$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20106/QiCXLLxeS7ZBggZKZd1pvBNt7hs.roa File: QiCXLLxeS7ZBggZKZd1pvBNt7hs.roa (raw, json) Hash identifier: QUy8tKLl4dJ6Cwx6H9hlGr4TVfOPE4QAoMWud9oUpDI= Subject key identifier: 42:20:97:2C:BC:5E:4B:B6:41:82:06:4A:65:DD:69:BC:13:6D:EE:1B Certificate issuer: /CN=AFD82477A091B17CDA61C5563BC2920CDCD7AAA5 Certificate serial: 04 Authority key identifier: AF:D8:24:77:A0:91:B1:7C:DA:61:C5:56:3B:C2:92:0C:DC:D7:AA:A5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/r9gkd6CRsXzaYcVWO8KSDNzXqqU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20106/QiCXLLxeS7ZBggZKZd1pvBNt7hs.roa Signing time: Thu 12 Jun 2025 06:11:30 +0000 ROA not before: Thu 12 Jun 2025 06:11:30 +0000 ROA not after: Tue 26 May 2026 07:57:30 +0000 asID: 131958 IP address blocks: 133.32.192.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20106/r9gkd6CRsXzaYcVWO8KSDNzXqqU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20106/r9gkd6CRsXzaYcVWO8KSDNzXqqU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/r9gkd6CRsXzaYcVWO8KSDNzXqqU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 18:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFD82477A091B17CDA61C5563BC2920CDCD7AAA5 Validity Not Before: Jun 12 06:11:30 2025 GMT Not After : May 26 07:57:30 2026 GMT Subject: CN=4220972CBC5E4BB64182064A65DD69BC136DEE1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:6c:e2:e7:a6:75:d2:21:7d:08:94:a2:1e:a1: f6:42:28:64:60:91:41:e2:98:84:dc:71:1e:e2:cb: 37:8f:83:36:65:ab:f3:84:6b:79:85:74:a2:50:c2: 26:81:aa:f8:87:a9:72:7e:f8:20:a5:3d:34:ad:25: 6c:e3:67:1d:c2:bc:e0:93:1a:ad:a6:59:ff:65:c3: 5d:21:28:71:64:fe:ea:69:b9:4b:68:79:0e:b6:d5: b3:3f:c7:d1:69:e7:ec:30:81:6c:4c:a2:9b:5c:62: 2c:3a:1d:7c:bc:1d:de:31:bb:6a:3a:2c:6e:d9:4f: 9f:e6:d6:99:b9:fd:d6:55:fe:d7:e2:60:bb:d3:8c: e1:37:a7:f8:88:e6:1d:60:c9:16:a1:5b:1b:47:c5: d0:4b:5e:75:ee:84:0c:fc:39:a1:3d:ef:22:cc:ef: ef:46:2b:7c:90:0b:fb:e4:27:44:a0:b8:16:b0:5f: 93:6b:bc:71:27:b6:3f:3d:78:be:0b:70:c1:ed:34: 9d:a1:44:57:75:98:52:c3:ac:1d:2c:ef:4e:11:2d: 51:48:ca:19:65:d9:16:e3:ea:2e:99:f1:ab:df:7c: 25:1b:18:28:e9:4e:ae:2b:7e:74:d9:4a:62:d3:2e: 31:91:87:fd:0b:1c:81:24:bd:8e:d0:83:d0:32:49: 94:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:20:97:2C:BC:5E:4B:B6:41:82:06:4A:65:DD:69:BC:13:6D:EE:1B X509v3 Authority Key Identifier: keyid:AF:D8:24:77:A0:91:B1:7C:DA:61:C5:56:3B:C2:92:0C:DC:D7:AA:A5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20106/r9gkd6CRsXzaYcVWO8KSDNzXqqU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/r9gkd6CRsXzaYcVWO8KSDNzXqqU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20106/QiCXLLxeS7ZBggZKZd1pvBNt7hs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.32.192.0/21 