$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/ho48Egpt-Rab2X33KIdjPjrOOOM.roa File: ho48Egpt-Rab2X33KIdjPjrOOOM.roa (raw, json) Hash identifier: 2knPcCwk7YhHiRZsYJC6swzx92jgtmXhmDp1H8/c7zY= Subject key identifier: 86:8E:3C:12:0A:6D:F9:16:9B:D9:7D:F7:28:87:63:3E:3A:CE:38:E3 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0435 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/ho48Egpt-Rab2X33KIdjPjrOOOM.roa Signing time: Tue 10 Jun 2025 10:45:05 +0000 ROA not before: Tue 10 Jun 2025 10:45:05 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 10013 IP address blocks: 36.55.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 18:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1077 (0x435) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jun 10 10:45:05 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=868E3C120A6DF9169BD97DF72887633E3ACE38E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c1:11:82:24:f6:34:db:37:35:5b:f7:d7:cd: e9:9a:ba:1a:94:54:f4:77:5a:fa:df:1e:03:81:90: 75:b1:59:f7:5e:94:9d:68:12:ce:c3:4a:33:73:17: 46:82:e8:08:c0:ed:d1:b0:8a:10:d9:ea:9d:25:3c: c1:de:65:36:f2:c9:51:37:e5:e4:a6:0a:44:4c:60: 15:7c:3a:01:ad:f2:51:d5:cd:fc:65:18:77:03:9c: 98:8f:13:d1:6d:2e:84:7a:c3:83:24:a5:7f:2a:0a: b4:fa:eb:48:e9:02:86:08:df:17:f3:dc:dc:37:e0: 82:f1:63:f2:09:a9:31:77:f5:7d:cc:71:7b:c3:e3: 9f:13:97:37:86:d0:46:05:87:fb:de:93:f0:02:c4: bb:23:85:ec:9f:94:36:af:a8:cc:63:9c:18:9a:df: 8b:5c:77:60:6a:9c:2e:0b:04:d7:27:7e:8e:de:e0: dc:c4:cc:b7:4b:f1:39:78:c1:68:85:98:7a:92:4c: f8:a8:73:64:48:96:ab:fd:ac:fa:99:e1:bf:d5:2e: 33:90:7e:2a:2e:ce:05:80:c6:cc:c1:d9:0e:75:cf: ab:40:fc:50:9e:e9:d7:d4:eb:ba:65:6d:05:de:7a: 50:de:47:52:ef:8c:b2:0c:ba:ee:af:bf:ae:57:79: 80:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:8E:3C:12:0A:6D:F9:16:9B:D9:7D:F7:28:87:63:3E:3A:CE:38:E3 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/ho48Egpt-Rab2X33KIdjPjrOOOM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.55.252.0/22 Signature Algorithm: sha256WithRSAEncryption 0a:3b:06:8a:72:45:2b:ed:cc:e2:74:68:e6:c4:a4:90:d7:36: 18:6c:f1:b4:33:a6:22:9a:18:d6:c6:75:5a:b6:a7:d6:ea:66: 24:cc:5e:d6:b4:c2:5a:8a:a4:71:6a:6b:2b:2d:61:34:12:8a: 1c:e9:c3:23:27:29:8b:13:43:23:f8:ff:69:f9:04:ee:bb:9d: 44:59:40:87:e7:7a:97:5e:45:5b:8b:0c:38:c2:37:a1:fc:6b: fc:c8:61:2b:a1:25:a1:20:7d:ff:9e:d6:5a:80:87:43:e7:0b: 0b:3b:b1:e4:3c:55:4b:0f:76:3c:3f:f5:db:53:00:15:bd:3d: 49:00:70:dc:e7:28:a6:c2:98:39:b0:84:db:d4:ce:a6:94:1a: 0c:24:41:5f:e4:80:bb:bb:62:a0:57:be:95:8a:a5:d6:55:d4: fc:02:0d:e9:03:c6:06:6d:62:a4:30:4d:e7:05:74:b8:ed:a0: bc:c0:25:71:e5:05:0f:32:6c:f9:0a:11:55:0e:b9:ee:ed:1f: 44:9c:97:2f:24:42:93:d8:ea:93:99:5b:26:a4:13:5f:bf:4d: e0:65:a7:53:39:e5:4e:ed:3a:19:4c:e7:49:94:e8:3c:e7:1d: d2:c4:08:4b:05:68:cb:a7:a7:97:a3:f9:b9:44:af:b6:68:f3: cf:40:e9:52 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBDUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA2MTAx MDQ1MDVaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDg2OEUzQzEyMEE2REY5 MTY5QkQ5N0RGNzI4ODc2MzNFM0FDRTM4RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1wRGCJPY02zc1W/fXzemauhqUVPR3WvrfHgOBkHWxWfdelJ1o Es7DSjNzF0aC6AjA7dGwihDZ6p0lPMHeZTbyyVE35eSmCkRMYBV8OgGt8lHVzfxl GHcDnJiPE9FtLoR6w4MkpX8qCrT660jpAoYI3xfz3Nw34ILxY/IJqTF39X3McXvD 458TlzeG0EYFh/vek/ACxLsjheyflDavqMxjnBia34tcd2BqnC4LBNcnfo7e4NzE zLdL8Tl4wWiFmHqSTPioc2RIlqv9rPqZ4b/VLjOQfiouzgWAxszB2Q51z6tA/FCe 6dfU67plbQXeelDeR1LvjLIMuu6vv65XeYALAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUho48Egpt+Rab2X33KIdjPjrOOOMwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L2hvNDhFZ3B0LVJhYjJYMzNLSWRqUGpyT09PTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIkN/wwDQYJKoZIhvcNAQELBQADggEBAAo7BopyRSvtzOJ0aObEpJDXNhhs 8bQzpiKaGNbGdVq2p9bqZiTMXta0wlqKpHFqaystYTQSihzpwyMnKYsTQyP4/2n5 BO67nURZQIfnepdeRVuLDDjCN6H8a/zIYSuhJaEgff+e1lqAh0PnCws7seQ8VUsP djw/9dtTABW9PUkAcNznKKbCmDmwhNvUzqaUGgwkQV/kgLu7YqBXvpWKpdZV1PwC DekDxgZtYqQwTecFdLjtoLzAJXHlBQ8ybPkKEVUOue7tH0Scly8kQpPY6pOZWyak E1+/TeBlp1M55U7tOhlM50mU6DznHdLECEsFaMunp5ej+blEr7Zo889A6VI= -----END CERTIFICATE-----Generated at Sun Jun 22 22:12:08 2025 by rpki-client