$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/965/2GlfNZemEu2k0jV-73uoiytXxNs.roa File: 2GlfNZemEu2k0jV-73uoiytXxNs.roa (raw, json) Hash identifier: EpU8NDYPGXDeOveduAY4GQ6T5O7u0+z7HF6PjjVaaos= Subject key identifier: D8:69:5F:35:97:A6:12:ED:A4:D2:35:7E:EF:7B:A8:8B:2B:57:C4:DB Certificate issuer: /CN=989E82672C98A627120ABA72DEBEBE22015849A0 Certificate serial: 1A Authority key identifier: 98:9E:82:67:2C:98:A6:27:12:0A:BA:72:DE:BE:BE:22:01:58:49:A0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mJ6CZyyYpicSCrpy3r6-IgFYSaA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/965/2GlfNZemEu2k0jV-73uoiytXxNs.roa Signing time: Sat 01 Mar 2025 01:29:19 +0000 ROA not before: Sat 01 Mar 2025 01:29:19 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 59127 IP address blocks: 113.197.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/965/mJ6CZyyYpicSCrpy3r6-IgFYSaA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/965/mJ6CZyyYpicSCrpy3r6-IgFYSaA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mJ6CZyyYpicSCrpy3r6-IgFYSaA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=989E82672C98A627120ABA72DEBEBE22015849A0 Validity Not Before: Mar 1 01:29:19 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=D8695F3597A612EDA4D2357EEF7BA88B2B57C4DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:dc:2a:f2:b4:e8:0f:f1:4a:b8:33:83:c4:b1: 3b:40:9f:30:80:7e:2a:3e:12:b2:28:f0:c1:2c:f1: 1e:d0:9f:53:47:71:61:ed:93:59:cf:e2:a1:1d:aa: 18:73:2b:06:dd:c9:c4:4c:c5:2d:23:82:a8:41:59: f8:41:02:42:14:ed:f0:33:9d:df:e5:7c:d0:c5:9b: aa:08:05:26:a1:d2:e0:28:80:82:7f:f1:ab:d0:e4: a7:33:63:c4:4f:b3:af:40:ab:d7:f1:62:63:63:12: 5c:58:5c:95:71:f8:48:76:f8:ae:23:c7:ee:51:01: 03:51:a8:8e:b0:57:83:cc:6a:d0:9f:f0:0f:1b:2c: 33:cf:4f:b8:ba:f2:85:29:d3:9d:15:74:bf:3a:b3: e3:35:d1:31:0e:50:59:90:06:63:f5:26:18:1c:6f: aa:b5:ed:d3:55:9a:4e:06:60:3c:84:7d:61:04:8e: ed:01:e3:59:5d:1b:81:5a:0a:df:d5:9b:6a:de:1a: 84:1c:e8:0a:82:22:f1:98:8d:ef:4d:4e:3c:aa:dd: bc:dc:1d:51:5f:7b:9e:6c:16:41:eb:01:ef:86:6f: c7:fa:f9:bc:20:fc:d1:53:61:5f:d1:15:1e:3a:58: 28:e5:51:06:df:71:85:c7:ba:94:c2:5b:9c:23:cc: 1b:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:69:5F:35:97:A6:12:ED:A4:D2:35:7E:EF:7B:A8:8B:2B:57:C4:DB X509v3 Authority Key Identifier: keyid:98:9E:82:67:2C:98:A6:27:12:0A:BA:72:DE:BE:BE:22:01:58:49:A0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/965/mJ6CZyyYpicSCrpy3r6-IgFYSaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mJ6CZyyYpicSCrpy3r6-IgFYSaA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/965/2GlfNZemEu2k0jV-73uoiytXxNs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.197.40.0/21 