$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20084/HMF1z7XBFWxb3woLbWXsbg1Wq3Y.roa File: HMF1z7XBFWxb3woLbWXsbg1Wq3Y.roa (raw, json) Hash identifier: HOtMIbM/kxUqbEjceCgxJo27QyYDncqveAiwIHBs3cU= Subject key identifier: 1C:C1:75:CF:B5:C1:15:6C:5B:DF:0A:0B:6D:65:EC:6E:0D:56:AB:76 Certificate issuer: /CN=381CEBD5718139418E2BA504374D52816234E9EB Certificate serial: 19 Authority key identifier: 38:1C:EB:D5:71:81:39:41:8E:2B:A5:04:37:4D:52:81:62:34:E9:EB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/OBzr1XGBOUGOK6UEN01SgWI06es.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20084/HMF1z7XBFWxb3woLbWXsbg1Wq3Y.roa Signing time: Fri 28 Mar 2025 05:18:38 +0000 ROA not before: Fri 28 Mar 2025 05:18:38 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 131943 IP address blocks: 202.223.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20084/OBzr1XGBOUGOK6UEN01SgWI06es.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20084/OBzr1XGBOUGOK6UEN01SgWI06es.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/OBzr1XGBOUGOK6UEN01SgWI06es.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=381CEBD5718139418E2BA504374D52816234E9EB Validity Not Before: Mar 28 05:18:38 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=1CC175CFB5C1156C5BDF0A0B6D65EC6E0D56AB76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b3:d5:1b:ab:b6:c5:fe:cb:76:c9:54:6f:8b: 9d:6a:df:4b:b0:1a:1d:38:5c:93:f3:28:01:d1:61: 7d:58:f1:54:91:07:00:23:a0:cd:f6:72:21:58:eb: 25:9f:98:36:82:7b:ca:2c:46:0e:fd:d7:33:ce:a9: 99:9d:d8:5e:29:d7:ed:6c:61:a1:67:67:0b:5e:08: 9a:fb:24:12:b5:ad:b6:a0:40:65:5d:ac:d6:e4:4e: 0c:2a:da:6f:cc:9a:ff:8b:d9:28:a7:d8:f7:d6:3b: cc:65:ba:ab:6c:c2:46:8d:80:dc:ad:03:58:b7:15: a4:28:6e:7f:be:fc:ed:d5:cc:0b:0f:d5:94:60:23: d1:e9:cf:04:55:6c:82:50:68:e5:10:ab:33:8f:6e: c1:60:52:9a:e6:ea:39:a6:d1:3e:31:6a:46:e6:ba: 56:9f:84:ed:96:92:c7:7f:b2:5b:79:83:85:70:8d: a7:1a:56:b6:11:4e:e5:0f:0e:10:4e:00:0f:bc:f9: f9:3a:60:5f:ba:eb:3c:c9:cd:ae:e9:de:06:46:58: 97:c2:b0:cd:a6:ee:c7:e7:db:d6:ac:86:94:b2:23: e3:69:9c:18:3e:ed:5e:db:73:1b:1e:12:bb:f9:c9: 5b:f9:92:17:b0:3e:86:aa:30:23:64:78:0c:e7:37: ca:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:C1:75:CF:B5:C1:15:6C:5B:DF:0A:0B:6D:65:EC:6E:0D:56:AB:76 X509v3 Authority Key Identifier: keyid:38:1C:EB:D5:71:81:39:41:8E:2B:A5:04:37:4D:52:81:62:34:E9:EB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20084/OBzr1XGBOUGOK6UEN01SgWI06es.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/OBzr1XGBOUGOK6UEN01SgWI06es.