$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/HVpAHklfLnRdPFKZuh9z1j3k_kI.roa File: HVpAHklfLnRdPFKZuh9z1j3k_kI.roa (raw, json) Hash identifier: NSUM8xf1Ulv8jDloq0idYTrIARwjM3/+C13mfDMvFnY= Subject key identifier: 1D:5A:40:1E:49:5F:2E:74:5D:3C:52:99:BA:1F:73:D6:3D:E4:FE:42 Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 056B Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/HVpAHklfLnRdPFKZuh9z1j3k_kI.roa Signing time: Fri 31 Jan 2025 01:39:42 +0000 ROA not before: Fri 31 Jan 2025 01:39:42 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10010 IP address blocks: 111.67.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1387 (0x56b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Jan 31 01:39:42 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=1D5A401E495F2E745D3C5299BA1F73D63DE4FE42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:fd:71:9c:7f:ca:f6:51:03:9a:e6:9d:7f:a4: 77:1c:f5:d8:91:33:2e:56:ee:17:3d:ec:4a:4f:29: f7:dc:e3:f2:91:b0:29:81:d2:4b:58:a3:47:80:6e: 30:04:dd:2b:26:94:5a:a2:53:26:ee:e8:a7:84:ac: f9:eb:a8:11:f6:e6:60:5a:3c:b6:75:77:3b:60:f6: bb:f2:b3:1f:d1:e5:4a:1b:2e:f6:44:40:65:5b:6f: e5:e0:c1:88:19:83:ff:bd:39:fa:dd:e1:0c:cc:1a: 7f:86:aa:db:df:e0:9b:89:45:9e:2c:d8:26:61:e5: bb:9a:cf:08:e1:a3:59:e1:04:71:fc:6d:39:5a:89: 7e:17:a2:80:52:b8:4a:c8:42:36:19:02:9a:92:32: 46:f3:27:90:e4:ba:42:36:80:2d:76:fb:da:fd:3d: 6d:6d:27:89:d5:6b:e9:ca:66:6c:17:c1:6a:8d:23: e1:70:a5:de:67:c4:ba:71:01:9d:d1:ea:7c:34:6c: a7:c5:55:d2:64:31:56:70:06:ff:60:0a:df:47:eb: 86:8d:8d:a2:7c:a7:92:ea:93:bc:f9:94:e7:57:ee: a5:07:f7:22:39:93:99:9e:fa:bd:7d:85:35:f3:ee: ce:00:90:ae:a4:4c:08:0b:c5:b8:ed:73:af:b2:44: c8:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:5A:40:1E:49:5F:2E:74:5D:3C:52:99:BA:1F:73:D6:3D:E4:FE:42 X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/HVpAHklfLnRdPFKZuh9z1j3k_kI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.67.120.0/22 Signature Algorithm: sha256WithRSAEncryption 44:fd:ca:c0:47:fe:88:9a:fc:79:47:d4:cd:ff:7d:95:bd:81: 1d:bf:4c:99:1c:f6:cd:c6:88:81:67:97:89:82:c7:95:ce:63: cd:2e:f0:3e:dd:d0:af:c9:40:ef:1a:35:ac:6b:a3:e7:d6:30: 2d:89:83:f3:bf:1c:5f:61:5b:19:b5:98:d0:2b:fd:71:ac:0d: 6e:55:e0:16:79:d4:1a:f2:6f:ae:d2:d9:6b:f1:83:e8:f0:8e: 16:d3:d3:c7:68:5e:2f:13:fc:87:fe:db:41:0f:f2:c5:30:16: 9d:e2:fc:e7:2f:a3:9b:f4:ba:da:2a:a8:92:be:9c:38:e6:67: e4:82:a8:85:b9:6a:e3:00:20:cb:be:95:f0:be:5a:52:aa:96: 9c:a5:ec:9c:71:48:b8:9d:83:a4:f1:70:e3:8e:2f:3c:e1:1f: f5:12:cf:b3:b0:ea:2f:d9:fc:3e:49:ff:d8:1c:a8:a8:77:5c: 7a:6f:4d:07:b3:35:93:1a:a7:d8:97:a1:80:2a:51:93:59:79: d0:40:59:99:17:64:92:31:d6:72:38:6b:be:2f:5a:15:67:55: 8c:3d:cd:01:b4:81:ab:44:10:f3:c7:96:8e:21:52:d0:fa:b3: 36:c4:e6:5f:9f:e5:d9:73:fe:c8:53:3f:ed:e3:e4:6b:98:55: bb:44:e6:57 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBWswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNTAxMzEw MTM5NDJaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDFENUE0MDFFNDk1RjJF NzQ1RDNDNTI5OUJBMUY3M0Q2M0RFNEZFNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCr/XGcf8r2UQOa5p1/pHcc9diRMy5W7hc97EpPKffc4/KRsCmB 0ktYo0eAbjAE3SsmlFqiUybu6KeErPnrqBH25mBaPLZ1dztg9rvysx/R5UobLvZE QGVbb+XgwYgZg/+9Ofrd4QzMGn+Gqtvf4JuJRZ4s2CZh5buazwjho1nhBHH8bTla iX4XooBSuErIQjYZApqSMkbzJ5DkukI2gC12+9r9PW1tJ4nVa+nKZmwXwWqNI+Fw pd5nxLpxAZ3R6nw0bKfFVdJkMVZwBv9gCt9H64aNjaJ8p5Lqk7z5lOdX7qUH9yI5 k5me+r19hTXz7s4AkK6kTAgLxbjtc6+yRMjPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUHVpAHklfLnRdPFKZuh9z1j3k/kIwHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTQ1L0hWcEFIa2xmTG5SZFBGS1p1aDl6MWoza19rSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJvQ3gwDQYJKoZIhvcNAQELBQADggEBAET9ysBH/oia/HlH1M3/fZW9gR2/ TJkc9s3GiIFnl4mCx5XOY80u8D7d0K/JQO8aNaxro+fWMC2Jg/O/HF9hWxm1mNAr /XGsDW5V4BZ51Bryb67S2Wvxg+jwjhbT08doXi8T/If+20EP8sUwFp3i/Ocvo5v0 utoqqJK+nDjmZ+SCqIW5auMAIMu+lfC+WlKqlpyl7JxxSLidg6TxcOOOLzzhH/US z7Ow6i/Z/D5J/9gcqKh3XHpvTQezNZMap9iXoYAqUZNZedBAWZkXZJIx1nI4a74v WhVnVYw9zQG0gatEEPPHlo4hUtD6szbE5l+f5dlz/shTP+3j5GuYVbtE5lc= -----END CERTIFICATE-----Generated at Sat Apr 5 17:33:02 2025 by rpki-client