$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20102/UZ3gOqxS-vWLDmAqaLEKKZYUUUk.roa File: UZ3gOqxS-vWLDmAqaLEKKZYUUUk.roa (raw, json) Hash identifier: iie4605ts2QC+3elkyQd0JGsTULvGwSV+JDmh00iE60= Subject key identifier: 51:9D:E0:3A:AC:52:FA:F5:8B:0E:60:2A:68:B1:0A:29:96:14:51:49 Certificate issuer: /CN=33D2C2C8816F30E6B58262B93C717C85513505C5 Certificate serial: 15 Authority key identifier: 33:D2:C2:C8:81:6F:30:E6:B5:82:62:B9:3C:71:7C:85:51:35:05:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9LCyIFvMOa1gmK5PHF8hVE1BcU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/UZ3gOqxS-vWLDmAqaLEKKZYUUUk.roa Signing time: Tue 20 May 2025 02:44:24 +0000 ROA not before: Tue 20 May 2025 02:44:24 +0000 ROA not after: Fri 15 May 2026 01:30:03 +0000 asID: 131952 IP address blocks: 202.233.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/M9LCyIFvMOa1gmK5PHF8hVE1BcU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/M9LCyIFvMOa1gmK5PHF8hVE1BcU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9LCyIFvMOa1gmK5PHF8hVE1BcU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 21:09:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33D2C2C8816F30E6B58262B93C717C85513505C5 Validity Not Before: May 20 02:44:24 2025 GMT Not After : May 15 01:30:03 2026 GMT Subject: CN=519DE03AAC52FAF58B0E602A68B10A2996145149 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:78:96:b5:95:a9:f4:34:ca:c1:f3:39:bd:eb: 8f:48:42:5c:6e:20:4b:cf:de:3a:de:e3:0f:70:38: 49:f0:6d:74:ce:24:c8:ae:70:47:16:91:52:a1:b7: 15:8f:b3:01:ba:66:01:25:c5:3b:cd:04:a2:57:f1: 99:26:b3:3d:da:0a:0f:d2:ac:7e:9a:1c:21:45:ab: cc:c2:d4:dd:0e:3a:6d:54:ea:6d:a1:e0:98:eb:b2: 74:ad:9c:89:c5:e7:8c:a1:44:81:bf:68:16:8f:7b: 46:7b:ca:52:2d:dc:ee:0f:d9:52:08:84:f7:37:5c: 94:c9:2c:c0:a6:2f:da:3b:da:2f:15:a0:0b:2c:76: c8:24:a2:d9:11:d6:29:a9:72:40:62:f0:25:c8:45: 2e:b8:bd:ca:90:56:ba:e8:f9:b4:47:0b:d3:2a:83: 5d:e8:36:72:e6:ef:11:0b:98:a4:2d:b8:65:81:10: 77:a5:cd:a6:4a:88:d7:66:74:b1:ee:56:1f:c7:d9: 06:a8:8b:fd:63:b8:16:63:df:1c:c2:3f:c8:c9:f1: 81:0d:f6:4d:49:58:24:ce:7b:eb:1c:8a:ea:ea:93: 5e:c4:ff:b7:da:fa:c0:86:09:fc:33:b5:17:94:2e: 6f:d6:53:98:39:66:4f:f8:10:ef:68:be:96:06:03: 69:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:9D:E0:3A:AC:52:FA:F5:8B:0E:60:2A:68:B1:0A:29:96:14:51:49 X509v3 Authority Key Identifier: keyid:33:D2:C2:C8:81:6F:30:E6:B5:82:62:B9:3C:71:7C:85:51:35:05:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/M9LCyIFvMOa1gmK5PHF8hVE1BcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9LCyIFvMOa1gmK5PHF8hVE1BcU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/UZ3gOqxS-vWLDmAqaLEKKZYUUUk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.233.68.0/22 