$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/897/iY8wxWWqnLBTx1z3zHgGnt65Mng.roa File: iY8wxWWqnLBTx1z3zHgGnt65Mng.roa (raw, json) Hash identifier: KVI/kF1AcO+x/OMCrIV8TxyM//6qQt7UHkqr9zybipE= Subject key identifier: 89:8F:30:C5:65:AA:9C:B0:53:C7:5C:F7:CC:78:06:9E:DE:B9:32:78 Certificate issuer: /CN=AA08097C6060710280CDAAA4E7E06C1F13CD16F2 Certificate serial: 8B Authority key identifier: AA:08:09:7C:60:60:71:02:80:CD:AA:A4:E7:E0:6C:1F:13:CD:16:F2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/iY8wxWWqnLBTx1z3zHgGnt65Mng.roa Signing time: Thu 01 May 2025 01:29:04 +0000 ROA not before: Thu 01 May 2025 01:29:04 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 9621 IP address blocks: 203.209.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA08097C6060710280CDAAA4E7E06C1F13CD16F2 Validity Not Before: May 1 01:29:04 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=898F30C565AA9CB053C75CF7CC78069EDEB93278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:05:b1:3c:6c:c5:71:da:e3:d8:da:c6:b9:93: 36:74:df:e3:16:af:bb:6a:cc:16:2e:53:d2:43:47: 80:bc:5e:8d:1f:0f:f7:6b:30:6d:77:69:bd:7e:76: 41:d3:45:0d:5d:f9:75:fb:03:e9:59:8d:ae:ff:4f: db:b1:51:bf:35:d9:11:50:e7:56:e2:93:7f:a6:fe: 05:3e:9e:2d:7c:84:ee:c7:63:e6:ef:dc:64:30:a3: 64:8f:c1:b3:a3:95:aa:be:2a:56:10:66:d1:d5:af: 4a:61:d7:0d:a2:57:79:30:5b:8a:ba:e9:75:a9:8a: a2:0e:32:0f:43:e5:c9:c0:ea:af:7b:39:7d:fe:d1: 46:7e:22:d1:40:f3:be:5b:f2:ad:2b:93:bd:fd:85: 53:be:39:a1:a3:51:dc:0d:8b:76:e9:f6:33:63:81: a3:e5:95:85:48:2b:95:60:d8:fb:40:ee:dd:90:0e: db:f6:6b:82:fc:a1:3e:b8:30:24:db:cf:9f:36:3b: f7:93:4c:b2:9a:bb:4c:14:fe:f1:93:63:0d:b8:2a: 42:5c:bb:0f:91:1f:1d:e8:ec:49:34:a4:0a:f9:78: 1e:1e:3e:51:8a:c3:57:bf:d0:22:71:3b:27:5c:e9: 2e:7e:88:e9:51:7e:3d:53:87:f2:02:75:8e:4e:19: 0a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:8F:30:C5:65:AA:9C:B0:53:C7:5C:F7:CC:78:06:9E:DE:B9:32:78 X509v3 Authority Key Identifier: keyid:AA:08:09:7C:60:60:71:02:80:CD:AA:A4:E7:E0:6C:1F:13:CD:16:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/iY8wxWWqnLBTx1z3zHgGnt65Mng.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.209.184.0/22 Signature Algorithm: sha256WithRSAEncryption cb:e3:e9:91:e0:89:b3:c5:30:4c:08:07:9f:ec:b1:80:c1:1f: 0d:65:53:06:23:63:58:8d:09:05:ad:b1:44:eb:c8:0e:34:49: 37:b0:ed:7c:9c:19:0b:3b:1b:57:0a:d3:84:6b:e8:e8:d5:e7: fe:bb:0b:d6:79:78:78:dd:b7:52:bb:87:29:fa:7c:09:30:5f: bf:ac:b3:9c:1f:ae:1f:e8:5d:7c:3a:33:62:10:83:ae:f8:42: 95:a3:c5:25:b8:8e:42:b8:06:95:d9:cb:cd:f9:60:b1:55:a7: f7:80:34:ca:84:93:48:70:2e:16:13:8b:cc:60:7a:69:46:ad: 7b:6a:11:82:9e:c8:d3:66:13:10:77:c8:9e:34:52:ff:88:7a: 01:c2:5c:e0:ef:3b:98:b5:6d:02:e4:71:02:78:a5:2e:f3:5a: 7f:63:a7:d6:e5:58:cb:23:7d:ef:34:8f:46:d2:10:79:85:61: 2b:3f:39:e0:ad:45:50:fc:a9:dd:c7:e6:4d:db:24:21:bf:39: f2:1e:0e:b8:25:d8:db:14:ea:c8:0c:ba:29:83:26:2f:7d:d4: ca:ed:b0:03:33:40:b5:f6:2c:c8:ff:d9:6e:79:e5:ed:b8:d4: b0:8f:f6:2c:9b:0b:3b:b5:36:a4:30:9d:dd:06:75:53:27:ce: 0f:87:e8:6e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAIswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUEw ODA5N0M2MDYwNzEwMjgwQ0RBQUE0RTdFMDZDMUYxM0NEMTZGMjAeFw0yNTA1MDEw MTI5MDRaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg5OEYzMEM1NjVBQTlD QjA1M0M3NUNGN0NDNzgwNjlFREVCOTMyNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6BbE8bMVx2uPY2sa5kzZ03+MWr7tqzBYuU9JDR4C8Xo0fD/dr MG13ab1+dkHTRQ1d+XX7A+lZja7/T9uxUb812RFQ51bik3+m/gU+ni18hO7HY+bv 3GQwo2SPwbOjlaq+KlYQZtHVr0ph1w2iV3kwW4q66XWpiqIOMg9D5cnA6q97OX3+ 0UZ+ItFA875b8q0rk739hVO+OaGjUdwNi3bp9jNjgaPllYVIK5Vg2PtA7t2QDtv2 a4L8oT64MCTbz582O/eTTLKau0wU/vGTYw24KkJcuw+RHx3o7Ek0pAr5eB4ePlGK w1e/0CJxOydc6S5+iOlRfj1Th/ICdY5OGQojAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUiY8wxWWqnLBTx1z3zHgGnt65MngwHwYDVR0jBBgwFoAUqggJfGBgcQKAzaqk 5+BsHxPNFvIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzg5Ny9xZ2dKZkdCZ2NRS0F6YXFrNS1Cc0h4UE5GdkkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9xZ2dKZkdCZ2NRS0F6YXFrNS1Cc0h4 UE5GdkkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvODk3L2lZOHd4V1dxbkxCVHgxejN6SGdHbnQ2NU1uZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALL0bgwDQYJKoZIhvcNAQELBQADggEBAMvj6ZHgibPFMEwIB5/ssYDBHw1l UwYjY1iNCQWtsUTryA40STew7XycGQs7G1cK04Rr6OjV5/67C9Z5eHjdt1K7hyn6 fAkwX7+ss5wfrh/oXXw6M2IQg674QpWjxSW4jkK4BpXZy835YLFVp/eANMqEk0hw LhYTi8xgemlGrXtqEYKeyNNmExB3yJ40Uv+IegHCXODvO5i1bQLkcQJ4pS7zWn9j p9blWMsjfe80j0bSEHmFYSs/OeCtRVD8qd3H5k3bJCG/OfIeDrgl2NsU6sgMuimD Ji991MrtsAMzQLX2LMj/2W555e241LCP9iybCzu1NqQwnd0GdVMnzg+H6G4= -----END CERTIFICATE-----Generated at Sun May 11 11:03:17 2025 by rpki-client