$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/HDBSpBzqFujwJAgDSyqO4O3sAJ0.roa File: HDBSpBzqFujwJAgDSyqO4O3sAJ0.roa (raw, json) Hash identifier: T66UPSy51OPW7W/91pM/9payJyaXbP5pZkXTnffuKlo= Subject key identifier: 1C:30:52:A4:1C:EA:16:E8:F0:24:08:03:4B:2A:8E:E0:ED:EC:00:9D Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 0527 Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/HDBSpBzqFujwJAgDSyqO4O3sAJ0.roa Signing time: Fri 31 Jan 2025 01:30:15 +0000 ROA not before: Fri 31 Jan 2025 01:30:15 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10010 IP address blocks: 27.98.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1319 (0x527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Jan 31 01:30:15 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=1C3052A41CEA16E8F02408034B2A8EE0EDEC009D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2b:08:d9:c0:61:07:3d:0d:83:fa:61:69:e7: c1:e9:b0:f8:12:45:19:e2:b0:56:6b:4b:1e:b9:77: 58:1a:8d:4d:b9:d2:95:6e:26:5a:b2:82:ef:4b:d3: ef:f4:65:5e:69:80:54:de:d9:35:a4:9d:ef:8a:1b: d1:b0:3d:29:6d:fb:29:46:5c:eb:c8:65:28:7c:58: 0b:cb:59:4d:cd:6e:66:b1:b8:16:97:26:86:73:39: ae:0f:21:c8:57:b7:4b:fa:e0:10:2d:d3:63:1a:e1: ba:47:c7:06:1d:e7:b2:fb:88:51:a0:0e:96:30:85: 2e:a3:ac:f6:c1:31:c7:86:8b:32:c9:a1:38:41:72: 0a:25:2e:af:e8:bc:a0:6b:06:5a:c4:06:84:79:e7: 06:6c:9f:c4:5b:e6:c7:13:98:d5:2f:41:33:b2:18: 53:ef:eb:7d:6b:3f:3c:e0:5e:5f:73:18:2f:41:50: c5:4a:ef:55:4b:3a:d6:97:38:ea:fc:ce:10:32:2f: 4c:51:8f:7f:de:5d:9d:71:b8:63:cc:c5:96:09:e5: 54:4d:26:19:b8:26:64:4e:44:de:44:3c:fb:24:1f: 75:49:18:71:b4:bf:04:6c:5e:93:72:b1:2b:5b:6b: 65:f7:ab:aa:a3:04:91:ce:a3:13:6e:02:5c:3d:c0: 1a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:30:52:A4:1C:EA:16:E8:F0:24:08:03:4B:2A:8E:E0:ED:EC:00:9D X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/HDBSpBzqFujwJAgDSyqO4O3sAJ0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.98.128.0/18 Signature Algorithm: sha256WithRSAEncryption 46:b9:09:5f:aa:fe:87:9d:6e:69:2a:60:53:90:a5:3e:0e:07: ef:7e:58:cb:d8:7a:da:af:ad:e2:f5:3c:e7:f4:1b:46:bc:cb: 7e:07:8f:d8:2b:fe:e3:54:e8:27:47:6a:e7:97:db:34:fd:2f: d1:58:08:96:ab:14:0c:d3:f4:9b:2a:ac:79:48:11:88:cb:13: c2:bc:dc:c4:57:b0:82:64:48:56:cc:9e:59:e5:80:a9:6a:a4: ae:1f:ef:18:4f:88:75:85:8b:b5:76:e9:8c:a5:4e:cb:2d:97: d8:35:b7:03:f8:13:3b:ea:a6:db:5e:b5:86:b1:93:1d:29:43: 57:c5:fe:e1:69:3b:f6:95:38:8a:f3:06:b9:e7:4e:f5:11:b8: 17:0b:38:f0:62:bf:97:66:6f:3a:a4:95:be:4d:3e:b7:9e:d2: c6:3e:a9:f5:b6:19:c5:82:c4:08:d7:ea:97:9d:4f:aa:0c:46: d6:d6:60:03:b9:41:dd:eb:00:a6:34:76:90:da:de:8b:6a:7d: 19:ee:12:02:55:53:3f:a4:bb:58:08:ff:cc:a0:5e:92:80:cb: 83:8f:0d:91:cb:c0:d5:07:56:e0:55:c1:94:0f:89:5e:7e:35: ac:d9:ca:bc:2c:da:89:9c:02:45:71:66:fd:ff:6e:fc:1c:14: 03:ff:85:71 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBScwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNTAxMzEw MTMwMTVaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDFDMzA1MkE0MUNFQTE2 RThGMDI0MDgwMzRCMkE4RUUwRURFQzAwOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMKwjZwGEHPQ2D+mFp58HpsPgSRRnisFZrSx65d1gajU250pVu Jlqygu9L0+/0ZV5pgFTe2TWkne+KG9GwPSlt+ylGXOvIZSh8WAvLWU3NbmaxuBaX JoZzOa4PIchXt0v64BAt02Ma4bpHxwYd57L7iFGgDpYwhS6jrPbBMceGizLJoThB cgolLq/ovKBrBlrEBoR55wZsn8Rb5scTmNUvQTOyGFPv631rPzzgXl9zGC9BUMVK 71VLOtaXOOr8zhAyL0xRj3/eXZ1xuGPMxZYJ5VRNJhm4JmRORN5EPPskH3VJGHG0 vwRsXpNysStba2X3q6qjBJHOoxNuAlw9wBofAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUHDBSpBzqFujwJAgDSyqO4O3sAJ0wHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTQ1L0hEQlNwQnpxRnVqd0pBZ0RTeXFPNE8zc0FKMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYbYoAwDQYJKoZIhvcNAQELBQADggEBAEa5CV+q/oedbmkqYFOQpT4OB+9+ WMvYetqvreL1POf0G0a8y34Hj9gr/uNU6CdHaueX2zT9L9FYCJarFAzT9JsqrHlI EYjLE8K83MRXsIJkSFbMnlnlgKlqpK4f7xhPiHWFi7V26YylTsstl9g1twP4Ezvq pttetYaxkx0pQ1fF/uFpO/aVOIrzBrnnTvURuBcLOPBiv5dmbzqklb5NPree0sY+ qfW2GcWCxAjX6pedT6oMRtbWYAO5Qd3rAKY0dpDa3otqfRnuEgJVUz+ku1gI/8yg XpKAy4OPDZHLwNUHVuBVwZQPiV5+NazZyrws2omcAkVxZv3/bvwcFAP/hXE= -----END CERTIFICATE-----Generated at Sat Apr 5 17:25:20 2025 by rpki-client