$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/677/QMzgb68WkMO5sso7QFJH-HR4KZc.roa File: QMzgb68WkMO5sso7QFJH-HR4KZc.roa (raw, json) Hash identifier: SbHkB9DsLhF5GZQRXJaTixDO3UC8Tx/yGn+BoY93eEc= Subject key identifier: 40:CC:E0:6F:AF:16:90:C3:B9:B2:CA:3B:40:52:47:F8:74:78:29:97 Certificate issuer: /CN=85E5F18D9631C2587B094E78CDD4E1B8650F4CB9 Certificate serial: 07 Authority key identifier: 85:E5:F1:8D:96:31:C2:58:7B:09:4E:78:CD:D4:E1:B8:65:0F:4C:B9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/heXxjZYxwlh7CU54zdThuGUPTLk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/QMzgb68WkMO5sso7QFJH-HR4KZc.roa Signing time: Wed 23 Apr 2025 00:42:46 +0000 ROA not before: Wed 23 Apr 2025 00:42:46 +0000 ROA not after: Tue 21 Apr 2026 06:15:57 +0000 asID: 18070 IP address blocks: 117.102.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/heXxjZYxwlh7CU54zdThuGUPTLk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/heXxjZYxwlh7CU54zdThuGUPTLk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/heXxjZYxwlh7CU54zdThuGUPTLk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85E5F18D9631C2587B094E78CDD4E1B8650F4CB9 Validity Not Before: Apr 23 00:42:46 2025 GMT Not After : Apr 21 06:15:57 2026 GMT Subject: CN=40CCE06FAF1690C3B9B2CA3B405247F874782997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:a7:28:2e:14:cd:93:75:6e:18:67:23:e2:41: 7b:49:ef:c4:7f:79:dd:21:83:26:df:30:30:b9:eb: ad:ef:57:34:e9:e3:19:d5:03:29:73:14:b8:3d:48: a2:70:3f:0f:e1:09:d1:06:bc:38:cd:b1:05:c5:b3: 33:f4:10:4d:ae:1a:c4:f4:26:5d:6a:38:3b:33:df: 43:92:d8:77:a8:70:8a:dd:83:ae:ef:30:97:59:f4: 39:a4:22:2c:d7:09:f7:e1:b3:37:9b:ab:13:bb:53: dc:80:6f:42:b7:8f:42:f9:aa:29:e5:03:36:b1:41: 93:f7:2a:04:e9:10:08:5f:d2:78:ec:f5:cf:14:0b: a8:60:d1:6e:4a:8d:71:37:0a:a8:09:b1:03:02:44: 38:0c:10:7c:65:48:e9:7b:ce:59:40:6d:7a:98:1d: 79:1d:37:4e:22:3e:6f:19:7c:c8:fd:f0:62:9e:43: c0:e8:4e:ec:d5:71:ce:b3:aa:cf:d6:2f:77:e0:eb: df:4b:b6:b8:29:a2:90:c0:ad:f3:5f:8b:62:1c:9d: 66:16:4c:51:bf:9b:d3:d2:7e:a2:ba:b9:11:b6:3b: 72:ea:c1:ff:b1:d3:22:7c:70:39:f7:1c:8f:77:a9: 4a:c1:fe:0e:4e:51:25:13:b7:3f:c9:b1:26:67:c0: 35:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:CC:E0:6F:AF:16:90:C3:B9:B2:CA:3B:40:52:47:F8:74:78:29:97 X509v3 Authority Key Identifier: keyid:85:E5:F1:8D:96:31:C2:58:7B:09:4E:78:CD:D4:E1:B8:65:0F:4C:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/heXxjZYxwlh7CU54zdThuGUPTLk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/heXxjZYxwlh7CU54zdThuGUPTLk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/QMzgb68WkMO5sso7QFJH-HR4KZc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.102.168.0/21 