$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20160/hgrYJclVdKYyapDHMpjTa2Zebak.roa File: hgrYJclVdKYyapDHMpjTa2Zebak.roa (raw, json) Hash identifier: idRYLszIHoesraqBpNmZt8iOLdEZTrWnKGBwx5H6iLo= Subject key identifier: 86:0A:D8:25:C9:55:74:A6:32:6A:90:C7:32:98:D3:6B:66:5E:6D:A9 Certificate issuer: /CN=050401C788B569B3D440041730E28A991F4018D2 Certificate serial: 25 Authority key identifier: 05:04:01:C7:88:B5:69:B3:D4:40:04:17:30:E2:8A:99:1F:40:18:D2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BQQBx4i1abPUQAQXMOKKmR9AGNI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20160/hgrYJclVdKYyapDHMpjTa2Zebak.roa Signing time: Thu 19 Jun 2025 05:03:10 +0000 ROA not before: Thu 19 Jun 2025 05:03:10 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 18282 IP address blocks: 220.208.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20160/BQQBx4i1abPUQAQXMOKKmR9AGNI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20160/BQQBx4i1abPUQAQXMOKKmR9AGNI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BQQBx4i1abPUQAQXMOKKmR9AGNI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=050401C788B569B3D440041730E28A991F4018D2 Validity Not Before: Jun 19 05:03:10 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=860AD825C95574A6326A90C73298D36B665E6DA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b0:99:e6:11:1d:64:81:2f:64:df:75:10:5f: 24:c9:24:49:8d:2b:66:06:1d:70:46:1f:83:a7:80: aa:91:aa:48:fb:ac:3d:64:2b:75:f8:95:54:ae:c6: a1:cf:6f:b7:65:e5:07:85:74:fa:9f:8e:ba:6d:55: 75:c9:09:06:38:31:57:ad:af:1a:f2:3c:53:51:1d: 5f:87:c9:60:7e:a3:26:d5:98:78:fe:cf:6f:99:53: a8:32:51:ed:63:4b:6e:ac:0c:e7:22:e3:c7:01:d5: a7:10:52:21:7e:40:09:6d:d5:1f:18:ad:2e:64:39: 95:26:8a:aa:45:26:61:fa:63:08:4b:13:78:fd:ff: 65:2c:fe:77:14:94:64:c6:3e:15:b0:f0:31:ff:c2: 08:9b:72:ea:a9:09:2b:6f:41:d5:8a:60:b6:64:15: d5:10:d2:d6:e4:80:dc:a8:24:9f:24:a6:34:a0:9b: 98:8d:36:b0:f6:af:a2:12:fe:b7:11:03:b5:6b:23: b6:fe:88:c3:fa:16:29:46:0f:35:ee:bd:87:73:dd: d3:8c:9d:84:09:ed:29:63:4d:d9:51:2f:c5:25:8a: ee:3e:a5:20:8f:54:6f:a4:f8:12:61:a9:47:89:59: dd:37:51:c1:49:3a:b5:d2:b2:e7:36:48:27:56:73: 79:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:0A:D8:25:C9:55:74:A6:32:6A:90:C7:32:98:D3:6B:66:5E:6D:A9 X509v3 Authority Key Identifier: keyid:05:04:01:C7:88:B5:69:B3:D4:40:04:17:30:E2:8A:99:1F:40:18:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20160/BQQBx4i1abPUQAQXMOKKmR9AGNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BQQBx4i1abPUQAQXMOKKmR9AGNI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20160/hgrYJclVdKYyapDHMpjTa2Zebak.