$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20102/fX169Yh2l2xSTK3h5J7Pc5qMQKY.roa File: fX169Yh2l2xSTK3h5J7Pc5qMQKY.roa (raw, json) Hash identifier: dETJ+NvMGzVCA2Rst9hnhQZt29lmK26aNWAnwbVaybY= Subject key identifier: 7D:7D:7A:F5:88:76:97:6C:52:4C:AD:E1:E4:9E:CF:73:9A:8C:40:A6 Certificate issuer: /CN=33D2C2C8816F30E6B58262B93C717C85513505C5 Certificate serial: 16 Authority key identifier: 33:D2:C2:C8:81:6F:30:E6:B5:82:62:B9:3C:71:7C:85:51:35:05:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9LCyIFvMOa1gmK5PHF8hVE1BcU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/fX169Yh2l2xSTK3h5J7Pc5qMQKY.roa Signing time: Tue 20 May 2025 02:44:26 +0000 ROA not before: Tue 20 May 2025 02:44:26 +0000 ROA not after: Fri 15 May 2026 01:30:03 +0000 asID: 131952 IP address blocks: 133.247.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/M9LCyIFvMOa1gmK5PHF8hVE1BcU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/M9LCyIFvMOa1gmK5PHF8hVE1BcU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9LCyIFvMOa1gmK5PHF8hVE1BcU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 22:24:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33D2C2C8816F30E6B58262B93C717C85513505C5 Validity Not Before: May 20 02:44:26 2025 GMT Not After : May 15 01:30:03 2026 GMT Subject: CN=7D7D7AF58876976C524CADE1E49ECF739A8C40A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:67:6a:66:01:7d:ff:43:09:74:8a:83:ac:1f: 7b:54:a3:3e:bf:42:5c:90:2c:4a:9a:6d:25:6e:c8: be:4d:31:c2:e5:ee:66:67:72:16:6e:9a:75:91:02: d6:f6:8c:c8:17:9c:c7:31:03:a6:f4:d8:16:3f:d2: a7:65:dd:f1:41:66:71:e0:e7:4a:71:02:4d:67:59: 48:e9:2b:71:04:6c:42:e1:e2:db:99:f4:c3:e2:d2: cc:43:72:ce:b2:4c:4d:ee:e9:fc:f6:27:ee:a0:e1: 9d:ae:6d:4e:72:48:1a:f4:4b:62:31:68:57:a1:c1: cd:bf:f5:78:0a:5e:3c:85:f2:72:aa:5d:8a:38:23: 90:47:08:f1:ca:1d:45:da:8a:50:00:e3:db:a9:04: 24:0f:f5:46:87:f7:3e:f7:cb:ce:b8:e7:87:17:e0: e1:06:ea:24:4a:ba:a8:8c:74:44:21:f6:f0:d2:d5: 56:76:e5:03:f6:b5:c6:48:e5:98:ec:c3:77:3f:f2: ad:eb:58:9b:f2:08:81:60:e0:60:52:f0:44:c9:da: 80:8e:14:50:84:3b:98:e8:d7:80:52:22:b4:76:4c: e4:41:4d:2e:09:17:50:51:20:3a:6f:d1:63:cc:9e: be:89:13:11:ac:03:36:7f:49:c6:27:12:05:90:ac: 9f:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:7D:7A:F5:88:76:97:6C:52:4C:AD:E1:E4:9E:CF:73:9A:8C:40:A6 X509v3 Authority Key Identifier: keyid:33:D2:C2:C8:81:6F:30:E6:B5:82:62:B9:3C:71:7C:85:51:35:05:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/M9LCyIFvMOa1gmK5PHF8hVE1BcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9LCyIFvMOa1gmK5PHF8hVE1BcU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/fX169Yh2l2xSTK3h5J7Pc5qMQKY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.247.112.0/20 