$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/173/jhh_jSFkCm45_NS2lKm4Y3S4TbU.roa File: jhh_jSFkCm45_NS2lKm4Y3S4TbU.roa (raw, json) Hash identifier: wOj81VSmWY63HO0GQpe9ks+IbgqvDqSZkCkLy3xEPfA= Subject key identifier: 8E:18:7F:8D:21:64:0A:6E:39:FC:D4:B6:94:A9:B8:63:74:B8:4D:B5 Certificate issuer: /CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Certificate serial: DB Authority key identifier: CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/jhh_jSFkCm45_NS2lKm4Y3S4TbU.roa Signing time: Tue 10 Jun 2025 10:46:35 +0000 ROA not before: Tue 10 Jun 2025 10:46:35 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 19905 IP address blocks: 203.129.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 18:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Validity Not Before: Jun 10 10:46:35 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=8E187F8D21640A6E39FCD4B694A9B86374B84DB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e9:c4:4f:4c:de:76:73:c2:58:8a:1c:cd:2c: b3:45:2c:df:0b:37:2c:44:db:18:1b:6b:00:e0:ee: 77:73:0b:f7:49:30:9d:4c:ab:43:64:a8:6d:ee:6a: c5:14:d3:41:26:56:07:91:b9:78:6e:31:58:7b:3c: 3f:af:41:44:e4:47:eb:e0:6e:dd:0f:d9:25:5f:a9: d7:b4:d7:3b:42:b3:03:88:5d:b2:dc:14:cc:91:8f: 06:e1:82:be:2c:e8:e5:ae:85:66:bd:38:e0:74:c4: c0:b2:1d:af:15:31:dd:9b:4c:9f:a6:cd:09:95:45: 81:dd:24:5a:1f:21:50:75:d8:6c:34:a7:57:3b:78: 6f:68:91:60:e2:48:c7:f8:92:a1:51:ea:46:4e:ba: a3:00:16:3e:cd:8f:68:c7:70:91:19:0c:dd:69:8e: 15:07:1a:a9:dd:2d:47:8a:31:56:d2:58:3e:cb:c1: 22:33:be:2f:bd:c5:e2:2b:5b:a3:da:22:00:4b:14: ff:4b:80:05:30:79:06:51:1b:91:3a:3d:6a:0c:1e: 1a:02:0f:5c:9c:31:92:16:18:f2:3a:69:07:ff:f8: f0:69:92:78:09:9c:e9:a0:99:ba:e0:30:45:3d:73: 15:ce:87:b5:7f:7d:4d:a7:38:49:7a:6e:f0:d3:ad: 15:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:18:7F:8D:21:64:0A:6E:39:FC:D4:B6:94:A9:B8:63:74:B8:4D:B5 X509v3 Authority Key Identifier: keyid:CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/jhh_jSFkCm45_NS2lKm4Y3S4TbU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.129.112.0/20 Signature Algorithm: sha256WithRSAEncryption 4a:b3:f9:23:3f:4f:54:62:0f:ee:61:d6:43:c3:a5:09:58:4a: fe:58:43:0b:75:09:ce:9c:14:03:c7:e3:3e:b2:c1:e5:b1:dd: 2e:75:28:3f:4a:6f:c8:52:2c:b2:48:66:bf:d1:b7:39:f5:15: 7e:e3:29:e4:ac:c9:48:96:17:0d:45:cb:7d:fd:58:50:d6:05: 8a:39:6f:4a:d9:59:8b:bf:4c:ee:02:68:d8:61:9f:6a:48:ed: 16:24:41:36:af:e8:7e:13:c5:69:61:8e:a1:59:eb:35:36:d8: 96:e7:db:12:97:41:be:ec:89:3d:61:c7:92:d3:19:b2:f6:ac: 04:18:5d:4d:7d:4f:cf:59:ba:91:94:8b:38:c2:d4:15:13:01: 4a:ab:2d:9d:28:7c:d5:16:b0:68:7d:a1:da:ac:cd:41:dd:eb: a7:74:02:fc:04:3b:d9:da:53:0a:55:c6:80:63:6e:ee:46:f6: 1b:3d:9b:ff:90:6a:80:50:b8:07:7c:6d:39:93:16:2b:2b:be: 4c:b1:74:a2:64:14:2e:ce:0c:10:79:e5:ee:8f:7a:14:0f:07: e7:e4:59:ae:b8:82:dd:18:44:92:ea:e9:01:a6:6f:29:83:d2: 72:59:46:8e:c4:d9:02:85:45:83:34:2c:d3:e3:af:a9:97:f5: a8:a7:61:34 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICANswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Qz MTI0MjdGODAwQjgyOTZEQTExNTQwQzhCODZFNUNFMTJGQzZDNTAeFw0yNTA2MTAx MDQ2MzVaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDhFMTg3RjhEMjE2NDBB NkUzOUZDRDRCNjk0QTlCODYzNzRCODREQjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC66cRPTN52c8JYihzNLLNFLN8LNyxE2xgbawDg7ndzC/dJMJ1M q0NkqG3uasUU00EmVgeRuXhuMVh7PD+vQUTkR+vgbt0P2SVfqde01ztCswOIXbLc FMyRjwbhgr4s6OWuhWa9OOB0xMCyHa8VMd2bTJ+mzQmVRYHdJFofIVB12Gw0p1c7 eG9okWDiSMf4kqFR6kZOuqMAFj7Nj2jHcJEZDN1pjhUHGqndLUeKMVbSWD7LwSIz vi+9xeIrW6PaIgBLFP9LgAUweQZRG5E6PWoMHhoCD1ycMZIWGPI6aQf/+PBpkngJ nOmgmbrgMEU9cxXOh7V/fU2nOEl6bvDTrRWtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUjhh/jSFkCm45/NS2lKm4Y3S4TbUwHwYDVR0jBBgwFoAUzTEkJ/gAuCltoRVA yLhuXOEvxsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE3My96VEVrSl9nQXVDbHRvUlZBeUxodVhPRXZ4c1UuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC96VEVrSl9nQXVDbHRvUlZBeUxodVhP RXZ4c1UuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTczL2poaF9qU0ZrQ200NV9OUzJsS200WTNTNFRiVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATLgXAwDQYJKoZIhvcNAQELBQADggEBAEqz+SM/T1RiD+5h1kPDpQlYSv5Y Qwt1Cc6cFAPH4z6yweWx3S51KD9Kb8hSLLJIZr/Rtzn1FX7jKeSsyUiWFw1Fy339 WFDWBYo5b0rZWYu/TO4CaNhhn2pI7RYkQTav6H4TxWlhjqFZ6zU22Jbn2xKXQb7s iT1hx5LTGbL2rAQYXU19T89ZupGUizjC1BUTAUqrLZ0ofNUWsGh9odqszUHd66d0 AvwEO9naUwpVxoBjbu5G9hs9m/+QaoBQuAd8bTmTFisrvkyxdKJkFC7ODBB55e6P ehQPB+fkWa64gt0YRJLq6QGmbymD0nJZRo7E2QKFRYM0LNPjr6mX9ainYTQ= -----END CERTIFICATE-----Generated at Sun Jun 22 22:39:43 2025 by rpki-client