Signature Algorithm: sha256WithRSAEncryption 15:01:83:7d:33:b4:31:2a:f3:56:73:2a:5c:70:f5:c2:fd:c1: ae:3c:76:5c:db:3d:19:22:dc:94:61:57:08:79:b1:92:c0:02: 6c:68:f7:00:a0:83:8e:35:11:91:62:9c:90:8a:26:f1:7b:64: 60:05:36:ba:c3:99:45:31:6f:c5:1e:17:83:a3:8c:30:9d:f2: 09:77:b4:ce:ea:9f:4a:c9:ed:77:5e:7e:48:ba:ee:75:18:ec: fd:81:2b:8e:9d:55:02:a8:83:d9:c7:4e:3c:49:da:34:55:5e: 6b:b8:55:73:64:19:d2:ac:9b:d0:8b:f6:3e:9b:eb:8d:ce:66: ac:23:d1:cf:35:a6:c3:47:e3:a1:a5:1f:db:c0:f2:23:4b:13: 74:21:4c:5d:8f:f8:a0:45:7d:b8:f0:09:cf:5d:3f:4c:87:6c: 31:6a:01:5c:2f:dc:3b:fe:d0:24:68:6f:b9:d3:03:ba:cd:34: 9a:a8:6c:0b:3d:1c:74:fb:8d:ef:e2:ae:a3:09:cf:a3:77:b2: 8d:6d:21:2b:d3:3b:40:0b:e3:0d:ae:71:90:e3:4e:ea:29:5e: d5:ec:7d:ad:4c:d8:40:b1:d6:db:d0:30:a7:b9:5e:71:fa:07: 8c:22:b5:a4:22:4d:5e:28:d9:3a:8d:1a:94:97:d3:7b:ac:18: dc:71:19:ec -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBBDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBRkQ4 MjQ3N0EwOTFCMTdDREE2MUM1NTYzQkMyOTIwQ0RDRDdBQUE1MB4XDTI1MDYxMjA2 MTEzMFoXDTI2MDUyNjA3NTczMFowMzExMC8GA1UEAxMoNDIyMDk3MkNCQzVFNEJC NjQxODIwNjRBNjVERDY5QkMxMzZERUUxQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPNs4uemddIhfQiUoh6h9kIoZGCRQeKYhNxxHuLLN4+DNmWr84Rr eYV0olDCJoGq+Iepcn74IKU9NK0lbONnHcK84JMaraZZ/2XDXSEocWT+6mm5S2h5 DrbVsz/H0Wnn7DCBbEyim1xiLDodfLwd3jG7ajosbtlPn+bWmbn91lX+1+Jgu9OM 4Ten+IjmHWDJFqFbG0fF0Etede6EDPw5oT3vIszv70YrfJAL++QnRKC4FrBfk2u8 cSe2Pz14vgtwwe00naFEV3WYUsOsHSzvThEtUUjKGWXZFuPqLpnxq998JRsYKOlO rit+dNlKYtMuMZGH/QscgSS9jtCD0DJJlP8CAwEAAaOCAigwggIkMB0GA1UdDgQW BBRCIJcsvF5LtkGCBkpl3Wm8E23uGzAfBgNVHSMEGDAWgBSv2CR3oJGxfNphxVY7 wpIM3NeqpTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxMDYvcjlna2Q2Q1JzWHphWWNWV084S1NETnpYcXFVLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvcjlna2Q2Q1JzWHphWWNWV084S1NE TnpYcXFVLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMTA2L1FpQ1hMTHhlUzdaQmdnWktaZDFwdkJOdDdocy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAOFIMAwDQYJKoZIhvcNAQELBQADggEBABUBg30ztDEq81ZzKlxw9cL9 wa48dlzbPRki3JRhVwh5sZLAAmxo9wCgg441EZFinJCKJvF7ZGAFNrrDmUUxb8Ue F4OjjDCd8gl3tM7qn0rJ7Xdefki67nUY7P2BK46dVQKog9nHTjxJ2jRVXmu4VXNk GdKsm9CL9j6b643OZqwj0c81psNH46GlH9vA8iNLE3QhTF2P+KBFfbjwCc9dP0yH bDFqAVwv3Dv+0CRob7nTA7rNNJqobAs9HHT7je/irqMJz6N3so1tISvTO0AL4w2u cZDjTuopXtXsfa1M2ECx1tvQMKe5XnH6B4witaQiTV4o2TqNGpSX03usGNxxGew= -----END CERTIFICATE-----Generated at Mon Jun 23 01:08:14 2025 by rpki-client