$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/RUusLyN6-1ZE8oagIZfu06eShIw.roa File: RUusLyN6-1ZE8oagIZfu06eShIw.roa (raw, json) Hash identifier: gbKFdIuWPnZm7nwkpwoz35qLf4zhHWsRKgkHsTZU2UM= Subject key identifier: 45:4B:AC:2F:23:7A:FB:56:44:F2:86:A0:21:97:EE:D3:A7:92:84:8C Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 043A Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/RUusLyN6-1ZE8oagIZfu06eShIw.roa Signing time: Tue 10 Jun 2025 10:45:11 +0000 ROA not before: Tue 10 Jun 2025 10:45:11 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 10013 IP address blocks: 153.120.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 15:42:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1082 (0x43a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jun 10 10:45:11 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=454BAC2F237AFB5644F286A02197EED3A792848C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b8:77:94:98:37:e3:72:25:9a:04:40:14:aa: 99:45:44:29:21:0e:1e:4e:91:68:e0:b2:6b:50:c3: 49:b9:e8:a6:ba:12:3b:ba:94:39:9b:ef:66:18:b8: 8e:f2:80:e9:b7:85:d4:6b:13:ca:b2:76:89:14:bb: cd:7d:9f:74:09:ec:3f:d6:b1:ab:d9:75:10:7a:1e: 2e:44:15:63:77:d1:27:10:99:0f:3a:47:2f:7d:f5: 88:4d:c4:65:7b:b5:33:1b:b9:65:7d:88:16:9f:e2: 66:84:61:e8:0b:5c:13:04:5d:a7:77:98:2b:1b:ab: 78:93:e1:41:14:dc:f8:59:74:1b:7d:c2:f1:1a:6a: e1:e0:79:42:69:13:eb:3a:5c:2d:ff:34:41:9d:41: fc:71:9e:c9:0f:73:26:f0:43:30:38:b0:59:f3:04: 6b:89:20:45:02:9c:13:cd:eb:9a:a2:8a:16:4d:3c: 0c:57:e0:b1:81:53:bb:e4:e3:0b:0c:7f:a7:3e:c2: a6:bf:d6:ce:f9:94:47:5e:66:bc:b6:75:d2:f1:e4: 4e:a0:3b:86:62:81:c8:2e:fc:59:26:54:84:f8:f0: 13:e3:13:68:0f:1b:53:02:43:c5:25:a2:bb:03:4c: d9:58:f4:8d:84:02:0f:b1:fa:01:19:85:52:40:5c: e4:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:4B:AC:2F:23:7A:FB:56:44:F2:86:A0:21:97:EE:D3:A7:92:84:8C X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/RUusLyN6-1ZE8oagIZfu06eShIw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.120.240.0/20 Signature Algorithm: sha256WithRSAEncryption 8f:5c:61:5b:fa:6a:37:4f:10:78:d9:96:2b:93:c6:dc:c4:af: f9:77:07:cd:eb:1a:21:6e:81:b6:57:98:ce:de:04:00:0f:e5: 14:7c:95:f7:29:8c:98:23:aa:87:3b:69:45:61:cf:fd:e2:49: b5:24:66:11:11:9d:b0:37:0e:ae:0d:98:1f:2c:86:01:45:2d: b1:8a:80:84:08:65:54:ea:65:11:4c:e3:6f:06:bf:56:be:c3: 26:c4:bc:86:16:47:e4:b8:61:b4:d9:92:33:5e:47:af:51:53: 3b:d5:a2:61:b5:c3:8b:cd:c4:01:c1:f3:e8:34:ba:57:f3:5c: 77:f2:f2:13:05:4a:81:2a:77:17:a3:4c:17:97:56:f4:c2:6b: 74:16:4a:4a:80:09:44:e3:1d:62:8f:2c:87:1d:e4:fa:cc:b5: 40:e3:0e:26:94:13:6a:9a:70:c3:d9:7f:84:4e:e1:b0:dc:98: 6d:8e:f0:02:8e:d0:72:46:84:42:a9:5d:2a:41:c7:10:e7:5f: eb:98:0d:3f:7f:7d:0e:4a:5c:d7:95:c8:a6:d2:de:88:60:09: 70:d5:e6:b6:1b:0a:15:2d:a0:e8:bd:aa:aa:45:ad:d3:07:6f: 79:50:23:bd:9b:f8:78:32:a2:88:1b:c1:75:e0:1e:72:06:8d: 57:4a:4c:be -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBDowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA2MTAx MDQ1MTFaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDQ1NEJBQzJGMjM3QUZC NTY0NEYyODZBMDIxOTdFRUQzQTc5Mjg0OEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2uHeUmDfjciWaBEAUqplFRCkhDh5OkWjgsmtQw0m56Ka6Eju6 lDmb72YYuI7ygOm3hdRrE8qydokUu819n3QJ7D/WsavZdRB6Hi5EFWN30ScQmQ86 Ry999YhNxGV7tTMbuWV9iBaf4maEYegLXBMEXad3mCsbq3iT4UEU3PhZdBt9wvEa auHgeUJpE+s6XC3/NEGdQfxxnskPcybwQzA4sFnzBGuJIEUCnBPN65qiihZNPAxX 4LGBU7vk4wsMf6c+wqa/1s75lEdeZry2ddLx5E6gO4Zigcgu/FkmVIT48BPjE2gP G1MCQ8UlorsDTNlY9I2EAg+x+gEZhVJAXORFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQURUusLyN6+1ZE8oagIZfu06eShIwwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L1JVdXNMeU42LTFaRThvYWdJWmZ1MDZlU2hJdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASZePAwDQYJKoZIhvcNAQELBQADggEBAI9cYVv6ajdPEHjZliuTxtzEr/l3 B83rGiFugbZXmM7eBAAP5RR8lfcpjJgjqoc7aUVhz/3iSbUkZhERnbA3Dq4NmB8s hgFFLbGKgIQIZVTqZRFM428Gv1a+wybEvIYWR+S4YbTZkjNeR69RUzvVomG1w4vN xAHB8+g0ulfzXHfy8hMFSoEqdxejTBeXVvTCa3QWSkqACUTjHWKPLIcd5PrMtUDj DiaUE2qacMPZf4RO4bDcmG2O8AKO0HJGhEKpXSpBxxDnX+uYDT9/fQ5KXNeVyKbS 3ohgCXDV5rYbChUtoOi9qqpFrdMHb3lQI72b+HgyoogbwXXgHnIGjVdKTL4= -----END CERTIFICATE-----Generated at Sun Jun 22 19:22:08 2025 by rpki-client