$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/221/JHoQsiERHkaI0SGXRr0v5m4eObE.roa File: JHoQsiERHkaI0SGXRr0v5m4eObE.roa (raw, json) Hash identifier: ZuOfJN7uTehXJLnq3odC54km48U7tWrmGz5m6uTEQU0= Subject key identifier: 24:7A:10:B2:21:11:1E:46:88:D1:21:97:46:BD:2F:E6:6E:1E:39:B1 Certificate issuer: /CN=1BCFB4FAB945CDD148473ECB75B11E3AD169E71D Certificate serial: 0F Authority key identifier: 1B:CF:B4:FA:B9:45:CD:D1:48:47:3E:CB:75:B1:1E:3A:D1:69:E7:1D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G8-0-rlFzdFIRz7LdbEeOtFp5x0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/JHoQsiERHkaI0SGXRr0v5m4eObE.roa Signing time: Thu 08 May 2025 08:30:04 +0000 ROA not before: Thu 08 May 2025 08:30:04 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 7677 IP address blocks: 157.101.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/G8-0-rlFzdFIRz7LdbEeOtFp5x0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/G8-0-rlFzdFIRz7LdbEeOtFp5x0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G8-0-rlFzdFIRz7LdbEeOtFp5x0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 18:22:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BCFB4FAB945CDD148473ECB75B11E3AD169E71D Validity Not Before: May 8 08:30:04 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=247A10B221111E4688D1219746BD2FE66E1E39B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:6c:1d:8a:8e:29:b9:c2:50:31:6d:15:f0:c2: e6:a5:f4:08:ab:28:29:8c:b7:ba:a9:1f:d0:a3:a7: 35:da:58:02:c8:c1:48:ea:a5:19:b9:4c:29:aa:33: e6:8a:f1:c4:9e:85:4b:a6:4f:61:e3:fc:02:93:db: 31:c9:c7:27:ca:15:82:89:58:3b:c8:c4:f6:5a:cf: 6d:9c:31:17:da:d3:14:5a:38:ea:8e:74:44:f3:a2: 45:2f:ab:3d:6f:d1:4e:c5:73:0c:7b:f9:50:3a:50: fc:d2:e0:29:c5:47:bb:5d:7b:d6:84:bc:f1:00:2a: 9b:76:53:ec:d6:91:7b:65:89:74:07:50:e2:21:4c: 8a:e2:c6:ec:28:59:e7:cf:45:8e:5f:a4:35:8e:79: 37:87:8b:72:e4:2f:7d:30:e6:e0:9f:0f:18:01:f2: 40:a9:d4:3f:f2:78:f5:ba:c9:16:90:b4:4c:86:ef: 5f:87:b3:ce:07:86:b8:30:ca:dd:6a:5c:52:fa:38: 20:bf:e6:fc:3c:bb:fe:98:96:43:42:0a:b4:95:c7: 38:c8:9d:1e:54:e4:08:83:85:06:18:f9:61:6f:03: 15:de:45:e7:12:91:db:18:41:da:4c:75:81:28:72: 45:38:29:20:d7:89:69:48:4d:0e:c2:d4:27:97:1c: c8:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:7A:10:B2:21:11:1E:46:88:D1:21:97:46:BD:2F:E6:6E:1E:39:B1 X509v3 Authority Key Identifier: keyid:1B:CF:B4:FA:B9:45:CD:D1:48:47:3E:CB:75:B1:1E:3A:D1:69:E7:1D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/G8-0-rlFzdFIRz7LdbEeOtFp5x0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G8-0-rlFzdFIRz7LdbEeOtFp5x0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/JHoQsiERHkaI0SGXRr0v5m4eObE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.101.247.