Signature Algorithm: sha256WithRSAEncryption 2b:5c:9f:b8:31:52:3c:de:18:5e:d3:8d:8e:79:c8:99:bf:6e: 84:35:4b:60:88:d0:39:d0:a9:42:c6:71:37:bd:89:1b:3b:f3: e1:08:78:02:cd:1e:01:fd:d1:ff:99:6d:12:e4:fd:32:2b:18: 87:40:04:64:cc:04:24:1c:f0:e3:dc:14:c7:18:7f:3a:33:50: 78:2b:8b:c6:2a:26:d5:2d:93:f0:81:87:05:3e:10:b1:1a:97: c0:b5:27:2d:52:a6:7c:8a:05:8f:87:d8:eb:bf:f8:f6:9a:02: ff:7e:b6:1d:0f:d8:64:93:8d:3d:ad:9c:34:0c:e4:99:cd:f4: 55:5f:3d:ec:b3:a6:31:df:3a:45:02:56:2e:40:56:de:12:76: c1:54:94:51:17:24:c0:37:a8:f5:14:ba:cc:a0:09:17:a1:d8: bf:5e:57:9f:d6:5c:e7:56:7d:9a:c0:51:0f:4b:5c:e9:46:8c: c1:9c:82:88:e0:fc:f5:08:2b:68:9f:c7:ef:f5:1b:0f:bc:70: 47:5f:2b:01:f1:86:8b:74:2b:80:67:ac:76:cf:11:9e:63:96: 9e:6d:6c:c2:10:f4:39:d9:b8:e7:12:d4:05:2c:a3:fa:41:62: cc:61:c3:64:0d:95:91:a9:1d:89:e0:30:de:4e:f1:42:3c:ac: 5f:db:4b:56 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBFjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzM0Qy QzJDODgxNkYzMEU2QjU4MjYyQjkzQzcxN0M4NTUxMzUwNUM1MB4XDTI1MDUyMDAy NDQyNloXDTI2MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoN0Q3RDdBRjU4ODc2OTc2 QzUyNENBREUxRTQ5RUNGNzM5QThDNDBBNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM5namYBff9DCXSKg6wfe1SjPr9CXJAsSpptJW7Ivk0xwuXuZmdy Fm6adZEC1vaMyBecxzEDpvTYFj/Sp2Xd8UFmceDnSnECTWdZSOkrcQRsQuHi25n0 w+LSzENyzrJMTe7p/PYn7qDhna5tTnJIGvRLYjFoV6HBzb/1eApePIXycqpdijgj kEcI8codRdqKUADj26kEJA/1Rof3PvfLzrjnhxfg4QbqJEq6qIx0RCH28NLVVnbl A/a1xkjlmOzDdz/yretYm/IIgWDgYFLwRMnagI4UUIQ7mOjXgFIitHZM5EFNLgkX UFEgOm/RY8yevokTEawDNn9JxicSBZCsnwMCAwEAAaOCAigwggIkMB0GA1UdDgQW BBR9fXr1iHaXbFJMreHkns9zmoxApjAfBgNVHSMEGDAWgBQz0sLIgW8w5rWCYrk8 cXyFUTUFxTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxMDIvTTlMQ3lJRnZNT2ExZ21LNVBIRjhoVkUxQmNVLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTTlMQ3lJRnZNT2ExZ21LNVBIRjho VkUxQmNVLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMTAyL2ZYMTY5WWgybDJ4U1RLM2g1SjdQYzVxTVFLWS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBASF93AwDQYJKoZIhvcNAQELBQADggEBACtcn7gxUjzeGF7TjY55yJm/ boQ1S2CI0DnQqULGcTe9iRs78+EIeALNHgH90f+ZbRLk/TIrGIdABGTMBCQc8OPc FMcYfzozUHgri8YqJtUtk/CBhwU+ELEal8C1Jy1SpnyKBY+H2Ou/+PaaAv9+th0P 2GSTjT2tnDQM5JnN9FVfPeyzpjHfOkUCVi5AVt4SdsFUlFEXJMA3qPUUusygCReh 2L9eV5/WXOdWfZrAUQ9LXOlGjMGcgojg/PUIK2ifx+/1Gw+8cEdfKwHxhot0K4Bn rHbPEZ5jlp5tbMIQ9DnZuOcS1AUso/pBYsxhw2QNlZGpHYngMN5O8UI8rF/bS1Y= -----END CERTIFICATE-----Generated at Wed Jun 4 01:21:42 2025 by rpki-client