$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/jKmGsBbbhNKChWPAm18xILnojyw.roa File: jKmGsBbbhNKChWPAm18xILnojyw.roa (raw, json) Hash identifier: yIee2hmdRXGf+GzFsUK8W4AbW0vB/f4zZjr/OJuOpj4= Subject key identifier: 8C:A9:86:B0:16:DB:84:D2:82:85:63:C0:9B:5F:31:20:B9:E8:8F:2C Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0431 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/jKmGsBbbhNKChWPAm18xILnojyw.roa Signing time: Tue 10 Jun 2025 10:45:00 +0000 ROA not before: Tue 10 Jun 2025 10:45:00 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 4686 IP address blocks: 124.255.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1073 (0x431) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jun 10 10:45:00 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=8CA986B016DB84D2828563C09B5F3120B9E88F2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1f:0a:0d:07:60:f7:b7:bf:a0:d0:94:ec:b4: d6:0a:02:05:1b:3f:fe:fa:bb:de:57:85:91:55:0c: a4:c3:a9:0b:82:c4:b2:ee:d6:7d:f0:33:b1:b3:23: 34:28:80:28:ed:c0:77:9a:58:4f:9b:99:0c:9d:f2: 02:2d:b2:a4:53:db:f6:95:b4:f0:31:06:98:de:fc: 3f:df:04:39:68:83:7a:82:cd:3f:64:40:2b:ab:db: 09:0e:ea:0d:fb:6b:97:64:b5:67:9b:73:9a:69:ca: 5b:3c:c8:d3:53:e2:a4:39:ec:83:08:e7:f1:90:fa: dd:eb:56:22:c2:36:39:50:23:22:a6:41:fe:bc:52: ab:91:6d:1d:97:f6:24:92:7d:c9:bb:85:bf:b5:4b: 9d:43:24:1d:c3:24:9f:9f:91:01:56:ba:cb:c2:cc: 0a:7c:43:50:70:9a:08:d7:80:2a:20:5b:30:29:1b: da:b8:36:49:f6:ad:2e:7b:09:83:b8:e0:88:84:61: 08:f8:b2:4f:8e:a1:55:c8:73:97:a5:16:4b:3b:56: 3a:ba:85:9a:ed:b5:f8:54:72:0b:00:ee:fe:0e:9d: 12:9b:dd:d1:0a:85:39:68:ef:78:5f:03:f5:fb:8b: e8:55:6c:7b:19:e6:b2:96:7c:2a:2e:de:b4:b2:d5: 08:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:A9:86:B0:16:DB:84:D2:82:85:63:C0:9B:5F:31:20:B9:E8:8F:2C X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/jKmGsBbbhNKChWPAm18xILnojyw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.255.0.0/19 Signature Algorithm: sha256WithRSAEncryption 44:0f:b7:ec:2a:2e:89:2a:aa:26:11:10:d2:17:00:70:2c:37: 45:e7:4f:37:bb:43:0a:16:39:8b:b6:18:4f:d8:be:8a:ba:f8: b0:fd:12:03:72:86:32:fe:b9:c8:78:a5:5d:6a:ec:14:e9:ce: 0f:4b:bf:3d:6b:7d:51:04:6c:b0:db:43:60:4d:dd:ec:3f:e7: f2:ef:c5:cb:2a:d5:27:d5:1d:dc:b1:d8:7f:83:e0:5f:44:13: de:dc:08:5d:49:38:f9:27:27:d0:6c:ed:63:7f:ba:10:6a:f0: 18:36:47:75:43:be:84:fc:24:48:74:e1:79:b1:d5:e1:ee:1f: 6e:4e:f5:81:46:10:fe:2e:24:82:3f:65:d7:d1:22:9d:3e:4a: b2:0b:4f:9f:ec:49:50:9a:7b:3a:c2:27:c6:22:44:9c:44:50: 4d:7c:7f:78:7b:fe:e4:36:8e:0e:b4:22:78:6e:d9:ee:29:26: da:c8:c6:7b:f5:3a:e9:70:48:c9:e5:59:ae:8c:48:c7:18:76: b8:56:f5:ec:84:97:9b:e7:2c:7c:48:8b:46:5a:9d:1d:6d:c1: 8d:93:a5:99:d3:31:a9:b2:12:5a:ec:9d:51:73:d1:cd:a7:b5: 0b:a6:c4:2c:cf:6d:20:f0:3d:44:6c:95:6f:23:49:fe:b2:35: 2d:fd:65:42 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBDEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA2MTAx MDQ1MDBaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDhDQTk4NkIwMTZEQjg0 RDI4Mjg1NjNDMDlCNUYzMTIwQjlFODhGMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqHwoNB2D3t7+g0JTstNYKAgUbP/76u95XhZFVDKTDqQuCxLLu 1n3wM7GzIzQogCjtwHeaWE+bmQyd8gItsqRT2/aVtPAxBpje/D/fBDlog3qCzT9k QCur2wkO6g37a5dktWebc5ppyls8yNNT4qQ57IMI5/GQ+t3rViLCNjlQIyKmQf68 UquRbR2X9iSSfcm7hb+1S51DJB3DJJ+fkQFWusvCzAp8Q1BwmgjXgCogWzApG9q4 Nkn2rS57CYO44IiEYQj4sk+OoVXIc5elFks7Vjq6hZrttfhUcgsA7v4OnRKb3dEK hTlo73hfA/X7i+hVbHsZ5rKWfCou3rSy1QgHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUjKmGsBbbhNKChWPAm18xILnojywwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L2pLbUdzQmJiaE5LQ2hXUEFtMTh4SUxub2p5dy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAV8/wAwDQYJKoZIhvcNAQELBQADggEBAEQPt+wqLokqqiYRENIXAHAsN0Xn Tze7QwoWOYu2GE/Yvoq6+LD9EgNyhjL+uch4pV1q7BTpzg9Lvz1rfVEEbLDbQ2BN 3ew/5/Lvxcsq1SfVHdyx2H+D4F9EE97cCF1JOPknJ9Bs7WN/uhBq8Bg2R3VDvoT8 JEh04Xmx1eHuH25O9YFGEP4uJII/ZdfRIp0+SrILT5/sSVCaezrCJ8YiRJxEUE18 f3h7/uQ2jg60Inhu2e4pJtrIxnv1OulwSMnlWa6MSMcYdrhW9eyEl5vnLHxIi0Za nR1twY2TpZnTMamyElrsnVFz0c2ntQumxCzPbSDwPURslW8jSf6yNS39ZUI= -----END CERTIFICATE-----Generated at Sun Jun 22 01:09:33 2025 by rpki-client