$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Ag3sjCHqWtCHQ6_7b651s6Gd0Vs.roa File: Ag3sjCHqWtCHQ6_7b651s6Gd0Vs.roa (raw, json) Hash identifier: Slyn0DaElsC/aaHFtOJ1HlbuNKAJqSVQhNSfo9Y6RTE= Subject key identifier: 02:0D:EC:8C:21:EA:5A:D0:87:43:AF:FB:6F:AE:75:B3:A1:9D:D1:5B Certificate issuer: /CN=4F3E6396C9D76CBDF4ED2D5DE7A2A760214C9837 Certificate serial: 56 Authority key identifier: 4F:3E:63:96:C9:D7:6C:BD:F4:ED:2D:5D:E7:A2:A7:60:21:4C:98:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Ag3sjCHqWtCHQ6_7b651s6Gd0Vs.roa Signing time: Tue 01 Apr 2025 01:33:33 +0000 ROA not before: Tue 01 Apr 2025 01:33:33 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 15830 IP address blocks: 112.140.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F3E6396C9D76CBDF4ED2D5DE7A2A760214C9837 Validity Not Before: Apr 1 01:33:33 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=020DEC8C21EA5AD08743AFFB6FAE75B3A19DD15B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:37:6a:ca:ea:69:81:5f:ba:be:20:c6:1e:f5: c7:d3:df:78:96:35:7a:e7:89:90:b3:80:de:de:b2: 7e:95:7e:a5:ec:0d:74:d1:f5:ae:ab:90:aa:fd:b0: 09:54:fa:1f:7f:96:41:32:2f:e6:20:5b:f3:f1:12: 39:5f:99:e5:68:7a:00:62:6c:5b:e2:7a:6e:fd:50: 97:d0:18:c3:fd:24:e9:f0:3a:a6:7c:61:3c:fe:f8: ba:2b:d0:af:c0:44:94:e6:b8:69:3d:f6:7d:1c:da: 16:1c:6b:6b:d8:07:17:85:06:d1:85:53:54:dd:dc: b4:63:d9:99:89:cf:c7:c1:0d:dd:20:cb:67:2d:0f: 46:9b:f0:2b:29:97:4e:ca:ce:dd:8f:02:cb:0d:5f: fd:f4:67:07:ff:6d:83:27:83:d0:46:99:37:45:b3: df:49:ba:e8:ff:ad:6a:f4:26:62:27:ec:93:a6:9d: d1:4b:2f:50:8f:63:49:d4:38:e9:61:10:b7:d0:d0: 34:2d:22:3f:85:7f:c0:00:c8:c5:3e:bf:da:15:e4: 8a:65:69:9e:78:e0:a0:ca:c6:8c:30:5c:e4:2a:f5: 67:6e:4b:db:d1:87:31:f7:42:6e:7c:5f:e4:d8:82: 60:49:80:e9:65:60:7e:2f:33:83:d1:a3:10:73:24: c2:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:0D:EC:8C:21:EA:5A:D0:87:43:AF:FB:6F:AE:75:B3:A1:9D:D1:5B X509v3 Authority Key Identifier: keyid:4F:3E:63:96:C9:D7:6C:BD:F4:ED:2D:5D:E7:A2:A7:60:21:4C:98:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Ag3sjCHqWtCHQ6_7b651s6Gd0Vs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.140.128.0/20 Signature Algorithm: sha256WithRSAEncryption 8f:6f:0a:c8:7f:43:a4:fb:ea:a4:f5:55:cc:69:df:21:bd:c6: 66:e9:47:bc:98:54:fc:7c:1e:5a:ba:32:61:83:0e:2d:0d:96: 