$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/H5XiMVs5AHCYts5bUL15-bNFKok.roa File: H5XiMVs5AHCYts5bUL15-bNFKok.roa (raw, json) Hash identifier: r1MEAr12j1qupVx6Kk21XHMLTKLNlJQD7WlV+uDUz9o= Subject key identifier: 1F:95:E2:31:5B:39:00:70:98:B6:CE:5B:50:BD:79:F9:B3:45:2A:89 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 03FF Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/H5XiMVs5AHCYts5bUL15-bNFKok.roa Signing time: Tue 01 Apr 2025 01:32:12 +0000 ROA not before: Tue 01 Apr 2025 01:32:12 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:6b:7600::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 05:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1023 (0x3ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:32:12 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=1F95E2315B39007098B6CE5B50BD79F9B3452A89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d8:89:dc:62:06:25:1f:14:91:9e:4a:2b:64: 98:34:64:47:09:a7:14:52:bf:26:95:a5:59:db:67: ef:78:ea:ee:20:46:d7:57:53:62:a3:79:af:83:67: c2:f2:6a:d1:9f:d2:ff:21:55:d1:0c:48:4b:b1:b9: 8c:71:40:45:e5:77:50:5c:f5:44:24:72:4c:90:15: a3:93:61:09:5c:54:b2:65:57:3c:3a:ac:66:69:4e: 49:2a:f3:4c:5b:ff:51:8b:53:fb:3b:8b:7e:fa:b7: 53:1d:d4:5f:12:c6:82:f8:da:d3:79:24:3d:43:f1: b7:29:2d:c0:79:27:45:c0:59:4c:84:37:4e:aa:61: 5a:ff:21:c9:6d:4a:2c:fa:07:31:5b:5e:97:d6:05: f8:b5:a1:b8:62:b2:e9:03:d6:51:9b:4d:79:f7:0e: f4:30:01:ed:16:cd:e9:ee:53:24:79:4f:cc:31:5e: bf:61:9d:02:5e:4c:2a:c3:1e:aa:32:3d:89:fb:60: 1f:62:77:eb:c8:84:58:5c:b9:af:49:22:06:bb:6d: 95:6b:30:0d:58:79:3f:41:7f:5b:d2:85:e1:7b:46: 14:e2:c8:86:f1:67:d2:05:d6:56:66:21:05:fc:8b: d4:f5:a2:c9:85:cd:d1:1d:9d:8a:5d:40:38:62:3f: 19:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:95:E2:31:5B:39:00:70:98:B6:CE:5B:50:BD:79:F9:B3:45:2A:89 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/H5XiMVs5AHCYts5bUL15-bNFKok.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:7600::/40 Signature Algorithm: sha256WithRSAEncryption 21:f6:8b:07:19:e2:68:5d:b2:69:02:a4:e2:df:5d:6d:3e:3b: 00:3a:5f:d3:e1:53:05:02:9c:0a:53:37:32:b0:c8:6d:25:6d: 65:22:b6:dc:64:b9:92:93:24:4e:08:88:47:34:74:eb:87:88: 47:40:f1:b7:75:3a:f9:c6:5d:5d:cc:31:8f:98:95:2e:54:04: fa:b4:bc:6b:f7:a0:b0:53:49:00:5c:51:2d:69:95:3c:88:00: 76:ce:c4:16:67:25:18:47:f2:27:22:77:7a:45:6a:78:63:78: 6c:6b:ef:14:ec:b5:30:01:0d:5d:d3:4c:fc:88:9d:7c:af:48: 1c:1d:74:1d:7f:b6:4a:65:ba:68:12:1d:97:5e:45:ad:26:d2: 44:d1:c2:f1:89:68:6c:75:6a:26:37:01:99:bf:ad:2a:e3:45: d2:1b:59:62:7f:ba:7a:be:b5:e2:35:60:9e:8e:31:42:11:8c: 34:af:fe:ed:0a:88:d1:a3:f9:ec:b0:00:18:ba:2f:88:15:bb: a1:09:ac:ba:05:fc:fa:33:f7:0c:d0:ec:a0:a3:3a:18:ae:37: b7:04:0c:e3:b0:c1:c1:07:19:fc:25:44:dc:50:fb:c3:5e:20: 88:6f:f4:6d:d4:9f:93:a4:cb:92:df:e4:fd:5f:f7:d5:71:6b: d3:e7:20:1f -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICA/8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTMyMTJaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDFGOTVFMjMxNUIzOTAw NzA5OEI2Q0U1QjUwQkQ3OUY5QjM0NTJBODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC72IncYgYlHxSRnkorZJg0ZEcJpxRSvyaVpVnbZ+946u4gRtdX U2Kjea+DZ8LyatGf0v8hVdEMSEuxuYxxQEXld1Bc9UQkckyQFaOTYQlcVLJlVzw6 rGZpTkkq80xb/1GLU/s7i376t1Md1F8SxoL42tN5JD1D8bcpLcB5J0XAWUyEN06q YVr/IcltSiz6BzFbXpfWBfi1obhisukD1lGbTXn3DvQwAe0WzenuUyR5T8wxXr9h nQJeTCrDHqoyPYn7YB9id+vIhFhcua9JIga7bZVrMA1YeT9Bf1vSheF7RhTiyIbx Z9IF1lZmIQX8i9T1osmFzdEdnYpdQDhiPxn/AgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUH5XiMVs5AHCYts5bUL15+bNFKokwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9INVhpTVZzNUFIQ1l0czViVUwxNS1iTkZLb2su cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa3YwDQYJKoZIhvcNAQELBQADggEBACH2iwcZ4mhdsmkCpOLf XW0+OwA6X9PhUwUCnApTNzKwyG0lbWUittxkuZKTJE4IiEc0dOuHiEdA8bd1OvnG XV3MMY+YlS5UBPq0vGv3oLBTSQBcUS1plTyIAHbOxBZnJRhH8icid3pFanhjeGxr 7xTstTABDV3TTPyInXyvSBwddB1/tkplumgSHZdeRa0m0kTRwvGJaGx1aiY3AZm/ rSrjRdIbWWJ/unq+teI1YJ6OMUIRjDSv/u0KiNGj+eywABi6L4gVu6EJrLoF/Poz 9wzQ7KCjOhiuN7cEDOOwwcEHGfwlRNxQ+8NeIIhv9G3Un5Oky5Lf5P1f99Vxa9Pn IB8= -----END CERTIFICATE-----Generated at Mon Apr 7 08:02:45 2025 by rpki-client