$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/h-XbGG2Mn89HCdvFTfUC76y1SG4.roa File: h-XbGG2Mn89HCdvFTfUC76y1SG4.roa (raw, json) Hash identifier: RwOAYF2hLmh8++3qb4bq//11FogZyrYwGDQhlx+JOIw= Subject key identifier: 87:E5:DB:18:6D:8C:9F:CF:47:09:DB:C5:4D:F5:02:EF:AC:B5:48:6E Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0362 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/h-XbGG2Mn89HCdvFTfUC76y1SG4.roa Signing time: Thu 01 May 2025 01:33:21 +0000 ROA not before: Thu 01 May 2025 01:33:21 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 27.120.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 21:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 866 (0x362) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:33:21 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=87E5DB186D8C9FCF4709DBC54DF502EFACB5486E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:0b:78:ff:22:90:9e:d0:f1:f0:7d:79:2f:55: 08:78:36:41:44:fc:b9:0d:c9:c5:10:cc:7d:00:f0: 65:c9:0e:33:82:27:e8:e8:c2:3d:2a:61:72:db:44: 93:ee:73:5b:70:4e:ef:5c:bf:dc:94:ae:ec:4b:d9: 9e:5c:e3:69:12:31:01:6f:ec:0f:04:f2:88:f0:0b: f9:58:70:d8:99:41:e0:b8:8d:12:97:60:02:db:ec: 4a:4d:ca:23:22:4a:23:fe:64:f1:06:54:bf:32:5e: 56:b5:4a:af:a8:c8:f3:01:25:33:0c:c7:a7:74:b9: 74:d0:bf:d2:a5:11:55:8d:04:91:63:f2:23:21:a7: 93:6c:7c:66:11:78:4b:f2:b5:29:7c:9c:dd:14:ea: 46:aa:d4:74:f1:dd:1d:a2:82:e2:bf:ac:c0:92:8b: 84:7d:b4:11:12:34:7c:8f:fe:a2:06:b4:74:85:d6: 2d:57:53:55:5a:14:d1:75:43:f0:05:63:ab:4f:7d: 66:1d:96:bc:07:25:3c:27:7f:c5:93:90:3e:1e:e7: 31:49:b9:f9:ae:9a:e8:7d:89:11:5a:35:69:fd:8a: e4:84:47:bb:c5:8e:fe:6c:fa:71:fa:0c:15:e1:e5: ed:09:5e:21:f1:2f:ac:fc:d9:58:1b:4c:e4:2a:dd: d5:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:E5:DB:18:6D:8C:9F:CF:47:09:DB:C5:4D:F5:02:EF:AC:B5:48:6E X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/h-XbGG2Mn89HCdvFTfUC76y1SG4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.120.64.0/18 Signature Algorithm: sha256WithRSAEncryption 8b:6c:0a:60:31:b0:1d:d7:16:89:f5:cd:f9:53:58:a9:03:19: 3b:a0:90:4c:9a:3e:b0:2f:eb:f2:90:87:9d:9e:93:1c:42:22: 2d:0f:b6:06:5c:63:e3:2e:a0:52:07:7e:41:08:d4:07:13:8e: 1a:28:2a:d7:2f:c0:7b:74:f8:0f:3b:af:83:3b:b2:09:ef:99: 86:6f:97:30:59:c9:6a:1f:64:da:77:b9:97:26:c8:e1:15:ec: c2:6f:f0:9a:14:e0:22:c8:0f:43:c8:21:f4:57:8f:46:f6:ee: bd:aa:07:bf:23:b0:ae:5e:fd:ec:02:36:7e:bf:54:e8:0d:f8: ef:61:c6:17:88:3b:35:e6:4d:c2:f3:81:78:92:b8:70:43:e2: d1:98:77:c0:ff:50:8b:26:5b:15:8b:49:9a:9d:85:dd:27:ce: f8:e4:46:01:71:7f:3e:64:8b:54:ad:d2:db:9d:1f:28:af:37: 82:08:95:eb:36:17:73:4e:ca:6c:fe:c9:2b:e8:b5:92:25:53: 93:1a:8a:ce:9a:2f:ad:b6:1b:f9:fa:46:49:42:c5:dd:2b:b5: f0:82:c5:fb:39:97:63:04:15:5f:91:d7:8a:51:71:a7:91:4b: 54:3d:63:38:04:e2:6b:91:92:bd:92:c2:84:83:a3:79:4d:76: 1f:a9:37:d5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA2IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTMzMjFaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg3RTVEQjE4NkQ4QzlG Q0Y0NzA5REJDNTRERjUwMkVGQUNCNTQ4NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhC3j/IpCe0PHwfXkvVQh4NkFE/LkNycUQzH0A8GXJDjOCJ+jo wj0qYXLbRJPuc1twTu9cv9yUruxL2Z5c42kSMQFv7A8E8ojwC/lYcNiZQeC4jRKX YALb7EpNyiMiSiP+ZPEGVL8yXla1Sq+oyPMBJTMMx6d0uXTQv9KlEVWNBJFj8iMh p5NsfGYReEvytSl8nN0U6kaq1HTx3R2iguK/rMCSi4R9tBESNHyP/qIGtHSF1i1X U1VaFNF1Q/AFY6tPfWYdlrwHJTwnf8WTkD4e5zFJufmumuh9iRFaNWn9iuSER7vF jv5s+nH6DBXh5e0JXiHxL6z82VgbTOQq3dUBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUh+XbGG2Mn89HCdvFTfUC76y1SG4wHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L2gtWGJHRzJNbjg5SENkdkZUZlVDNzZ5MVNHNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYbeEAwDQYJKoZIhvcNAQELBQADggEBAItsCmAxsB3XFon1zflTWKkDGTug kEyaPrAv6/KQh52ekxxCIi0PtgZcY+MuoFIHfkEI1AcTjhooKtcvwHt0+A87r4M7 sgnvmYZvlzBZyWofZNp3uZcmyOEV7MJv8JoU4CLID0PIIfRXj0b27r2qB78jsK5e /ewCNn6/VOgN+O9hxheIOzXmTcLzgXiSuHBD4tGYd8D/UIsmWxWLSZqdhd0nzvjk RgFxfz5ki1St0tudHyivN4IIles2F3NOymz+ySvotZIlU5Mais6aL622G/n6RklC xd0rtfCCxfs5l2MEFV+R14pRcaeRS1Q9YzgE4muRkr2SwoSDo3lNdh+pN9U= -----END CERTIFICATE-----Generated at Sat May 17 23:35:22 2025 by rpki-client