$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/920/X3DCtshZyftoIhP_YMh1AHNKzYU.roa File: X3DCtshZyftoIhP_YMh1AHNKzYU.roa (raw, json) Hash identifier: eT42COcdwCpSkcufU84CfiS9gFZdFj1pFheG4dzp2G0= Subject key identifier: 5F:70:C2:B6:C8:59:C9:FB:68:22:13:FF:60:C8:75:00:73:4A:CD:85 Certificate issuer: /CN=C8930155500B58FF73A8A0882185C66AC6A0D3A0 Certificate serial: 1F Authority key identifier: C8:93:01:55:50:0B:58:FF:73:A8:A0:88:21:85:C6:6A:C6:A0:D3:A0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yJMBVVALWP9zqKCIIYXGasag06A.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/920/X3DCtshZyftoIhP_YMh1AHNKzYU.roa Signing time: Thu 24 Apr 2025 07:06:53 +0000 ROA not before: Thu 24 Apr 2025 07:06:53 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 24279 IP address blocks: 133.226.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/920/yJMBVVALWP9zqKCIIYXGasag06A.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/920/yJMBVVALWP9zqKCIIYXGasag06A.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yJMBVVALWP9zqKCIIYXGasag06A.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8930155500B58FF73A8A0882185C66AC6A0D3A0 Validity Not Before: Apr 24 07:06:53 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=5F70C2B6C859C9FB682213FF60C87500734ACD85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b9:3b:7c:a7:ce:19:76:60:3d:27:21:b2:be: a1:21:19:6f:79:c8:b0:1b:41:fb:4f:33:c4:35:c9: 32:68:39:a1:ba:73:ea:4a:4e:0a:23:2c:81:c1:76: bb:d1:aa:fe:90:34:d1:08:9f:21:fb:4f:e3:d9:df: 57:24:a6:c0:2b:bb:c8:e4:0c:96:b4:8a:58:d3:87: cf:9f:c4:5f:32:11:10:29:37:b0:5f:ac:c4:2b:78: 6f:ab:3d:6f:67:20:1e:e5:12:38:d2:eb:a7:44:59: a9:34:10:de:19:18:70:a1:56:0d:a0:9c:a0:a4:59: 08:22:a4:8d:e5:46:6a:25:84:2a:f8:62:0f:3b:cf: ae:73:0c:a0:e1:e2:ef:ce:0c:81:9c:23:16:07:a1: 43:be:1d:3c:3b:a5:20:dc:f4:c0:00:ac:d4:11:f1: cd:0d:2d:16:eb:03:ad:b6:5d:c1:15:63:cf:2e:7b: 79:7e:43:98:78:c2:a8:ad:41:57:20:1b:09:f8:42: 4f:51:bf:9a:cc:84:17:f1:6f:8d:14:6e:d0:ed:1a: ec:bc:44:b9:9f:38:77:dc:d8:10:2d:52:72:4a:39: e2:7b:5f:fe:74:3a:6a:01:6a:78:7b:aa:da:49:36: 20:6f:04:e2:f3:7f:5e:15:a5:11:74:1f:58:2f:8e: bd:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:70:C2:B6:C8:59:C9:FB:68:22:13:FF:60:C8:75:00:73:4A:CD:85 X509v3 Authority Key Identifier: keyid:C8:93:01:55:50:0B:58:FF:73:A8:A0:88:21:85:C6:6A:C6:A0:D3:A0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/920/yJMBVVALWP9zqKCIIYXGasag06A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yJMBVVALWP9zqKCIIYXGasag06A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/920/X3DCtshZyftoIhP_YMh1AHNKzYU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.226.144.0/20 