$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/462/H-1UIqAnZQQ1Z7q-uL64zGCM1wU.roa File: H-1UIqAnZQQ1Z7q-uL64zGCM1wU.roa (raw, json) Hash identifier: sDVO/43a6v/cBUMK/9QvJd+mR+DLacxDaOC1OtB248A= Subject key identifier: 1F:ED:54:22:A0:27:65:04:35:67:BA:BE:B8:BE:B8:CC:60:8C:D7:05 Certificate issuer: /CN=43917B23074524E9E6EA8E40FA4A0672C9620318 Certificate serial: 70 Authority key identifier: 43:91:7B:23:07:45:24:E9:E6:EA:8E:40:FA:4A:06:72:C9:62:03:18 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/H-1UIqAnZQQ1Z7q-uL64zGCM1wU.roa Signing time: Sat 01 Mar 2025 01:28:10 +0000 ROA not before: Sat 01 Mar 2025 01:28:10 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 10019 IP address blocks: 218.45.32.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/Q5F7IwdFJOnm6o5A-koGcsliAxg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/Q5F7IwdFJOnm6o5A-koGcsliAxg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43917B23074524E9E6EA8E40FA4A0672C9620318 Validity Not Before: Mar 1 01:28:10 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=1FED5422A02765043567BABEB8BEB8CC608CD705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:da:66:b5:e2:82:b8:06:c4:2f:77:bb:8a:f0: ef:45:a7:95:fc:ec:02:e9:5a:78:20:96:08:5e:7a: 8a:d7:b5:3f:52:4c:85:e4:d8:b6:1c:48:d5:da:7a: 07:30:58:12:ae:ee:db:be:cf:86:71:de:a8:45:7d: 0a:70:1c:8b:9b:0b:97:92:ad:d6:b0:fa:30:85:5e: 4b:a0:df:b4:a5:50:24:95:61:73:17:ee:2e:62:09: 3a:f7:6e:37:b8:d0:ad:9c:ef:ba:33:d0:ce:29:cc: 30:42:c3:ff:11:0c:95:35:b9:de:34:41:85:5c:4b: 20:26:cd:15:0d:43:79:c9:15:f2:54:56:7e:05:77: 23:49:98:94:b5:e0:63:82:e1:1d:df:a4:1b:0c:1e: 82:b2:d6:5f:dd:e4:00:5f:74:69:7b:af:0e:ef:d8: 97:11:8a:3c:96:e0:49:dc:7e:81:2b:9a:66:ec:3a: 7f:06:d1:71:d0:57:0e:05:cc:3b:15:aa:bd:63:7e: f7:d5:d8:dc:38:d1:09:88:3d:67:4b:be:61:1a:a5: e5:5e:ce:c2:da:05:61:d7:d7:60:82:bb:db:f7:a0: 1d:c4:f7:84:6f:a6:b7:ef:52:3e:d0:ad:e3:7f:5b: c1:80:7b:d9:ba:ad:cf:1f:80:29:24:da:8b:ea:9c: 60:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:ED:54:22:A0:27:65:04:35:67:BA:BE:B8:BE:B8:CC:60:8C:D7:05 X509v3 Authority Key Identifier: keyid:43:91:7B:23:07:45:24:E9:E6:EA:8E:40:FA:4A:06:72:C9:62:03:18 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/Q5F7IwdFJOnm6o5A-koGcsliAxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/H-1UIqAnZQQ1Z7q-uL64zGCM1wU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.45.32.0/20 Signature Algorithm: