$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/qmqUGYKv5F111i_Nsm2QjP1hYaI.roa File: qmqUGYKv5F111i_Nsm2QjP1hYaI.roa (raw, json) Hash identifier: rlns+/zQ0au0DjFtAikiwVrFgo27vN/DISSaB6ZHuC4= Subject key identifier: AA:6A:94:19:82:AF:E4:5D:75:D6:2F:CD:B2:6D:90:8C:FD:61:61:A2 Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: D1 Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/qmqUGYKv5F111i_Nsm2QjP1hYaI.roa Signing time: Tue 10 Jun 2025 10:50:38 +0000 ROA not before: Tue 10 Jun 2025 10:50:38 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 17476 IP address blocks: 153.254.87.128/29 maxlen: 29 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 21:26:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Jun 10 10:50:38 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=AA6A941982AFE45D75D62FCDB26D908CFD6161A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:aa:2a:46:27:cc:e3:7b:6f:ac:a2:98:ec:14: bc:14:1c:a4:c0:e1:ca:ff:00:b3:09:7b:b9:2c:28: ef:7b:59:12:8d:3b:99:bb:23:52:84:47:5f:a0:9a: 2e:11:1a:03:eb:17:56:12:27:06:b8:57:e7:15:00: b9:9a:cf:72:77:df:da:98:4f:9a:0d:4e:1d:a7:d5: 0c:b5:5f:47:0e:83:40:65:ff:f9:45:58:55:84:f4: 9e:48:5a:34:cb:e2:0e:5c:69:94:66:89:23:21:57: 04:72:a8:84:fe:2e:6d:09:11:d5:a7:d9:aa:e8:55: b3:80:1c:84:56:0d:c2:bb:ce:58:7f:81:9f:4b:8f: e8:24:2d:1b:1c:f9:a3:a6:51:bc:98:d7:b2:70:f5: 19:fc:68:28:41:0e:44:20:d9:60:7f:ef:d2:6e:ac: 7e:99:ca:72:43:e4:b3:8f:78:7e:80:54:82:e9:30: 83:25:08:e8:2e:db:e2:a2:f7:4f:da:cd:ca:b3:00: 69:09:fb:cd:b7:a9:bc:96:f2:e5:7a:e0:db:ea:ef: e6:c4:38:a5:6c:64:a7:42:c2:59:62:6e:64:b2:58: f9:e0:be:7e:29:b7:42:a5:df:2f:6b:a3:b7:46:72: d5:2d:04:f2:ef:69:c5:b1:81:b4:4c:1d:62:1e:33: 82:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:6A:94:19:82:AF:E4:5D:75:D6:2F:CD:B2:6D:90:8C:FD:61:61:A2 X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/qmqUGYKv5F111i_Nsm2QjP1hYaI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.254.87.128/29 Signature Algorithm: sha256WithRSAEncryption 81:c7:ca:d4:78:2b:ec:e9:f0:c7:77:b7:02:db:20:61:5f:06: 23:45:1c:b2:5e:f0:88:a9:d9:e5:55:ff:74:ea:36:c2:a3:e3: 67:c9:cc:41:28:6a:19:87:5b:61:fe:f6:68:8f:02:c7:b0:40: a8:5f:5f:8c:2e:33:19:b5:e8:2d:a0:14:f6:b5:b8:26:a3:05: fc:fa:1c:32:2b:63:82:fd:9e:79:d6:7d:6f:6d:14:17:28:63: 24:f4:1a:91:58:31:42:9f:ac:1f:e3:c0:92:a1:16:a7:ea:74: 6b:bd:db:75:e3:0f:10:94:43:26:d9:7f:7b:b6:ff:ba:9e:14: 47:30:cc:d6:cb:7d:6f:4a:29:1a:9e:64:29:ca:9b:03:d5:2c: ff:ba:80:c6:6b:22:32:4b:87:dc:9c:ca:16:36:6f:c3:e4:77: 55:b8:87:bc:08:56:1f:6b:bc:4f:32:35:1f:f1:bd:2a:fb:60: 58:69:15:77:eb:88:7f:f8:cc:b3:be:7b:5e:87:85:bc:e0:a2: 0c:96:20:58:5d:f0:fa:18:b2:84:d2:49:cd:eb:b6:84:71:77: d9:e5:21:fe:0a:35:1a:4b:74:b2:f1:6e:2f:4f:71:2b:87:b5: 15:97:a7:45:ca:87:97:1f:2a:11:9f:1f:f3:32:09:89:7a:b2: 09:66:92:88 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgICANEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQ0 NkRERjg4QTQ2RTRFQzJEOUE5QkFCNUZGMTMwNUZEMDU3RjEzODAeFw0yNTA2MTAx MDUwMzhaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEFBNkE5NDE5ODJBRkU0 NUQ3NUQ2MkZDREIyNkQ5MDhDRkQ2MTYxQTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbqipGJ8zje2+sopjsFLwUHKTA4cr/ALMJe7ksKO97WRKNO5m7 I1KER1+gmi4RGgPrF1YSJwa4V+cVALmaz3J339qYT5oNTh2n1Qy1X0cOg0Bl//lF WFWE9J5IWjTL4g5caZRmiSMhVwRyqIT+Lm0JEdWn2aroVbOAHIRWDcK7zlh/gZ9L j+gkLRsc+aOmUbyY17Jw9Rn8aChBDkQg2WB/79JurH6ZynJD5LOPeH6AVILpMIMl COgu2+Ki90/azcqzAGkJ+823qbyW8uV64Nvq7+bEOKVsZKdCwllibmSyWPngvn4p t0Kl3y9ro7dGctUtBPLvacWxgbRMHWIeM4ILAgMBAAGjggIpMIICJTAdBgNVHQ4E FgQUqmqUGYKv5F111i/Nsm2QjP1hYaIwHwYDVR0jBBgwFoAUjUbd+IpG5Owtmpur X/EwX9BX8TgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTI4L2pVYmQtSXBHNU93dG1wdXJYX0V3WDlCWDhUZy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pVYmQtSXBHNU93dG1wdXJYX0V3 WDlCWDhUZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDEyOC9xbXFVR1lLdjVGMTExaV9Oc20yUWpQMWhZYUku cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAATAHAwUDmf5XgDANBgkqhkiG9w0BAQsFAAOCAQEAgcfK1Hgr7Onwx3e3Atsg YV8GI0Ucsl7wiKnZ5VX/dOo2wqPjZ8nMQShqGYdbYf72aI8Cx7BAqF9fjC4zGbXo LaAU9rW4JqMF/PocMitjgv2eedZ9b20UFyhjJPQakVgxQp+sH+PAkqEWp+p0a73b deMPEJRDJtl/e7b/up4URzDM1st9b0opGp5kKcqbA9Us/7qAxmsiMkuH3JzKFjZv w+R3VbiHvAhWH2u8TzI1H/G9KvtgWGkVd+uIf/jMs757XoeFvOCiDJYgWF3w+hiy hNJJzeu2hHF32eUh/go1Gkt0svFuL09xK4e1FZenRcqHlx8qEZ8f8zIJiXqyCWaS iA== -----END CERTIFICATE-----Generated at Fri Jun 20 23:43:21 2025 by rpki-client