$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/903/r11895MVlJGIUtB6fIeoBpJ0jJU.roa File: r11895MVlJGIUtB6fIeoBpJ0jJU.roa (raw, json) Hash identifier: oBN6xOg8huVoSkcun7ZuxmXYrFcL4ObiDTxI4YwsPvo= Subject key identifier: AF:5D:7C:F7:93:15:94:91:88:52:D0:7A:7C:87:A8:06:92:74:8C:95 Certificate issuer: /CN=94C2F0BE180089A7593D9ED37D04E852ED5A259A Certificate serial: 08 Authority key identifier: 94:C2:F0:BE:18:00:89:A7:59:3D:9E:D3:7D:04:E8:52:ED:5A:25:9A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lMLwvhgAiadZPZ7TfQToUu1aJZo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/903/r11895MVlJGIUtB6fIeoBpJ0jJU.roa Signing time: Tue 18 Mar 2025 07:24:31 +0000 ROA not before: Tue 18 Mar 2025 07:24:31 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 24253 IP address blocks: 202.79.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/903/lMLwvhgAiadZPZ7TfQToUu1aJZo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/903/lMLwvhgAiadZPZ7TfQToUu1aJZo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lMLwvhgAiadZPZ7TfQToUu1aJZo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94C2F0BE180089A7593D9ED37D04E852ED5A259A Validity Not Before: Mar 18 07:24:31 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=AF5D7CF7931594918852D07A7C87A80692748C95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:9b:91:14:8d:f1:62:2b:64:71:0e:c7:0a:5e: db:83:99:72:a7:f6:b6:80:42:98:5c:fd:59:d0:61: 43:5c:c7:87:fa:96:c9:42:a1:80:45:5d:79:d6:91: 15:9f:10:58:0b:34:a2:14:a7:44:9b:9e:b5:52:39: 5f:b0:8e:5c:65:e0:c0:b3:1a:fc:3d:9e:cf:51:48: b0:c2:4f:b4:1e:cf:a4:51:96:3d:14:72:5b:94:03: 2f:58:ae:e1:e7:0a:a6:50:1a:76:5d:07:19:c4:a4: 6d:98:62:67:30:9e:8d:41:f9:e3:ed:28:71:7a:89: fc:a0:02:e4:c7:46:59:e1:2f:b9:fc:91:c0:01:f5: ac:94:ad:0a:23:0c:44:d7:78:2a:9b:06:3e:3b:63: 07:77:da:b3:8d:12:14:9a:58:c8:0c:59:d5:35:8b: 8e:d6:b9:f1:96:d6:d6:94:04:39:74:9b:9b:7e:59: 71:7d:73:8a:83:1b:ec:e0:b7:37:39:ea:e0:f0:07: a8:97:46:b1:bf:9a:61:20:e8:ad:bd:f6:29:b1:e7: 4b:f3:39:2c:1d:7b:ab:3e:5d:76:34:7e:6c:d0:04: 28:7e:82:34:3a:36:b6:3b:53:05:59:32:09:4d:0b: 49:3d:8f:4b:01:90:09:c7:da:b7:8e:22:a9:94:44: b0:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:5D:7C:F7:93:15:94:91:88:52:D0:7A:7C:87:A8:06:92:74:8C:95 X509v3 Authority Key Identifier: keyid:94:C2:F0:BE:18:00:89:A7:59:3D:9E:D3:7D:04:E8:52:ED:5A:25:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/903/lMLwvhgAiadZPZ7TfQToUu1aJZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lMLwvhgAiadZPZ7TfQToUu1aJZo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/903/r11895MVlJGIUtB6fIeoBpJ0jJU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.79.240.0/21 