$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/868/3r8Z9PoMbrOUuQ0mGtMUguZ4_Ns.roa File: 3r8Z9PoMbrOUuQ0mGtMUguZ4_Ns.roa (raw, json) Hash identifier: WcBLtEslDYH8THT6J+hwklaXhG5gXIelx+fKX1WriUs= Subject key identifier: DE:BF:19:F4:FA:0C:6E:B3:94:B9:0D:26:1A:D3:14:82:E6:78:FC:DB Certificate issuer: /CN=8D0962EDE0F5E21A7E8F9E1AB006FF940E04ED46 Certificate serial: 40 Authority key identifier: 8D:09:62:ED:E0:F5:E2:1A:7E:8F:9E:1A:B0:06:FF:94:0E:04:ED:46 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jQli7eD14hp-j54asAb_lA4E7UY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/3r8Z9PoMbrOUuQ0mGtMUguZ4_Ns.roa Signing time: Sat 01 Mar 2025 01:28:52 +0000 ROA not before: Sat 01 Mar 2025 01:28:52 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 24271 IP address blocks: 202.177.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/jQli7eD14hp-j54asAb_lA4E7UY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/jQli7eD14hp-j54asAb_lA4E7UY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jQli7eD14hp-j54asAb_lA4E7UY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D0962EDE0F5E21A7E8F9E1AB006FF940E04ED46 Validity Not Before: Mar 1 01:28:52 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=DEBF19F4FA0C6EB394B90D261AD31482E678FCDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2d:9c:e2:85:e6:3b:b5:aa:ac:59:d5:90:43: e4:6e:ba:50:b8:2e:ff:2c:c1:42:a8:fe:fe:e2:2a: 48:d8:d1:11:fd:1c:f4:e8:82:8d:8d:85:35:fc:2d: 06:36:ea:90:cb:b6:5d:0f:6c:d2:53:cf:73:95:ad: ff:0b:d0:4c:2f:b5:ff:d7:3f:18:20:75:91:9e:90: 5e:e0:31:f2:28:14:e1:e6:ea:e7:d9:75:d2:62:6c: 26:3c:8c:38:60:9c:57:80:df:2d:5e:57:b6:73:ba: be:45:00:78:b3:10:18:a6:f8:ae:5c:4d:e2:9c:c1: f6:ef:2f:ca:ab:54:a9:db:de:75:86:4c:f1:52:ad: 4b:cb:05:18:fb:a7:b4:6e:c1:9f:42:eb:bd:8c:61: dc:41:ee:6a:c2:b9:63:55:7c:e5:d3:6c:e1:30:ef: c0:dd:bb:f2:1f:f5:19:61:66:f2:ce:cf:af:99:22: 8d:28:39:cd:01:d4:47:ae:bb:f6:53:b6:ef:0a:05: 1c:bd:36:98:aa:a4:8e:87:f2:1c:c7:cd:bf:42:5c: 1b:24:b2:e8:4a:3d:be:67:cf:eb:a6:c2:19:dd:69: 9b:11:a3:56:d5:a3:3f:34:70:2b:62:51:e2:25:73: b6:c8:93:49:5d:19:99:94:0f:ab:8f:d7:ec:b8:b7: 96:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:BF:19:F4:FA:0C:6E:B3:94:B9:0D:26:1A:D3:14:82:E6:78:FC:DB X509v3 Authority Key Identifier: keyid:8D:09:62:ED:E0:F5:E2:1A:7E:8F:9E:1A:B0:06:FF:94:0E:04:ED:46 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/jQli7eD14hp-j54asAb_lA4E7UY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jQli7eD14hp-j54asAb_lA4E7UY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/3r8Z9PoMbrOUuQ0mGtMUguZ4_Ns.