$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/952/veWSjfaarCCqw5wQeNLDXEn5QKk.roa File: veWSjfaarCCqw5wQeNLDXEn5QKk.roa (raw, json) Hash identifier: mRyBZ+YYvZssDlAmm/CBxoR6YCkjziwDON6VFtPRjSY= Subject key identifier: BD:E5:92:8D:F6:9A:AC:20:AA:C3:9C:10:78:D2:C3:5C:49:F9:40:A9 Certificate issuer: /CN=9E6AFAB04E10E99C322B56C603CB3C9547F22B4D Certificate serial: 14 Authority key identifier: 9E:6A:FA:B0:4E:10:E9:9C:32:2B:56:C6:03:CB:3C:95:47:F2:2B:4D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nmr6sE4Q6ZwyK1bGA8s8lUfyK00.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/952/veWSjfaarCCqw5wQeNLDXEn5QKk.roa Signing time: Thu 17 Apr 2025 02:35:50 +0000 ROA not before: Thu 17 Apr 2025 02:35:50 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 37922 IP address blocks: 103.239.108.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/952/nmr6sE4Q6ZwyK1bGA8s8lUfyK00.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/952/nmr6sE4Q6ZwyK1bGA8s8lUfyK00.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nmr6sE4Q6ZwyK1bGA8s8lUfyK00.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 16:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E6AFAB04E10E99C322B56C603CB3C9547F22B4D Validity Not Before: Apr 17 02:35:50 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=BDE5928DF69AAC20AAC39C1078D2C35C49F940A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:89:a8:86:6a:8c:ba:21:5e:cb:d0:91:61:3d: e0:01:5b:c2:14:9a:f5:bd:01:33:99:1a:f0:77:b4: ba:4f:43:f4:6f:d9:7a:ec:28:e2:96:00:e0:3d:07: 4a:e9:06:bc:ab:7d:07:3e:b3:98:59:98:77:56:15: b9:37:96:37:bc:20:08:3c:74:a6:b6:eb:75:fd:f8: 64:0e:cd:f3:9b:0d:4b:c6:c2:35:4a:e4:f8:80:fc: f6:70:39:34:6e:49:a1:15:a3:85:7c:28:d3:de:1b: 00:de:f1:87:c6:52:6e:56:59:84:c6:93:4e:6c:4c: 6e:ab:f4:d1:4a:68:6a:a8:c6:3f:9d:56:40:5a:41: 97:80:18:90:55:87:70:a9:f6:74:0c:47:82:8c:00: 4e:c6:52:39:66:41:0b:d5:60:78:4c:cb:5b:47:ed: 26:4a:24:f6:f4:8c:98:2d:28:be:80:d8:77:ef:86: e5:f4:f9:19:d9:5b:6a:62:d2:a9:50:89:19:f0:e4: fc:66:60:f2:37:88:9f:7a:79:30:98:f6:89:d6:bd: 62:de:11:77:55:49:19:6e:8d:44:a0:57:ff:2a:dc: 5a:55:4f:8e:14:5e:2a:16:4b:bf:8d:f6:21:10:93: b0:fd:06:c9:71:9b:f9:66:4b:b8:39:b0:9c:b1:25: c4:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:E5:92:8D:F6:9A:AC:20:AA:C3:9C:10:78:D2:C3:5C:49:F9:40:A9 X509v3 Authority Key Identifier: keyid:9E:6A:FA:B0:4E:10:E9:9C:32:2B:56:C6:03:CB:3C:95:47:F2:2B:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/952/nmr6sE4Q6ZwyK1bGA8s8lUfyK00.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nmr6sE4Q6ZwyK1bGA8s8lUfyK00.