$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/818/3hq5zFUOxg4X6sAaJLEZypYtOkE.roa File: 3hq5zFUOxg4X6sAaJLEZypYtOkE.roa (raw, json) Hash identifier: sTjmQ67cYsUyABphXXrKUJnO9P22DnApz5MRSJxKS2M= Subject key identifier: DE:1A:B9:CC:55:0E:C6:0E:17:EA:C0:1A:24:B1:19:CA:96:2D:3A:41 Certificate issuer: /CN=1B2E7E62DA8F12F3BB33E0B5E3CE002FDA28CF25 Certificate serial: 17 Authority key identifier: 1B:2E:7E:62:DA:8F:12:F3:BB:33:E0:B5:E3:CE:00:2F:DA:28:CF:25 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Gy5-YtqPEvO7M-C1484AL9oozyU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/3hq5zFUOxg4X6sAaJLEZypYtOkE.roa Signing time: Sat 05 Apr 2025 01:22:22 +0000 ROA not before: Sat 05 Apr 2025 01:22:22 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 131931 IP address blocks: 210.143.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/Gy5-YtqPEvO7M-C1484AL9oozyU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/Gy5-YtqPEvO7M-C1484AL9oozyU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Gy5-YtqPEvO7M-C1484AL9oozyU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 18:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B2E7E62DA8F12F3BB33E0B5E3CE002FDA28CF25 Validity Not Before: Apr 5 01:22:22 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=DE1AB9CC550EC60E17EAC01A24B119CA962D3A41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:87:16:c1:c6:f2:35:f5:ee:fd:49:c6:d6:be: d8:11:b7:eb:69:a7:8d:dd:c9:40:df:b5:5c:60:14: ca:b6:65:ec:ca:12:ca:ac:bf:f9:59:4b:f6:49:1f: 41:64:98:94:47:1b:e9:33:74:06:81:93:7e:13:2f: c3:6c:bf:ea:36:f8:1e:b3:8b:0c:df:ba:2e:2b:14: d8:af:cb:29:41:f9:3f:72:85:1a:36:cf:bb:e7:cf: 7e:37:88:46:1d:eb:a0:0c:c2:ef:63:0f:86:61:a1: 62:57:ce:02:e2:67:94:93:1f:9f:c6:ae:02:e1:04: 44:b6:f8:de:13:78:aa:4b:d4:b4:c3:65:a4:f7:92: d2:d2:a6:c0:17:de:87:70:f8:b0:9a:e7:71:ef:5e: ec:fb:d2:6e:3d:df:40:5e:70:cd:4e:f1:a8:5c:2d: 62:df:5f:e8:71:75:28:96:49:a2:99:df:de:ae:3b: 8d:6f:a8:96:29:f1:b7:c9:aa:83:76:30:48:12:fe: 8b:f5:f0:c4:b5:08:c9:62:f8:70:65:71:0c:37:1b: 42:81:c6:fa:47:c0:fc:7f:97:f1:3a:60:d0:99:8e: 75:b7:ff:f6:d9:a8:ca:86:d8:e8:19:85:c0:bf:aa: 85:3b:ea:82:79:9d:63:02:43:1f:5e:7e:36:79:90: f3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:1A:B9:CC:55:0E:C6:0E:17:EA:C0:1A:24:B1:19:CA:96:2D:3A:41 X509v3 Authority Key Identifier: keyid:1B:2E:7E:62:DA:8F:12:F3:BB:33:E0:B5:E3:CE:00:2F:DA:28:CF:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/Gy5-YtqPEvO7M-C1484AL9oozyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Gy5-YtqPEvO7M-C1484AL9oozyU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/3hq5zFUOxg4X6sAaJLEZypYtOkE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.143.16.0/20 