$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/224/zHTqHNhZ8ScePlo0OVjhZd8iPAQ.roa File: zHTqHNhZ8ScePlo0OVjhZd8iPAQ.roa (raw, json) Hash identifier: tpgjflnrnax7eKOMEjzxnsI8/GKXd7jjNNFhja3HcgA= Subject key identifier: CC:74:EA:1C:D8:59:F1:27:1E:3E:5A:34:39:58:E1:65:DF:22:3C:04 Certificate issuer: /CN=D623C38C2A127007F93E7C840DF875022E51C547 Certificate serial: 21 Authority key identifier: D6:23:C3:8C:2A:12:70:07:F9:3E:7C:84:0D:F8:75:02:2E:51:C5:47 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1iPDjCoScAf5PnyEDfh1Ai5RxUc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/224/zHTqHNhZ8ScePlo0OVjhZd8iPAQ.roa Signing time: Sun 01 Jun 2025 01:33:22 +0000 ROA not before: Sun 01 Jun 2025 01:33:22 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 7668 IP address blocks: 210.167.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/224/1iPDjCoScAf5PnyEDfh1Ai5RxUc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/224/1iPDjCoScAf5PnyEDfh1Ai5RxUc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1iPDjCoScAf5PnyEDfh1Ai5RxUc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 18:47:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D623C38C2A127007F93E7C840DF875022E51C547 Validity Not Before: Jun 1 01:33:22 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=CC74EA1CD859F1271E3E5A343958E165DF223C04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a0:fa:84:36:d1:bb:21:c4:b8:6a:52:9e:d0: e8:bb:85:fc:4b:65:35:99:5a:b1:72:21:20:03:d1: 62:83:c6:f9:88:7b:0b:be:3f:a2:dc:a3:5c:45:50: 15:d7:e2:3a:eb:9d:a4:fc:12:c7:a9:40:bc:0c:11: 75:52:6a:33:32:be:0a:31:9b:9c:35:57:82:0d:67: 38:26:24:76:1b:c4:6a:28:4d:22:d8:fd:c9:be:4c: bd:3d:d8:aa:9a:b0:3f:d9:12:d2:57:9e:9e:5b:dc: bd:07:9b:6e:b6:2d:3e:86:bd:1e:79:1b:73:d7:4d: 5d:2e:f5:aa:93:62:da:0c:85:52:4b:2d:0e:09:62: d4:4c:56:19:33:3d:f5:4d:89:db:12:96:29:29:ae: 8d:90:60:42:1a:df:81:1e:ea:b8:5b:05:60:82:f3: b0:a9:9c:ed:3f:f9:25:5d:81:48:af:95:d6:3e:1a: 74:ea:5f:04:8c:3d:ee:e6:bd:9b:19:70:b8:74:4a: f4:78:50:ac:6b:dc:92:bd:12:55:8c:78:92:01:2e: a9:64:ff:e4:c4:0f:7e:25:dd:17:d4:89:44:8e:13: 23:75:0e:4f:e1:13:f4:99:23:bb:a7:fc:30:78:c5: 1c:17:3b:05:a9:f4:ca:e3:b4:cd:05:38:13:a7:29: e0:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:74:EA:1C:D8:59:F1:27:1E:3E:5A:34:39:58:E1:65:DF:22:3C:04 X509v3 Authority Key Identifier: keyid:D6:23:C3:8C:2A:12:70:07:F9:3E:7C:84:0D:F8:75:02:2E:51:C5:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/224/1iPDjCoScAf5PnyEDfh1Ai5RxUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1iPDjCoScAf5PnyEDfh1Ai5RxUc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/224/zHTqHNhZ8ScePlo0OVjhZd8iPAQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.167.0.0/19 