$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/hR3PeypSCI9fRjYKdd4kBQQswsU.roa File: hR3PeypSCI9fRjYKdd4kBQQswsU.roa (raw, json) Hash identifier: qJeaDrxkPU/T/ZXg3+qSVOIpyFca8T8f3dbCw5rTHXY= Subject key identifier: 85:1D:CF:7B:2A:52:08:8F:5F:46:36:0A:75:DE:24:05:04:2C:C2:C5 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 03B5 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/hR3PeypSCI9fRjYKdd4kBQQswsU.roa Signing time: Thu 01 May 2025 01:40:30 +0000 ROA not before: Thu 01 May 2025 01:40:30 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 36.53.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 949 (0x3b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:40:30 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=851DCF7B2A52088F5F46360A75DE2405042CC2C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d7:23:39:61:05:05:cd:3c:fc:56:57:bd:92: f7:3e:9f:ee:70:ac:dd:5c:a4:8d:14:d0:15:4a:11: 6e:a8:ca:cb:f4:d6:ba:bd:20:98:22:8e:7a:76:fa: 64:e1:28:89:91:18:12:de:6f:bb:b0:08:2f:76:86: a2:37:88:70:21:59:c0:b9:1e:63:32:be:44:34:df: bc:2a:3a:a6:a7:8c:59:e1:c8:58:09:e5:0f:d5:06: 2d:f4:f7:91:47:11:92:97:cc:83:87:13:6b:8d:c0: b7:e5:5c:ca:84:96:d8:19:b8:2e:97:c3:e5:df:d7: 97:29:7d:a9:0e:96:77:96:21:78:69:89:64:be:ca: a1:43:46:5b:24:b7:bb:8f:ad:58:68:1a:69:e2:f2: a3:b7:39:a9:74:c9:20:b2:c7:16:a4:4b:72:b1:dd: 35:a7:a7:e4:77:a7:07:24:d6:a4:ba:a8:73:20:07: 5e:58:56:a7:df:b6:69:e6:6b:05:ac:bd:c2:bf:43: 58:c3:fe:f9:66:88:24:bf:a1:56:9a:25:29:bd:05: 3c:d3:7f:07:b0:75:e9:a3:ea:dc:c1:34:8b:56:f5: 53:5d:24:bd:68:27:bc:9f:92:22:a3:28:75:3c:cc: cc:1f:05:3c:57:9e:b7:38:b3:30:51:0c:59:c3:21: 69:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:1D:CF:7B:2A:52:08:8F:5F:46:36:0A:75:DE:24:05:04:2C:C2:C5 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/hR3PeypSCI9fRjYKdd4kBQQswsU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.53.192.0/19 Signature Algorithm: sha256WithRSAEncryption 35:64:a6:53:d4:6e:b9:c8:8a:53:0b:b2:2e:e0:c0:25:f9:01: 83:38:6f:f8:c8:08:1c:d7:5c:ee:a8:01:50:9d:65:64:f0:0d: 54:81:eb:34:7b:c3:88:c6:8f:31:79:ae:63:65:37:83:f4:f9: 59:d3:9d:b3:6f:33:67:2a:1e:71:50:c3:5c:ab:5f:52:4b:f3: 2f:0e:d2:ea:bd:c5:1f:31:18:f0:fb:5c:8b:7e:e4:fa:a8:b4: 9e:b3:a4:dd:a0:26:86:ac:b6:3e:a0:9e:6e:cb:6b:e2:f7:93: a8:dd:db:3b:f7:61:90:e2:45:0d:ed:dd:c3:8c:e1:9c:3c:f0: cf:38:7b:c4:0f:83:cc:f5:e8:fe:bb:a6:c5:dd:d1:4b:a7:17: 89:dc:39:23:1b:31:a7:b9:d8:b8:e7:9f:d8:db:f4:5f:02:15: 09:e2:1e:c3:75:ff:5d:82:04:54:e2:ff:15:73:d1:b3:71:de: 2a:f6:67:db:80:8f:7b:06:fc:11:31:1c:4e:ec:27:11:7f:99: 18:f1:7c:85:5c:68:5d:fe:58:5b:4f:88:ec:47:50:24:49:27: 63:72:24:7b:8d:04:5e:95:08:88:5e:2e:c8:07:d7:2a:4f:60: 3b:79:66:3e:15:a8:10:a2:b2:08:53:a3:6f:3d:73:5e:db:ab: 2e:fa:31:bf -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA7UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQwMzBaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg1MURDRjdCMkE1MjA4 OEY1RjQ2MzYwQTc1REUyNDA1MDQyQ0MyQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCu1yM5YQUFzTz8Vle9kvc+n+5wrN1cpI0U0BVKEW6oysv01rq9 IJgijnp2+mThKImRGBLeb7uwCC92hqI3iHAhWcC5HmMyvkQ037wqOqanjFnhyFgJ 5Q/VBi3095FHEZKXzIOHE2uNwLflXMqEltgZuC6Xw+Xf15cpfakOlneWIXhpiWS+ yqFDRlskt7uPrVhoGmni8qO3Oal0ySCyxxakS3Kx3TWnp+R3pwck1qS6qHMgB15Y VqfftmnmawWsvcK/Q1jD/vlmiCS/oVaaJSm9BTzTfwewdemj6tzBNItW9VNdJL1o J7yfkiKjKHU8zMwfBTxXnrc4szBRDFnDIWl7AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUhR3PeypSCI9fRjYKdd4kBQQswsUwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L2hSM1BleXBTQ0k5ZlJqWUtkZDRrQlFRc3dzVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUkNcAwDQYJKoZIhvcNAQELBQADggEBADVkplPUbrnIilMLsi7gwCX5AYM4 b/jICBzXXO6oAVCdZWTwDVSB6zR7w4jGjzF5rmNlN4P0+VnTnbNvM2cqHnFQw1yr X1JL8y8O0uq9xR8xGPD7XIt+5PqotJ6zpN2gJoastj6gnm7La+L3k6jd2zv3YZDi RQ3t3cOM4Zw88M84e8QPg8z16P67psXd0UunF4ncOSMbMae52Ljnn9jb9F8CFQni HsN1/12CBFTi/xVz0bNx3ir2Z9uAj3sG/BExHE7sJxF/mRjxfIVcaF3+WFtPiOxH UCRJJ2NyJHuNBF6VCIheLsgH1ypPYDt5Zj4VqBCisghTo289c17bqy76Mb8= -----END CERTIFICATE-----Generated at Sun May 18 10:48:20 2025 by rpki-client