Signature Algorithm: sha256WithRSAEncryption ba:64:44:4f:71:54:1c:49:d3:63:70:7d:20:b0:fa:88:50:68: 4f:7c:bd:01:72:c7:2b:4f:48:b8:9e:75:a6:27:69:ad:c1:80: af:a8:f5:25:f1:1f:6f:03:e2:fe:f3:b2:16:58:87:e6:e4:bf: 42:e4:9f:f0:30:cf:65:8e:f7:85:90:0d:22:e0:5c:6a:1e:15: 4b:07:2a:2d:35:85:5d:ae:25:52:1a:cb:d0:8d:1c:d7:7e:8f: 37:50:ac:3b:b8:aa:b2:30:35:c0:1d:a4:1e:a4:3c:51:5c:1e: 52:0e:be:b8:2e:ac:d3:b0:fd:25:6f:73:08:dc:49:ef:a7:71: e9:c5:e8:d1:6b:cf:ea:5d:5b:53:ba:26:93:1b:55:50:49:c4: 9c:48:f1:b7:ed:35:fd:50:23:eb:c8:83:91:52:71:9e:e9:5c: 19:d0:90:4b:5e:13:b2:73:96:49:e4:d9:9c:1c:e8:78:f7:60: 0f:c4:48:66:f1:9b:44:fa:a7:78:61:66:53:7c:1c:55:e8:f6: 17:03:b4:b1:5c:ab:64:69:5e:d8:cd:b5:12:0c:04:9e:b7:64: 94:76:27:8c:c5:dd:60:80:e2:25:13:0e:42:33:f8:0c:e1:83: bb:52:19:a0:27:dd:f7:e2:3e:4a:0e:e7:52:20:3b:ff:64:6b: 94:c2:7e:ca -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBFTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzM0Qy QzJDODgxNkYzMEU2QjU4MjYyQjkzQzcxN0M4NTUxMzUwNUM1MB4XDTI1MDUyMDAy NDQyNFoXDTI2MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoNTE5REUwM0FBQzUyRkFG NThCMEU2MDJBNjhCMTBBMjk5NjE0NTE0OTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM54lrWVqfQ0ysHzOb3rj0hCXG4gS8/eOt7jD3A4SfBtdM4kyK5w RxaRUqG3FY+zAbpmASXFO80EolfxmSazPdoKD9KsfpocIUWrzMLU3Q46bVTqbaHg mOuydK2cicXnjKFEgb9oFo97RnvKUi3c7g/ZUgiE9zdclMkswKYv2jvaLxWgCyx2 yCSi2RHWKalyQGLwJchFLri9ypBWuuj5tEcL0yqDXeg2cubvEQuYpC24ZYEQd6XN pkqI12Z0se5WH8fZBqiL/WO4FmPfHMI/yMnxgQ32TUlYJM576xyK6uqTXsT/t9r6 wIYJ/DO1F5Qub9ZTmDlmT/gQ72i+lgYDaUUCAwEAAaOCAigwggIkMB0GA1UdDgQW BBRRneA6rFL69YsOYCposQoplhRRSTAfBgNVHSMEGDAWgBQz0sLIgW8w5rWCYrk8 cXyFUTUFxTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxMDIvTTlMQ3lJRnZNT2ExZ21LNVBIRjhoVkUxQmNVLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTTlMQ3lJRnZNT2ExZ21LNVBIRjho VkUxQmNVLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMTAyL1VaM2dPcXhTLXZXTERtQXFhTEVLS1pZVVVVay5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBALK6UQwDQYJKoZIhvcNAQELBQADggEBALpkRE9xVBxJ02NwfSCw+ohQ aE98vQFyxytPSLiedaYnaa3BgK+o9SXxH28D4v7zshZYh+bkv0Lkn/Awz2WO94WQ DSLgXGoeFUsHKi01hV2uJVIay9CNHNd+jzdQrDu4qrIwNcAdpB6kPFFcHlIOvrgu rNOw/SVvcwjcSe+ncenF6NFrz+pdW1O6JpMbVVBJxJxI8bftNf1QI+vIg5FScZ7p XBnQkEteE7Jzlknk2Zwc6Hj3YA/ESGbxm0T6p3hhZlN8HFXo9hcDtLFcq2RpXtjN tRIMBJ63ZJR2J4zF3WCA4iUTDkIz+Azhg7tSGaAn3ffiPkoO51IgO/9ka5TCfso= -----END CERTIFICATE-----Generated at Wed Jun 4 00:52:47 2025 by rpki-client