$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/891/I704VH3NZJ2nJ-s26Kt04QEPXLw.roa File: I704VH3NZJ2nJ-s26Kt04QEPXLw.roa (raw, json) Hash identifier: /JjyTsoHvT6PsZXRhEY6TXDJAXLWFOfWU9FoWoWd7nI= Subject key identifier: 23:BD:38:54:7D:CD:64:9D:A7:27:EB:36:E8:AB:74:E1:01:0F:5C:BC Certificate issuer: /CN=DD829D646D53ECF298950B687532DE926EC7EBC0 Certificate serial: 19 Authority key identifier: DD:82:9D:64:6D:53:EC:F2:98:95:0B:68:75:32:DE:92:6E:C7:EB:C0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/3YKdZG1T7PKYlQtodTLekm7H68A.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/891/I704VH3NZJ2nJ-s26Kt04QEPXLw.roa Signing time: Tue 25 Mar 2025 06:19:03 +0000 ROA not before: Tue 25 Mar 2025 06:19:03 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 23827 IP address blocks: 115.31.80.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/891/3YKdZG1T7PKYlQtodTLekm7H68A.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/891/3YKdZG1T7PKYlQtodTLekm7H68A.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/3YKdZG1T7PKYlQtodTLekm7H68A.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD829D646D53ECF298950B687532DE926EC7EBC0 Validity Not Before: Mar 25 06:19:03 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=23BD38547DCD649DA727EB36E8AB74E1010F5CBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:62:e6:f8:0a:e7:bb:87:c6:4e:6d:8c:64:1f: 06:8f:1e:33:da:f1:9a:5a:02:df:aa:84:94:1e:88: 5e:68:9a:d9:4d:c9:52:a8:43:b1:1f:40:85:86:a4: 91:cc:fb:c4:2f:3a:6d:34:d9:a2:ce:ba:f2:af:ec: 4b:55:de:ae:53:1c:7e:36:d5:c4:60:72:e3:3a:e2: 31:89:ef:57:73:45:b3:c6:9e:f0:36:8a:fb:71:38: d5:2c:b9:b7:b9:d6:55:d7:13:fe:b0:a5:18:ea:b7: 5c:54:0b:94:69:8b:ca:8f:a6:13:a2:a9:a4:fe:47: 66:82:17:db:3d:44:f0:b7:c8:11:af:b3:e4:ed:29: 50:9f:3c:e2:7b:d8:2c:90:6c:f7:50:39:fc:61:db: 98:ee:9e:5c:20:d6:90:18:86:64:28:54:58:e2:21: 75:7e:93:7e:1f:ff:31:47:a8:e7:71:97:fe:d2:2b: 09:81:73:1b:de:70:36:51:9a:e2:df:8c:49:65:3f: 71:3c:a6:90:8b:ed:de:0a:fc:48:f3:53:04:fc:23: c1:0e:1b:1d:df:90:ee:79:7f:e9:21:e2:f8:4f:5d: b8:49:c2:5c:d4:e3:8b:0d:20:13:c6:56:f9:4a:cc: 6f:e2:0b:d7:4b:95:d8:13:40:01:c0:f2:a9:71:f8: 06:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:BD:38:54:7D:CD:64:9D:A7:27:EB:36:E8:AB:74:E1:01:0F:5C:BC X509v3 Authority Key Identifier: keyid:DD:82:9D:64:6D:53:EC:F2:98:95:0B:68:75:32:DE:92:6E:C7:EB:C0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/891/3YKdZG1T7PKYlQtodTLekm7H68A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/3YKdZG1T7PKYlQtodTLekm7H68A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/891/I704VH3NZJ2nJ-s26Kt04QEPXLw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.31.80.0/21 