$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/868/AohIni1Otm0gpAy2yFST9rreB0Q.roa File: AohIni1Otm0gpAy2yFST9rreB0Q.roa (raw, json) Hash identifier: 1ifNGi8VziotTakn4T+iEbjVY8Z7cG6Nq2zyjBVpLao= Subject key identifier: 02:88:48:9E:2D:4E:B6:6D:20:A4:0C:B6:C8:54:93:F6:BA:DE:07:44 Certificate issuer: /CN=8D0962EDE0F5E21A7E8F9E1AB006FF940E04ED46 Certificate serial: 3D Authority key identifier: 8D:09:62:ED:E0:F5:E2:1A:7E:8F:9E:1A:B0:06:FF:94:0E:04:ED:46 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jQli7eD14hp-j54asAb_lA4E7UY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/AohIni1Otm0gpAy2yFST9rreB0Q.roa Signing time: Sat 01 Mar 2025 01:28:50 +0000 ROA not before: Sat 01 Mar 2025 01:28:50 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 24271 IP address blocks: 202.177.64.0/18 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/jQli7eD14hp-j54asAb_lA4E7UY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/jQli7eD14hp-j54asAb_lA4E7UY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jQli7eD14hp-j54asAb_lA4E7UY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D0962EDE0F5E21A7E8F9E1AB006FF940E04ED46 Validity Not Before: Mar 1 01:28:50 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=0288489E2D4EB66D20A40CB6C85493F6BADE0744 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:43:a7:09:72:db:a4:66:05:9f:2b:65:90:aa: 5b:f7:83:39:46:41:d5:85:82:01:97:60:2a:29:e1: e8:2a:f8:65:ee:fe:f5:19:8f:e9:f7:c2:f9:3b:af: 25:3f:a3:6d:21:aa:75:2c:23:3d:e4:6d:ff:d9:b5: b3:33:eb:8c:ad:e3:51:29:7f:2c:8d:ca:59:da:14: 9d:92:5d:5a:04:ec:41:8d:04:33:8a:ed:e7:69:a9: b1:d1:f8:63:ef:1b:69:08:47:0b:7b:05:dc:13:72: 0d:2c:75:ef:64:57:b3:36:05:e2:05:5d:a1:f8:fb: 4e:4e:09:61:5b:8d:09:71:d8:ec:06:89:c8:20:0f: f9:14:84:cd:6b:3a:ca:84:70:04:f1:19:7f:69:01: 1b:9c:27:6e:47:9f:4e:dd:29:db:f7:c9:90:10:9d: c7:1a:68:0f:71:f0:23:57:09:b4:52:d5:00:c9:15: 73:66:ec:c3:1e:31:e8:2e:fe:32:6d:df:98:6e:fc: 19:8e:2c:68:b8:24:4d:8b:6f:2d:3a:a3:f2:bb:33: 42:84:40:be:40:1b:71:19:1a:82:21:98:fa:1c:f6: 83:73:53:b3:d4:74:58:fd:62:78:f3:7e:95:b1:61: 8b:0b:50:f3:f8:c4:b5:5d:80:a8:13:53:f4:f8:53: dd:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:88:48:9E:2D:4E:B6:6D:20:A4:0C:B6:C8:54:93:F6:BA:DE:07:44 X509v3 Authority Key Identifier: keyid:8D:09:62:ED:E0:F5:E2:1A:7E:8F:9E:1A:B0:06:FF:94:0E:04:ED:46 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/jQli7eD14hp-j54asAb_lA4E7UY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jQli7eD14hp-j54asAb_lA4E7UY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/AohIni1Otm0gpAy2yFST9rreB0Q.