$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/232/xHWp0Qg6sTujFiL5cXBx8ir2AjA.roa File: xHWp0Qg6sTujFiL5cXBx8ir2AjA.roa (raw, json) Hash identifier: BD6ts98/9YXasDVFVn0h0F8h1B4Cw1laWQiGpBuhAfY= Subject key identifier: C4:75:A9:D1:08:3A:B1:3B:A3:16:22:F9:71:70:71:F2:2A:F6:02:30 Certificate issuer: /CN=2222A4C3961E467181A78700B960718846C8404B Certificate serial: 47 Authority key identifier: 22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/xHWp0Qg6sTujFiL5cXBx8ir2AjA.roa Signing time: Thu 01 May 2025 01:33:05 +0000 ROA not before: Thu 01 May 2025 01:33:05 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 7672 IP address blocks: 218.228.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 18:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2222A4C3961E467181A78700B960718846C8404B Validity Not Before: May 1 01:33:05 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=C475A9D1083AB13BA31622F9717071F22AF60230 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:50:f1:3a:30:cd:48:0b:6c:2f:33:23:cf:44: 50:35:58:da:2b:b8:e0:ec:c4:9f:46:86:f7:ba:d5: 29:48:c7:a8:02:46:2e:67:2a:fc:7d:d0:17:ff:2a: f8:bd:2f:f1:95:2f:3c:a0:df:3f:9c:ea:6a:77:aa: c6:50:5a:0c:a4:8e:4d:55:9d:44:f9:dd:41:23:c2: 4b:d5:56:be:af:49:ec:9b:e5:54:e1:08:01:a1:36: 25:d3:6e:4b:55:36:a8:3d:b5:0a:16:7e:43:f7:22: 60:8d:a6:05:c5:53:b1:2a:12:a8:9d:0d:bf:ce:f3: be:1a:58:77:c6:89:b0:18:cb:59:9c:9a:16:2d:aa: d5:28:6b:af:6f:2f:b6:fa:14:a3:0d:02:b4:4c:49: 2c:70:5b:59:32:cd:24:44:cc:07:56:39:e0:98:6c: e5:c7:f1:07:10:3a:f7:bf:b0:ef:2d:d7:6f:b1:1d: b7:ab:26:99:5b:49:6d:a9:e7:e0:9b:ce:0c:49:dc: 6d:17:0d:ad:d0:b2:c8:44:47:f7:b6:16:b0:c8:b2: 9a:02:77:8e:c0:ad:51:b7:f7:60:c8:70:67:9a:d1: 10:de:d2:74:8d:53:70:e9:7c:69:dd:a1:ed:91:a3: 46:35:ae:c4:b3:fe:eb:62:d5:1d:fc:e9:0e:98:84: 9d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:75:A9:D1:08:3A:B1:3B:A3:16:22:F9:71:70:71:F2:2A:F6:02:30 X509v3 Authority Key Identifier: keyid:22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/xHWp0Qg6sTujFiL5cXBx8ir2AjA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.228.16.0/20 Signature Algorithm: sha256WithRSAEncryption 39:58:c6:48:bf:ee:88:70:84:a2:2b:a6:b7:62:26:cd:e7:5d: d3:c6:70:f1:9f:15:b5:b7:22:b9:4a:e9:1e:44:13:61:ab:f4: a9:4f:a3:e5:6b:3b:5d:01:d5:4b:2c:a1:60:dc:2e:05:4b:7f: 10:15:cc:93:5e:7c:bd:10:c1:61:7c:37:49:2a:b5:88:95:7b: 4c:29:67:01:07:aa:95:7d:c8:24:36:cc:6e:26:23:4f:a3:eb: 55:5b:63:f9:c2:a6:fe:29:e8:11:84:69:2f:86:1d:76:55:d4: a1:3d:9a:79:a7:1d:23:cc:77:c0:9b:f6:76:1e:73:d6:84:af: 99:a1:13:58:41:b4:f1:34:99:76:db:3f:ab:04:30:0a:42:61: 9d:99:35:7b:0f:43:66:2a:8e:2f:b1:95:a6:89:e3:1d:45:69: c5:28:ed:b0:69:bf:28:50:3f:6f:b8:96:db:01:bd:78:bb:79: df:cb:47:b7:88:9e:2a:71:d5:8e:ec:5d:36:df:7c:f4:88:05: 53:3a:6a:ec:b6:fd:d1:0b:45:de:72:ba:6d:c0:65:cc:7e:dc: fc:91:36:b1:20:13:03:0c:09:b3:40:fc:4d:39:67:b9:54:fd: 60:5c:71:e9:28:48:3e:11:c3:a1:7f:11:f5:a1:fe:43:b3:b1: 36:32:ee:78 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBRzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMjIy QTRDMzk2MUU0NjcxODFBNzg3MDBCOTYwNzE4ODQ2Qzg0MDRCMB4XDTI1MDUwMTAx MzMwNVoXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoQzQ3NUE5RDEwODNBQjEz QkEzMTYyMkY5NzE3MDcxRjIyQUY2MDIzMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK9Q8TowzUgLbC8zI89EUDVY2iu44OzEn0aG97rVKUjHqAJGLmcq /H3QF/8q+L0v8ZUvPKDfP5zqaneqxlBaDKSOTVWdRPndQSPCS9VWvq9J7JvlVOEI AaE2JdNuS1U2qD21ChZ+Q/ciYI2mBcVTsSoSqJ0Nv87zvhpYd8aJsBjLWZyaFi2q 1Shrr28vtvoUow0CtExJLHBbWTLNJETMB1Y54Jhs5cfxBxA697+w7y3Xb7Edt6sm mVtJbann4JvODEncbRcNrdCyyERH97YWsMiymgJ3jsCtUbf3YMhwZ5rREN7SdI1T cOl8ad2h7ZGjRjWuxLP+62LVHfzpDpiEnYkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTEdanRCDqxO6MWIvlxcHHyKvYCMDAfBgNVHSMEGDAWgBQiIqTDlh5GcYGnhwC5 YHGIRshASzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMyL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUViSVFFcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUVi SVFFcy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMzIveEhXcDBRZzZzVHVqRmlMNWNYQng4aXIyQWpBLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNrkEDANBgkqhkiG9w0BAQsFAAOCAQEAOVjGSL/uiHCEoiumt2Imzedd08Zw 8Z8VtbciuUrpHkQTYav0qU+j5Ws7XQHVSyyhYNwuBUt/EBXMk158vRDBYXw3SSq1 iJV7TClnAQeqlX3IJDbMbiYjT6PrVVtj+cKm/inoEYRpL4YddlXUoT2aeacdI8x3 wJv2dh5z1oSvmaETWEG08TSZdts/qwQwCkJhnZk1ew9DZiqOL7GVponjHUVpxSjt sGm/KFA/b7iW2wG9eLt538tHt4ieKnHVjuxdNt989IgFUzpq7Lb90QtF3nK6bcBl zH7c/JE2sSATAwwJs0D8TTlnuVT9YFxx6ShIPhHDoX8R9aH+Q7OxNjLueA== -----END CERTIFICATE-----Generated at Sun May 18 21:38:56 2025 by rpki-client