$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/hx3hfQG2Rh-IBqKqi8lgNaeqnxY.roa File: hx3hfQG2Rh-IBqKqi8lgNaeqnxY.roa (raw, json) Hash identifier: lcUB1MZny/FoNeMWOK1otqIazqm2V6GgMlpbql6kal4= Subject key identifier: 87:1D:E1:7D:01:B6:46:1F:88:06:A2:AA:8B:C9:60:35:A7:AA:9F:16 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 03CC Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/hx3hfQG2Rh-IBqKqi8lgNaeqnxY.roa Signing time: Thu 01 May 2025 01:42:40 +0000 ROA not before: Thu 01 May 2025 01:42:40 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 61.44.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 14:37:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 972 (0x3cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:42:40 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=871DE17D01B6461F8806A2AA8BC96035A7AA9F16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:a2:83:3c:2b:60:4f:5d:fc:04:58:89:dd:4e: 05:19:33:00:0e:4e:70:92:64:c5:88:99:12:96:87: 5f:37:6d:40:fb:15:99:d1:4f:ef:aa:bb:a7:17:4f: c7:fd:ab:d5:94:bd:63:47:ec:5e:f3:a7:66:38:84: 5b:cc:3d:2d:91:b4:5e:5b:8a:1c:85:5a:fe:c8:a3: 9e:49:37:72:a7:ef:9f:a0:f9:c9:1f:6b:70:0a:aa: 16:19:51:fa:d6:38:5d:d8:f0:06:9e:42:5d:1a:09: 02:b0:e2:e4:46:37:0d:97:94:09:d8:18:7a:a5:15: cd:82:41:4c:73:d4:48:06:f5:db:d2:bf:71:9b:43: 4a:05:ae:4f:66:d1:0e:12:cb:21:86:d8:6e:24:96: 9b:4c:8f:60:f8:7d:b9:54:af:69:d1:7c:e8:95:d2: d7:1b:e8:7f:78:29:9f:09:cf:42:17:c6:e1:43:b3: d1:80:db:90:c1:95:2a:f2:b2:2e:7f:90:62:fc:08: 5c:4c:f3:96:7e:d6:72:06:16:ae:46:72:2b:01:8a: 99:b6:bb:56:61:b3:58:98:b1:6e:44:42:34:43:90: ab:1c:55:51:f2:ed:1c:e6:63:fa:5f:a7:98:22:14: 0f:8f:44:0e:38:92:17:cd:86:22:9c:7c:50:2d:d0: 0a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:1D:E1:7D:01:B6:46:1F:88:06:A2:AA:8B:C9:60:35:A7:AA:9F:16 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/hx3hfQG2Rh-IBqKqi8lgNaeqnxY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.44.16.0/20 Signature Algorithm: sha256WithRSAEncryption 5b:e7:54:85:b8:0b:d0:96:86:2a:92:f6:6e:6f:4e:e1:4e:92: 42:8b:5f:2d:15:a1:34:20:69:50:04:d0:6c:31:61:37:d0:14: 78:bf:76:2e:a2:1e:7a:65:44:ec:b2:48:fa:46:22:7d:9d:bd: f9:27:aa:fe:50:32:c8:49:93:fe:bc:82:67:3e:31:c5:b9:2c: 55:39:dc:48:ad:22:d1:e3:d6:63:19:db:83:56:ad:29:2e:62: aa:4e:0d:dd:f9:1f:52:3c:32:fc:b7:e9:38:e9:30:20:cc:9b: a1:a3:55:20:73:c9:83:f2:50:9f:5f:2e:e2:7c:0d:6e:ca:62: 54:16:02:43:85:51:0b:47:fe:86:14:b4:52:78:a5:e7:0f:c4: 9a:01:0f:01:76:7b:d5:1b:59:e1:02:d3:87:d0:c0:ad:5b:3a: a2:9d:38:7d:d6:3c:6c:04:d9:85:67:0d:66:62:5a:e4:17:9f: d6:f1:c4:43:94:b3:a7:5b:bd:0b:66:63:23:53:f9:b5:26:7e: 12:16:ee:36:75:df:f7:99:c3:df:f8:b3:2d:38:42:cb:79:4c: e7:c5:2d:80:b2:94:29:c5:45:43:e0:a7:6d:63:a2:21:64:55: e7:b1:45:c8:4a:c3:f1:42:bd:4e:9e:cf:34:47:da:06:20:59: 67:ae:5d:2c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA8wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQyNDBaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg3MURFMTdEMDFCNjQ2 MUY4ODA2QTJBQThCQzk2MDM1QTdBQTlGMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDyooM8K2BPXfwEWIndTgUZMwAOTnCSZMWImRKWh183bUD7FZnR T++qu6cXT8f9q9WUvWNH7F7zp2Y4hFvMPS2RtF5bihyFWv7Io55JN3Kn75+g+ckf a3AKqhYZUfrWOF3Y8AaeQl0aCQKw4uRGNw2XlAnYGHqlFc2CQUxz1EgG9dvSv3Gb Q0oFrk9m0Q4SyyGG2G4klptMj2D4fblUr2nRfOiV0tcb6H94KZ8Jz0IXxuFDs9GA 25DBlSrysi5/kGL8CFxM85Z+1nIGFq5GcisBipm2u1Zhs1iYsW5EQjRDkKscVVHy 7RzmY/pfp5giFA+PRA44khfNhiKcfFAt0Ap/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUhx3hfQG2Rh+IBqKqi8lgNaeqnxYwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L2h4M2hmUUcyUmgtSUJxS3FpOGxnTmFlcW54WS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ9LBAwDQYJKoZIhvcNAQELBQADggEBAFvnVIW4C9CWhiqS9m5vTuFOkkKL Xy0VoTQgaVAE0GwxYTfQFHi/di6iHnplROyySPpGIn2dvfknqv5QMshJk/68gmc+ McW5LFU53EitItHj1mMZ24NWrSkuYqpODd35H1I8Mvy36TjpMCDMm6GjVSBzyYPy UJ9fLuJ8DW7KYlQWAkOFUQtH/oYUtFJ4pecPxJoBDwF2e9UbWeEC04fQwK1bOqKd OH3WPGwE2YVnDWZiWuQXn9bxxEOUs6dbvQtmYyNT+bUmfhIW7jZ13/eZw9/4sy04 Qst5TOfFLYCylCnFRUPgp21joiFkVeexRchKw/FCvU6ezzRH2gYgWWeuXSw= -----END CERTIFICATE-----Generated at Sun May 18 16:59:06 2025 by rpki-client