$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/677/yBe6Q0a1e8U2u5vDAidXhvuJxNQ.roa File: yBe6Q0a1e8U2u5vDAidXhvuJxNQ.roa (raw, json) Hash identifier: xbPHknJgKfhnqgPRFUhrwURUsCXzKvDNaiWfOj6teD8= Subject key identifier: C8:17:BA:43:46:B5:7B:C5:36:BB:9B:C3:02:27:57:86:FB:89:C4:D4 Certificate issuer: /CN=85E5F18D9631C2587B094E78CDD4E1B8650F4CB9 Certificate serial: 04 Authority key identifier: 85:E5:F1:8D:96:31:C2:58:7B:09:4E:78:CD:D4:E1:B8:65:0F:4C:B9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/heXxjZYxwlh7CU54zdThuGUPTLk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/yBe6Q0a1e8U2u5vDAidXhvuJxNQ.roa Signing time: Wed 23 Apr 2025 00:38:42 +0000 ROA not before: Wed 23 Apr 2025 00:38:42 +0000 ROA not after: Tue 21 Apr 2026 06:15:57 +0000 asID: 18070 IP address blocks: 218.223.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/heXxjZYxwlh7CU54zdThuGUPTLk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/heXxjZYxwlh7CU54zdThuGUPTLk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/heXxjZYxwlh7CU54zdThuGUPTLk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 18:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85E5F18D9631C2587B094E78CDD4E1B8650F4CB9 Validity Not Before: Apr 23 00:38:42 2025 GMT Not After : Apr 21 06:15:57 2026 GMT Subject: CN=C817BA4346B57BC536BB9BC302275786FB89C4D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:fa:82:5c:ce:d5:86:ae:f1:2a:31:51:84:58: b6:94:07:f4:11:e4:88:65:5b:94:65:3b:1c:fb:e9: 99:e5:7a:5a:08:a6:f2:df:01:c8:9e:e1:86:11:05: 41:16:84:2a:18:7e:68:e3:19:95:da:56:79:c1:87: fd:a7:db:04:83:6b:e9:2b:89:16:a8:df:3f:90:df: a5:95:0d:2c:c1:f9:06:8c:63:ef:38:5a:e1:23:aa: 16:14:dd:da:2f:6b:1b:19:71:af:43:41:16:5f:7f: 14:5a:44:7a:2e:5b:56:c5:38:be:08:1d:24:17:c2: fb:9c:e2:4d:4e:33:be:5f:92:64:6a:f6:af:57:37: 8b:1b:9f:ae:41:31:71:34:dc:af:00:8f:5a:6a:61: 46:f4:b9:a1:23:0b:48:ee:7f:50:43:c5:c4:b2:e5: 17:cc:0e:a3:da:59:1c:bd:52:19:39:a6:48:45:43: be:f3:68:9c:17:42:98:11:9c:88:0a:df:74:08:c7: 37:5c:d5:72:87:47:11:61:a3:63:43:7d:44:f5:a6: 59:65:41:27:c8:db:c8:50:e5:f7:c6:ca:2c:1c:f8: 2a:5d:9f:2b:df:f2:d8:db:a0:5b:e4:4d:44:e3:51: a3:f5:ef:e1:55:f1:d5:b8:fe:1e:04:f0:fd:b1:15: 33:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:17:BA:43:46:B5:7B:C5:36:BB:9B:C3:02:27:57:86:FB:89:C4:D4 X509v3 Authority Key Identifier: keyid:85:E5:F1:8D:96:31:C2:58:7B:09:4E:78:CD:D4:E1:B8:65:0F:4C:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/heXxjZYxwlh7CU54zdThuGUPTLk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/heXxjZYxwlh7CU54zdThuGUPTLk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/677/yBe6Q0a1e8U2u5vDAidXhvuJxNQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.223.32.0/20 