$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/hVpxZYmALimT3dvm_1LChN8Kajs.roa File: hVpxZYmALimT3dvm_1LChN8Kajs.roa (raw, json) Hash identifier: /Q110h8uAGk5x2TrH6jOW3FuZ9kwEh0K3tlQjAoChlE= Subject key identifier: 85:5A:71:65:89:80:2E:29:93:DD:DB:E6:FF:52:C2:84:DF:0A:6A:3B Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 023E Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/hVpxZYmALimT3dvm_1LChN8Kajs.roa Signing time: Thu 01 May 2025 01:36:06 +0000 ROA not before: Thu 01 May 2025 01:36:06 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 4713 IP address blocks: 221.113.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 22:45:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: May 1 01:36:06 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=855A716589802E2993DDDBE6FF52C284DF0A6A3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ca:c1:09:9e:ff:e8:83:de:26:6e:4b:dc:48: c3:07:25:75:d6:06:87:63:fb:ab:34:b1:b1:ff:f8: 73:96:ee:a5:e6:d4:3f:34:93:aa:fe:8b:d8:8a:b9: 81:bb:18:64:c3:93:43:dc:98:b5:e6:1d:8a:7e:d9: 97:ee:51:0f:2c:7c:09:1d:77:66:72:40:41:45:b9: 3b:54:9e:00:e1:32:08:b3:ac:c8:46:4a:b2:e9:92: 50:64:56:97:62:d9:e8:10:58:68:9a:1b:7a:2d:8e: a3:30:cd:50:b1:0e:1c:18:2f:69:06:89:66:8b:13: f0:34:43:e9:01:21:6b:6d:f7:51:17:b0:ff:68:b9: aa:c2:1e:2f:07:8e:6c:0a:e8:75:0b:3d:fb:58:3f: 0f:8e:d8:b0:aa:d4:9e:a4:23:08:25:06:58:c6:b8: 36:06:83:f3:16:55:99:29:a8:75:1d:33:cf:9c:af: ac:c4:d7:6c:3c:5a:e1:63:5d:cd:8c:dc:84:c4:25: 61:4c:0f:4d:fd:a1:c7:fa:27:56:33:e7:2c:2f:3c: 82:c6:f6:88:7f:f2:8b:3a:71:17:5b:8c:a1:e2:bd: 7b:9e:cd:2e:de:0a:19:28:03:6c:e7:15:e3:28:4c: c4:a4:de:39:28:a8:a4:e0:d3:c4:77:5a:de:ea:ff: dd:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:5A:71:65:89:80:2E:29:93:DD:DB:E6:FF:52:C2:84:DF:0A:6A:3B X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/hVpxZYmALimT3dvm_1LChN8Kajs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 221.113.128.0/17 Signature Algorithm: sha256WithRSAEncryption bb:87:b3:e6:ed:a6:35:1b:49:40:47:d8:de:14:ec:53:19:64: 56:c9:c3:e6:d3:1e:64:58:78:1f:92:b2:25:e2:c4:c5:71:11: c3:99:04:08:99:e0:cd:c2:ec:05:f5:8e:54:9f:9a:53:eb:2a: b5:e9:01:2e:8b:57:b7:42:a3:77:d1:f9:e7:ff:52:f1:97:dd: b6:4a:ed:5e:25:ee:0e:b1:24:11:00:2b:77:f4:26:63:56:53: cc:32:34:bb:e7:0d:c6:e3:9b:70:48:97:2b:bf:ce:27:d5:8a: 9d:f8:2c:22:09:89:c5:48:89:ff:e8:c3:a6:e8:59:e3:b8:da: 70:95:30:ce:19:4a:3e:15:0a:9b:a5:f2:bc:59:a2:b6:59:d5: 33:d7:d6:4a:4c:8a:f7:86:78:68:ef:1d:5a:2f:91:1a:dd:0d: 03:0d:e3:c0:d6:df:b5:a6:d1:06:99:be:16:af:6e:a9:6a:c4: 60:f4:99:b7:26:83:da:22:5b:16:b7:60:a1:ff:8b:a8:e3:dd: a6:48:e3:78:85:3e:a8:e6:20:b5:40:60:9e:95:3c:09:c2:80: 80:2a:7a:c2:31:1b:99:e5:83:63:ea:6d:99:a3:66:42:25:c5: 35:98:3b:6a:6d:2a:95:75:89:9e:9d:f9:7e:15:1d:10:ac:0e: 3b:d2:15:a3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNTA1MDEw MTM2MDZaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg1NUE3MTY1ODk4MDJF Mjk5M0REREJFNkZGNTJDMjg0REYwQTZBM0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2ysEJnv/og94mbkvcSMMHJXXWBodj+6s0sbH/+HOW7qXm1D80 k6r+i9iKuYG7GGTDk0PcmLXmHYp+2ZfuUQ8sfAkdd2ZyQEFFuTtUngDhMgizrMhG SrLpklBkVpdi2egQWGiaG3otjqMwzVCxDhwYL2kGiWaLE/A0Q+kBIWtt91EXsP9o uarCHi8HjmwK6HULPftYPw+O2LCq1J6kIwglBljGuDYGg/MWVZkpqHUdM8+cr6zE 12w8WuFjXc2M3ITEJWFMD039ocf6J1Yz5ywvPILG9oh/8os6cRdbjKHivXuezS7e ChkoA2znFeMoTMSk3jkoqKTg08R3Wt7q/92TAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUhVpxZYmALimT3dvm/1LChN8KajswHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL2hWcHhaWW1BTGltVDNkdm1fMUxDaE44S2Fqcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfdcYAwDQYJKoZIhvcNAQELBQADggEBALuHs+btpjUbSUBH2N4U7FMZZFbJ w+bTHmRYeB+SsiXixMVxEcOZBAiZ4M3C7AX1jlSfmlPrKrXpAS6LV7dCo3fR+ef/ UvGX3bZK7V4l7g6xJBEAK3f0JmNWU8wyNLvnDcbjm3BIlyu/zifVip34LCIJicVI if/ow6boWeO42nCVMM4ZSj4VCpul8rxZorZZ1TPX1kpMiveGeGjvHVovkRrdDQMN 48DW37Wm0QaZvhavbqlqxGD0mbcmg9oiWxa3YKH/i6jj3aZI43iFPqjmILVAYJ6V PAnCgIAqesIxG5nlg2PqbZmjZkIlxTWYO2ptKpV1iZ6d+X4VHRCsDjvSFaM= -----END CERTIFICATE-----Generated at Sat May 17 02:33:42 2025 by rpki-client