$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/853/HZXpGbdVqXnhoRva-Ip4Z-cLVwI.roa File: HZXpGbdVqXnhoRva-Ip4Z-cLVwI.roa (raw, json) Hash identifier: TNP4le9eSJCW6G4/7nsbekOc/HUlkYb+dBLN34Xs8uI= Subject key identifier: 1D:95:E9:19:B7:55:A9:79:E1:A1:1B:DA:F8:8A:78:67:E7:0B:57:02 Certificate issuer: /CN=27AC0CD24867ABE880FBB7423FD3980DBFA431D0 Certificate serial: 4C Authority key identifier: 27:AC:0C:D2:48:67:AB:E8:80:FB:B7:42:3F:D3:98:0D:BF:A4:31:D0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/J6wM0khnq-iA-7dCP9OYDb-kMdA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/853/HZXpGbdVqXnhoRva-Ip4Z-cLVwI.roa Signing time: Fri 31 Jan 2025 01:31:46 +0000 ROA not before: Fri 31 Jan 2025 01:31:46 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 2506 IP address blocks: 202.249.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/853/J6wM0khnq-iA-7dCP9OYDb-kMdA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/853/J6wM0khnq-iA-7dCP9OYDb-kMdA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/J6wM0khnq-iA-7dCP9OYDb-kMdA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27AC0CD24867ABE880FBB7423FD3980DBFA431D0 Validity Not Before: Jan 31 01:31:46 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=1D95E919B755A979E1A11BDAF88A7867E70B5702 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3c:48:dd:c8:17:f7:4c:95:e8:7d:33:07:00: 8b:7b:2b:c0:83:67:27:91:fc:a3:44:e0:72:b2:3b: 93:95:65:21:f4:81:41:03:17:6b:51:6c:5e:35:a0: 67:46:01:b1:c8:84:ca:56:72:a3:f0:f7:d9:54:a2: 45:e9:f4:f9:74:43:b4:4a:26:a8:3f:3d:71:16:54: f8:38:77:e3:8d:e6:de:ff:e6:78:1c:74:1d:d8:bc: d9:2a:0c:9d:d7:92:86:2a:c2:65:b2:28:44:70:21: 84:90:ea:f1:0e:14:32:19:13:f9:b3:0d:89:85:00: 85:21:39:1e:af:b5:19:22:95:d4:e6:3f:80:d9:e7: 41:fe:44:92:a4:75:ea:3f:e2:8c:ea:95:bb:71:55: 41:d7:c1:86:9e:37:60:3c:f6:50:40:18:b7:0f:97: a7:e7:06:2f:d2:08:2f:c8:46:05:ec:b5:d1:00:30: 73:45:46:63:a2:a7:66:4d:ea:1c:6a:e2:31:bf:02: d5:b2:70:81:d3:2d:19:da:20:14:48:b9:0e:53:b6: ad:b5:14:d3:a7:45:fb:a7:2e:f1:fe:89:df:2c:5f: bb:f6:af:df:c2:00:e4:1a:d3:93:75:a6:c4:51:5e: 3a:06:85:ac:b6:a7:3d:d3:aa:b4:18:93:ec:1d:d7: 92:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:95:E9:19:B7:55:A9:79:E1:A1:1B:DA:F8:8A:78:67:E7:0B:57:02 X509v3 Authority Key Identifier: keyid:27:AC:0C:D2:48:67:AB:E8:80:FB:B7:42:3F:D3:98:0D:BF:A4:31:D0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/853/J6wM0khnq-iA-7dCP9OYDb-kMdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/J6wM0khnq-iA-7dCP9OYDb-kMdA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/853/HZXpGbdVqXnhoRva-Ip4Z-cLVwI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.249.192.0/18 