$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/840/I7XaQRXr0bsyqfK-wBrC-RjM8rw.roa File: I7XaQRXr0bsyqfK-wBrC-RjM8rw.roa (raw, json) Hash identifier: r32urzhKTnYJgredR32DRh0tldy+2/1dUvsFp9YI28U= Subject key identifier: 23:B5:DA:41:15:EB:D1:BB:32:A9:F2:BE:C0:1A:C2:F9:18:CC:F2:BC Certificate issuer: /CN=D79B3890C2DA3795148976B954C2024056797554 Certificate serial: 51 Authority key identifier: D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/I7XaQRXr0bsyqfK-wBrC-RjM8rw.roa Signing time: Tue 10 Jun 2025 10:48:20 +0000 ROA not before: Tue 10 Jun 2025 10:48:20 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 131934 IP address blocks: 103.28.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D79B3890C2DA3795148976B954C2024056797554 Validity Not Before: Jun 10 10:48:20 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=23B5DA4115EBD1BB32A9F2BEC01AC2F918CCF2BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:07:f2:63:75:5d:30:b1:c9:4b:11:b3:3e:2e: 8b:d8:2a:eb:65:fe:54:3f:bb:5c:bf:23:a3:e1:98: 34:e0:b8:2f:b4:89:41:9f:60:78:96:66:e7:f0:34: 6f:a2:1e:2e:e2:f3:83:5c:37:e6:a3:67:cd:6e:0b: 43:40:4e:38:bb:75:0d:8f:bf:18:27:89:3d:9c:19: 2a:84:25:70:90:d1:e7:10:0e:8b:68:72:0a:22:43: ec:77:36:46:f5:5b:59:40:10:b4:b6:39:76:ff:4b: 88:f1:ed:c9:60:3e:25:66:96:3c:ae:24:44:62:07: 21:fb:53:ae:8e:49:42:af:47:95:3d:d1:dc:cc:31: 0d:cd:4c:ac:cd:6c:4c:3b:15:2d:c6:7b:0a:57:a9: 75:61:cf:19:48:f2:0c:8f:f8:a9:fc:41:d1:69:7b: 0f:fa:1a:da:50:7b:4b:07:8d:87:30:85:84:e8:8d: 07:49:ee:c1:e8:1e:8c:64:b8:c7:e5:90:b9:b9:14: cd:64:bc:e1:2e:f8:48:3d:ae:87:52:95:f4:31:a3: d9:17:4a:9b:03:7e:27:35:68:e0:f9:e7:93:69:c2: ca:48:0e:20:2d:eb:14:0d:9c:35:ac:66:1e:f0:f5: 21:9a:0a:45:69:e6:9a:5c:48:c2:bb:0f:73:93:79: e7:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:B5:DA:41:15:EB:D1:BB:32:A9:F2:BE:C0:1A:C2:F9:18:CC:F2:BC X509v3 Authority Key Identifier: keyid:D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/I7XaQRXr0bsyqfK-wBrC-RjM8rw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.28.96.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:53:2f:67:2a:bd:92:af:80:93:02:7b:1f:0f:f7:de:3f:96: 59:d0:6e:79:3a:a6:8b:80:7f:71:3d:e9:e9:ea:48:bf:a3:05: 33:c1:fd:c7:f1:44:b3:57:59:7d:43:c0:ae:09:79:b7:28:68: 92:0e:f6:05:d7:16:ea:72:bf:8f:d0:d3:d5:a5:4f:01:9d:f4: c6:af:48:03:ee:fd:b4:01:6c:0e:15:55:cd:24:93:f3:c4:4c: 7b:83:b6:4a:bb:4e:2e:6f:77:4f:e8:0c:63:7d:86:65:b4:e9: c0:60:71:09:16:f8:27:05:9e:5c:84:15:f4:87:4a:45:4d:ed: 93:34:1c:10:9b:da:9c:9d:31:55:18:4b:2b:5c:e7:06:fd:a8: db:4c:61:6a:4a:52:6d:6a:3e:1b:b4:d7:cd:3e:e5:0f:15:dc: 69:26:88:37:22:fa:fe:17:22:5e:24:9a:b2:88:94:ce:1c:cd: 30:16:2d:42:61:d2:0c:96:1a:29:5b:26:e9:f5:aa:76:d9:f1: 4f:c3:fe:42:df:53:dc:d8:31:2f:54:b9:be:80:34:bd:19:57: f9:51:c8:a6:04:4f:05:dc:ba:f3:09:ee:c0:0e:30:bd:ad:37: fa:90:8e:fb:f9:82:98:71:e4:bc:90:86:41:11:37:31:51:bd: 92:33:c1:24 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBUTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENzlC Mzg5MEMyREEzNzk1MTQ4OTc2Qjk1NEMyMDI0MDU2Nzk3NTU0MB4XDTI1MDYxMDEw NDgyMFoXDTI2MDUyMzA5NTEwMFowMzExMC8GA1UEAxMoMjNCNURBNDExNUVCRDFC QjMyQTlGMkJFQzAxQUMyRjkxOENDRjJCQzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANkH8mN1XTCxyUsRsz4ui9gq62X+VD+7XL8jo+GYNOC4L7SJQZ9g eJZm5/A0b6IeLuLzg1w35qNnzW4LQ0BOOLt1DY+/GCeJPZwZKoQlcJDR5xAOi2hy CiJD7Hc2RvVbWUAQtLY5dv9LiPHtyWA+JWaWPK4kRGIHIftTro5JQq9HlT3R3Mwx Dc1MrM1sTDsVLcZ7ClepdWHPGUjyDI/4qfxB0Wl7D/oa2lB7SweNhzCFhOiNB0nu wegejGS4x+WQubkUzWS84S74SD2uh1KV9DGj2RdKmwN+JzVo4Pnnk2nCykgOIC3r FA2cNaxmHvD1IZoKRWnmmlxIwrsPc5N554MCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQjtdpBFevRuzKp8r7AGsL5GMzyvDAfBgNVHSMEGDAWgBTXmziQwto3lRSJdrlU wgJAVnl1VDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODQwLzE1czRrTUxhTjVVVWlYYTVWTUlDUUZaNWRWUS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzE1czRrTUxhTjVVVWlYYTVWTUlDUUZa NWRWUS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84NDAvSTdYYVFSWHIwYnN5cWZLLXdCckMtUmpNOHJ3LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmccYDANBgkqhkiG9w0BAQsFAAOCAQEAXVMvZyq9kq+AkwJ7Hw/33j+WWdBu eTqmi4B/cT3p6epIv6MFM8H9x/FEs1dZfUPArgl5tyhokg72BdcW6nK/j9DT1aVP AZ30xq9IA+79tAFsDhVVzSST88RMe4O2SrtOLm93T+gMY32GZbTpwGBxCRb4JwWe XIQV9IdKRU3tkzQcEJvanJ0xVRhLK1znBv2o20xhakpSbWo+G7TXzT7lDxXcaSaI NyL6/hciXiSasoiUzhzNMBYtQmHSDJYaKVsm6fWqdtnxT8P+Qt9T3NgxL1S5voA0 vRlX+VHIpgRPBdy68wnuwA4wva03+pCO+/mCmHHkvJCGQRE3MVG9kjPBJA== -----END CERTIFICATE-----Generated at Sun Jun 22 09:44:57 2025 by rpki-client