:e9:67:c5:7a:66:44:3f:99:54:42:b7:7a:45:80:44:d3: 59:dc:61:40:c5:84:15:2c:88:36:d4:3a:3e:2b:96:70:df:cc: 1e:66:0d:60:48:6e:ea:fb:07:99:de:81:e6:52:e8:95:6b:42: 63:69:a0:af:20:a0:b9:ea:58:4d:80:e6:f2:88:86:49:99:ab: b3:ed:54:aa:34:00:c3:2a:24:4d:4e:7e:91:24:b6:d8:54:5d: bb:15:3e:11:18:af:3d:6f:ad:67:6c:59:52:73:16:bf:67:32: ce:39:e9:9f:da:b8:91:78:33:3a:7a:7e:ef:d8:0e:20:25:c0: a4:56:04:8c:d5:5f:af:da:82:77:a5:97:5d:e6:03:7f:45:1b: d0:d3:7f:31:a7:b6:2b:1d:b2:7a:39:be:de:6a:aa:26:96:3d: a0:88:8d:2c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBWjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzRjkw RjJGQkNBQTI1MzhDQTY1NzRGQjIyRDhDNkVCM0U5Q0EwNDZCMB4XDTI1MDMwMTAx MjgzMFoXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoNzBGM0VEM0UxQzM2Q0Y4 MkM2RThFNjJCMEQxQTYwOTE2RkY0MEJFQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMBGfpGl1Z57rxm2fGOGf/3jVENdHRGDyVTrkbyoR0GTTx/+iOZP C1Sq9syT7hcrFyxCkiZ24DG+PmQFQ6rO8IQBV+M2XDyH0qQTAcJgMq4P/OBaFXPv Bv7fVvaOF68ofLiy7DoQQKi3KmedDTbGAqJ4/uYZ2pIHhEqwzcp2GMGqwQeQ5bAr D6bm1CUlO+T/e2JG1GUxKvwXxAy73pcaQ6c2yt3PrbA20mUq9/5cO+xbI5zx8QkF gG+E0wJTozUoLp1v1BC1CG9/DC9rsFqBZ5skI+AajM/HoPPWmB4UcgboqxjzvyAL S+FbdVoD9na35RW4IqvZYvTdzwFv6iy2IdkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRw8+0+HDbPgsbo5isNGmCRb/QL6jAfBgNVHSMEGDAWgBQ/kPL7yqJTjKZXT7It jG6z6coEazAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODU5L1A1RHktOHFpVTR5bVYwLXlMWXh1cy1uS0JHcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1A1RHktOHFpVTR5bVYwLXlMWXh1cy1u S0JHcy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84NTkvY1BQdFBodzJ6NExHNk9ZckRScGdrV18wQy1vLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA9LrKDANBgkqhkiG9w0BAQsFAAOCAQEAUIAxhbEQVxnDKqZRnx+arMKb+68t lvdn7++CmFAPrmnZoN1pBybWTVuZaP1sEZ6vDly05w6pAxm8suKz+T95/itYC6PA GoGYrGv/BgH1BsgjVs3l8eVYmfiRBxXpZ8V6ZkQ/mVRCt3pFgETTWdxhQMWEFSyI NtQ6PiuWcN/MHmYNYEhu6vsHmd6B5lLolWtCY2mgryCguepYTYDm8oiGSZmrs+1U qjQAwyokTU5+kSS22FRduxU+ERivPW+tZ2xZUnMWv2cyzjnpn9q4kXgzOnp+79gO ICXApFYEjNVfr9qCd6WXXeYDf0Ub0NN/Mae2Kx2yejm+3mqqJpY9oIiNLA== -----END CERTIFICATE-----Generated at Sat Apr 5 23:07:28 2025 by rpki-client