$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1003/z89bvJnu-fgELJaRQ7r_aRAHf9s.roa File: z89bvJnu-fgELJaRQ7r_aRAHf9s.roa (raw, json) Hash identifier: bqgrH3q0veihJ3NYwNmogbvF8g/S9F6RbfmuFja8bvI= Subject key identifier: CF:CF:5B:BC:99:EE:F9:F8:04:2C:96:91:43:BA:FF:69:10:07:7F:DB Certificate issuer: /CN=8ACDAB1E1EA633BA8AD18A2ACB72360E9280C4B6 Certificate serial: 58 Authority key identifier: 8A:CD:AB:1E:1E:A6:33:BA:8A:D1:8A:2A:CB:72:36:0E:92:80:C4:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/is2rHh6mM7qK0Yoqy3I2DpKAxLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1003/z89bvJnu-fgELJaRQ7r_aRAHf9s.roa Signing time: Mon 28 Apr 2025 11:09:42 +0000 ROA not before: Mon 28 Apr 2025 11:09:42 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 2515 IP address blocks: 202.12.30.0/24 maxlen: 28 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1003/is2rHh6mM7qK0Yoqy3I2DpKAxLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1003/is2rHh6mM7qK0Yoqy3I2DpKAxLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/is2rHh6mM7qK0Yoqy3I2DpKAxLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8ACDAB1E1EA633BA8AD18A2ACB72360E9280C4B6 Validity Not Before: Apr 28 11:09:42 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=CFCF5BBC99EEF9F8042C969143BAFF6910077FDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:51:fd:e3:30:46:7a:03:60:e5:d9:63:75:65: 0f:eb:51:7c:27:78:8b:c2:a2:ce:3e:12:c8:54:30: d0:15:d3:36:0e:74:ff:63:43:a4:a5:e1:ad:65:4f: ce:56:80:3a:bf:32:0b:03:f9:b8:59:29:79:95:c6: 52:ea:8f:0d:c3:67:e9:da:31:72:74:37:52:45:fd: 19:45:09:f1:0d:01:22:c7:0f:53:f5:72:aa:e7:d4: 59:08:34:34:f6:09:97:ca:60:3a:03:8a:b6:44:61: dc:c2:f2:aa:1c:0f:7c:95:26:09:e9:90:95:fc:76: d9:04:a6:f1:3f:4b:fc:ef:f3:4b:a5:d9:ee:d9:3e: c7:eb:c8:28:a5:fc:7a:4e:3e:c6:f7:f4:ec:ab:24: 01:97:a5:89:ef:c3:84:09:16:81:dd:0c:62:97:ff: 83:0b:83:7d:86:3d:9f:d5:39:8e:2e:65:17:df:be: 25:b0:4f:16:8f:c7:f1:da:85:45:82:c3:b0:05:74: 05:47:01:58:f2:99:4f:34:ab:f0:b0:18:fd:64:f6: 79:fb:c7:f3:a8:9f:92:06:83:27:13:87:3e:1f:b5: 51:6d:18:43:bc:a2:28:a7:04:0f:57:91:05:fb:c0: 0f:ac:75:c7:b5:e1:38:74:f2:8e:eb:b0:bf:3f:e8: 73:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:CF:5B:BC:99:EE:F9:F8:04:2C:96:91:43:BA:FF:69:10:07:7F:DB X509v3 Authority Key Identifier: keyid:8A:CD:AB:1E:1E:A6:33:BA:8A:D1:8A:2A:CB:72:36:0E:92:80:C4:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1003/is2rHh6mM7qK0Yoqy3I2DpKAxLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/is2rHh6mM7qK0Yoqy3I2DpKAxLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1003/z89bvJnu-fgELJaRQ7r_aRAHf9s.