94:ea:23:a8:01:9e:07:7f:1f:c4:75:f4:91:76:e3:51:27:70: c3:dd:28:23:37:5e:b9:ce:bc:f7:c5:22:34:f7:e9:bf:41:f3: e5:fe:29:f6:58:08:86:70:a6:0d:0b:1d:1b:22:3a:f9:d8:e6: a8:2f:20:33:e4:e6:7e:7a:44:3b:44:e3:f5:be:32:ba:0e:b9: 72:93:fe:db:7f:0a:d7:28:28:da:14:ab:f7:8d:15:02:93:0f: e9:b4:ce:e3:52:8e:b3:10:b5:0c:03:2c:b7:97:5a:fc:84:b7: 37:1e:91:51:a8:ad:e3:74:b9:7c:af:c2:35:4c:da:72:74:25: bf:81:cd:4d:f0:89:f5:17:93:4c:bd:f2:72:d0:90:49:c8:46: d8:fe:d7:46:84:2f:a6:e5:17:84:87:c7:e1:c5:f0:15:f1:9c: a0:f6:21:d6:77:57:6c:34:94:c6:ee:5b:28:3b:0c:39:65:de: 65:6d:71:e2:3a:5d:8c:ee:45:f3:15:f9:4b:47:cd:d8:fe:ce: 39:8a:ea:97:89:a1:8d:44:51:46:9c:b9:ea:77:f6:ab:45:f0: a6:27:32:65 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBVjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0RjNF NjM5NkM5RDc2Q0JERjRFRDJENURFN0EyQTc2MDIxNEM5ODM3MB4XDTI1MDQwMTAx MzMzM1oXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoMDIwREVDOEMyMUVBNUFE MDg3NDNBRkZCNkZBRTc1QjNBMTlERDE1QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMA3asrqaYFfur4gxh71x9PfeJY1eueJkLOA3t6yfpV+pewNdNH1 rquQqv2wCVT6H3+WQTIv5iBb8/ESOV+Z5Wh6AGJsW+J6bv1Ql9AYw/0k6fA6pnxh PP74uivQr8BElOa4aT32fRzaFhxra9gHF4UG0YVTVN3ctGPZmYnPx8EN3SDLZy0P RpvwKymXTsrO3Y8Cyw1f/fRnB/9tgyeD0EaZN0Wz30m66P+tavQmYifsk6ad0Usv UI9jSdQ46WEQt9DQNC0iP4V/wADIxT6/2hXkimVpnnjgoMrGjDBc5Cr1Z25L29GH MfdCbnxf5NiCYEmA6WVgfi8zg9GjEHMkwjsCAwEAAaOCAigwggIkMB0GA1UdDgQW BBQCDeyMIepa0IdDr/tvrnWzoZ3RWzAfBgNVHSMEGDAWgBRPPmOWyddsvfTtLV3n oqdgIUyYNzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjEwNDIvVHo1amxzblhiTDMwN1MxZDU2S25ZQ0ZNbURjLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvVHo1amxzblhiTDMwN1MxZDU2S25Z Q0ZNbURjLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIxMDQyL0FnM3NqQ0hxV3RDSFE2XzdiNjUxczZHZDBWcy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBARwjIAwDQYJKoZIhvcNAQELBQADggEBAI9vCsh/Q6T76qT1Vcxp3yG9 xmbpR7yYVPx8Hlq6MmGDDi0NlpTqI6gBngd/H8R19JF241EncMPdKCM3XrnOvPfF IjT36b9B8+X+KfZYCIZwpg0LHRsiOvnY5qgvIDPk5n56RDtE4/W+MroOuXKT/tt/ CtcoKNoUq/eNFQKTD+m0zuNSjrMQtQwDLLeXWvyEtzcekVGoreN0uXyvwjVM2nJ0 Jb+BzU3wifUXk0y98nLQkEnIRtj+10aEL6blF4SHx+HF8BXxnKD2IdZ3V2w0lMbu Wyg7DDll3mVtceI6XYzuRfMV+UtHzdj+zjmK6peJoY1EUUacuep39qtF8KYnMmU= -----END CERTIFICATE-----Generated at Sat Apr 5 23:14:03 2025 by rpki-client