Signature Algorithm: sha256WithRSAEncryption 2f:30:b6:9a:c9:5c:67:bf:63:af:d8:47:bc:e0:16:73:aa:c2: 9f:da:fa:0c:01:c4:4c:96:81:1f:d6:86:c5:c4:51:58:60:67: c8:d8:0b:c6:16:9f:af:88:d9:9c:1e:ba:7d:39:34:d8:b2:4c: 85:29:9c:76:12:fc:ab:0a:cd:64:6c:75:c4:8c:b7:ef:fd:f1: 3f:05:0d:85:21:af:de:e1:ff:70:42:5b:00:07:37:43:c6:d0: fb:d4:b6:bb:63:8f:af:f7:3e:ef:59:5a:27:ff:98:9d:92:e2: 2b:b6:07:1a:f1:3b:15:a3:35:2b:92:49:0f:d2:77:82:4b:30: a0:8e:26:f9:2b:57:83:83:08:10:f4:3b:ed:51:2e:5b:c7:60: a3:2f:ce:28:aa:d9:28:97:cf:ec:6f:07:73:16:28:5f:6f:5e: 47:4a:71:48:0e:79:02:b9:0b:c2:88:37:3f:63:d3:a1:46:41: ba:9d:f5:d9:5f:a4:e8:32:8a:30:05:aa:dd:ab:18:b1:d8:d1: e1:ea:23:5c:80:55:c7:7c:bb:7c:db:f3:1b:17:a7:77:ef:c6: 25:b4:6c:02:79:00:bf:b0:ff:ea:67:ac:ff:64:bf:40:d3:42: 21:6c:b7:40:45:61:63:ed:6c:97:0b:f3:0c:55:82:2f:b8:43: 48:83:d3:44 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBFzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQjJF N0U2MkRBOEYxMkYzQkIzM0UwQjVFM0NFMDAyRkRBMjhDRjI1MB4XDTI1MDQwNTAx MjIyMloXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoREUxQUI5Q0M1NTBFQzYw RTE3RUFDMDFBMjRCMTE5Q0E5NjJEM0E0MTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAN+HFsHG8jX17v1Jxta+2BG362mnjd3JQN+1XGAUyrZl7MoSyqy/ +VlL9kkfQWSYlEcb6TN0BoGTfhMvw2y/6jb4HrOLDN+6LisU2K/LKUH5P3KFGjbP u+fPfjeIRh3roAzC72MPhmGhYlfOAuJnlJMfn8auAuEERLb43hN4qkvUtMNlpPeS 0tKmwBfeh3D4sJrnce9e7PvSbj3fQF5wzU7xqFwtYt9f6HF1KJZJopnf3q47jW+o linxt8mqg3YwSBL+i/XwxLUIyWL4cGVxDDcbQoHG+kfA/H+X8Tpg0JmOdbf/9tmo yobY6BmFwL+qhTvqgnmdYwJDH15+NnmQ8ykCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTeGrnMVQ7GDhfqwBoksRnKli06QTAfBgNVHSMEGDAWgBQbLn5i2o8S87sz4LXj zgAv2ijPJTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODE4L0d5NS1ZdHFQRXZPN00tQzE0ODRBTDlvb3p5VS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0d5NS1ZdHFQRXZPN00tQzE0ODRBTDlv b3p5VS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84MTgvM2hxNXpGVU94ZzRYNnNBYUpMRVp5cFl0T2tFLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNKPEDANBgkqhkiG9w0BAQsFAAOCAQEALzC2mslcZ79jr9hHvOAWc6rCn9r6 DAHETJaBH9aGxcRRWGBnyNgLxhafr4jZnB66fTk02LJMhSmcdhL8qwrNZGx1xIy3 7/3xPwUNhSGv3uH/cEJbAAc3Q8bQ+9S2u2OPr/c+71laJ/+YnZLiK7YHGvE7FaM1 K5JJD9J3gkswoI4m+StXg4MIEPQ77VEuW8dgoy/OKKrZKJfP7G8HcxYoX29eR0px SA55ArkLwog3P2PToUZBup312V+k6DKKMAWq3asYsdjR4eojXIBVx3y7fNvzGxen d+/GJbRsAnkAv7D/6mes/2S/QNNCIWy3QEVhY+1slwvzDFWCL7hDSIPTRA== -----END CERTIFICATE-----Generated at Sat Apr 26 20:12:59 2025 by rpki-client