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.12.30.0/24 Signature Algorithm: sha256WithRSAEncryption 70:a3:35:a3:5d:ac:00:ea:db:9e:d8:02:d6:39:4b:f6:76:f9: a0:d7:cc:e6:13:30:e7:c3:6b:e5:fc:07:bd:a3:46:b8:5f:e4: 8b:4f:0d:36:0a:69:6b:60:3f:cb:99:a6:4f:07:57:68:26:e8: f2:8c:2e:9d:a4:ca:9e:17:9c:97:a5:16:2f:62:8f:24:72:1d: 7f:e1:3d:f2:98:44:3a:9e:e1:c0:c5:1b:ad:4b:e2:fd:20:ae: c2:8a:02:8c:57:cc:e7:5e:01:bd:6d:b6:41:e9:f5:b0:e8:7d: 65:39:b4:a1:d7:d8:fb:d2:a2:8d:6f:1a:91:d9:2f:4f:ac:a7: e2:44:2f:e7:c5:e9:8a:c9:0c:d5:0d:7e:a7:aa:ef:18:6d:6d: f1:18:c5:66:2c:ce:d4:f4:78:81:99:51:6a:66:5f:b5:be:84: 3e:99:d4:84:9c:3c:0d:3c:01:50:d8:04:94:74:39:f9:cc:ea: 4c:34:84:86:0a:bc:25:07:1d:fe:6c:8e:47:0d:ba:dd:94:40: 9d:be:37:31:01:7e:a0:35:16:34:a3:c9:15:92:72:13:85:99: b2:d7:75:e9:38:a3:88:88:27:0e:80:94:f3:ed:6b:d3:e0:05: 33:fb:57:b7:6d:ba:d0:e8:8f:13:e3:c6:b7:d0:58:07:18:20: 11:01:c0:15 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBWDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4QUNE QUIxRTFFQTYzM0JBOEFEMThBMkFDQjcyMzYwRTkyODBDNEI2MB4XDTI1MDQyODEx MDk0MloXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoQ0ZDRjVCQkM5OUVFRjlG ODA0MkM5NjkxNDNCQUZGNjkxMDA3N0ZEQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANVR/eMwRnoDYOXZY3VlD+tRfCd4i8Kizj4SyFQw0BXTNg50/2ND pKXhrWVPzlaAOr8yCwP5uFkpeZXGUuqPDcNn6doxcnQ3UkX9GUUJ8Q0BIscPU/Vy qufUWQg0NPYJl8pgOgOKtkRh3MLyqhwPfJUmCemQlfx22QSm8T9L/O/zS6XZ7tk+ x+vIKKX8ek4+xvf07KskAZelie/DhAkWgd0MYpf/gwuDfYY9n9U5ji5lF9++JbBP Fo/H8dqFRYLDsAV0BUcBWPKZTzSr8LAY/WT2efvH86ifkgaDJxOHPh+1UW0YQ7yi KKcED1eRBfvAD6x1x7XhOHTyjuuwvz/oc1MCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBTPz1u8me75+AQslpFDuv9pEAd/2zAfBgNVHSMEGDAWgBSKzaseHqYzuorRiirL cjYOkoDEtjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTAwMy9pczJySGg2bU03cUswWW9xeTNJMkRwS0F4TFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9pczJySGg2bU03cUswWW9xeTNJMkRw S0F4TFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTAwMy96ODlidkpudS1mZ0VMSmFSUTdyX2FSQUhmOXMucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAygweMA0GCSqGSIb3DQEBCwUAA4IBAQBwozWjXawA6tue2ALWOUv2dvmg 18zmEzDnw2vl/Ae9o0a4X+SLTw02CmlrYD/LmaZPB1doJujyjC6dpMqeF5yXpRYv Yo8kch1/4T3ymEQ6nuHAxRutS+L9IK7CigKMV8znXgG9bbZB6fWw6H1lObSh19j7 0qKNbxqR2S9PrKfiRC/nxemKyQzVDX6nqu8YbW3xGMVmLM7U9HiBmVFqZl+1voQ+ mdSEnDwNPAFQ2ASUdDn5zOpMNISGCrwlBx3+bI5HDbrdlECdvjcxAX6gNRY0o8kV knIThZmy13XpOKOIiCcOgJTz7WvT4AUz+1e3bbrQ6I8T48a30FgHGCARAcAV -----END CERTIFICATE-----Generated at Mon Apr 28 22:50:52 2025 by rpki-client on console.sobornost.net