$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/iEADDJWYqQr53Uf4_2yHaJpJrGc.roa File: iEADDJWYqQr53Uf4_2yHaJpJrGc.roa (raw, json) Hash identifier: agYKNFWzxp0Ej0X8ewoXAAURsR45PaWpfm06vNT/L2s= Subject key identifier: 88:40:03:0C:95:98:A9:0A:F9:DD:47:F8:FF:6C:87:68:9A:49:AC:67 Certificate issuer: /CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Certificate serial: 78 Authority key identifier: F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iEADDJWYqQr53Uf4_2yHaJpJrGc.roa Signing time: Tue 10 Jun 2025 11:12:42 +0000 ROA not before: Tue 10 Jun 2025 11:12:42 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 146.99.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 14:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Validity Not Before: Jun 10 11:12:42 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=8840030C9598A90AF9DD47F8FF6C87689A49AC67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1e:3e:02:6c:bd:4d:b1:2a:05:3f:05:d6:14: 0e:b3:11:59:a2:14:1f:fc:58:cb:87:28:eb:f3:fd: 31:73:e6:d8:a5:70:72:39:b4:1e:e4:69:66:1e:d1: 30:e7:8d:43:54:24:1c:b6:93:7f:1c:ce:19:81:a3: d0:75:ee:f3:de:7a:0c:77:01:8c:5d:1c:39:da:04: 76:52:3b:23:f5:17:77:62:87:25:d1:92:88:52:10: 3e:90:ce:6f:44:f5:f8:01:df:f6:40:95:c8:d1:45: 6e:a8:8a:cf:b9:38:26:c7:2f:f0:7c:c0:78:94:f0: 0d:51:fc:fc:f4:84:0c:14:c7:ec:fd:c3:c3:14:41: 73:f8:3b:1c:e5:9a:cb:7c:a0:e7:12:16:14:07:8a: e0:8f:73:26:8b:ac:0f:9f:ed:21:7c:4e:70:6d:c6: 87:b3:d4:72:1e:74:3f:58:31:09:44:72:1e:95:38: f8:f4:98:66:e3:3a:75:e1:76:35:04:c6:4f:d3:2c: 6e:f9:59:5d:e8:b1:0f:45:21:80:8c:12:28:5a:e1: b0:dd:c0:09:24:4a:bb:0b:be:73:b0:7f:60:79:dd: 89:e7:33:17:9d:7d:72:81:19:97:fa:0c:86:f1:e8: d6:03:1b:ac:91:4f:0a:09:c9:7b:c9:8a:28:c6:49: 5a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:40:03:0C:95:98:A9:0A:F9:DD:47:F8:FF:6C:87:68:9A:49:AC:67 X509v3 Authority Key Identifier: keyid:F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iEADDJWYqQr53Uf4_2yHaJpJrGc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 146.99.128.0/17 Signature Algorithm: sha256WithRSAEncryption 0d:84:9c:ce:a4:a6:f5:cc:95:31:b5:5d:40:b9:40:d3:de:41: 03:19:f8:6d:9a:86:0c:a2:74:08:3d:39:62:16:7a:a0:8b:2d: 0d:b1:1b:76:a2:0f:ee:da:3a:cb:53:8c:28:7e:a2:66:7e:76: c4:08:1d:61:8d:f5:09:cb:21:0a:26:ee:9c:3d:65:60:16:9b: 67:46:03:1b:97:36:f9:79:e1:6c:5d:ae:b6:46:09:2d:02:b9: f5:4b:9e:7c:68:8b:f3:4b:a6:77:3f:d5:cf:be:40:8b:b5:6c: 1f:38:c7:04:5e:36:09:7c:15:5a:97:52:2c:a6:4c:c2:d2:7d: cf:4d:73:43:60:81:a6:9e:63:ec:ff:db:c1:3a:7b:7c:29:1f: c9:89:3d:c7:cf:26:46:10:88:4d:38:49:64:35:b5:d4:2a:4c: ce:65:b8:0e:ab:fc:4b:2f:31:7d:9f:d5:a1:ac:ae:15:cd:23: 96:12:31:0e:91:99:a4:86:a7:8a:01:4e:d0:62:f6:b6:d0:e0: e4:66:c8:63:f9:2c:66:b5:1f:51:38:db:ba:f2:b5:59:d0:24: 2a:35:33:e6:79:35:ee:9d:12:13:57:b1:a4:44:b3:26:8e:4e: 84:f0:05:d1:4d:10:b8:f4:3b:db:30:56:b1:d7:fc:79:ac:28: 97:66:b6:56 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBeDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGODlF MEYxNUMxRTIwRTE5MUFBRjE3Mjg4RjZFMzBGRjAxODY5QTZFMB4XDTI1MDYxMDEx MTI0MloXDTI2MDUyMzA5NTEwMFowMzExMC8GA1UEAxMoODg0MDAzMEM5NTk4QTkw QUY5REQ0N0Y4RkY2Qzg3Njg5QTQ5QUM2NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANQePgJsvU2xKgU/BdYUDrMRWaIUH/xYy4co6/P9MXPm2KVwcjm0 HuRpZh7RMOeNQ1QkHLaTfxzOGYGj0HXu8956DHcBjF0cOdoEdlI7I/UXd2KHJdGS iFIQPpDOb0T1+AHf9kCVyNFFbqiKz7k4Jscv8HzAeJTwDVH8/PSEDBTH7P3DwxRB c/g7HOWay3yg5xIWFAeK4I9zJousD5/tIXxOcG3Gh7PUch50P1gxCURyHpU4+PSY ZuM6deF2NQTGT9MsbvlZXeixD0UhgIwSKFrhsN3ACSRKuwu+c7B/YHndieczF519 coEZl/oMhvHo1gMbrJFPCgnJe8mKKMZJWmcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSIQAMMlZipCvndR/j/bIdomkmsZzAfBgNVHSMEGDAWgBT4ng8VweIOGRqvFyiP bjD/AYaabjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA5Ly1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dHR21tNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLy1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dH R21tNC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDkvaUVBRERKV1lxUXI1M1VmNF8yeUhhSnBKckdjLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEB5JjgDANBgkqhkiG9w0BAQsFAAOCAQEADYSczqSm9cyVMbVdQLlA095BAxn4 bZqGDKJ0CD05YhZ6oIstDbEbdqIP7to6y1OMKH6iZn52xAgdYY31CcshCibunD1l YBabZ0YDG5c2+XnhbF2utkYJLQK59UuefGiL80umdz/Vz75Ai7VsHzjHBF42CXwV WpdSLKZMwtJ9z01zQ2CBpp5j7P/bwTp7fCkfyYk9x88mRhCITThJZDW11CpMzmW4 Dqv8Sy8xfZ/VoayuFc0jlhIxDpGZpIanigFO0GL2ttDg5GbIY/ksZrUfUTjbuvK1 WdAkKjUz5nk17p0SE1expESzJo5OhPAF0U0QuPQ72zBWsdf8eawol2a2Vg== -----END CERTIFICATE-----Generated at Sat Jun 21 18:36:15 2025 by rpki-client