$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10822/H5EpXdNdz3Pt9VX5oVNrBv2Aqjw.roa File: H5EpXdNdz3Pt9VX5oVNrBv2Aqjw.roa (raw, json) Hash identifier: Jw2LlG9mKt0PNrxr3fHsrH79Ec8yI9qcPGZqDveL6Mk= Subject key identifier: 1F:91:29:5D:D3:5D:CF:73:ED:F5:55:F9:A1:53:6B:06:FD:80:AA:3C Certificate issuer: /CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Certificate serial: 3B Authority key identifier: 33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/H5EpXdNdz3Pt9VX5oVNrBv2Aqjw.roa Signing time: Sat 01 Mar 2025 01:29:40 +0000 ROA not before: Sat 01 Mar 2025 01:29:40 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 17698 IP address blocks: 122.49.232.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Validity Not Before: Mar 1 01:29:40 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=1F91295DD35DCF73EDF555F9A1536B06FD80AA3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:42:19:ab:2f:b9:13:25:77:1c:45:42:e6:37: e3:bd:4b:d0:d6:a3:2c:0c:76:48:0d:ab:ae:5a:25: 86:0d:24:be:83:17:03:43:a6:fe:32:ed:f0:78:b6: 09:f2:d8:65:ef:07:23:0f:1a:93:61:4a:ec:40:a2: 75:c8:8d:ce:1c:23:43:b3:36:b2:e5:1d:06:c4:5f: e8:f9:ad:83:2a:e5:2e:b8:3c:e0:f3:68:5e:b9:69: 29:a8:b7:87:aa:2d:6a:cf:4e:b7:89:08:4d:df:11: 4a:d7:42:c3:87:5a:33:5b:54:c8:b8:0d:da:81:b8: ae:1a:5f:03:0e:c0:0b:7b:00:d0:11:fe:be:ea:f3: 8b:8b:c7:78:00:7e:c1:b7:fb:25:24:bd:87:4a:82: 55:7f:a7:b4:b7:7e:06:84:85:26:0b:65:88:d7:7a: bc:1b:f7:7a:43:1e:78:57:3c:06:2d:40:bf:e1:06: 53:6a:e4:3b:4e:7c:49:9c:7e:a9:4e:26:4f:46:2c: ba:f3:a7:f7:72:e2:e2:97:9f:8c:9b:87:03:b6:61: ff:d1:03:0a:81:37:0e:cf:b7:3f:4f:ad:5d:d3:8d: f1:40:db:b3:96:27:f0:cc:97:dc:02:8f:6d:d8:1e: 61:ec:f8:34:bc:66:24:74:98:8f:ea:b3:b1:34:00: 10:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:91:29:5D:D3:5D:CF:73:ED:F5:55:F9:A1:53:6B:06:FD:80:AA:3C X509v3 Authority Key Identifier: keyid:33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/H5EpXdNdz3Pt9VX5oVNrBv2Aqjw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.49.232.0/21 Signature Algorithm: sha256WithRSAEncryption a6:b8:e5:84:9b:ff:1e:7b:0e:b0:2b:ca:2f:94:1d:e6:94:99: 0a:4a:ca:b9:35:57:2d:8c:33:71:ae:a1:1b:96:db:db:21:28: cf:47:d0:ed:48:fc:f2:3a:60:17:b4:b7:72:f9:a5:97:f4:eb: f1:55:22:dc:1d:5c:3d:de:97:87:63:5d:6a:32:39:54:6b:4a: e8:1d:78:14:db:9e:ca:50:cd:5f:ca:ce:50:a5:94:cc:33:12: 60:b2:c0:8f:3c:b2:18:7e:75:65:8f:bf:5c:a4:10:f2:0b:69: f3:31:a5:59:01:74:fc:2f:ae:39:31:22:96:ef:7c:fa:ee:5f: f9:fb:b8:f0:fd:79:64:a9:9e:90:93:3a:90:16:6e:c6:4e:34: 51:72:9d:a5:53:56:7c:d9:33:ea:fb:aa:34:f6:a6:11:3d:9f: ee:38:a4:03:b3:ef:f1:24:83:6c:2e:9c:1e:17:68:0f:0f:10: e2:02:76:81:4b:a0:aa:f1:d2:55:aa:b6:6a:6b:bb:6b:c2:32: ed:86:b7:15:26:70:d2:5a:ea:42:68:e3:41:91:a9:10:25:95: 1d:45:f3:83:e9:85:cb:05:9d:a7:31:f6:a4:42:83:42:13:a8: 63:bc:7c:48:ed:d7:b2:e5:b6:fd:03:a5:ad:d1:23:43:b6:da: 84:90:65:1d -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBOzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzM0RG OUIyNEY1M0JCQ0FDMzQ3QkE1QjVBOEM0OUJGRjQxNjY2QTI2MB4XDTI1MDMwMTAx Mjk0MFoXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoMUY5MTI5NUREMzVEQ0Y3 M0VERjU1NUY5QTE1MzZCMDZGRDgwQUEzQzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJxCGasvuRMldxxFQuY3471L0NajLAx2SA2rrlolhg0kvoMXA0Om /jLt8Hi2CfLYZe8HIw8ak2FK7ECidciNzhwjQ7M2suUdBsRf6PmtgyrlLrg84PNo XrlpKai3h6otas9Ot4kITd8RStdCw4daM1tUyLgN2oG4rhpfAw7AC3sA0BH+vurz i4vHeAB+wbf7JSS9h0qCVX+ntLd+BoSFJgtliNd6vBv3ekMeeFc8Bi1Av+EGU2rk O058SZx+qU4mT0YsuvOn93Li4pefjJuHA7Zh/9EDCoE3Ds+3P0+tXdON8UDbs5Yn 8MyX3AKPbdgeYez4NLxmJHSYj+qzsTQAEKUCAwEAAaOCAigwggIkMB0GA1UdDgQW BBQfkSld013Pc+31VfmhU2sG/YCqPDAfBgNVHSMEGDAWgBQz35sk9Tu8rDR7pbWo xJv/QWZqJjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA4MjIvTTktYkpQVTd2S3cwZTZXMXFNU2JfMEZtYWlZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTTktYkpQVTd2S3cwZTZXMXFNU2Jf MEZtYWlZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEwODIyL0g1RXBYZE5kejNQdDlWWDVvVk5yQnYyQXFqdy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAN6MegwDQYJKoZIhvcNAQELBQADggEBAKa45YSb/x57DrAryi+UHeaU mQpKyrk1Vy2MM3GuoRuW29shKM9H0O1I/PI6YBe0t3L5pZf06/FVItwdXD3el4dj XWoyOVRrSugdeBTbnspQzV/KzlCllMwzEmCywI88shh+dWWPv1ykEPILafMxpVkB dPwvrjkxIpbvfPruX/n7uPD9eWSpnpCTOpAWbsZONFFynaVTVnzZM+r7qjT2phE9 n+44pAOz7/Ekg2wunB4XaA8PEOICdoFLoKrx0lWqtmpru2vCMu2GtxUmcNJa6kJo 40GRqRAllR1F84PphcsFnacx9qRCg0ITqGO8fEjt17Lltv0Dpa3RI0O22oSQZR0= -----END CERTIFICATE-----Generated at Sat Apr 5 17:32:59 2025 by rpki-client