Signature Algorithm: sha256WithRSAEncryption 12:4f:62:75:80:34:0e:64:fb:33:ab:52:6c:65:3a:94:89:df: 8e:3f:78:ed:d2:92:52:a5:0e:e8:16:c0:73:92:2c:d2:8c:78: 28:e5:d2:d8:78:37:c8:e9:5a:8a:fb:a4:7a:ec:8e:10:8b:2c: 2a:c0:5b:19:73:62:41:ce:f2:e3:49:36:58:31:7b:79:a4:67: 41:f3:aa:a9:f7:e8:5a:3e:84:cc:d8:d4:6b:6b:18:3c:bb:b7: cd:4d:d0:f6:9c:5c:3d:4a:5c:8e:9e:df:2a:eb:ac:24:ac:78: f7:27:db:e2:0c:ec:e6:68:a4:23:86:ea:42:d1:47:b3:91:e2: 75:81:83:9e:98:bf:d3:47:2d:d1:71:cf:fd:e7:c0:bf:b2:bc: ec:58:a9:bd:a4:2c:2d:8c:d4:fd:7e:d2:9d:f5:66:b5:b0:0a: d9:ce:1c:45:2b:44:36:04:46:85:2c:a4:0c:64:64:b9:16:64: e0:d8:41:09:6e:7d:80:25:c9:0f:b4:a7:e3:57:ee:ff:b2:f3: 11:4d:b4:b6:c2:37:a7:d3:4f:f4:ae:fe:72:94:82:24:b9:0b: 1f:e1:8d:9d:53:12:ef:5d:90:41:87:3e:cd:d2:ce:63:c1:4f: e7:ae:cd:15:76:51:0c:45:0e:9b:b0:0d:27:c1:3e:3f:e5:f0: 58:38:e9:de -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBGjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5ODlF ODI2NzJDOThBNjI3MTIwQUJBNzJERUJFQkUyMjAxNTg0OUEwMB4XDTI1MDMwMTAx MjkxOVoXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoRDg2OTVGMzU5N0E2MTJF REE0RDIzNTdFRUY3QkE4OEIyQjU3QzREQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANvcKvK06A/xSrgzg8SxO0CfMIB+Kj4SsijwwSzxHtCfU0dxYe2T Wc/ioR2qGHMrBt3JxEzFLSOCqEFZ+EECQhTt8DOd3+V80MWbqggFJqHS4CiAgn/x q9DkpzNjxE+zr0Cr1/FiY2MSXFhclXH4SHb4riPH7lEBA1GojrBXg8xq0J/wDxss M89PuLryhSnTnRV0vzqz4zXRMQ5QWZAGY/UmGBxvqrXt01WaTgZgPIR9YQSO7QHj WV0bgVoK39Wbat4ahBzoCoIi8ZiN701OPKrdvNwdUV97nmwWQesB74Zvx/r5vCD8 0VNhX9EVHjpYKOVRBt9xhce6lMJbnCPMG/sCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTYaV81l6YS7aTSNX7ve6iLK1fE2zAfBgNVHSMEGDAWgBSYnoJnLJimJxIKunLe vr4iAVhJoDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTY1L21KNkNaeXlZcGljU0NycHkzcjYtSWdGWVNhQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL21KNkNaeXlZcGljU0NycHkzcjYtSWdG WVNhQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85NjUvMkdsZk5aZW1FdTJrMGpWLTczdW9peXRYeE5zLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA3HFKDANBgkqhkiG9w0BAQsFAAOCAQEAEk9idYA0DmT7M6tSbGU6lInfjj94 7dKSUqUO6BbAc5Is0ox4KOXS2Hg3yOlaivukeuyOEIssKsBbGXNiQc7y40k2WDF7 eaRnQfOqqffoWj6EzNjUa2sYPLu3zU3Q9pxcPUpcjp7fKuusJKx49yfb4gzs5mik I4bqQtFHs5HidYGDnpi/00ct0XHP/efAv7K87FipvaQsLYzU/X7SnfVmtbAK2c4c RStENgRGhSykDGRkuRZk4NhBCW59gCXJD7Sn41fu/7LzEU20tsI3p9NP9K7+cpSC JLkLH+GNnVMS712QQYc+zdLOY8FP567NFXZRDEUOm7ANJ8E+P+XwWDjp3g== -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:53 2025 by rpki-client