Signature Algorithm: sha256WithRSAEncryption 8c:2d:26:52:00:58:e0:11:79:83:aa:70:ba:39:e2:a5:3e:89: 99:e1:67:8b:25:18:40:06:ab:24:e6:35:3e:82:df:7c:bc:89: 65:c7:b5:d6:db:13:06:af:6d:31:c6:71:07:25:db:c7:51:04: 48:9a:2f:ff:9d:7d:2d:30:be:a9:ec:c5:a2:ac:22:3e:d9:ea: 27:21:ef:29:86:f9:cc:d9:90:2e:92:11:10:49:fc:73:86:61: 90:49:60:88:95:df:32:f1:ff:07:f6:a3:bd:d9:ef:35:af:cb: ec:71:4b:97:21:fd:58:7d:e2:30:89:ee:72:4f:7a:ea:48:0c: 8a:fe:f7:a6:64:e5:b9:db:13:9c:9e:0d:5a:71:c9:ed:73:0c: 2f:04:2a:11:61:87:e1:f7:14:59:2b:a8:aa:c3:fb:8c:d0:d6: 5c:3a:94:ad:01:5a:ee:43:4a:7d:c4:84:91:1d:6d:f3:f7:71: 60:ba:c5:49:57:76:7d:f3:85:7a:72:5e:d5:37:2c:eb:80:de: 5c:ef:b9:01:a6:de:6d:c9:dc:ac:ad:f7:d5:3a:31:d9:49:25: 6e:99:76:85:2f:8a:0e:3c:df:ff:f7:06:86:2b:75:9d:21:c2: 8d:7b:43:cc:f7:f0:8e:6a:91:75:ac:0c:8f:43:bb:65:95:d0: a4:19:19:55 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENjIz QzM4QzJBMTI3MDA3RjkzRTdDODQwREY4NzUwMjJFNTFDNTQ3MB4XDTI1MDYwMTAx MzMyMloXDTI2MDUyMzA5NTEwMFowMzExMC8GA1UEAxMoQ0M3NEVBMUNEODU5RjEy NzFFM0U1QTM0Mzk1OEUxNjVERjIyM0MwNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL+g+oQ20bshxLhqUp7Q6LuF/EtlNZlasXIhIAPRYoPG+Yh7C74/ otyjXEVQFdfiOuudpPwSx6lAvAwRdVJqMzK+CjGbnDVXgg1nOCYkdhvEaihNItj9 yb5MvT3YqpqwP9kS0leenlvcvQebbrYtPoa9Hnkbc9dNXS71qpNi2gyFUkstDgli 1ExWGTM99U2J2xKWKSmujZBgQhrfgR7quFsFYILzsKmc7T/5JV2BSK+V1j4adOpf BIw97ua9mxlwuHRK9HhQrGvckr0SVYx4kgEuqWT/5MQPfiXdF9SJRI4TI3UOT+ET 9Jkju6f8MHjFHBc7Ban0yuO0zQU4E6cp4LMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTMdOoc2FnxJx4+WjQ5WOFl3yI8BDAfBgNVHSMEGDAWgBTWI8OMKhJwB/k+fIQN +HUCLlHFRzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjI0LzFpUERqQ29TY0FmNVBueUVEZmgxQWk1UnhVYy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzFpUERqQ29TY0FmNVBueUVEZmgxQWk1 UnhVYy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMjQvekhUcUhOaFo4U2NlUGxvME9WamhaZDhpUEFRLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBdKnADANBgkqhkiG9w0BAQsFAAOCAQEAjC0mUgBY4BF5g6pwujnipT6JmeFn iyUYQAarJOY1PoLffLyJZce11tsTBq9tMcZxByXbx1EESJov/519LTC+qezFoqwi PtnqJyHvKYb5zNmQLpIREEn8c4ZhkElgiJXfMvH/B/ajvdnvNa/L7HFLlyH9WH3i MInuck966kgMiv73pmTludsTnJ4NWnHJ7XMMLwQqEWGH4fcUWSuoqsP7jNDWXDqU rQFa7kNKfcSEkR1t8/dxYLrFSVd2ffOFenJe1Tcs64DeXO+5AabebcncrK331Tox 2Uklbpl2hS+KDjzf//cGhit1nSHCjXtDzPfwjmqRdawMj0O7ZZXQpBkZVQ== -----END CERTIFICATE-----Generated at Thu Jun 5 20:32:33 2025 by rpki-client