Signature Algorithm: sha256WithRSAEncryption 10:c4:1b:61:97:ae:c9:3b:ec:bc:d7:32:e5:7e:70:d7:64:8e: 3e:de:7c:be:34:02:34:25:dd:15:1f:7a:df:b7:06:fe:f1:b4: 3d:44:33:6a:4c:6e:8b:f2:d6:82:56:6a:4c:0d:09:98:88:6d: 2a:4e:16:fe:5f:b1:41:da:e2:26:92:d0:de:66:6f:e4:b0:a0: 8e:70:6c:cc:1e:ec:60:d3:1c:22:9c:f4:6a:10:70:24:41:23: d3:0e:99:3a:5a:dd:fe:6e:97:27:f2:c0:03:2e:73:d0:fc:f2: a5:ef:13:fc:d0:e3:dd:4a:d4:58:37:12:0e:21:57:6d:6e:fe: f9:1c:d3:1a:13:1d:8b:38:7a:99:1e:45:69:92:7d:f3:f1:f1: f8:f4:b3:22:d3:9c:d4:9b:2b:47:3b:1c:a0:0c:22:41:3e:4a: ff:9e:bd:8c:60:5b:5c:45:52:82:36:27:73:33:62:3f:74:58: 72:00:7c:0c:0f:27:09:16:20:b3:02:50:46:e1:8a:e7:f4:6f: 22:d9:5f:f1:26:0e:26:ad:93:75:bd:59:77:e5:af:fc:e1:56: db:d9:76:a8:21:d2:b5:cd:c7:9b:91:ca:ec:73:a0:24:9b:0a: 18:59:04:c7:ee:b9:eb:a5:ea:0d:d6:a7:1a:13:10:16:8f:46: 52:df:68:88 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBBzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4NUU1 RjE4RDk2MzFDMjU4N0IwOTRFNzhDREQ0RTFCODY1MEY0Q0I5MB4XDTI1MDQyMzAw NDI0NloXDTI2MDQyMTA2MTU1N1owMzExMC8GA1UEAxMoNDBDQ0UwNkZBRjE2OTBD M0I5QjJDQTNCNDA1MjQ3Rjg3NDc4Mjk5NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJWnKC4UzZN1bhhnI+JBe0nvxH953SGDJt8wMLnrre9XNOnjGdUD KXMUuD1IonA/D+EJ0Qa8OM2xBcWzM/QQTa4axPQmXWo4OzPfQ5LYd6hwit2Dru8w l1n0OaQiLNcJ9+GzN5urE7tT3IBvQrePQvmqKeUDNrFBk/cqBOkQCF/SeOz1zxQL qGDRbkqNcTcKqAmxAwJEOAwQfGVI6XvOWUBtepgdeR03TiI+bxl8yP3wYp5DwOhO 7NVxzrOqz9Yvd+Dr30u2uCmikMCt81+LYhydZhZMUb+b09J+orq5EbY7curB/7HT InxwOfccj3epSsH+Dk5RJRO3P8mxJmfANWMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRAzOBvrxaQw7myyjtAUkf4dHgplzAfBgNVHSMEGDAWgBSF5fGNljHCWHsJTnjN 1OG4ZQ9MuTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjc3L2hlWHhqWll4d2xoN0NVNTR6ZFRodUdVUFRMay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2hlWHhqWll4d2xoN0NVNTR6ZFRodUdV UFRMay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC82NzcvUU16Z2I2OFdrTU81c3NvN1FGSkgtSFI0S1pjLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA3VmqDANBgkqhkiG9w0BAQsFAAOCAQEAEMQbYZeuyTvsvNcy5X5w12SOPt58 vjQCNCXdFR9637cG/vG0PUQzakxui/LWglZqTA0JmIhtKk4W/l+xQdriJpLQ3mZv 5LCgjnBszB7sYNMcIpz0ahBwJEEj0w6ZOlrd/m6XJ/LAAy5z0Pzype8T/NDj3UrU WDcSDiFXbW7++RzTGhMdizh6mR5FaZJ98/Hx+PSzItOc1JsrRzscoAwiQT5K/569 jGBbXEVSgjYnczNiP3RYcgB8DA8nCRYgswJQRuGK5/RvItlf8SYOJq2Tdb1Zd+Wv /OFW29l2qCHStc3Hm5HK7HOgJJsKGFkEx+6566XqDdanGhMQFo9GUt9oiA== -----END CERTIFICATE-----Generated at Sat Apr 26 18:19:17 2025 by rpki-client