Signature Algorithm: sha256WithRSAEncryption 19:38:0f:a1:d3:ea:90:ae:9c:60:36:12:3d:d6:17:fb:ad:89: 13:d2:83:91:21:82:dd:2d:2d:e1:4f:d7:89:07:1c:77:e5:d5: a9:01:67:a3:e2:25:76:a6:e3:95:24:39:a8:e9:fa:5c:92:3e: ec:39:c8:a6:cf:ee:14:fc:61:b8:d8:78:50:4d:c3:f9:64:c6: cb:77:40:f0:a1:99:c6:a5:b7:f3:16:49:1c:3a:1d:49:3f:72: e1:3c:36:ea:ff:26:5a:12:e4:3d:e4:ef:60:37:a8:5d:63:f3: 0a:54:41:1e:bf:f5:14:63:b4:cc:0b:a3:64:47:82:a2:60:dd: 16:6b:f3:27:20:fd:ec:c1:0c:0e:1b:5a:8f:93:04:00:59:04: 31:44:9d:08:1d:ee:9b:14:99:36:d1:77:73:7a:69:31:26:ee: a3:24:0c:ee:c3:d6:15:37:5c:8b:71:ff:0c:d7:04:b1:42:db: 73:39:0f:b3:eb:63:b2:9c:35:07:dc:1d:b5:83:9a:81:cb:80: 59:87:2c:e1:da:5c:ab:34:c5:ad:85:2a:87:c6:6e:c2:45:bf: 23:cc:7a:d2:4e:1a:e2:0f:fc:bd:ab:01:93:dd:74:73:c5:77: ce:5e:4f:97:e4:f9:8c:20:ca:66:1c:e5:b0:67:3b:66:c8:9e: 7b:58:0b:8e -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBCDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NEMy RjBCRTE4MDA4OUE3NTkzRDlFRDM3RDA0RTg1MkVENUEyNTlBMB4XDTI1MDMxODA3 MjQzMVoXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoQUY1RDdDRjc5MzE1OTQ5 MTg4NTJEMDdBN0M4N0E4MDY5Mjc0OEM5NTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOybkRSN8WIrZHEOxwpe24OZcqf2toBCmFz9WdBhQ1zHh/qWyUKh gEVdedaRFZ8QWAs0ohSnRJuetVI5X7COXGXgwLMa/D2ez1FIsMJPtB7PpFGWPRRy W5QDL1iu4ecKplAadl0HGcSkbZhiZzCejUH54+0ocXqJ/KAC5MdGWeEvufyRwAH1 rJStCiMMRNd4KpsGPjtjB3fas40SFJpYyAxZ1TWLjta58ZbW1pQEOXSbm35ZcX1z ioMb7OC3Nznq4PAHqJdGsb+aYSDorb32KbHnS/M5LB17qz5ddjR+bNAEKH6CNDo2 tjtTBVkyCU0LST2PSwGQCcfat44iqZREsKMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSvXXz3kxWUkYhS0Hp8h6gGknSMlTAfBgNVHSMEGDAWgBSUwvC+GACJp1k9ntN9 BOhS7VolmjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTAzL2xNTHd2aGdBaWFkWlBaN1RmUVRvVXUxYUpaby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2xNTHd2aGdBaWFkWlBaN1RmUVRvVXUx YUpaby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85MDMvcjExODk1TVZsSkdJVXRCNmZJZW9CcEowakpVLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA8pP8DANBgkqhkiG9w0BAQsFAAOCAQEAGTgPodPqkK6cYDYSPdYX+62JE9KD kSGC3S0t4U/XiQccd+XVqQFno+IldqbjlSQ5qOn6XJI+7DnIps/uFPxhuNh4UE3D +WTGy3dA8KGZxqW38xZJHDodST9y4Tw26v8mWhLkPeTvYDeoXWPzClRBHr/1FGO0 zAujZEeComDdFmvzJyD97MEMDhtaj5MEAFkEMUSdCB3umxSZNtF3c3ppMSbuoyQM 7sPWFTdci3H/DNcEsULbczkPs+tjspw1B9wdtYOagcuAWYcs4dpcqzTFrYUqh8Zu wkW/I8x60k4a4g/8vasBk910c8V3zl5Pl+T5jCDKZhzlsGc7Zsiee1gLjg== -----END CERTIFICATE-----Generated at Sat Apr 5 17:46:38 2025 by rpki-client