$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/M0ZNFdVZo4oo7GiBIntFCUDpcv0.roa File: M0ZNFdVZo4oo7GiBIntFCUDpcv0.roa (raw, json) Hash identifier: abZ/grt5bE3rzXM6+wKj4p7PKeCrzuqb6zlzMq4A31k= Subject key identifier: 33:46:4D:15:D5:59:A3:8A:28:EC:68:81:22:7B:45:09:40:E9:72:FD Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Certificate serial: 01B0 Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/M0ZNFdVZo4oo7GiBIntFCUDpcv0.roa Signing time: Wed 28 May 2025 07:14:42 +0000 ROA not before: Wed 28 May 2025 07:14:42 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 131958 IP address blocks: 133.238.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 11:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Validity Not Before: May 28 07:14:42 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=33464D15D559A38A28EC6881227B450940E972FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:2a:2f:48:08:d7:16:93:8e:be:ba:dd:e4:41: 2c:4c:89:78:30:d1:da:86:60:75:62:50:d7:7a:6e: f4:ab:5b:96:63:1a:48:8d:73:80:99:52:d5:f5:d9: 90:60:82:2d:77:dc:c5:2c:0d:c7:ed:f3:5d:00:34: 0a:52:71:7e:fb:68:c6:b1:f8:f1:d4:7e:b8:af:04: d3:3c:d9:f8:54:3b:f7:d0:71:36:3b:da:37:0b:23: a1:be:40:cd:ae:68:03:f8:21:76:0d:82:cd:4c:a0: 4f:8d:2f:5f:e0:58:d2:8a:0a:1a:0c:bb:bb:70:d8: d7:09:3d:7f:c8:75:2a:fc:c4:bc:f6:e3:78:8e:eb: 29:9d:75:05:f6:d9:22:b1:3b:93:bf:fe:88:44:86: a4:a6:de:9d:1e:a2:51:a9:ab:d2:6c:bb:dd:e5:6e: 79:a1:22:6e:92:3e:c3:c7:2b:8c:ea:91:70:d5:c8: b8:2b:80:cc:b4:52:af:5d:80:52:c8:ed:2e:45:be: 85:b1:9c:6a:3f:9c:22:a6:83:47:ca:cb:6f:c0:15: 3a:f0:65:f2:6e:77:9f:75:7a:ea:94:fc:60:ca:0b: 93:e4:70:39:cc:ea:dc:68:ed:39:fc:12:90:3b:2a: 37:d1:1f:60:38:12:30:84:2e:ce:f9:51:e3:21:6b: f0:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:46:4D:15:D5:59:A3:8A:28:EC:68:81:22:7B:45:09:40:E9:72:FD X509v3 Authority Key Identifier: keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/M0ZNFdVZo4oo7GiBIntFCUDpcv0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.238.64.0/18 Signature Algorithm: sha256WithRSAEncryption 65:d2:fa:56:58:2a:64:aa:30:d3:3e:62:c1:30:57:d9:27:dd: b5:85:bb:4d:16:66:98:27:a6:e7:40:f6:c2:d8:23:74:6f:2a: 1d:48:51:fb:c2:f2:09:ce:89:cf:3a:b0:b9:c4:bc:bc:73:b8: 9e:0b:4e:65:21:bb:c1:20:37:1e:1d:35:80:6e:23:85:28:d2: 0e:4f:46:c2:ae:0a:cb:ad:77:00:84:8f:37:d2:51:65:f0:8e: f6:e3:29:79:72:72:83:5e:d1:a3:bf:72:5f:16:57:06:c0:b6: d2:8a:14:2a:34:18:f1:a7:8b:39:ee:54:e5:d8:e3:8f:ca:8d: d8:3a:80:6a:ef:37:f4:9d:1e:ad:24:5b:a6:0d:d7:0c:51:dd: 21:a8:37:17:61:be:39:23:99:82:df:0b:a8:69:42:0e:29:0e: ba:bd:2b:fb:b4:84:9f:4d:ac:4f:58:3c:89:b5:d8:44:1c:29: 5d:18:81:9d:5d:4d:d6:37:ce:c3:29:de:94:79:18:30:cc:18: e5:5e:28:10:1c:be:d7:e4:65:87:e9:6d:ed:f3:d6:4a:f2:bc: a5:95:c0:92:84:97:0c:ce:12:d2:78:e7:9c:b8:0b:c8:42:ad: 99:ff:1e:32:3d:c1:44:74:2a:06:04:d8:00:2d:24:0b:9e:5f: d2:ed:69:a5 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4 M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yNTA1Mjgw NzE0NDJaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDMzNDY0RDE1RDU1OUEz OEEyOEVDNjg4MTIyN0I0NTA5NDBFOTcyRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfKi9ICNcWk46+ut3kQSxMiXgw0dqGYHViUNd6bvSrW5ZjGkiN c4CZUtX12ZBggi133MUsDcft810ANApScX77aMax+PHUfrivBNM82fhUO/fQcTY7 2jcLI6G+QM2uaAP4IXYNgs1MoE+NL1/gWNKKChoMu7tw2NcJPX/IdSr8xLz243iO 6ymddQX22SKxO5O//ohEhqSm3p0eolGpq9Jsu93lbnmhIm6SPsPHK4zqkXDVyLgr gMy0Uq9dgFLI7S5FvoWxnGo/nCKmg0fKy2/AFTrwZfJud591euqU/GDKC5PkcDnM 6txo7Tn8EpA7KjfRH2A4EjCELs75UeMha/ALAgMBAAGjggIgMIICHDAdBgNVHQ4E FgQUM0ZNFdVZo4oo7GiBIntFCUDpcv0wHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwELBIGsMIGpMF8GCCsG AQUFBzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzYvTTBaTkZkVlpvNG9vN0dpQkludEZDVURwY3YwLnJvYTBGBggr BgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3JyZHAv YXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BoXuQDANBgkqhkiG9w0BAQsFAAOCAQEAZdL6VlgqZKow0z5iwTBX2SfdtYW7TRZm mCem50D2wtgjdG8qHUhR+8LyCc6JzzqwucS8vHO4ngtOZSG7wSA3Hh01gG4jhSjS Dk9Gwq4Ky613AISPN9JRZfCO9uMpeXJyg17Ro79yXxZXBsC20ooUKjQY8aeLOe5U 5djjj8qN2DqAau839J0erSRbpg3XDFHdIag3F2G+OSOZgt8LqGlCDikOur0r+7SE n02sT1g8ibXYRBwpXRiBnV1N1jfOwynelHkYMMwY5V4oEBy+1+Rlh+lt7fPWSvK8 pZXAkoSXDM4S0njnnLgLyEKtmf8eMj3BRHQqBgTYAC0kC55f0u1ppQ== -----END CERTIFICATE-----Generated at Fri Oct 24 13:13:19 2025 by rpki-client