Signature Algorithm: sha256WithRSAEncryption af:f4:7e:fd:66:3c:96:c4:50:b1:e0:10:26:9e:0d:67:4d:9b: 72:2a:8f:2d:65:8d:24:1b:b4:d8:60:44:b5:00:68:09:43:8e: f2:e2:5b:99:cb:ef:37:34:46:11:12:5c:f8:38:40:3d:b3:c1: 0d:df:6d:db:76:ca:68:da:b9:bd:15:0c:2b:f9:26:14:2a:66: d3:79:9e:1e:75:2a:a4:c9:1f:cc:00:b4:d1:07:74:b2:8f:d6: 36:2c:a5:a9:2f:2d:06:fe:13:76:fc:18:6d:59:f3:41:ef:c3: 84:1d:56:b3:bd:5d:04:48:d1:3c:42:62:91:ce:92:83:8e:48: 62:38:46:55:ba:2d:2d:b5:a5:5b:5e:83:92:03:a7:43:6f:20: 63:c7:d7:45:e9:3a:7c:21:9f:e6:25:78:e8:8b:8e:30:2d:39: 47:40:7e:ed:e5:d6:e2:73:b4:9b:23:fe:c7:c5:33:5c:c5:09: 0e:b6:dc:71:65:ab:c7:23:43:5a:c3:91:4a:8f:be:9b:9e:19: b6:0a:fc:bf:95:12:cd:02:ce:84:38:9e:03:eb:10:14:73:b4: a4:e7:33:6d:4e:84:c9:cb:19:12:05:79:2c:21:74:45:d8:dc: 54:92:a0:c7:b3:6a:d9:93:97:dc:c0:87:3f:61:67:7d:df:0f: 05:7b:ba:44 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBGTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhERDgy OUQ2NDZENTNFQ0YyOTg5NTBCNjg3NTMyREU5MjZFQzdFQkMwMB4XDTI1MDMyNTA2 MTkwM1oXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoMjNCRDM4NTQ3RENENjQ5 REE3MjdFQjM2RThBQjc0RTEwMTBGNUNCQzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALdi5vgK57uHxk5tjGQfBo8eM9rxmloC36qElB6IXmia2U3JUqhD sR9AhYakkcz7xC86bTTZos668q/sS1XerlMcfjbVxGBy4zriMYnvV3NFs8ae8DaK +3E41Sy5t7nWVdcT/rClGOq3XFQLlGmLyo+mE6KppP5HZoIX2z1E8LfIEa+z5O0p UJ884nvYLJBs91A5/GHbmO6eXCDWkBiGZChUWOIhdX6Tfh//MUeo53GX/tIrCYFz G95wNlGa4t+MSWU/cTymkIvt3gr8SPNTBPwjwQ4bHd+Q7nl/6SHi+E9duEnCXNTj iw0gE8ZW+UrMb+IL10uV2BNAAcDyqXH4Bv8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQjvThUfc1knacn6zboq3ThAQ9cvDAfBgNVHSMEGDAWgBTdgp1kbVPs8piVC2h1 Mt6SbsfrwDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODkxLzNZS2RaRzFUN1BLWWxRdG9kVExla203SDY4QS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzNZS2RaRzFUN1BLWWxRdG9kVExla203 SDY4QS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84OTEvSTcwNFZIM05aSjJuSi1zMjZLdDA0UUVQWEx3LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA3MfUDANBgkqhkiG9w0BAQsFAAOCAQEAr/R+/WY8lsRQseAQJp4NZ02bciqP LWWNJBu02GBEtQBoCUOO8uJbmcvvNzRGERJc+DhAPbPBDd9t23bKaNq5vRUMK/km FCpm03meHnUqpMkfzAC00Qd0so/WNiylqS8tBv4TdvwYbVnzQe/DhB1Ws71dBEjR PEJikc6Sg45IYjhGVbotLbWlW16DkgOnQ28gY8fXRek6fCGf5iV46IuOMC05R0B+ 7eXW4nO0myP+x8UzXMUJDrbccWWrxyNDWsORSo++m54Ztgr8v5USzQLOhDieA+sQ FHO0pOczbU6EycsZEgV5LCF0RdjcVJKgx7Nq2ZOX3MCHP2Fnfd8PBXu6RA== -----END CERTIFICATE-----Generated at Sun Apr 6 16:47:46 2025 by rpki-client