sha256WithRSAEncryption b5:17:24:95:7f:ca:6e:75:d9:4e:24:22:8c:f9:b2:c5:cf:f0: b1:63:2a:67:4e:cb:99:f4:63:74:db:5e:87:6f:b2:93:05:c7: 03:84:9f:50:8b:ef:06:8b:b3:62:e7:aa:94:8d:cf:ab:49:d3: ef:51:b0:b4:14:11:9f:65:59:0d:48:60:1f:0c:36:b0:20:18: d9:2b:0c:50:8e:80:ee:2b:77:aa:e8:8d:d9:75:1a:99:08:62: ac:45:8c:77:27:bc:ff:10:b0:cf:c5:df:8c:ec:09:3e:c6:48: 91:5f:96:e0:14:d2:e6:cb:b6:ef:2f:7f:e7:23:73:d1:31:1e: 0d:67:b7:18:21:65:07:0b:c1:75:2a:a6:0f:d5:05:06:e1:9e: 56:bb:2e:3c:f1:00:f2:97:73:28:37:8e:c2:16:bc:35:fc:bc: dd:2d:9d:28:c7:13:f7:1f:42:46:a0:41:c9:dd:63:ea:f2:aa: 1f:90:e0:43:48:92:ba:16:61:71:40:9e:6b:8b:87:f0:7a:e0: e7:3c:b8:24:8d:1c:b7:b3:f2:62:b4:52:80:d1:68:d9:a9:f4: 66:aa:be:0d:04:21:ac:36:98:40:c9:3a:ee:0d:f6:81:9a:cc: b4:b0:e0:68:e6:e9:00:58:26:2c:71:a9:3c:99:0b:47:24:2f: b7:ed:56:ce -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBcDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0Mzkx N0IyMzA3NDUyNEU5RTZFQThFNDBGQTRBMDY3MkM5NjIwMzE4MB4XDTI1MDMwMTAx MjgxMFoXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoMUZFRDU0MjJBMDI3NjUw NDM1NjdCQUJFQjhCRUI4Q0M2MDhDRDcwNTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANfaZrXigrgGxC93u4rw70WnlfzsAulaeCCWCF56ite1P1JMheTY thxI1dp6BzBYEq7u277PhnHeqEV9CnAci5sLl5Kt1rD6MIVeS6DftKVQJJVhcxfu LmIJOvduN7jQrZzvujPQzinMMELD/xEMlTW53jRBhVxLICbNFQ1DeckV8lRWfgV3 I0mYlLXgY4LhHd+kGwwegrLWX93kAF90aXuvDu/YlxGKPJbgSdx+gSuaZuw6fwbR cdBXDgXMOxWqvWN+99XY3DjRCYg9Z0u+YRql5V7OwtoFYdfXYIK72/egHcT3hG+m t+9SPtCt439bwYB72bqtzx+AKSTai+qcYM0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQf7VQioCdlBDVnur64vrjMYIzXBTAfBgNVHSMEGDAWgBRDkXsjB0Uk6ebqjkD6 SgZyyWIDGDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDYyL1E1RjdJd2RGSk9ubTZvNUEta29HY3NsaUF4Zy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1E1RjdJd2RGSk9ubTZvNUEta29HY3Ns aUF4Zy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NjIvSC0xVUlxQW5aUVExWjdxLXVMNjR6R0NNMXdVLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNotIDANBgkqhkiG9w0BAQsFAAOCAQEAtRcklX/KbnXZTiQijPmyxc/wsWMq Z07LmfRjdNteh2+ykwXHA4SfUIvvBouzYueqlI3Pq0nT71GwtBQRn2VZDUhgHww2 sCAY2SsMUI6A7it3quiN2XUamQhirEWMdye8/xCwz8XfjOwJPsZIkV+W4BTS5su2 7y9/5yNz0TEeDWe3GCFlBwvBdSqmD9UFBuGeVrsuPPEA8pdzKDeOwha8Nfy83S2d KMcT9x9CRqBByd1j6vKqH5DgQ0iSuhZhcUCea4uH8Hrg5zy4JI0ct7PyYrRSgNFo 2an0Zqq+DQQhrDaYQMk67g32gZrMtLDgaObpAFgmLHGpPJkLRyQvt+1Wzg== -----END CERTIFICATE-----Generated at Sat Apr 5 23:07:51 2025 by rpki-client