$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/OnBADlNtbipXSE_vs4zbzBAaH_k.roa File: OnBADlNtbipXSE_vs4zbzBAaH_k.roa (raw, json) Hash identifier: sQhJl0Gj+dpWZvzcIOAe5mT8VClI6oEYRQnt1ylYkOQ= Subject key identifier: 3A:70:40:0E:53:6D:6E:2A:57:48:4F:EF:B3:8C:DB:CC:10:1A:1F:F9 Certificate issuer: /CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Certificate serial: 7D Authority key identifier: F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/OnBADlNtbipXSE_vs4zbzBAaH_k.roa Signing time: Tue 10 Jun 2025 11:24:30 +0000 ROA not before: Tue 10 Jun 2025 11:24:30 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 146.99.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Validity Not Before: Jun 10 11:24:30 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=3A70400E536D6E2A57484FEFB38CDBCC101A1FF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f8:42:e3:e5:e0:6d:e7:75:52:30:a6:9c:17: 26:c6:5c:2d:4e:a6:31:31:71:41:e7:3b:f3:7b:81: 2e:8d:f2:45:39:5b:9b:c6:e4:f8:89:03:0a:24:83: 55:36:cb:30:9b:13:99:1f:7a:58:30:70:81:74:96: 17:67:21:e6:6c:23:24:07:18:c8:55:6e:dd:3e:f6: cd:5c:2e:b1:ad:3c:18:04:6c:8f:6c:18:f5:5b:02: 64:fb:95:b9:d2:d0:c9:56:c7:f7:88:a2:16:0e:96: df:81:24:25:d0:cc:1d:3b:a3:fc:c0:e9:47:99:d4: 8d:9d:ef:d4:e1:29:e9:f2:c4:c2:b5:2c:ef:a4:38: 57:72:0e:e6:ac:0b:ab:ac:ca:d0:32:51:11:85:80: fc:57:46:dd:16:89:d1:d1:09:cb:d5:e1:ac:e9:7a: 67:51:37:98:c1:47:8e:83:0f:ff:c8:e3:f6:cb:23: 48:b2:ff:fa:6b:a6:b6:5e:00:86:20:53:40:64:5b: 55:6a:70:a3:55:82:9d:4a:bf:3d:0c:03:37:04:cf: b8:69:e0:97:c0:9e:fa:9d:19:e4:7c:16:0c:b9:e0: 57:ac:8b:c7:35:ea:80:a2:75:21:7b:e2:08:5c:de: 14:05:17:ea:b9:6c:a8:69:c8:f9:17:e2:a8:bc:da: 0c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:70:40:0E:53:6D:6E:2A:57:48:4F:EF:B3:8C:DB:CC:10:1A:1F:F9 X509v3 Authority Key Identifier: keyid:F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/OnBADlNtbipXSE_vs4zbzBAaH_k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 146.99.0.0/17 Signature Algorithm: sha256WithRSAEncryption 39:e5:8f:2e:0b:e7:d6:b3:9f:03:7c:9d:a0:2f:c2:b2:18:d6: ba:f3:96:da:c3:a2:f5:2d:a1:38:ca:c3:a0:06:c9:51:64:7c: cf:5d:79:70:59:91:58:3e:b1:51:a4:a5:a8:7a:e8:5a:89:f3: 34:70:77:a6:33:33:e7:90:fc:5d:c4:c2:00:0c:12:5f:f1:45: e9:05:d1:ec:54:f3:d4:5d:0d:09:aa:92:e3:d2:53:a0:2f:c4: 34:61:4c:2d:ed:5e:3a:b3:57:68:e3:b9:d3:30:55:4a:58:45: c9:68:8b:41:49:8b:43:4f:40:fc:12:1f:b1:57:1d:ef:0c:30: 0d:2b:91:e3:5d:b8:b3:b0:f9:ee:13:67:74:e6:9e:bd:65:92: f0:ef:16:09:72:b1:48:c5:8e:48:54:83:31:3c:bb:fa:df:e3: 00:23:d2:46:bd:49:ad:b8:18:6e:03:63:91:da:b4:f0:0a:b7: 68:c3:82:88:07:5e:92:a3:63:64:63:61:83:07:de:55:2d:40: fc:b6:80:f9:2e:6d:86:f9:43:b9:33:fb:aa:45:a3:12:f8:dc: a0:6a:6e:03:9e:4e:1b:b6:e5:0a:3c:e8:1b:fc:41:d6:dc:80: 85:9b:03:ac:77:83:4c:f8:f5:8a:c7:61:75:8a:f4:b5:f3:4f: 51:64:79:26 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBfTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGODlF MEYxNUMxRTIwRTE5MUFBRjE3Mjg4RjZFMzBGRjAxODY5QTZFMB4XDTI1MDYxMDEx MjQzMFoXDTI2MDUyMzA5NTEwMFowMzExMC8GA1UEAxMoM0E3MDQwMEU1MzZENkUy QTU3NDg0RkVGQjM4Q0RCQ0MxMDFBMUZGOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL74QuPl4G3ndVIwppwXJsZcLU6mMTFxQec783uBLo3yRTlbm8bk +IkDCiSDVTbLMJsTmR96WDBwgXSWF2ch5mwjJAcYyFVu3T72zVwusa08GARsj2wY 9VsCZPuVudLQyVbH94iiFg6W34EkJdDMHTuj/MDpR5nUjZ3v1OEp6fLEwrUs76Q4 V3IO5qwLq6zK0DJREYWA/FdG3RaJ0dEJy9XhrOl6Z1E3mMFHjoMP/8jj9ssjSLL/ +mumtl4AhiBTQGRbVWpwo1WCnUq/PQwDNwTPuGngl8Ce+p0Z5HwWDLngV6yLxzXq gKJ1IXviCFzeFAUX6rlsqGnI+RfiqLzaDJUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ6cEAOU21uKldIT++zjNvMEBof+TAfBgNVHSMEGDAWgBT4ng8VweIOGRqvFyiP bjD/AYaabjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA5Ly1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dHR21tNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLy1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dH R21tNC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDkvT25CQURsTnRiaXBYU0VfdnM0emJ6QkFhSF9rLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEB5JjADANBgkqhkiG9w0BAQsFAAOCAQEAOeWPLgvn1rOfA3ydoC/CshjWuvOW 2sOi9S2hOMrDoAbJUWR8z115cFmRWD6xUaSlqHroWonzNHB3pjMz55D8XcTCAAwS X/FF6QXR7FTz1F0NCaqS49JToC/ENGFMLe1eOrNXaOO50zBVSlhFyWiLQUmLQ09A /BIfsVcd7wwwDSuR4124s7D57hNndOaevWWS8O8WCXKxSMWOSFSDMTy7+t/jACPS Rr1JrbgYbgNjkdq08Aq3aMOCiAdekqNjZGNhgwfeVS1A/LaA+S5thvlDuTP7qkWj EvjcoGpuA55OG7blCjzoG/xB1tyAhZsDrHeDTPj1isdhdYr0tfNPUWR5Jg== -----END CERTIFICATE-----Generated at Sun Jun 22 08:59:04 2025 by rpki-client