$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/882/OioJ-IcRRirc-FwffKZIisSlTv4.roa File: OioJ-IcRRirc-FwffKZIisSlTv4.roa (raw, json) Hash identifier: GCtErFCjbm2s5AloEJVOaiubh6stvo5/HP2adA85cVs= Subject key identifier: 3A:2A:09:F8:87:11:46:2A:DC:F8:5C:1F:7C:A6:48:8A:C4:A5:4E:FE Certificate issuer: /CN=B3935EEBB426B5FF872B140016A4441CDE239F3F Certificate serial: 38 Authority key identifier: B3:93:5E:EB:B4:26:B5:FF:87:2B:14:00:16:A4:44:1C:DE:23:9F:3F Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/s5Ne67Qmtf-HKxQAFqREHN4jnz8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/882/OioJ-IcRRirc-FwffKZIisSlTv4.roa Signing time: Sat 01 Mar 2025 01:32:13 +0000 ROA not before: Sat 01 Mar 2025 01:32:13 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 59127 IP address blocks: 101.203.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/882/s5Ne67Qmtf-HKxQAFqREHN4jnz8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/882/s5Ne67Qmtf-HKxQAFqREHN4jnz8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/s5Ne67Qmtf-HKxQAFqREHN4jnz8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3935EEBB426B5FF872B140016A4441CDE239F3F Validity Not Before: Mar 1 01:32:13 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=3A2A09F88711462ADCF85C1F7CA6488AC4A54EFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:dd:a2:31:95:c4:cd:fb:f5:e2:1e:45:ae:34: 2e:11:a3:a7:f0:58:dd:f8:a1:7f:9c:d1:d0:c3:e4: 37:d0:e1:3f:73:69:fc:1b:f0:5a:90:91:7e:f9:5f: e0:14:a0:0b:92:8a:66:c7:31:07:41:3e:7d:1b:00: 4d:44:bc:03:df:5d:b7:17:68:c9:52:6b:f1:29:13: 4a:65:6d:73:e8:b4:fe:1d:c1:7e:9e:a8:42:fa:ca: f5:e4:52:6d:90:a5:82:9b:58:b6:41:63:41:f8:b0: 8d:f4:e6:04:29:04:67:d7:d6:44:55:ef:b5:0a:31: 8c:3d:79:c9:88:d7:74:21:99:3b:70:09:4a:48:2f: 37:43:b3:57:ba:31:ea:10:c0:80:be:f0:4b:de:6b: 52:c8:9e:0c:ec:4f:5c:8c:e9:ee:7f:da:dc:83:a3: bf:e7:9f:bc:37:0d:16:16:14:a1:51:cb:d0:48:c5: 9d:32:a9:3b:02:f2:c7:a6:64:c8:6b:96:be:ee:60: ce:0c:30:ff:f2:bd:e3:21:1b:f8:10:40:43:69:5a: ac:59:64:b6:bc:c3:9e:05:4f:93:cf:44:2f:43:0a: b9:dc:02:11:21:bb:74:68:f7:45:93:95:6a:37:92: d6:cf:1f:24:b7:88:0d:9d:82:63:4f:b8:de:88:d3: 63:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:2A:09:F8:87:11:46:2A:DC:F8:5C:1F:7C:A6:48:8A:C4:A5:4E:FE X509v3 Authority Key Identifier: keyid:B3:93:5E:EB:B4:26:B5:FF:87:2B:14:00:16:A4:44:1C:DE:23:9F:3F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/882/s5Ne67Qmtf-HKxQAFqREHN4jnz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/s5Ne67Qmtf-HKxQAFqREHN4jnz8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/882/OioJ-IcRRirc-FwffKZIisSlTv4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.203.32.0/20 