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.177.112.0/20 Signature Algorithm: sha256WithRSAEncryption 17:94:39:7e:5c:60:ec:38:0b:31:7e:6e:dd:fd:d3:d2:c4:b8: 0a:f8:9f:37:5d:4f:dd:12:d8:b7:99:5a:f2:a2:ad:7a:3f:f5: fe:9f:73:11:f7:7b:38:cc:70:81:10:fb:4f:24:43:c4:ad:e2: e0:c8:95:9d:0a:6a:ee:bd:25:f7:1a:09:83:0e:d5:3e:ef:50: ce:1d:cb:95:e6:f1:b0:93:f1:79:4e:99:01:50:4d:4a:0b:2a: 24:35:5b:47:59:64:fe:e4:db:7e:c1:46:bd:cb:a5:03:4f:26: f6:f0:ab:b7:bf:03:fd:38:5b:c8:e4:68:b6:c2:e8:13:8d:8b: 15:1e:14:42:13:be:ea:46:ee:57:c2:71:7b:b4:d2:96:80:c7: 82:47:ab:5d:d7:5f:e2:8e:0f:55:72:fb:ad:1e:f7:4e:c0:66: 66:03:7d:98:7e:e1:5e:d7:d0:87:e6:3e:44:f9:6a:57:de:af: 06:9e:63:ed:5d:89:be:d7:2c:59:04:f7:51:b4:8a:13:c1:07: 89:8f:17:fd:bf:6f:2d:92:0e:3f:2a:a8:ae:ad:ac:0a:d7:5b: a4:5a:0c:af:27:2c:14:1a:0c:22:e0:55:16:28:db:5e:0c:6c: 38:4d:95:5f:bf:04:ac:c8:fa:7b:87:57:a5:7b:5a:67:65:8c: a4:46:29:3e -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBQDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4RDA5 NjJFREUwRjVFMjFBN0U4RjlFMUFCMDA2RkY5NDBFMDRFRDQ2MB4XDTI1MDMwMTAx Mjg1MloXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoREVCRjE5RjRGQTBDNkVC Mzk0QjkwRDI2MUFEMzE0ODJFNjc4RkNEQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM0tnOKF5ju1qqxZ1ZBD5G66ULgu/yzBQqj+/uIqSNjREf0c9OiC jY2FNfwtBjbqkMu2XQ9s0lPPc5Wt/wvQTC+1/9c/GCB1kZ6QXuAx8igU4ebq59l1 0mJsJjyMOGCcV4DfLV5XtnO6vkUAeLMQGKb4rlxN4pzB9u8vyqtUqdvedYZM8VKt S8sFGPuntG7Bn0LrvYxh3EHuasK5Y1V85dNs4TDvwN278h/1GWFm8s7Pr5kijSg5 zQHUR6679lO27woFHL02mKqkjofyHMfNv0JcGySy6Eo9vmfP66bCGd1pmxGjVtWj PzRwK2JR4iVztsiTSV0ZmZQPq4/X7Li3ljUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTevxn0+gxus5S5DSYa0xSC5nj82zAfBgNVHSMEGDAWgBSNCWLt4PXiGn6Pnhqw Bv+UDgTtRjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODY4L2pRbGk3ZUQxNGhwLWo1NGFzQWJfbEE0RTdVWS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pRbGk3ZUQxNGhwLWo1NGFzQWJfbEE0 RTdVWS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84NjgvM3I4WjlQb01ick9VdVEwbUd0TVVndVo0X05zLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBMqxcDANBgkqhkiG9w0BAQsFAAOCAQEAF5Q5flxg7DgLMX5u3f3T0sS4Cvif N11P3RLYt5la8qKtej/1/p9zEfd7OMxwgRD7TyRDxK3i4MiVnQpq7r0l9xoJgw7V Pu9Qzh3LlebxsJPxeU6ZAVBNSgsqJDVbR1lk/uTbfsFGvculA08m9vCrt78D/Thb yORotsLoE42LFR4UQhO+6kbuV8Jxe7TSloDHgkerXddf4o4PVXL7rR73TsBmZgN9 mH7hXtfQh+Y+RPlqV96vBp5j7V2JvtcsWQT3UbSKE8EHiY8X/b9vLZIOPyqorq2s CtdbpFoMrycsFBoMIuBVFijbXgxsOE2VX78ErMj6e4dXpXtaZ2WMpEYpPg== -----END CERTIFICATE-----Generated at Sat Apr 5 17:43:58 2025 by rpki-client