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:d8:38:8d:cc:97:13:a5:ff:b0:83:26:fa:20:93:8e:84:0e: 71:8f:e0:06:ca:e9:2f:83:35:80:16:b0:f7:63:7a:67:c8:a2: b3:78:77:e5:a9:a4:42:3a:da:ac:1c:d0:74:7c:a9:33:f2:e3: 53:9c:54:bb:90:04:8d:84:72:c1:90:84:7e:25:09:ed:6c:63: dc:fe:46:16:f3:85:9e:c4:f0:a9:4f:90:57:0a:d7:16:96:49: 7b:a1:65:49:4a:e3:42:e4:91:7a:55:ea:66:81:b0:dc:d3:de: 57:4d:65:ba:34:cd:0d:d8:82:65:f1:59:d8:bd:1f:c8:9e:7b: 93:70:6a:5c:37:aa:7a:9d:94:60:f5:92:b9:55:73:64:d2:05: 56:ed:0e:26:85:fb:ab:de:86:94:17:89:56:8b:7b:b6:4b:76: df:5a:73:50:f8:ec:c6:7b:a2:05:44:a2:e8:b5:1b:15:74:94: b2:19:d9:4b:5b:f1:dd:3a:98:7e:cf:49:81:3f:12:06:8b:b6: 94:11:1b:da:d5:34:c1:e3:cb:20:a1:b1:b3:bc:de:cc:de:37: c9:3c:e5:7d:13:6c:01:30:67:4b:3a:05:a6:d1:a3:45:57:b5: 9a:a5:b8:e0:5b:2d:2e:fd:47:df:39:a5:4b:c4:81:fa:f2:80: e8:4d:7f:92 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBDzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQkNG QjRGQUI5NDVDREQxNDg0NzNFQ0I3NUIxMUUzQUQxNjlFNzFEMB4XDTI1MDUwODA4 MzAwNFoXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoMjQ3QTEwQjIyMTExMUU0 Njg4RDEyMTk3NDZCRDJGRTY2RTFFMzlCMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKFsHYqOKbnCUDFtFfDC5qX0CKsoKYy3uqkf0KOnNdpYAsjBSOql GblMKaoz5orxxJ6FS6ZPYeP8ApPbMcnHJ8oVgolYO8jE9lrPbZwxF9rTFFo46o50 RPOiRS+rPW/RTsVzDHv5UDpQ/NLgKcVHu1171oS88QAqm3ZT7NaRe2WJdAdQ4iFM iuLG7ChZ589Fjl+kNY55N4eLcuQvfTDm4J8PGAHyQKnUP/J49brJFpC0TIbvX4ez zgeGuDDK3WpcUvo4IL/m/Dy7/piWQ0IKtJXHOMidHlTkCIOFBhj5YW8DFd5F5xKR 2xhB2kx1gShyRTgpINeJaUhNDsLUJ5ccyK0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQkehCyIREeRojRIZdGvS/mbh45sTAfBgNVHSMEGDAWgBQbz7T6uUXN0UhHPst1 sR460WnnHTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjIxL0c4LTAtcmxGemRGSVJ6N0xkYkVlT3RGcDV4MC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0c4LTAtcmxGemRGSVJ6N0xkYkVlT3RG cDV4MC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMjEvSkhvUXNpRVJIa2FJMFNHWFJyMHY1bTRlT2JFLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAJ1l9zANBgkqhkiG9w0BAQsFAAOCAQEAP9g4jcyXE6X/sIMm+iCTjoQOcY/g BsrpL4M1gBaw92N6Z8iis3h35amkQjrarBzQdHypM/LjU5xUu5AEjYRywZCEfiUJ 7Wxj3P5GFvOFnsTwqU+QVwrXFpZJe6FlSUrjQuSRelXqZoGw3NPeV01lujTNDdiC ZfFZ2L0fyJ57k3BqXDeqep2UYPWSuVVzZNIFVu0OJoX7q96GlBeJVot7tkt231pz UPjsxnuiBUSi6LUbFXSUshnZS1vx3TqYfs9JgT8SBou2lBEb2tU0wePLIKGxs7ze zN43yTzlfRNsATBnSzoFptGjRVe1mqW44FstLv1H3zmlS8SB+vKA6E1/kg== -----END CERTIFICATE-----Generated at Sun May 18 21:36:41 2025 by rpki-client