$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/ehq3_LUaAyabWg8y_12DPiqGlm4.roa File: ehq3_LUaAyabWg8y_12DPiqGlm4.roa (raw, json) Hash identifier: 2nqAC1NHbgcfSScSS4BILJL4yEoae4YIpvy+iw2m7hw= Subject key identifier: 7A:1A:B7:FC:B5:1A:03:26:9B:5A:0F:32:FF:5D:83:3E:2A:86:96:6E Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: CA Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/ehq3_LUaAyabWg8y_12DPiqGlm4.roa Signing time: Tue 11 Mar 2025 14:12:36 +0000 ROA not before: Tue 11 Mar 2025 14:12:36 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 3949 IP address blocks: 61.213.155.0/26 maxlen: 26 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Mar 11 14:12:36 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=7A1AB7FCB51A03269B5A0F32FF5D833E2A86966E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e6:dd:f3:48:d5:27:cd:c7:eb:31:65:ad:1e: 55:a1:50:ba:be:43:ea:00:38:06:f7:0d:5d:47:f5: 15:97:50:dd:5e:e6:c4:af:e7:b6:a1:8e:21:06:9c: 7d:51:aa:46:f1:bf:e7:4b:83:cd:90:c0:dd:02:84: bc:a0:53:09:e1:f3:ed:cd:e0:92:6f:bd:da:61:13: e6:f9:54:ca:c8:36:e5:45:4e:5c:70:6c:a7:de:8e: 9a:23:f5:02:1a:73:1f:ba:dc:62:da:3e:4f:c0:2c: f4:9f:36:77:76:57:14:a3:f3:5e:59:e7:7e:1a:f5: 1e:3b:df:61:b3:e2:c4:b2:9d:c0:5d:ca:b8:c1:4d: c1:9e:d4:10:65:c3:19:89:2d:59:96:6d:9e:43:f3: 6f:29:bf:48:41:e5:4d:63:74:62:d6:3f:f5:9e:de: 9d:f7:d6:1b:b6:d9:81:9a:60:5d:a7:e5:41:e6:e0: bc:44:37:53:59:6f:34:46:13:85:43:3b:3d:6d:82: 92:2f:26:e1:8a:e4:79:2c:1c:ca:30:21:25:dd:12: ba:bb:43:cd:f9:f8:2b:31:87:0c:c7:75:9f:b3:a2: 13:a2:7d:17:2c:be:ee:9b:d2:ef:c6:1d:32:84:9f: 07:1e:8e:ac:e7:04:d3:a5:71:65:91:54:f7:29:4a: 8a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:1A:B7:FC:B5:1A:03:26:9B:5A:0F:32:FF:5D:83:3E:2A:86:96:6E X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/ehq3_LUaAyabWg8y_12DPiqGlm4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.213.155.0/26 Signature Algorithm: sha256WithRSAEncryption 05:ec:f2:13:30:19:27:a6:67:1e:64:b6:65:2f:35:25:93:49: 82:f9:49:b2:3f:27:8d:d3:d6:03:4b:49:94:70:82:f9:bd:99: b4:20:10:80:28:d5:1f:de:f2:13:b3:37:d0:72:b6:9d:0f:df: 56:4f:8c:8c:77:08:f6:26:62:b2:50:42:87:bf:3d:6e:ea:f5: 0e:a2:4d:4c:85:1d:64:51:8f:43:5a:b6:f9:c9:b4:ca:3d:04: 55:79:85:4d:1e:bb:34:f1:0a:d6:70:bf:91:ff:fd:e1:ba:14: b0:28:a6:5a:ef:4a:67:c2:c4:b2:7c:e3:9e:f3:73:87:8f:65: f5:be:1a:1e:64:79:70:94:b1:3f:db:7f:64:44:ab:7d:64:db: 05:10:6e:5e:ff:d9:12:d4:53:af:b4:3b:8d:8c:b1:4d:72:20: 57:e2:44:0e:14:67:b2:c4:0e:d3:13:36:81:82:aa:0b:95:55: b5:66:48:02:68:df:80:c7:b1:03:6e:3d:12:7b:04:a0:b9:73: 3e:c6:b7:99:c6:67:00:a1:02:6b:4f:05:96:1a:cf:65:2e:7c: 5c:bb:6b:f4:97:b3:b2:c8:38:72:c3:76:f5:21:8e:9c:49:64: 21:0f:21:c8:b3:bf:23:64:28:51:92:45:79:0b:21:7c:30:51: 10:8c:34:07 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQ0 NkRERjg4QTQ2RTRFQzJEOUE5QkFCNUZGMTMwNUZEMDU3RjEzODAeFw0yNTAzMTEx NDEyMzZaFw0yNjAyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDdBMUFCN0ZDQjUxQTAz MjY5QjVBMEYzMkZGNUQ4MzNFMkE4Njk2NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC35t3zSNUnzcfrMWWtHlWhULq+Q+oAOAb3DV1H9RWXUN1e5sSv 57ahjiEGnH1Rqkbxv+dLg82QwN0ChLygUwnh8+3N4JJvvdphE+b5VMrINuVFTlxw bKfejpoj9QIacx+63GLaPk/ALPSfNnd2VxSj815Z534a9R4732Gz4sSyncBdyrjB TcGe1BBlwxmJLVmWbZ5D828pv0hB5U1jdGLWP/We3p331hu22YGaYF2n5UHm4LxE N1NZbzRGE4VDOz1tgpIvJuGK5HksHMowISXdErq7Q835+CsxhwzHdZ+zohOifRcs vu6b0u/GHTKEnwcejqznBNOlcWWRVPcpSooPAgMBAAGjggIpMIICJTAdBgNVHQ4E FgQUehq3/LUaAyabWg8y/12DPiqGlm4wHwYDVR0jBBgwFoAUjUbd+IpG5Owtmpur X/EwX9BX8TgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTI4L2pVYmQtSXBHNU93dG1wdXJYX0V3WDlCWDhUZy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pVYmQtSXBHNU93dG1wdXJYX0V3 WDlCWDhUZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDEyOC9laHEzX0xVYUF5YWJXZzh5XzEyRFBpcUdsbTQu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAATAHAwUGPdWbADANBgkqhkiG9w0BAQsFAAOCAQEABezyEzAZJ6ZnHmS2ZS81 JZNJgvlJsj8njdPWA0tJlHCC+b2ZtCAQgCjVH97yE7M30HK2nQ/fVk+MjHcI9iZi slBCh789bur1DqJNTIUdZFGPQ1q2+cm0yj0EVXmFTR67NPEK1nC/kf/94boUsCim Wu9KZ8LEsnzjnvNzh49l9b4aHmR5cJSxP9t/ZESrfWTbBRBuXv/ZEtRTr7Q7jYyx TXIgV+JEDhRnssQO0xM2gYKqC5VVtWZIAmjfgMexA249EnsEoLlzPsa3mcZnAKEC a08FlhrPZS58XLtr9Jezssg4csN29SGOnElkIQ8hyLO/I2QoUZJFeQshfDBREIw0 Bw== -----END CERTIFICATE-----Generated at Sat Apr 5 17:35:07 2025 by rpki-client