$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/TMKIjokZRdD7P1eay9N_kn0prHI.roa File: TMKIjokZRdD7P1eay9N_kn0prHI.roa (raw, json) Hash identifier: Yv6RYT3A8AWBnhKKlnUq2wzR7rfeHPXeO//nRZG/lSU= Subject key identifier: 4C:C2:88:8E:89:19:45:D0:FB:3F:57:9A:CB:D3:7F:92:7D:29:AC:72 Certificate issuer: /CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Certificate serial: 6F Authority key identifier: F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/TMKIjokZRdD7P1eay9N_kn0prHI.roa Signing time: Thu 01 May 2025 01:29:56 +0000 ROA not before: Thu 01 May 2025 01:29:56 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 9605 IP address blocks: 160.249.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:23:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Validity Not Before: May 1 01:29:56 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=4CC2888E891945D0FB3F579ACBD37F927D29AC72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:60:44:ed:cc:43:8e:b1:f6:4a:ab:3f:65:35: d4:d3:56:0a:52:18:24:50:82:c5:56:9d:50:14:2b: cd:80:27:2d:58:42:57:b3:74:51:4c:2d:8a:a0:38: 4f:a4:e6:4b:ca:be:2b:cb:96:d0:1e:38:b0:cb:91: a2:cc:2a:f7:54:3f:e2:a2:ca:f5:14:26:61:ac:84: 3a:68:cb:82:ad:81:27:21:34:6b:b1:06:25:dd:35: 4a:83:b5:7f:67:39:e8:a3:05:44:d0:fd:a7:0c:be: 24:80:18:da:ae:51:36:dc:8b:d2:4d:e1:9e:42:c0: 49:18:23:a3:f6:4f:86:bc:91:42:74:62:fd:2d:d8: 74:1d:58:92:7f:c2:ec:d3:62:77:bd:05:86:2e:87: e5:88:cd:9b:8a:c5:4f:2e:f1:c4:89:34:bb:98:14: 6b:0f:a2:b8:27:65:d6:09:c8:77:e2:de:41:01:0e: 97:eb:72:a5:45:86:62:79:35:df:8b:9d:58:0c:bd: 38:92:11:a1:c8:80:f7:d5:08:c1:32:90:67:2c:76: e8:47:db:7a:06:8a:09:e5:4b:bd:37:c0:79:50:6a: 33:f8:f5:75:f7:5c:38:21:bc:4e:94:8f:bb:95:59: b9:8b:f3:56:aa:7c:a9:fd:66:3d:dd:2f:8a:95:4b: bb:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:C2:88:8E:89:19:45:D0:FB:3F:57:9A:CB:D3:7F:92:7D:29:AC:72 X509v3 Authority Key Identifier: keyid:F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/TMKIjokZRdD7P1eay9N_kn0prHI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.249.64.0/20 Signature Algorithm: sha256WithRSAEncryption 77:62:6c:5b:ad:82:5c:d4:fa:7a:b6:10:d0:7d:ed:a5:92:31: 1d:22:62:14:e9:61:93:a1:22:91:a2:cc:f9:f9:22:cf:fe:c0: df:4f:aa:62:4d:f1:75:5a:85:e0:82:5b:be:98:cc:8a:e8:fa: 29:11:6c:e8:ff:03:b8:f2:86:ea:91:2d:db:dd:92:bc:ec:66: 9a:12:94:03:cc:8e:ff:07:77:03:74:ec:34:3c:18:df:62:3b: f8:40:d2:a6:fd:33:f8:4f:3d:28:be:27:c6:d8:5a:a0:e7:3f: c4:f8:9e:9b:ed:36:a7:02:b1:2d:e2:f6:d3:ba:90:2b:5b:86: c9:5a:d8:9c:7e:e4:4a:e9:e8:74:89:29:11:e4:af:ac:f1:d2: b7:25:ff:f1:ed:a1:6c:3c:7e:06:2a:6f:9d:96:06:ef:5b:c4: 72:95:ec:9f:19:67:8d:d1:25:6a:2e:33:04:33:15:27:d7:0a: 5c:d5:b0:dc:2d:8e:7c:e2:ff:69:cc:15:1f:81:09:75:3e:38: 87:3e:23:02:21:44:97:ff:46:ae:d6:8d:e4:1a:45:d3:7f:54: 71:35:99:80:45:34:24:b3:5a:d8:62:fc:43:c6:c6:9d:42:98: 3c:7b:f8:1f:36:2d:32:d8:54:e1:65:a5:d7:47:99:18:b1:35: 10:3d:6e:93 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBbzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGODlF MEYxNUMxRTIwRTE5MUFBRjE3Mjg4RjZFMzBGRjAxODY5QTZFMB4XDTI1MDUwMTAx Mjk1NloXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoNENDMjg4OEU4OTE5NDVE MEZCM0Y1NzlBQ0JEMzdGOTI3RDI5QUM3MjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALFgRO3MQ46x9kqrP2U11NNWClIYJFCCxVadUBQrzYAnLVhCV7N0 UUwtiqA4T6TmS8q+K8uW0B44sMuRoswq91Q/4qLK9RQmYayEOmjLgq2BJyE0a7EG Jd01SoO1f2c56KMFRND9pwy+JIAY2q5RNtyL0k3hnkLASRgjo/ZPhryRQnRi/S3Y dB1Ykn/C7NNid70Fhi6H5YjNm4rFTy7xxIk0u5gUaw+iuCdl1gnId+LeQQEOl+ty pUWGYnk134udWAy9OJIRociA99UIwTKQZyx26EfbegaKCeVLvTfAeVBqM/j1dfdc OCG8TpSPu5VZuYvzVqp8qf1mPd0vipVLu9kCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRMwoiOiRlF0Ps/V5rL03+SfSmscjAfBgNVHSMEGDAWgBT4ng8VweIOGRqvFyiP bjD/AYaabjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA5Ly1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dHR21tNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLy1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dH R21tNC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDkvVE1LSWpva1pSZEQ3UDFlYXk5Tl9rbjBwckhJLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBKD5QDANBgkqhkiG9w0BAQsFAAOCAQEAd2JsW62CXNT6erYQ0H3tpZIxHSJi FOlhk6EikaLM+fkiz/7A30+qYk3xdVqF4IJbvpjMiuj6KRFs6P8DuPKG6pEt292S vOxmmhKUA8yO/wd3A3TsNDwY32I7+EDSpv0z+E89KL4nxthaoOc/xPiem+02pwKx LeL207qQK1uGyVrYnH7kSunodIkpEeSvrPHStyX/8e2hbDx+BipvnZYG71vEcpXs nxlnjdElai4zBDMVJ9cKXNWw3C2OfOL/acwVH4EJdT44hz4jAiFEl/9GrtaN5BpF 039UcTWZgEU0JLNa2GL8Q8bGnUKYPHv4HzYtMthU4WWl10eZGLE1ED1ukw== -----END CERTIFICATE-----Generated at Sat May 10 23:07:47 2025 by rpki-client