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.177.64.0/18 Signature Algorithm: sha256WithRSAEncryption b7:53:a9:87:45:c1:9a:c9:7f:bc:80:d9:59:f8:3f:c8:2e:92: bc:ed:d1:74:ed:8a:00:5c:b8:07:ab:2e:de:21:06:c2:d1:e9: f3:20:e7:d9:50:7b:3b:cb:71:82:d1:84:09:4a:37:15:2b:1f: ac:10:39:9f:2a:9e:7f:fb:ac:22:6e:6e:c6:cc:53:92:88:ef: b7:33:52:20:6d:a1:aa:97:15:0c:ba:b4:e9:ae:da:a9:77:38: ce:a6:64:a3:5b:60:00:9d:0e:eb:bf:6c:87:0a:58:4e:bc:6c: ef:e9:e3:ea:d3:bc:f7:71:3e:c5:8b:b1:22:60:1b:e9:55:d2: 33:98:b4:e5:eb:19:3b:65:26:99:e4:b1:17:09:f2:23:80:ef: 57:29:de:72:40:b9:5d:1f:18:3e:07:3c:7b:fd:45:65:cb:f6: c0:70:1f:9a:68:25:0e:7a:e4:03:4c:3c:58:20:27:51:21:ec: 20:ef:d5:a0:95:1a:23:de:46:c3:b1:38:42:21:37:f0:f3:8c: 35:de:9d:11:cd:2e:6b:93:ca:42:e1:ec:ef:1c:ca:73:2c:d5: aa:1a:07:96:68:c1:3e:bc:ee:7b:5c:81:30:9f:15:06:c6:c9: fc:37:71:49:ab:0d:a2:a0:c9:e9:36:5e:cb:95:d9:bf:55:21: 80:1c:6f:39 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBPTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4RDA5 NjJFREUwRjVFMjFBN0U4RjlFMUFCMDA2RkY5NDBFMDRFRDQ2MB4XDTI1MDMwMTAx Mjg1MFoXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoMDI4ODQ4OUUyRDRFQjY2 RDIwQTQwQ0I2Qzg1NDkzRjZCQURFMDc0NDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMRDpwly26RmBZ8rZZCqW/eDOUZB1YWCAZdgKinh6Cr4Ze7+9RmP 6ffC+TuvJT+jbSGqdSwjPeRt/9m1szPrjK3jUSl/LI3KWdoUnZJdWgTsQY0EM4rt 52mpsdH4Y+8baQhHC3sF3BNyDSx172RXszYF4gVdofj7Tk4JYVuNCXHY7AaJyCAP +RSEzWs6yoRwBPEZf2kBG5wnbkefTt0p2/fJkBCdxxpoD3HwI1cJtFLVAMkVc2bs wx4x6C7+Mm3fmG78GY4saLgkTYtvLTqj8rszQoRAvkAbcRkagiGY+hz2g3NTs9R0 WP1iePN+lbFhiwtQ8/jEtV2AqBNT9PhT3W0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQCiEieLU62bSCkDLbIVJP2ut4HRDAfBgNVHSMEGDAWgBSNCWLt4PXiGn6Pnhqw Bv+UDgTtRjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODY4L2pRbGk3ZUQxNGhwLWo1NGFzQWJfbEE0RTdVWS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pRbGk3ZUQxNGhwLWo1NGFzQWJfbEE0 RTdVWS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84NjgvQW9oSW5pMU90bTBncEF5MnlGU1Q5cnJlQjBRLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBsqxQDANBgkqhkiG9w0BAQsFAAOCAQEAt1Oph0XBmsl/vIDZWfg/yC6SvO3R dO2KAFy4B6su3iEGwtHp8yDn2VB7O8txgtGECUo3FSsfrBA5nyqef/usIm5uxsxT kojvtzNSIG2hqpcVDLq06a7aqXc4zqZko1tgAJ0O679shwpYTrxs7+nj6tO893E+ xYuxImAb6VXSM5i05esZO2UmmeSxFwnyI4DvVyneckC5XR8YPgc8e/1FZcv2wHAf mmglDnrkA0w8WCAnUSHsIO/VoJUaI95Gw7E4QiE38POMNd6dEc0ua5PKQuHs7xzK cyzVqhoHlmjBPrzue1yBMJ8VBsbJ/DdxSasNoqDJ6TZey5XZv1UhgBxvOQ== -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:53 2025 by rpki-client