$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/H6no4PUH8EehnjKi7raA52bDaOU.roa File: H6no4PUH8EehnjKi7raA52bDaOU.roa (raw, json) Hash identifier: akkBzoEZRCMWyA7GiMBOxfLzBCQArwKEaWXbrRxenko= Subject key identifier: 1F:A9:E8:E0:F5:07:F0:47:A1:9E:32:A2:EE:B6:80:E7:66:C3:68:E5 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0395 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/H6no4PUH8EehnjKi7raA52bDaOU.roa Signing time: Thu 01 May 2025 01:37:32 +0000 ROA not before: Thu 01 May 2025 01:37:32 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 27.133.160.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 917 (0x395) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:37:32 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=1FA9E8E0F507F047A19E32A2EEB680E766C368E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:20:69:ad:07:df:39:ce:78:91:ad:7a:2e:7a: 16:e0:15:bd:03:fa:14:a9:fa:cb:63:6d:ca:3e:7e: 93:77:26:29:63:00:e5:03:0f:94:64:4d:1c:52:3d: 7a:a5:6a:e6:9b:2d:b8:42:a9:23:83:70:11:1a:d7: 26:c8:09:92:b5:3f:64:3f:d2:06:5a:6b:52:dd:36: 92:c8:0f:3a:41:86:65:7e:70:67:e3:d8:69:af:8a: b2:d8:5f:1f:e9:0d:ba:34:9a:16:04:3f:07:a1:fc: 03:89:e0:96:ca:cd:95:a6:b6:af:1c:f5:fe:f1:c9: 96:0f:25:70:96:5f:07:93:f0:db:cf:bf:3c:68:f1: 96:d0:35:d0:2a:73:d9:2c:e3:cf:5a:d2:2d:e3:1e: 9d:45:3a:3b:1f:c6:93:16:0e:6f:6a:6d:e8:b2:f6: 3e:68:17:27:c3:68:f2:b7:bf:e0:6e:b3:4e:75:44: ee:01:68:b9:6c:f7:3c:0d:f8:4d:f0:1e:ed:50:34: db:d2:5c:f5:46:56:e4:09:3e:49:8b:62:7a:d4:97: 89:18:2e:1f:03:f3:fe:46:c0:d9:e6:43:74:f7:13: 7f:c3:1b:e4:9d:66:c2:59:c6:8e:c7:53:70:cc:ef: b5:23:77:8f:54:81:c2:9d:4f:dd:ba:f2:84:53:9a: 73:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:A9:E8:E0:F5:07:F0:47:A1:9E:32:A2:EE:B6:80:E7:66:C3:68:E5 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/H6no4PUH8EehnjKi7raA52bDaOU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.133.160.0/21 Signature Algorithm: sha256WithRSAEncryption 3c:4f:57:1f:09:e4:95:ec:c2:02:8a:aa:e8:eb:08:99:3b:9a: d4:16:a4:84:28:e4:8f:bc:7f:7f:71:47:2c:d5:42:9a:8a:68: 8b:92:66:34:42:2f:2c:9f:49:72:cb:19:1a:59:26:f8:26:4a: 48:86:a0:7d:c6:de:77:a9:cf:9a:29:84:e2:77:36:ee:a6:e9: 0a:4d:cb:26:87:35:46:97:d9:92:7a:dc:5d:17:8f:01:68:91: e1:a3:ff:e1:0f:e9:62:91:fd:a6:2c:d6:21:cc:01:f9:00:a4: e1:55:8f:80:97:c5:e2:0a:0e:75:1b:29:dc:d3:12:d2:9e:a1: 63:16:09:01:e3:8b:76:eb:59:fc:60:30:2a:79:b3:9c:44:e8: cb:b6:ee:c2:57:57:04:aa:aa:e2:4e:6a:56:03:ad:bf:76:67: 90:cf:87:c8:e9:9c:d5:14:7e:ec:fb:26:8f:17:32:d6:3a:fd: 16:49:27:66:6e:22:bf:fd:7d:f3:62:0f:10:f6:d6:5b:81:6f: 25:36:67:8e:e8:00:c5:b0:f3:ca:23:f9:0b:6d:b1:2d:22:8e: f8:5d:16:02:bb:9d:80:36:f7:a2:87:23:20:32:d5:3a:18:37: 20:89:a9:b8:98:36:3f:f8:c7:1e:15:05:7d:51:83:aa:dd:a1: f3:10:60:7b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA5UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTM3MzJaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDFGQTlFOEUwRjUwN0Yw NDdBMTlFMzJBMkVFQjY4MEU3NjZDMzY4RTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYIGmtB985zniRrXouehbgFb0D+hSp+stjbco+fpN3JiljAOUD D5RkTRxSPXqlauabLbhCqSODcBEa1ybICZK1P2Q/0gZaa1LdNpLIDzpBhmV+cGfj 2GmvirLYXx/pDbo0mhYEPweh/AOJ4JbKzZWmtq8c9f7xyZYPJXCWXweT8NvPvzxo 8ZbQNdAqc9ks489a0i3jHp1FOjsfxpMWDm9qbeiy9j5oFyfDaPK3v+Bus051RO4B aLls9zwN+E3wHu1QNNvSXPVGVuQJPkmLYnrUl4kYLh8D8/5GwNnmQ3T3E3/DG+Sd ZsJZxo7HU3DM77Ujd49UgcKdT9268oRTmnPtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUH6no4PUH8EehnjKi7raA52bDaOUwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0g2bm80UFVIOEVlaG5qS2k3cmFBNTJiRGFPVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMbhaAwDQYJKoZIhvcNAQELBQADggEBADxPVx8J5JXswgKKqujrCJk7mtQW pIQo5I+8f39xRyzVQpqKaIuSZjRCLyyfSXLLGRpZJvgmSkiGoH3G3nepz5ophOJ3 Nu6m6QpNyyaHNUaX2ZJ63F0XjwFokeGj/+EP6WKR/aYs1iHMAfkApOFVj4CXxeIK DnUbKdzTEtKeoWMWCQHji3brWfxgMCp5s5xE6Mu27sJXVwSqquJOalYDrb92Z5DP h8jpnNUUfuz7Jo8XMtY6/RZJJ2ZuIr/9ffNiDxD21luBbyU2Z47oAMWw88oj+Qtt sS0ijvhdFgK7nYA296KHIyAy1ToYNyCJqbiYNj/4xx4VBX1Rg6rdofMQYHs= -----END CERTIFICATE-----Generated at Sun May 18 12:21:35 2025 by rpki-client