$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/224/3aHisRC2vacbox7iW8FyyFmvaOw.roa File: 3aHisRC2vacbox7iW8FyyFmvaOw.roa (raw, json) Hash identifier: UeBNN2Lh3P6rjM0+cBZvsVOje9zMg4fee99gemB5j3U= Subject key identifier: DD:A1:E2:B1:10:B6:BD:A7:1B:A3:1E:E2:5B:C1:72:C8:59:AF:68:EC Certificate issuer: /CN=D623C38C2A127007F93E7C840DF875022E51C547 Certificate serial: 1D Authority key identifier: D6:23:C3:8C:2A:12:70:07:F9:3E:7C:84:0D:F8:75:02:2E:51:C5:47 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1iPDjCoScAf5PnyEDfh1Ai5RxUc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/224/3aHisRC2vacbox7iW8FyyFmvaOw.roa Signing time: Sun 01 Jun 2025 01:33:19 +0000 ROA not before: Sun 01 Jun 2025 01:33:19 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 7668 IP address blocks: 210.250.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/224/1iPDjCoScAf5PnyEDfh1Ai5RxUc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/224/1iPDjCoScAf5PnyEDfh1Ai5RxUc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1iPDjCoScAf5PnyEDfh1Ai5RxUc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 22:24:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D623C38C2A127007F93E7C840DF875022E51C547 Validity Not Before: Jun 1 01:33:19 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=DDA1E2B110B6BDA71BA31EE25BC172C859AF68EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:75:80:24:05:8d:a4:af:8b:0c:84:12:fa:fe: ec:b6:c0:b9:1e:48:5a:fe:52:79:43:21:9b:dc:40: 7e:65:7b:69:31:cc:68:63:a2:d2:2b:a2:b4:69:d2: 5a:3f:41:ce:7d:89:d3:7f:ec:0a:65:0c:a8:e9:ee: 06:e9:24:c3:b7:9a:3c:38:f4:30:f6:b5:cd:e6:b9: f1:16:d3:a1:fd:65:89:09:0e:1c:53:b0:68:a3:6b: f8:a6:ba:55:21:b8:2c:31:db:52:8a:e2:a7:55:ab: dc:ef:95:ec:3a:84:e9:8c:f1:98:ea:03:3c:2f:4c: c7:60:fc:80:48:72:15:bf:80:e7:6c:5a:c9:3c:98: a2:28:c7:27:d5:ea:1c:ee:a5:cb:7c:9d:36:da:9e: 5f:c7:56:81:e4:85:13:87:be:4c:e0:2c:e4:90:9d: 2e:16:2e:11:34:ec:d3:7c:97:71:da:eb:49:49:f6: 96:ce:0b:a1:8f:76:16:ce:20:56:00:7f:81:3f:eb: ba:29:f6:79:25:e6:6c:dc:3b:7a:1f:06:81:65:fc: ae:43:4f:d8:44:29:24:22:18:94:fa:52:bb:c9:dc: a0:ca:2d:0b:cc:47:da:4a:c8:af:b3:68:e7:29:ff: 50:e8:1e:11:72:89:28:2d:a4:8b:01:cd:7e:80:d6: b5:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:A1:E2:B1:10:B6:BD:A7:1B:A3:1E:E2:5B:C1:72:C8:59:AF:68:EC X509v3 Authority Key Identifier: keyid:D6:23:C3:8C:2A:12:70:07:F9:3E:7C:84:0D:F8:75:02:2E:51:C5:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/224/1iPDjCoScAf5PnyEDfh1Ai5RxUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1iPDjCoScAf5PnyEDfh1Ai5RxUc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/224/3aHisRC2vacbox7iW8FyyFmvaOw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.250.190.