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.208.128.0/18 Signature Algorithm: sha256WithRSAEncryption 34:d0:6e:ac:e5:0a:3d:ba:09:9a:df:74:8e:7b:ed:eb:5a:fa: 15:a0:31:df:37:b5:2b:0f:91:41:31:58:f3:7d:6d:34:b9:b1: d6:65:af:3c:7c:4d:f9:14:c0:ba:2f:a9:ca:1b:d0:db:64:3a: 2d:5c:17:90:ee:59:c1:1f:02:3c:a7:ef:da:f6:1f:7d:88:34: 64:c4:19:85:45:b6:7a:e5:96:db:ce:48:29:76:75:0f:16:ce: 5f:04:47:9e:01:77:52:3a:fb:d1:83:f8:09:4b:51:e5:9b:89: f6:08:a9:ac:ec:b7:fe:ac:2c:e9:7e:0b:44:2c:03:77:93:89: c5:ef:b9:62:3f:a2:0d:1d:c9:e9:1f:54:b3:d3:ea:f9:06:74: 4c:16:9b:1f:27:1e:e6:b3:68:cc:23:10:b4:f4:74:c4:33:36: e5:37:77:6a:b8:60:8f:69:7c:d6:04:27:04:cb:26:db:e9:55: e8:68:35:4b:00:41:9f:fe:dc:15:7d:e4:c8:58:c0:9d:1e:46: d3:10:c9:a5:46:bc:e1:4a:da:15:2a:c3:ec:8b:7d:45:c9:2c: a5:0d:90:36:43:99:62:0e:9f:f3:fe:ec:38:3e:3c:e7:76:58: 41:c7:f1:64:a4:99:85:d1:ed:f1:1f:24:e9:b9:77:4e:09:a4: 13:21:90:35 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBJTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwNTA0 MDFDNzg4QjU2OUIzRDQ0MDA0MTczMEUyOEE5OTFGNDAxOEQyMB4XDTI1MDYxOTA1 MDMxMFoXDTI2MDYxNTAxMzAwMlowMzExMC8GA1UEAxMoODYwQUQ4MjVDOTU1NzRB NjMyNkE5MEM3MzI5OEQzNkI2NjVFNkRBOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJ+wmeYRHWSBL2TfdRBfJMkkSY0rZgYdcEYfg6eAqpGqSPusPWQr dfiVVK7Goc9vt2XlB4V0+p+Oum1VdckJBjgxV62vGvI8U1EdX4fJYH6jJtWYeP7P b5lTqDJR7WNLbqwM5yLjxwHVpxBSIX5ACW3VHxitLmQ5lSaKqkUmYfpjCEsTeP3/ ZSz+dxSUZMY+FbDwMf/CCJty6qkJK29B1YpgtmQV1RDS1uSA3KgknySmNKCbmI02 sPavohL+txEDtWsjtv6Iw/oWKUYPNe69h3Pd04ydhAntKWNN2VEvxSWK7j6lII9U b6T4EmGpR4lZ3TdRwUk6tdKy5zZIJ1Zzec8CAwEAAaOCAigwggIkMB0GA1UdDgQW BBSGCtglyVV0pjJqkMcymNNrZl5tqTAfBgNVHSMEGDAWgBQFBAHHiLVps9RABBcw 4oqZH0AY0jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxNjAvQlFRQng0aTFhYlBVUUFRWE1PS0ttUjlBR05JLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvQlFRQng0aTFhYlBVUUFRWE1PS0tt UjlBR05JLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMTYwL2hncllKY2xWZEtZeWFwREhNcGpUYTJaZWJhay5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAbc0IAwDQYJKoZIhvcNAQELBQADggEBADTQbqzlCj26CZrfdI577eta +hWgMd83tSsPkUExWPN9bTS5sdZlrzx8TfkUwLovqcob0NtkOi1cF5DuWcEfAjyn 79r2H32INGTEGYVFtnrlltvOSCl2dQ8Wzl8ER54Bd1I6+9GD+AlLUeWbifYIqazs t/6sLOl+C0QsA3eTicXvuWI/og0dyekfVLPT6vkGdEwWmx8nHuazaMwjELT0dMQz NuU3d2q4YI9pfNYEJwTLJtvpVehoNUsAQZ/+3BV95MhYwJ0eRtMQyaVGvOFK2hUq w+yLfUXJLKUNkDZDmWIOn/P+7Dg+POd2WEHH8WSkmYXR7fEfJOm5d04JpBMhkDU= -----END CERTIFICATE-----Generated at Sat Jul 5 11:37:42 2025 by rpki-client