Signature Algorithm: sha256WithRSAEncryption 6f:14:57:21:cb:ff:49:84:b9:d6:07:d9:29:8d:9e:09:1c:56: 2b:c3:f2:33:09:50:d9:3a:e7:ef:bc:0e:65:4b:ba:bb:fc:af: 05:1b:db:ed:e0:91:7a:96:60:94:03:5d:16:77:f5:0a:b6:be: 8b:63:07:01:74:78:b1:01:1d:8e:20:19:13:f8:93:3a:7c:23: 62:0a:e8:55:6f:1d:35:18:7d:0e:d8:51:24:29:b6:1b:23:66: 60:75:87:07:a3:b4:b8:41:c8:37:81:5d:f0:e5:23:c0:69:a0: c5:31:6f:09:2a:61:4f:aa:58:de:34:21:c5:49:ea:18:9c:c7: d9:b5:a9:94:e1:95:e4:db:13:18:67:e6:d4:47:be:57:22:aa: 8d:3d:bc:2d:0d:55:e2:70:c0:10:3b:c6:70:95:95:bd:81:75: ee:c3:dd:6a:f2:7c:3c:6f:ea:12:f8:64:8c:3e:e2:a9:2e:e0: ce:f7:ab:57:d7:80:67:c6:05:30:6a:57:be:b7:ba:39:78:a4: ae:c0:a4:16:95:46:4f:df:a3:af:e1:cf:1f:9e:23:0c:c8:5f: 0c:5b:04:43:2c:6f:29:49:12:02:cb:bd:d3:43:26:86:63:69: 81:16:06:98:c1:16:1c:c1:df:ac:29:c3:9d:90:d8:e5:ae:fb: e3:0e:4e:8c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBTDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyN0FD MENEMjQ4NjdBQkU4ODBGQkI3NDIzRkQzOTgwREJGQTQzMUQwMB4XDTI1MDEzMTAx MzE0NloXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoMUQ5NUU5MTlCNzU1QTk3 OUUxQTExQkRBRjg4QTc4NjdFNzBCNTcwMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMA8SN3IF/dMleh9MwcAi3srwINnJ5H8o0TgcrI7k5VlIfSBQQMX a1FsXjWgZ0YBsciEylZyo/D32VSiRen0+XRDtEomqD89cRZU+Dh3443m3v/meBx0 Hdi82SoMndeShirCZbIoRHAhhJDq8Q4UMhkT+bMNiYUAhSE5Hq+1GSKV1OY/gNnn Qf5EkqR16j/ijOqVu3FVQdfBhp43YDz2UEAYtw+Xp+cGL9IIL8hGBey10QAwc0VG Y6KnZk3qHGriMb8C1bJwgdMtGdogFEi5DlO2rbUU06dF+6cu8f6J3yxfu/av38IA 5BrTk3WmxFFeOgaFrLanPdOqtBiT7B3XkmUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQdlekZt1WpeeGhG9r4inhn5wtXAjAfBgNVHSMEGDAWgBQnrAzSSGer6ID7t0I/ 05gNv6Qx0DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODUzL0o2d00wa2hucS1pQS03ZENQOU9ZRGIta01kQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0o2d00wa2hucS1pQS03ZENQOU9ZRGIt a01kQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84NTMvSFpYcEdiZFZxWG5ob1J2YS1JcDRaLWNMVndJLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBsr5wDANBgkqhkiG9w0BAQsFAAOCAQEAbxRXIcv/SYS51gfZKY2eCRxWK8Py MwlQ2Trn77wOZUu6u/yvBRvb7eCRepZglANdFnf1Cra+i2MHAXR4sQEdjiAZE/iT OnwjYgroVW8dNRh9DthRJCm2GyNmYHWHB6O0uEHIN4Fd8OUjwGmgxTFvCSphT6pY 3jQhxUnqGJzH2bWplOGV5NsTGGfm1Ee+VyKqjT28LQ1V4nDAEDvGcJWVvYF17sPd avJ8PG/qEvhkjD7iqS7gzverV9eAZ8YFMGpXvre6OXikrsCkFpVGT9+jr+HPH54j DMhfDFsEQyxvKUkSAsu900MmhmNpgRYGmMEWHMHfrCnDnZDY5a774w5OjA== -----END CERTIFICATE-----Generated at Wed Feb 19 22:34:30 2025 by rpki-client