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20084/HMF1z7XBFWxb3woLbWXsbg1Wq3Y.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.223.20.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:e4:06:0b:ea:4f:93:0c:bf:bb:31:7d:1d:fb:5c:31:52:bc: b0:19:9c:a9:70:7f:77:3f:b6:a5:2e:5b:9f:7c:ad:3d:60:cc: e4:b5:bf:08:75:40:65:4c:6f:09:dd:58:b3:fb:6d:20:9f:90: a5:58:69:83:d5:31:74:39:17:19:7f:0b:2b:62:10:ba:bc:8e: e4:12:02:93:af:47:f9:bb:b2:64:60:9b:6f:66:66:28:0a:0f: f2:62:27:e8:00:a4:42:75:8a:1d:ab:f1:c9:92:eb:78:60:61: 26:82:dd:7f:c7:9e:30:f8:3f:c2:24:eb:0a:53:da:3b:a5:30: 07:a3:27:2b:28:1b:7c:b1:06:7f:dc:fb:8c:f8:d5:54:61:f2: 5b:9f:c6:ed:a4:1a:d6:c1:1c:17:34:7c:72:e0:ac:ed:59:c4: b0:b2:a8:3e:8c:77:ab:48:7e:f1:94:53:d5:77:42:28:ea:ee: 4a:27:1f:b0:b1:2e:1d:08:e5:a8:49:57:b6:93:21:3a:48:b1: 9e:a3:a6:ea:6c:f6:4e:9b:a9:77:1d:4f:7d:60:5f:fa:a8:de: 37:5c:c1:75:1f:75:f4:78:27:6e:fc:83:9f:5f:53:b2:8d:b0: e3:e7:57:dc:d3:79:05:4a:f7:3a:eb:50:82:b4:4e:d8:d4:e4: c6:fe:e6:b1 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBGTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzODFD RUJENTcxODEzOTQxOEUyQkE1MDQzNzRENTI4MTYyMzRFOUVCMB4XDTI1MDMyODA1 MTgzOFoXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoMUNDMTc1Q0ZCNUMxMTU2 QzVCREYwQTBCNkQ2NUVDNkUwRDU2QUI3NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMyz1RurtsX+y3bJVG+LnWrfS7AaHThck/MoAdFhfVjxVJEHACOg zfZyIVjrJZ+YNoJ7yixGDv3XM86pmZ3YXinX7WxhoWdnC14ImvskErWttqBAZV2s 1uRODCrab8ya/4vZKKfY99Y7zGW6q2zCRo2A3K0DWLcVpChuf7787dXMCw/VlGAj 0enPBFVsglBo5RCrM49uwWBSmubqOabRPjFqRua6Vp+E7ZaSx3+yW3mDhXCNpxpW thFO5Q8OEE4AD7z5+TpgX7rrPMnNruneBkZYl8Kwzabux+fb1qyGlLIj42mcGD7t XttzGx4Su/nJW/mSF7A+hqowI2R4DOc3yjkCAwEAAaOCAigwggIkMB0GA1UdDgQW BBQcwXXPtcEVbFvfCgttZexuDVardjAfBgNVHSMEGDAWgBQ4HOvVcYE5QY4rpQQ3 TVKBYjTp6zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwODQvT0J6cjFYR0JPVUdPSzZVRU4wMVNnV0kwNmVzLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvT0J6cjFYR0JPVUdPSzZVRU4wMVNn V0kwNmVzLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDg0L0hNRjF6N1hCRld4YjN3b0xiV1hzYmcxV3EzWS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBALK3xQwDQYJKoZIhvcNAQELBQADggEBAE7kBgvqT5MMv7sxfR37XDFS vLAZnKlwf3c/tqUuW598rT1gzOS1vwh1QGVMbwndWLP7bSCfkKVYaYPVMXQ5Fxl/ CytiELq8juQSApOvR/m7smRgm29mZigKD/JiJ+gApEJ1ih2r8cmS63hgYSaC3X/H njD4P8Ik6wpT2julMAejJysoG3yxBn/c+4z41VRh8lufxu2kGtbBHBc0fHLgrO1Z xLCyqD6Md6tIfvGUU9V3Qijq7konH7CxLh0I5ahJV7aTITpIsZ6jpups9k6bqXcd T31gX/qo3jdcwXUfdfR4J278g59fU7KNsOPnV9zTeQVK9zrrUIK0TtjU5Mb+5rE= -----END CERTIFICATE-----Generated at Sat Apr 5 17:46:37 2025 by rpki-client