$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/Z2VGd1wjryJTkcRh9u8z6vNpo1o.roa File: Z2VGd1wjryJTkcRh9u8z6vNpo1o.roa (raw, json) Hash identifier: T9Yz7k2c0VrBhaX5bqeHGvL2AOesR6ouF9uc5Lc8BTc= Subject key identifier: 67:65:46:77:5C:23:AF:22:53:91:C4:61:F6:EF:33:EA:F3:69:A3:5A Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 013D Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/Z2VGd1wjryJTkcRh9u8z6vNpo1o.roa Signing time: Thu 01 May 2025 01:28:58 +0000 ROA not before: Thu 01 May 2025 01:28:58 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10021 IP address blocks: 27.110.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 17:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: May 1 01:28:58 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=676546775C23AF225391C461F6EF33EAF369A35A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cd:6b:83:42:49:1d:9e:67:ce:5b:5a:97:c1: 19:a8:cf:38:94:81:b5:15:01:8c:f0:e9:2e:a3:0f: 89:43:6e:cb:e1:4e:fd:45:81:df:47:71:27:be:51: 1d:10:09:da:3e:37:c1:03:3e:3a:7e:b4:75:c6:11: 65:c3:27:93:25:65:86:13:07:c1:0e:fc:80:41:55: 8f:84:b9:c1:86:55:7e:bc:21:49:d0:27:80:b4:9d: 33:bc:c8:23:ed:af:59:2c:bd:61:12:fc:05:a4:d0: 1d:b0:da:d9:2b:df:eb:27:e1:27:93:6f:03:0d:c0: e9:f0:66:07:a3:bc:dd:a9:45:63:ef:61:7d:8a:ae: cb:a5:f5:2c:53:87:20:c2:03:71:dc:c9:f0:95:e6: f1:75:c4:a6:b9:e1:4b:c5:d9:0e:6a:fe:95:3b:d9: 09:73:7e:d2:15:c8:3a:7a:8b:24:b7:d7:f6:4b:f2: f9:5d:c3:dc:66:18:9f:b2:55:fa:0e:7f:ba:80:e4: 86:39:b7:e3:52:64:eb:30:eb:05:69:4e:c8:3e:67: b2:dc:98:b2:6f:a4:6f:93:dd:d5:01:94:e7:86:ee: ee:a4:24:91:b7:f4:4e:e8:17:a3:aa:8e:9b:b8:4d: c3:98:01:89:ce:b3:46:fc:ba:73:54:ff:4d:a9:3d: 62:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:65:46:77:5C:23:AF:22:53:91:C4:61:F6:EF:33:EA:F3:69:A3:5A X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/Z2VGd1wjryJTkcRh9u8z6vNpo1o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.110.62.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:c4:55:99:43:c5:3e:49:1a:74:a7:8d:2e:e6:87:b4:6a:be: 0b:5d:c4:28:17:07:56:78:49:ab:92:99:38:7d:e9:1f:70:5a: bb:88:33:be:23:b4:3f:fa:77:22:f6:07:83:ff:00:1c:05:c2: 9c:fc:c6:75:5e:30:60:a7:90:a7:e3:a5:a1:11:96:86:37:2c: c9:d4:14:4e:b8:bf:0b:1e:6a:56:a1:88:e5:01:25:5a:3b:9e: 7f:f0:11:5e:0c:9b:cd:0a:62:a4:ee:dc:87:b2:fb:2f:a4:12: a6:7a:cd:29:c2:1e:cc:0c:6f:5d:34:be:ce:ab:a6:fc:72:4b: 0e:78:13:78:a7:83:53:96:00:01:a9:71:76:e1:2b:07:e2:40: 84:36:0f:00:4d:ff:7b:77:e3:b3:b9:29:b2:f3:58:6f:2c:5f: a8:23:ab:05:93:59:13:b6:90:a4:18:78:27:91:d1:ca:56:89: f4:20:45:ff:42:47:e3:a0:fe:c0:48:85:4a:06:1c:f3:42:7c: 9e:2d:e9:09:3a:86:fe:a2:a5:85:07:c1:fe:e0:21:08:fa:3b: b9:6f:55:eb:69:33:17:5c:d6:77:f5:58:9b:b2:26:98:c2:0f: ca:0d:0c:d2:79:f9:67:17:bb:56:4a:8e:aa:03:b0:03:55:5e: 9f:6d:fb:43 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNTA1MDEw MTI4NThaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDY3NjU0Njc3NUMyM0FG MjI1MzkxQzQ2MUY2RUYzM0VBRjM2OUEzNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwzWuDQkkdnmfOW1qXwRmozziUgbUVAYzw6S6jD4lDbsvhTv1F gd9HcSe+UR0QCdo+N8EDPjp+tHXGEWXDJ5MlZYYTB8EO/IBBVY+EucGGVX68IUnQ J4C0nTO8yCPtr1ksvWES/AWk0B2w2tkr3+sn4SeTbwMNwOnwZgejvN2pRWPvYX2K rsul9SxThyDCA3HcyfCV5vF1xKa54UvF2Q5q/pU72QlzftIVyDp6iyS31/ZL8vld w9xmGJ+yVfoOf7qA5IY5t+NSZOsw6wVpTsg+Z7LcmLJvpG+T3dUBlOeG7u6kJJG3 9E7oF6Oqjpu4TcOYAYnOs0b8unNU/02pPWIxAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUZ2VGd1wjryJTkcRh9u8z6vNpo1owHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5L1oyVkdkMXdqcnlKVGtjUmg5dTh6NnZOcG8xby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAbbj4wDQYJKoZIhvcNAQELBQADggEBAI3EVZlDxT5JGnSnjS7mh7Rqvgtd xCgXB1Z4SauSmTh96R9wWruIM74jtD/6dyL2B4P/ABwFwpz8xnVeMGCnkKfjpaER loY3LMnUFE64vwsealahiOUBJVo7nn/wEV4Mm80KYqTu3Iey+y+kEqZ6zSnCHswM b100vs6rpvxySw54E3ing1OWAAGpcXbhKwfiQIQ2DwBN/3t347O5KbLzWG8sX6gj qwWTWRO2kKQYeCeR0cpWifQgRf9CR+Og/sBIhUoGHPNCfJ4t6Qk6hv6ipYUHwf7g IQj6O7lvVetpMxdc1nf1WJuyJpjCD8oNDNJ5+WcXu1ZKjqoDsANVXp9t+0M= -----END CERTIFICATE-----Generated at Thu Jun 5 20:30:21 2025 by rpki-client