Signature Algorithm: sha256WithRSAEncryption 45:f6:93:a9:3d:b7:74:03:5d:e6:fb:5b:51:80:16:8f:bc:67: 9d:ce:23:5f:d6:b8:e5:38:6c:06:ec:d1:91:23:d5:47:eb:d8: 07:9c:ac:91:2b:9d:99:a1:93:e6:86:2c:6e:6e:ba:73:53:e4: 55:2d:3e:97:b6:59:a4:82:92:ee:2a:b0:b1:03:4a:dc:e8:43: 17:14:ae:7b:0f:97:ad:31:56:71:44:58:2a:2e:79:de:c8:f4: 4b:72:78:73:25:76:46:56:11:2b:8d:3b:1b:c6:a0:2d:d7:63: 04:25:c1:ee:9b:40:80:9c:9e:ad:10:d4:2a:fc:6e:1b:a5:61: b6:f9:5c:db:6c:ce:7c:11:fd:0f:04:d9:be:2f:80:ca:90:d9: 38:dc:0b:18:9d:b5:8f:b6:d6:02:24:ed:98:b1:f4:85:23:b3: 5d:b5:c4:7a:13:22:ce:7c:03:83:97:d0:89:f1:56:30:46:90: df:fd:09:cb:f3:16:e4:61:86:bc:47:1c:b2:cb:8d:d7:ce:c8: 4a:1c:b7:24:ac:2e:0e:15:12:dd:b6:ca:f8:fa:b6:e3:5a:f4: 53:2c:00:d2:35:03:4d:e3:9a:22:6b:f2:7d:0a:7e:f0:19:50: 3b:5d:09:f1:fb:a2:26:71:49:b0:4a:a5:51:af:d7:57:27:e0: 38:c2:98:f9 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBHzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDODkz MDE1NTUwMEI1OEZGNzNBOEEwODgyMTg1QzY2QUM2QTBEM0EwMB4XDTI1MDQyNDA3 MDY1M1oXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoNUY3MEMyQjZDODU5QzlG QjY4MjIxM0ZGNjBDODc1MDA3MzRBQ0Q4NTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMC5O3ynzhl2YD0nIbK+oSEZb3nIsBtB+08zxDXJMmg5obpz6kpO CiMsgcF2u9Gq/pA00QifIftP49nfVySmwCu7yOQMlrSKWNOHz5/EXzIRECk3sF+s xCt4b6s9b2cgHuUSONLrp0RZqTQQ3hkYcKFWDaCcoKRZCCKkjeVGaiWEKvhiDzvP rnMMoOHi784MgZwjFgehQ74dPDulINz0wACs1BHxzQ0tFusDrbZdwRVjzy57eX5D mHjCqK1BVyAbCfhCT1G/msyEF/FvjRRu0O0a7LxEuZ84d9zYEC1Scko54ntf/nQ6 agFqeHuq2kk2IG8E4vN/XhWlEXQfWC+Ovc8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRfcMK2yFnJ+2giE/9gyHUAc0rNhTAfBgNVHSMEGDAWgBTIkwFVUAtY/3OooIgh hcZqxqDToDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTIwL3lKTUJWVkFMV1A5enFLQ0lJWVhHYXNhZzA2QS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3lKTUJWVkFMV1A5enFLQ0lJWVhHYXNh ZzA2QS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85MjAvWDNEQ3RzaFp5ZnRvSWhQX1lNaDFBSE5LellVLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBIXikDANBgkqhkiG9w0BAQsFAAOCAQEARfaTqT23dANd5vtbUYAWj7xnnc4j X9a45ThsBuzRkSPVR+vYB5yskSudmaGT5oYsbm66c1PkVS0+l7ZZpIKS7iqwsQNK 3OhDFxSuew+XrTFWcURYKi553sj0S3J4cyV2RlYRK407G8agLddjBCXB7ptAgJye rRDUKvxuG6Vhtvlc22zOfBH9DwTZvi+AypDZONwLGJ21j7bWAiTtmLH0hSOzXbXE ehMiznwDg5fQifFWMEaQ3/0Jy/MW5GGGvEccssuN187IShy3JKwuDhUS3bbK+Pq2 41r0UywA0jUDTeOaImvyfQp+8BlQO10J8fuiJnFJsEqlUa/XVyfgOMKY+Q== -----END CERTIFICATE-----Generated at Sat Apr 26 17:33:30 2025 by rpki-client