$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/HnzI3H9YrjQFeAenv8kFLxw55lM.roa File: HnzI3H9YrjQFeAenv8kFLxw55lM.roa (raw, json) Hash identifier: I4Qa8zoWS5l37uucHc26xqp4y+N89+x1qaSMMGW6POM= Subject key identifier: 1E:7C:C8:DC:7F:58:AE:34:05:78:07:A7:BF:C9:05:2F:1C:39:E6:53 Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D Certificate serial: 017F Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/HnzI3H9YrjQFeAenv8kFLxw55lM.roa Signing time: Tue 01 Apr 2025 01:30:18 +0000 ROA not before: Tue 01 Apr 2025 01:30:18 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 2527 IP address blocks: 36.2.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 383 (0x17f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D Validity Not Before: Apr 1 01:30:18 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=1E7CC8DC7F58AE34057807A7BFC9052F1C39E653 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0a:c1:66:b0:ce:76:82:4f:1d:e2:44:b2:10: 1f:b2:5e:23:f5:cd:64:fe:37:aa:25:b7:3d:e5:d5: e4:b4:9a:25:63:3a:2b:50:80:8e:0a:ac:20:06:23: e4:00:94:be:a0:d8:df:95:1c:52:68:e4:cb:9e:1c: 9d:72:92:91:78:aa:9f:18:90:4f:f3:56:e7:b3:cc: 74:3e:d6:9e:6f:cd:3c:0c:94:e9:9f:b5:40:6b:91: e7:2c:e6:e8:a0:10:03:9c:b2:98:a0:8e:8e:85:03: 9b:0f:48:1e:90:af:57:46:39:12:f0:30:2b:dd:91: 3b:de:dd:4a:13:7e:b3:66:be:c7:a8:ca:1c:03:f2: 57:ea:54:c3:7c:2d:c0:81:d2:be:12:59:eb:f1:af: 9c:18:1b:03:c8:91:f6:44:f3:4f:e0:24:3c:42:b3: 8d:60:51:4e:43:f9:9e:57:c5:0c:47:4e:1c:45:62: f1:b5:9f:28:81:10:cb:29:02:98:8d:4f:5d:55:ef: 72:6c:c3:00:c9:b5:62:36:ae:68:9e:2f:a4:db:49: b8:85:57:6f:c3:92:83:a7:3c:c2:7d:e5:79:15:a9: 45:dd:52:d4:16:be:cb:8f:d4:08:87:e7:89:a0:e6: 5a:14:84:64:d5:4d:70:5e:7f:bf:d1:87:51:f3:a2: 98:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:7C:C8:DC:7F:58:AE:34:05:78:07:A7:BF:C9:05:2F:1C:39:E6:53 X509v3 Authority Key Identifier: keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/HnzI3H9YrjQFeAenv8kFLxw55lM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.2.0.0/19 Signature Algorithm: sha256WithRSAEncryption 48:73:d1:24:59:45:d8:13:77:11:cf:07:3b:ea:8e:45:ef:1c: 91:6f:c9:4c:59:a1:38:59:31:34:1e:02:71:fd:b6:e3:a9:c9: 48:6c:38:a4:86:5e:48:d9:dc:f8:6e:da:b2:53:e2:8d:fd:ac: 30:dc:ad:19:4f:19:fe:51:bd:33:6c:ec:64:00:a9:4c:9d:03: 52:7b:a0:83:48:8e:41:6c:f5:67:6a:57:5e:cd:79:91:81:fd: 2a:66:5e:f0:31:b5:b8:9e:5f:de:03:86:85:99:2b:9f:db:a3: 45:7e:81:d1:95:72:70:6e:12:e4:54:9e:5f:96:d6:1d:28:f6: 9c:a4:70:62:26:c5:79:cf:77:91:fa:f7:43:77:22:d5:78:7b: d0:a3:50:72:52:e5:e7:a1:66:44:a3:ad:d7:2d:42:06:16:c3: 5e:02:36:96:6a:a8:87:49:5e:ec:fb:36:55:2c:0f:c8:ea:90: 6d:61:87:5b:f0:b5:77:64:f9:86:95:d6:fb:00:62:c9:0a:dd: 8a:43:f2:a6:0e:12:5d:e7:f8:1d:81:cd:db:12:5a:ae:4a:49: a4:ac:12:f8:a0:f2:c0:04:78:8e:66:c9:2f:32:68:ca:ff:6d: a9:d4:ae:98:50:b5:6e:ab:ff:35:16:cd:79:c6:87:6a:bc:2f: ae:6a:b1:e0 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1 QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yNTA0MDEw MTMwMThaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDFFN0NDOERDN0Y1OEFF MzQwNTc4MDdBN0JGQzkwNTJGMUMzOUU2NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGCsFmsM52gk8d4kSyEB+yXiP1zWT+N6oltz3l1eS0miVjOitQ gI4KrCAGI+QAlL6g2N+VHFJo5MueHJ1ykpF4qp8YkE/zVuezzHQ+1p5vzTwMlOmf tUBrkecs5uigEAOcspigjo6FA5sPSB6Qr1dGORLwMCvdkTve3UoTfrNmvseoyhwD 8lfqVMN8LcCB0r4SWevxr5wYGwPIkfZE80/gJDxCs41gUU5D+Z5XxQxHThxFYvG1 nyiBEMspApiNT11V73JswwDJtWI2rmieL6TbSbiFV2/DkoOnPMJ95XkVqUXdUtQW vsuP1AiH54mg5loUhGTVTXBef7/Rh1HzopjrAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUHnzI3H9YrjQFeAenv8kFLxw55lMwHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo 3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1 ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My9IbnpJM0g5WXJqUUZlQWVudjhrRkx4dzU1bE0ucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQFJAIAMA0GCSqGSIb3DQEBCwUAA4IBAQBIc9EkWUXYE3cRzwc76o5F7xyRb8lM WaE4WTE0HgJx/bbjqclIbDikhl5I2dz4btqyU+KN/aww3K0ZTxn+Ub0zbOxkAKlM nQNSe6CDSI5BbPVnaldezXmRgf0qZl7wMbW4nl/eA4aFmSuf26NFfoHRlXJwbhLk VJ5fltYdKPacpHBiJsV5z3eR+vdDdyLVeHvQo1ByUuXnoWZEo63XLUIGFsNeAjaW aqiHSV7s+zZVLA/I6pBtYYdb8LV3ZPmGldb7AGLJCt2KQ/KmDhJd5/gdgc3bElqu SkmkrBL4oPLABHiOZskvMmjK/22p1K6YULVuq/81Fs15xodqvC+uarHg -----END CERTIFICATE-----Generated at Sun Apr 6 04:26:32 2025 by rpki-client