$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/299/HBFOrd056i5VGiX1tN0Uq0Ccv2o.roa File: HBFOrd056i5VGiX1tN0Uq0Ccv2o.roa (raw, json) Hash identifier: 4zD4HkU2N7Srp77u/mA1s62XXcF2zud+vkm8IXflBpU= Subject key identifier: 1C:11:4E:AD:DD:39:EA:2E:55:1A:25:F5:B4:DD:14:AB:40:9C:BF:6A Certificate issuer: /CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9 Certificate serial: 5D Authority key identifier: D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/HBFOrd056i5VGiX1tN0Uq0Ccv2o.roa Signing time: Tue 01 Apr 2025 01:33:08 +0000 ROA not before: Tue 01 Apr 2025 01:33:08 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 63789 IP address blocks: 202.9.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9 Validity Not Before: Apr 1 01:33:08 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=1C114EADDD39EA2E551A25F5B4DD14AB409CBF6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1e:07:ea:4b:4e:ed:d2:ab:bb:e1:c0:26:9e: a5:dd:f4:27:d8:d2:cc:10:48:aa:cb:1d:ab:74:c3: 8a:bb:1a:5d:70:13:7a:da:de:e1:2e:de:a0:18:72: fe:d8:2b:c9:52:0a:72:c2:f4:eb:b7:85:44:cf:99: 0f:73:e0:42:0c:a3:21:9f:c5:d6:d6:20:0c:ab:0b: f2:81:ef:bd:be:89:da:22:43:a8:97:cd:52:3a:8d: 56:fa:f7:59:0d:4d:96:20:14:8e:7a:e8:cb:ec:8e: 83:cc:ff:c9:8c:4d:81:44:c7:b2:55:a3:c8:5a:26: 0e:66:e0:4a:84:ce:1f:33:14:9e:2a:c9:e3:b0:c5: e9:0b:bb:71:3d:43:a3:30:5b:05:eb:dc:c4:66:26: 73:ba:79:b2:f7:44:12:8a:10:99:1d:66:62:d7:73: fa:a2:a0:ce:f9:06:86:e7:e4:5b:8a:5f:b2:39:55: d2:ad:34:35:cd:a3:5a:ed:34:99:b9:ed:a2:dd:54: af:c9:34:04:56:70:9f:89:d4:02:86:f5:63:a9:4d: f5:62:67:b3:ba:8f:cf:d9:ba:7a:9c:f5:4e:ed:3b: 52:64:64:aa:e3:11:25:a1:19:6c:81:a8:1e:bb:36: b9:c6:c6:b5:d5:fd:ba:e2:32:8d:4b:5f:94:84:61: 09:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:11:4E:AD:DD:39:EA:2E:55:1A:25:F5:B4:DD:14:AB:40:9C:BF:6A X509v3 Authority Key Identifier: keyid:D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/HBFOrd056i5VGiX1tN0Uq0Ccv2o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.9.208.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:f6:e1:59:f6:4c:32:83:a3:3c:18:ec:f4:4d:42:d5:5f:7d: fe:1a:a9:07:07:d4:09:4b:7b:68:b8:6b:20:e4:e7:a4:75:61: 99:25:1a:66:6a:c7:c7:1e:82:8f:09:38:db:4d:d0:ce:0e:70: af:71:8e:d8:db:c2:fa:38:a1:ba:35:11:6f:b8:94:d5:5f:2d: 7a:6f:b1:a1:99:35:ed:8a:27:96:9f:c5:9a:6f:c2:75:97:2e: 73:b6:74:2a:90:a6:b5:a4:6b:d2:a4:98:9d:c5:7a:0b:88:d6: 1d:7f:87:87:a0:a6:c1:be:b2:93:93:db:c4:22:02:78:71:dc: 0f:7d:d9:50:04:4b:0c:32:f0:62:5e:2c:28:c7:b3:1a:38:73: 14:1b:78:f5:1d:56:ce:f9:bb:7e:05:29:c0:24:2b:5c:09:2b: 99:f1:de:f8:62:e8:70:10:6f:a4:d0:b4:75:3a:8a:db:13:60: 58:71:e0:2d:9d:38:ef:3a:97:c3:db:57:08:94:7e:df:39:82: e8:3c:39:95:27:ed:f2:65:4a:10:56:07:1a:3b:4a:0b:fe:28: 90:29:7a:34:d8:54:c4:e4:1a:4b:33:2c:b0:68:be:88:e1:e7: ac:c0:61:d5:09:2b:06:3a:25:3f:44:6d:27:42:37:aa:b6:e0: d6:7b:59:c4 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBXTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEOEYx NTE0NTA4QUZDMzhFNTE3NDNCNkNCNThCQTY1NjFFREQzQkI5MB4XDTI1MDQwMTAx MzMwOFoXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoMUMxMTRFQURERDM5RUEy RTU1MUEyNUY1QjRERDE0QUI0MDlDQkY2QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKgeB+pLTu3Sq7vhwCaepd30J9jSzBBIqssdq3TDirsaXXATetre 4S7eoBhy/tgryVIKcsL067eFRM+ZD3PgQgyjIZ/F1tYgDKsL8oHvvb6J2iJDqJfN UjqNVvr3WQ1NliAUjnroy+yOg8z/yYxNgUTHslWjyFomDmbgSoTOHzMUnirJ47DF 6Qu7cT1DozBbBevcxGYmc7p5svdEEooQmR1mYtdz+qKgzvkGhufkW4pfsjlV0q00 Nc2jWu00mbntot1Ur8k0BFZwn4nUAob1Y6lN9WJns7qPz9m6epz1Tu07UmRkquMR JaEZbIGoHrs2ucbGtdX9uuIyjUtflIRhCQECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQcEU6t3TnqLlUaJfW03RSrQJy/ajAfBgNVHSMEGDAWgBTY8VFFCK/DjlF0O2y1 i6ZWHt07uTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjk5LzJQRlJSUWl2dzQ1UmREdHN0WXVtVmg3ZE83ay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzJQRlJSUWl2dzQ1UmREdHN0WXVtVmg3 ZE83ay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOTkvSEJGT3JkMDU2aTVWR2lYMXROMFVxMENjdjJvLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAsoJ0DANBgkqhkiG9w0BAQsFAAOCAQEAmvbhWfZMMoOjPBjs9E1C1V99/hqp BwfUCUt7aLhrIOTnpHVhmSUaZmrHxx6Cjwk4203Qzg5wr3GO2NvC+jihujURb7iU 1V8tem+xoZk17Yonlp/Fmm/CdZcuc7Z0KpCmtaRr0qSYncV6C4jWHX+Hh6Cmwb6y k5PbxCICeHHcD33ZUARLDDLwYl4sKMezGjhzFBt49R1Wzvm7fgUpwCQrXAkrmfHe +GLocBBvpNC0dTqK2xNgWHHgLZ047zqXw9tXCJR+3zmC6Dw5lSft8mVKEFYHGjtK C/4okCl6NNhUxOQaSzMssGi+iOHnrMBh1QkrBjolP0RtJ0I3qrbg1ntZxA== -----END CERTIFICATE-----Generated at Wed Apr 16 06:19:57 2025 by rpki-client