Signature Algorithm: sha256WithRSAEncryption 0c:d5:9f:b8:d8:81:5c:39:8c:fd:56:30:0a:c6:af:48:37:c0: ef:b5:5c:65:4b:60:75:35:47:ba:63:04:90:92:84:a1:d8:7e: 84:83:29:29:a0:16:f7:67:46:2a:8b:77:99:94:68:0f:fc:2f: 4a:7d:f5:61:fd:df:94:c0:dc:4e:77:04:61:6d:f4:00:de:2d: 88:7c:e2:32:e5:de:13:41:32:04:9a:70:07:75:26:47:5e:b3: 54:5b:d6:4a:26:85:7e:4c:0b:73:c6:86:7d:2d:53:a2:97:67: 13:5a:57:2a:db:92:6a:a7:4d:3d:fc:1c:95:8c:7e:b8:e3:aa: d3:bc:25:4b:53:dc:f7:1b:ea:d6:bc:16:83:5f:73:aa:73:4a: 86:01:0d:ba:5f:9f:76:28:1f:7f:37:bf:6a:54:46:e7:5c:b6: 39:a5:cd:b8:a2:f6:58:d2:3f:9b:64:be:03:a9:70:c4:1c:de: 6b:76:14:b3:e7:94:01:9a:f3:c0:10:f5:33:f7:16:90:d9:47: ab:79:66:d9:70:38:db:f5:cf:a9:75:ca:94:30:04:59:5b:11: f3:14:30:0c:cc:ec:4b:5e:0b:a0:30:f5:ab:da:e9:ff:65:87: e4:e7:1f:fd:36:de:5d:62:38:36:dc:fa:1e:69:e1:79:1f:a1: 84:11:01:d6 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBODANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCMzkz NUVFQkI0MjZCNUZGODcyQjE0MDAxNkE0NDQxQ0RFMjM5RjNGMB4XDTI1MDMwMTAx MzIxM1oXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoM0EyQTA5Rjg4NzExNDYy QURDRjg1QzFGN0NBNjQ4OEFDNEE1NEVGRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL3dojGVxM379eIeRa40LhGjp/BY3fihf5zR0MPkN9DhP3Np/Bvw WpCRfvlf4BSgC5KKZscxB0E+fRsATUS8A99dtxdoyVJr8SkTSmVtc+i0/h3Bfp6o QvrK9eRSbZClgptYtkFjQfiwjfTmBCkEZ9fWRFXvtQoxjD15yYjXdCGZO3AJSkgv N0OzV7ox6hDAgL7wS95rUsieDOxPXIzp7n/a3IOjv+efvDcNFhYUoVHL0EjFnTKp OwLyx6ZkyGuWvu5gzgww//K94yEb+BBAQ2larFlktrzDngVPk89EL0MKudwCESG7 dGj3RZOVajeS1s8fJLeIDZ2CY0+43ojTY7kCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ6Kgn4hxFGKtz4XB98pkiKxKVO/jAfBgNVHSMEGDAWgBSzk17rtCa1/4crFAAW pEQc3iOfPzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODgyL3M1TmU2N1FtdGYtSEt4UUFGcVJFSE40am56OC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3M1TmU2N1FtdGYtSEt4UUFGcVJFSE40 am56OC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84ODIvT2lvSi1JY1JSaXJjLUZ3ZmZLWklpc1NsVHY0LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBGXLIDANBgkqhkiG9w0BAQsFAAOCAQEADNWfuNiBXDmM/VYwCsavSDfA77Vc ZUtgdTVHumMEkJKEodh+hIMpKaAW92dGKot3mZRoD/wvSn31Yf3flMDcTncEYW30 AN4tiHziMuXeE0EyBJpwB3UmR16zVFvWSiaFfkwLc8aGfS1TopdnE1pXKtuSaqdN PfwclYx+uOOq07wlS1Pc9xvq1rwWg19zqnNKhgENul+fdigffze/alRG51y2OaXN uKL2WNI/m2S+A6lwxBzea3YUs+eUAZrzwBD1M/cWkNlHq3lm2XA42/XPqXXKlDAE WVsR8xQwDMzsS14LoDD1q9rp/2WH5Ocf/TbeXWI4Ntz6HmnheR+hhBEB1g== -----END CERTIFICATE-----Generated at Sat Apr 5 23:07:40 2025 by rpki-client