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:b9:51:91:8b:ab:12:e9:ec:d6:e9:d9:78:a4:1c:76:e3:b9: 82:10:76:07:c3:e3:f6:5e:43:19:fc:a1:31:18:74:b2:c6:08: 3e:03:8d:dc:d1:ae:26:cf:ce:1d:e3:1c:46:1b:c3:89:4e:b4: 65:47:45:e3:c6:32:97:0c:4a:a5:77:1a:32:96:61:ab:04:0e: 90:3f:0e:c0:52:b5:bc:6a:98:0a:8b:3c:ab:d6:72:9b:7e:eb: 0b:38:82:6a:7f:03:d0:78:b0:d8:26:e9:af:c7:6a:f6:c0:96: 4d:a6:3b:4c:dd:62:fb:47:e3:a0:41:e5:29:8f:95:d2:07:78: 90:30:31:28:9c:89:c5:a8:4b:db:a5:7f:e2:45:66:63:ef:57: a0:43:cb:c9:51:a2:95:cc:9f:17:1b:b6:9e:c5:f3:64:7c:a1: 5f:5a:f2:2a:69:f8:4a:6f:63:35:84:81:f3:43:a4:1d:2e:57: 35:b8:1e:94:e6:07:ba:a9:77:eb:08:e4:2f:d0:70:70:48:af: 93:6b:4c:27:cd:89:cf:75:a8:4e:db:41:0f:48:6b:80:f1:15: 91:02:75:65:a3:4e:11:a3:fb:21:ce:22:c9:fe:2c:d0:d6:66: 4d:ff:b6:98:01:38:49:ee:40:34:62:5c:5c:20:32:a5:fe:c1: 7a:95:74:1b -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBHTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENjIz QzM4QzJBMTI3MDA3RjkzRTdDODQwREY4NzUwMjJFNTFDNTQ3MB4XDTI1MDYwMTAx MzMxOVoXDTI2MDUyMzA5NTEwMFowMzExMC8GA1UEAxMoRERBMUUyQjExMEI2QkRB NzFCQTMxRUUyNUJDMTcyQzg1OUFGNjhFQzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANx1gCQFjaSviwyEEvr+7LbAuR5IWv5SeUMhm9xAfmV7aTHMaGOi 0iuitGnSWj9Bzn2J03/sCmUMqOnuBukkw7eaPDj0MPa1zea58RbTof1liQkOHFOw aKNr+Ka6VSG4LDHbUorip1Wr3O+V7DqE6YzxmOoDPC9Mx2D8gEhyFb+A52xayTyY oijHJ9XqHO6ly3ydNtqeX8dWgeSFE4e+TOAs5JCdLhYuETTs03yXcdrrSUn2ls4L oY92Fs4gVgB/gT/ruin2eSXmbNw7eh8GgWX8rkNP2EQpJCIYlPpSu8ncoMotC8xH 2krIr7No5yn/UOgeEXKJKC2kiwHNfoDWtdkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTdoeKxELa9pxujHuJbwXLIWa9o7DAfBgNVHSMEGDAWgBTWI8OMKhJwB/k+fIQN +HUCLlHFRzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjI0LzFpUERqQ29TY0FmNVBueUVEZmgxQWk1UnhVYy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzFpUERqQ29TY0FmNVBueUVEZmgxQWk1 UnhVYy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMjQvM2FIaXNSQzJ2YWNib3g3aVc4Rnl5Rm12YU93LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEANL6vjANBgkqhkiG9w0BAQsFAAOCAQEAirlRkYurEuns1unZeKQcduO5ghB2 B8Pj9l5DGfyhMRh0ssYIPgON3NGuJs/OHeMcRhvDiU60ZUdF48YylwxKpXcaMpZh qwQOkD8OwFK1vGqYCos8q9Zym37rCziCan8D0Hiw2Cbpr8dq9sCWTaY7TN1i+0fj oEHlKY+V0gd4kDAxKJyJxahL26V/4kVmY+9XoEPLyVGilcyfFxu2nsXzZHyhX1ry Kmn4Sm9jNYSB80OkHS5XNbgelOYHuql36wjkL9BwcEivk2tMJ82Jz3WoTttBD0hr gPEVkQJ1ZaNOEaP7Ic4iyf4s0NZmTf+2mAE4Se5ANGJcXCAypf7BepV0Gw== -----END CERTIFICATE-----Generated at Wed Jun 4 01:22:51 2025 by rpki-client