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/952/veWSjfaarCCqw5wQeNLDXEn5QKk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.239.108.0/22 Signature Algorithm: sha256WithRSAEncryption 9e:49:5a:7e:6a:13:7c:67:cc:8c:3e:38:9a:53:3a:57:72:41: a0:de:e9:ce:3e:f3:b4:cf:64:08:3f:b6:f2:67:dc:89:25:6c: 79:2d:28:da:e8:df:0f:55:14:50:ee:99:64:bd:b9:b3:f9:4c: 26:34:26:e1:2d:c7:c1:7d:e7:43:a3:0b:46:6a:03:ad:e7:ec: d5:29:08:2e:57:5e:6e:eb:ae:8a:7e:2b:fc:1d:5a:d4:d2:28: c5:b2:d3:20:1f:23:8b:be:b2:f4:55:75:0d:e7:c2:85:58:47: 04:7f:75:8c:4a:7e:4a:a9:e9:95:ad:70:0f:8a:ce:b4:82:00: 83:48:b2:94:81:94:6a:d3:76:aa:3c:4d:86:15:e9:08:0a:39: cd:be:f7:ec:4d:db:0b:fd:25:83:81:ad:e8:57:c6:ec:a6:cd: 90:6e:3a:d2:0f:80:3e:36:5d:ca:b7:ab:a1:73:71:ac:e1:9c: 3e:0b:62:3d:1d:13:99:45:8f:82:3b:0f:e2:2f:91:37:f0:81: f0:11:d1:e2:3f:94:41:46:54:76:22:f7:b3:3c:e9:f8:ba:80: 87:a5:0f:d7:a8:8d:f4:a0:6d:6c:97:d9:da:f3:b0:d4:44:82: ae:72:a4:5e:17:b1:da:52:48:4f:cb:7b:9f:c2:e7:8b:97:48: 3c:c1:fe:23 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBFDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5RTZB RkFCMDRFMTBFOTlDMzIyQjU2QzYwM0NCM0M5NTQ3RjIyQjREMB4XDTI1MDQxNzAy MzU1MFoXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoQkRFNTkyOERGNjlBQUMy MEFBQzM5QzEwNzhEMkMzNUM0OUY5NDBBOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALiJqIZqjLohXsvQkWE94AFbwhSa9b0BM5ka8He0uk9D9G/Zeuwo 4pYA4D0HSukGvKt9Bz6zmFmYd1YVuTeWN7wgCDx0prbrdf34ZA7N85sNS8bCNUrk +ID89nA5NG5JoRWjhXwo094bAN7xh8ZSblZZhMaTTmxMbqv00UpoaqjGP51WQFpB l4AYkFWHcKn2dAxHgowATsZSOWZBC9VgeEzLW0ftJkok9vSMmC0ovoDYd++G5fT5 GdlbamLSqVCJGfDk/GZg8jeIn3p5MJj2ida9Yt4Rd1VJGW6NRKBX/yrcWlVPjhRe KhZLv432IRCTsP0GyXGb+WZLuDmwnLElxIECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBS95ZKN9pqsIKrDnBB40sNcSflAqTAfBgNVHSMEGDAWgBSeavqwThDpnDIrVsYD yzyVR/IrTTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTUyL25tcjZzRTRRNlp3eUsxYkdBOHM4bFVmeUswMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL25tcjZzRTRRNlp3eUsxYkdBOHM4bFVm eUswMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85NTIvdmVXU2pmYWFyQ0NxdzV3UWVOTERYRW41UUtrLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmfvbDANBgkqhkiG9w0BAQsFAAOCAQEAnklafmoTfGfMjD44mlM6V3JBoN7p zj7ztM9kCD+28mfciSVseS0o2ujfD1UUUO6ZZL25s/lMJjQm4S3HwX3nQ6MLRmoD refs1SkILldebuuuin4r/B1a1NIoxbLTIB8ji76y9FV1DefChVhHBH91jEp+Sqnp la1wD4rOtIIAg0iylIGUatN2qjxNhhXpCAo5zb737E3bC/0lg4Gt6FfG7KbNkG46 0g+APjZdyreroXNxrOGcPgtiPR0TmUWPgjsP4i+RN/CB8BHR4j+UQUZUdiL3szzp +LqAh6UP16iN9KBtbJfZ2vOw1ESCrnKkXhex2lJIT8t7n8Lni5dIPMH+Iw== -----END CERTIFICATE-----Generated at Sat Apr 26 19:43:47 2025 by rpki-client