$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/XaYdTZLxabQtMjkp9Kr3feUSZ-E.roa File: XaYdTZLxabQtMjkp9Kr3feUSZ-E.roa (raw, json) Hash identifier: xK1+dPNJLqWrKK8esoeDcBdUPHhQvdOhsrdtWrP5AVI= Subject key identifier: 5D:A6:1D:4D:92:F1:69:B4:2D:32:39:29:F4:AA:F7:7D:E5:12:67:E1 Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D Certificate serial: 0182 Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/XaYdTZLxabQtMjkp9Kr3feUSZ-E.roa Signing time: Tue 01 Apr 2025 01:30:20 +0000 ROA not before: Tue 01 Apr 2025 01:30:20 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 2527 IP address blocks: 116.91.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 386 (0x182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D Validity Not Before: Apr 1 01:30:20 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=5DA61D4D92F169B42D323929F4AAF77DE51267E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3f:88:73:80:61:91:19:8e:1d:2b:26:ca:48: d0:ca:8e:dc:2c:2f:aa:01:e0:bf:c0:c0:7f:cf:47: 55:ad:60:4e:7e:14:cc:a7:ef:6c:8b:f0:17:1c:ea: e7:91:39:22:80:26:29:6e:7b:9b:c3:f1:0a:6b:c1: 42:ee:9b:b8:8b:a2:85:26:40:10:4a:8d:68:0f:39: e7:56:58:b2:ab:72:f1:34:5f:ba:4f:81:e4:4c:67: fc:6b:64:59:e6:e9:e6:7a:26:0c:1c:ec:e2:7a:24: 01:02:66:80:7d:40:43:94:2a:49:ad:f7:76:df:2c: 7b:e9:9e:1e:a7:e2:dc:42:bc:54:fd:84:7a:13:44: 81:74:30:67:64:7d:e5:db:6f:5a:c3:df:24:52:16: aa:16:94:05:e2:d4:ca:77:c6:7d:93:3a:36:27:94: 82:67:a4:45:9e:ef:a0:f2:34:53:f2:09:7e:61:15: f8:58:60:f0:e6:52:5b:68:ac:78:ca:89:eb:93:00: 84:15:33:d7:2f:fc:0b:f8:d0:58:88:44:50:45:b8: 89:8b:92:76:85:cf:b1:9c:1f:06:15:d0:9b:27:0c: 28:0a:5a:d8:4e:89:77:52:31:f5:5c:b9:03:4c:36: 22:4e:12:25:db:28:5b:3a:71:8b:24:86:25:e6:84: 7f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:A6:1D:4D:92:F1:69:B4:2D:32:39:29:F4:AA:F7:7D:E5:12:67:E1 X509v3 Authority Key Identifier: keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/XaYdTZLxabQtMjkp9Kr3feUSZ-E.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.91.32.0/19 Signature Algorithm: sha256WithRSAEncryption 2c:04:6f:76:b1:84:e3:6a:db:ac:e7:5b:3c:1e:09:57:91:80: f5:77:b2:ec:b5:e5:4f:98:0d:5d:b0:30:31:78:a8:06:10:61: d3:9d:b2:42:10:77:fd:86:88:4d:a1:35:89:22:a6:3c:6b:d9: d4:ec:a1:d9:ed:df:a9:18:56:7f:04:03:0e:2d:e9:b1:c8:ed: da:ba:44:02:1f:43:62:5c:c5:8e:c0:4e:d8:94:11:df:40:20: eb:0d:6f:57:37:16:c1:b3:24:20:06:45:2b:11:bc:50:bf:90: b2:17:be:d9:05:78:c1:25:51:c8:62:be:df:57:80:f0:72:5c: 2f:11:34:ad:16:ff:25:dc:db:17:78:f0:48:b8:1d:12:95:64: 6b:0b:00:77:6d:cc:4b:a2:bf:21:63:ff:21:8f:9c:41:27:78: 29:60:27:48:dd:da:b3:d8:1d:06:29:0b:d2:15:7c:f9:d8:1b: 88:bd:2c:2f:1c:82:ac:0d:9c:a2:29:75:b1:9e:80:99:2b:b0: ea:80:58:16:3e:b8:f1:28:0b:0b:41:11:d7:3a:fd:f3:ca:e3: 1c:05:12:ee:4d:07:27:84:c4:06:dd:06:30:a8:1b:d5:25:50: 87:36:b6:e7:d6:3e:e1:b0:8e:2a:33:0b:29:80:4a:07:87:16: c4:24:8c:08 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAYIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1 QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yNTA0MDEw MTMwMjBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDVEQTYxRDREOTJGMTY5 QjQyRDMyMzkyOUY0QUFGNzdERTUxMjY3RTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/P4hzgGGRGY4dKybKSNDKjtwsL6oB4L/AwH/PR1WtYE5+FMyn 72yL8Bcc6ueROSKAJilue5vD8QprwULum7iLooUmQBBKjWgPOedWWLKrcvE0X7pP geRMZ/xrZFnm6eZ6Jgwc7OJ6JAECZoB9QEOUKkmt93bfLHvpnh6n4txCvFT9hHoT RIF0MGdkfeXbb1rD3yRSFqoWlAXi1Mp3xn2TOjYnlIJnpEWe76DyNFPyCX5hFfhY YPDmUltorHjKieuTAIQVM9cv/Av40FiIRFBFuImLknaFz7GcHwYV0JsnDCgKWthO iXdSMfVcuQNMNiJOEiXbKFs6cYskhiXmhH93AgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUXaYdTZLxabQtMjkp9Kr3feUSZ+EwHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo 3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1 ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My9YYVlkVFpMeGFiUXRNamtwOUtyM2ZlVVNaLUUucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQFdFsgMA0GCSqGSIb3DQEBCwUAA4IBAQAsBG92sYTjatus51s8HglXkYD1d7Ls teVPmA1dsDAxeKgGEGHTnbJCEHf9hohNoTWJIqY8a9nU7KHZ7d+pGFZ/BAMOLemx yO3aukQCH0NiXMWOwE7YlBHfQCDrDW9XNxbBsyQgBkUrEbxQv5CyF77ZBXjBJVHI Yr7fV4DwclwvETStFv8l3NsXePBIuB0SlWRrCwB3bcxLor8hY/8hj5xBJ3gpYCdI 3dqz2B0GKQvSFXz52BuIvSwvHIKsDZyiKXWxnoCZK7DqgFgWPrjxKAsLQRHXOv3z yuMcBRLuTQcnhMQG3QYwqBvVJVCHNrbn1j7hsI4qMwspgEoHhxbEJIwI -----END CERTIFICATE-----Generated at Mon Apr 28 22:52:38 2025 by rpki-client on console.sobornost.net