$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/EVcUT6Hl4YSp2O-DGXuhRN6SJaE.roa File: EVcUT6Hl4YSp2O-DGXuhRN6SJaE.roa (raw, json) Hash identifier: QiP1KOQZwVOuo6OGpnoHMT24IiVS/evWe0B28fRILmk= Subject key identifier: 11:57:14:4F:A1:E5:E1:84:A9:D8:EF:83:19:7B:A1:44:DE:92:25:A1 Certificate issuer: /CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Certificate serial: 7C Authority key identifier: F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/EVcUT6Hl4YSp2O-DGXuhRN6SJaE.roa Signing time: Tue 10 Jun 2025 11:24:26 +0000 ROA not before: Tue 10 Jun 2025 11:24:26 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 148.68.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Jun 2025 04:57:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Validity Not Before: Jun 10 11:24:26 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=1157144FA1E5E184A9D8EF83197BA144DE9225A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:77:ae:1b:00:ff:3f:39:94:23:0a:c4:1d:c6: 25:68:c6:4d:ce:2c:f2:a8:9f:d3:00:75:2e:1b:a8: 90:b9:72:99:24:a1:65:f9:be:0e:17:d0:97:9f:90: 74:49:83:6d:4a:03:fe:ab:83:4e:e6:bf:4d:1f:0e: b5:98:e1:6a:eb:d4:6f:a0:78:0c:8b:34:d9:a6:ab: 5b:7a:6d:ab:61:77:0d:24:9d:4d:4f:5d:cb:d4:74: 52:57:8a:46:b0:81:81:92:ab:ab:f2:5e:78:10:64: ea:85:b6:1b:61:aa:29:89:e3:da:a3:bc:61:33:eb: 8d:bf:6c:6e:25:ec:f8:bd:34:76:d8:8a:3f:45:c6: 04:74:a3:5d:05:4c:0b:09:1e:dc:a4:08:69:dd:95: 52:72:19:97:bd:a8:59:c6:7a:3c:98:c6:3e:04:7a: a4:b1:4d:52:cb:84:d9:ec:70:c2:c0:31:45:09:2c: f2:ef:8c:4a:1e:3a:11:30:2b:b7:52:3e:ea:ca:b2: 19:09:47:f6:e1:86:6c:7a:be:c9:99:b2:54:e6:59: d2:d2:91:8d:e3:e8:99:05:7e:cc:be:83:52:4b:95: 2f:07:02:3f:8c:3a:e8:8b:c0:a2:1a:ca:f1:43:9d: 11:c4:84:8b:18:e1:aa:c8:9e:14:dc:d4:fa:27:b4: 10:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:57:14:4F:A1:E5:E1:84:A9:D8:EF:83:19:7B:A1:44:DE:92:25:A1 X509v3 Authority Key Identifier: keyid:F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/EVcUT6Hl4YSp2O-DGXuhRN6SJaE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 148.68.128.0/17 Signature Algorithm: sha256WithRSAEncryption 28:23:70:bc:0d:67:ce:39:74:12:e2:ed:53:d4:1a:85:58:23: 89:9d:86:23:0a:94:56:df:b6:dc:64:0c:c1:72:d7:2f:85:16: 44:ee:c4:e9:75:a6:79:b9:52:82:87:96:c6:c0:e8:fc:24:57: 9f:9f:27:0d:48:d2:e7:0f:b0:b2:64:64:30:a7:bc:18:1b:08: 7e:ab:13:c6:25:a1:ce:26:26:4f:92:2c:92:2a:95:25:1d:00: 45:08:74:a9:9a:e7:41:a4:3b:1f:9f:b6:58:f6:8c:7b:9b:50: da:0b:1e:e4:4c:30:fe:1f:21:d3:6d:90:c4:e3:67:b8:a0:f4: c0:96:69:c6:a6:4f:a9:f8:85:f3:1a:aa:77:ad:17:c8:9f:5d: 67:80:a3:17:61:05:ce:d7:e0:ce:6e:90:02:17:5a:bd:49:fd: 41:6b:78:5c:ac:7a:49:6c:f3:20:2d:fe:11:8d:40:b1:cf:83: b0:34:9e:fc:d9:b8:ed:39:fd:5a:e4:03:68:b9:22:8f:0a:3d: d4:70:a6:d3:be:9f:6b:b3:2d:0a:8b:f1:62:21:24:3b:2c:dc: 05:be:65:91:da:02:7c:42:71:e3:cb:f6:a0:87:31:4d:41:be: db:df:fc:d8:29:f6:ce:10:91:4d:37:c2:d0:ca:1b:be:84:b3: 14:5c:5a:41 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBfDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGODlF MEYxNUMxRTIwRTE5MUFBRjE3Mjg4RjZFMzBGRjAxODY5QTZFMB4XDTI1MDYxMDEx MjQyNloXDTI2MDUyMzA5NTEwMFowMzExMC8GA1UEAxMoMTE1NzE0NEZBMUU1RTE4 NEE5RDhFRjgzMTk3QkExNDRERTkyMjVBMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJZ3rhsA/z85lCMKxB3GJWjGTc4s8qif0wB1LhuokLlymSShZfm+ DhfQl5+QdEmDbUoD/quDTua/TR8OtZjhauvUb6B4DIs02aarW3ptq2F3DSSdTU9d y9R0UleKRrCBgZKrq/JeeBBk6oW2G2GqKYnj2qO8YTPrjb9sbiXs+L00dtiKP0XG BHSjXQVMCwke3KQIad2VUnIZl72oWcZ6PJjGPgR6pLFNUsuE2exwwsAxRQks8u+M Sh46ETArt1I+6sqyGQlH9uGGbHq+yZmyVOZZ0tKRjePomQV+zL6DUkuVLwcCP4w6 6IvAohrK8UOdEcSEixjhqsieFNzU+ie0ED8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQRVxRPoeXhhKnY74MZe6FE3pIloTAfBgNVHSMEGDAWgBT4ng8VweIOGRqvFyiP bjD/AYaabjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA5Ly1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dHR21tNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLy1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dH R21tNC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDkvRVZjVVQ2SGw0WVNwMk8tREdYdWhSTjZTSmFFLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEB5REgDANBgkqhkiG9w0BAQsFAAOCAQEAKCNwvA1nzjl0EuLtU9QahVgjiZ2G IwqUVt+23GQMwXLXL4UWRO7E6XWmeblSgoeWxsDo/CRXn58nDUjS5w+wsmRkMKe8 GBsIfqsTxiWhziYmT5IskiqVJR0ARQh0qZrnQaQ7H5+2WPaMe5tQ2gse5Eww/h8h 022QxONnuKD0wJZpxqZPqfiF8xqqd60XyJ9dZ4CjF2EFztfgzm6QAhdavUn9QWt4 XKx6SWzzIC3+EY1Asc+DsDSe/Nm47Tn9WuQDaLkijwo91HCm076fa7MtCovxYiEk OyzcBb5lkdoCfEJx48v2oIcxTUG+29/82Cn2zhCRTTfC0MobvoSzFFxaQQ== -----END CERTIFICATE-----Generated at Mon Jun 23 07:58:20 2025 by rpki-client