Signature Algorithm: sha256WithRSAEncryption 7a:15:aa:7e:a7:a3:0c:72:9a:f3:fd:24:c6:13:69:a0:84:f9: 3e:38:be:50:88:d3:e5:db:0c:d1:23:32:67:38:3c:07:11:4d: 00:ea:73:d8:77:23:b6:33:e5:61:98:c7:4a:7c:48:20:85:d8: 5c:47:35:f1:a0:6e:2c:b0:cc:af:3f:13:22:4e:6a:11:58:7a: af:c1:47:dd:40:43:ec:03:d8:06:a4:90:f1:13:fe:31:ec:18: 40:5e:5f:c8:59:c7:86:0b:4c:60:85:7a:3f:d8:4f:70:8f:5e: 75:3c:57:52:68:53:78:61:95:7a:9e:b3:7f:7e:a5:90:ee:61: c7:d2:eb:21:bb:c6:71:68:60:9a:f9:e2:30:84:de:dd:fe:ae: db:73:bb:3e:31:8c:6d:64:44:24:cc:f6:da:70:4c:b2:7f:95: d3:a2:89:97:45:d6:00:b7:cc:6a:c7:ed:b8:cc:69:6e:6a:81: 3c:94:73:3c:c9:d3:25:30:10:19:32:3f:c6:26:1c:fa:6e:f0: 6c:d2:3a:54:02:3a:14:de:a4:fe:c5:34:9b:c7:17:bb:78:19: 11:a2:af:ff:92:77:17:2f:99:1b:b3:fb:85:50:59:76:27:05: 9f:b1:dd:73:49:74:77:6c:a6:fb:21:63:83:7a:48:ee:7f:90: a1:55:57:d9 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBBDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4NUU1 RjE4RDk2MzFDMjU4N0IwOTRFNzhDREQ0RTFCODY1MEY0Q0I5MB4XDTI1MDQyMzAw Mzg0MloXDTI2MDQyMTA2MTU1N1owMzExMC8GA1UEAxMoQzgxN0JBNDM0NkI1N0JD NTM2QkI5QkMzMDIyNzU3ODZGQjg5QzRENDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOr6glzO1Yau8SoxUYRYtpQH9BHkiGVblGU7HPvpmeV6Wgim8t8B yJ7hhhEFQRaEKhh+aOMZldpWecGH/afbBINr6SuJFqjfP5DfpZUNLMH5Boxj7zha 4SOqFhTd2i9rGxlxr0NBFl9/FFpEei5bVsU4vggdJBfC+5ziTU4zvl+SZGr2r1c3 ixufrkExcTTcrwCPWmphRvS5oSMLSO5/UEPFxLLlF8wOo9pZHL1SGTmmSEVDvvNo nBdCmBGciArfdAjHN1zVcodHEWGjY0N9RPWmWWVBJ8jbyFDl98bKLBz4Kl2fK9/y 2NugW+RNRONRo/Xv4VXx1bj+HgTw/bEVM/UCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTIF7pDRrV7xTa7m8MCJ1eG+4nE1DAfBgNVHSMEGDAWgBSF5fGNljHCWHsJTnjN 1OG4ZQ9MuTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjc3L2hlWHhqWll4d2xoN0NVNTR6ZFRodUdVUFRMay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2hlWHhqWll4d2xoN0NVNTR6ZFRodUdV UFRMay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC82NzcveUJlNlEwYTFlOFUydTV2REFpZFhodnVKeE5RLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNrfIDANBgkqhkiG9w0BAQsFAAOCAQEAehWqfqejDHKa8/0kxhNpoIT5Pji+ UIjT5dsM0SMyZzg8BxFNAOpz2HcjtjPlYZjHSnxIIIXYXEc18aBuLLDMrz8TIk5q EVh6r8FH3UBD7APYBqSQ8RP+MewYQF5fyFnHhgtMYIV6P9hPcI9edTxXUmhTeGGV ep6zf36lkO5hx9LrIbvGcWhgmvniMITe3f6u23O7PjGMbWREJMz22nBMsn+V06KJ l0XWALfMasftuMxpbmqBPJRzPMnTJTAQGTI/xiYc+m7wbNI6VAI6FN6k/sU0m8cX u3gZEaKv/5J3Fy+ZG7P7hVBZdicFn7Hdc0l0d2ym+yFjg3pI7n+QoVVX2Q== -----END CERTIFICATE-----Generated at Sat Apr 26 20:15:46 2025 by rpki-client