$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/HoqCyHpO5pNANj7ksyj2x3ijTDc.roa File: HoqCyHpO5pNANj7ksyj2x3ijTDc.roa (raw, json) Hash identifier: xp3Ckllk+obU9MN1x4Fbf6jtk8OcSjqGKrCX9EgvQrA= Subject key identifier: 1E:8A:82:C8:7A:4E:E6:93:40:36:3E:E4:B3:28:F6:C7:78:A3:4C:37 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DAF Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HoqCyHpO5pNANj7ksyj2x3ijTDc.roa Signing time: Tue 01 Apr 2025 02:24:42 +0000 ROA not before: Tue 01 Apr 2025 02:24:42 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 110.158.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3503 (0xdaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:24:42 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=1E8A82C87A4EE69340363EE4B328F6C778A34C37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:da:77:fb:6a:d0:52:ff:49:6a:51:c9:c9:69: 2c:77:50:29:40:97:03:ef:c5:66:62:ce:19:f1:f1: 32:d3:94:38:70:a9:9e:f2:55:5a:18:7c:8b:12:3a: 14:c7:26:87:5f:60:f3:14:41:2b:db:1c:fc:cb:ba: dc:83:c0:b5:40:f4:e6:5b:68:86:cb:c2:44:6e:a6: ee:43:d5:a0:a7:98:62:d4:e2:54:8a:68:7c:22:97: 1e:e1:b3:b3:6a:65:20:57:ca:f1:5b:1a:4b:4a:32: 14:f3:2d:c5:2a:b0:f7:ae:3e:47:16:de:10:ee:85: 97:c5:88:93:a8:3a:80:d4:c2:54:0d:14:b8:7a:59: 99:5c:ee:12:3e:8d:be:e7:e6:9f:e5:40:9c:91:43: 02:4f:ff:5f:89:82:32:ac:02:da:c0:22:92:da:3f: 2b:bb:80:dd:30:f2:c5:9d:28:fb:a9:3a:f3:cb:0f: ab:53:d5:5b:2c:5b:ab:c2:51:54:40:74:e3:da:47: 69:5e:86:ef:ed:48:43:ca:e0:48:7d:55:d4:8d:0c: 99:1a:2d:0c:7c:3b:11:93:01:ef:a9:f3:8d:b6:17: 79:09:68:47:ac:3a:02:3c:70:a9:b4:03:59:48:b1: b4:29:0d:d5:f7:b4:0e:b0:0f:ce:d3:d4:90:5a:13: a5:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:8A:82:C8:7A:4E:E6:93:40:36:3E:E4:B3:28:F6:C7:78:A3:4C:37 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HoqCyHpO5pNANj7ksyj2x3ijTDc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.158.132.0/22 Signature Algorithm: sha256WithRSAEncryption 73:0a:b5:89:ea:76:27:da:4f:e3:45:6d:84:40:6a:42:3e:a7: 9f:82:0a:6b:6d:85:5a:99:17:06:88:0f:7a:9e:8f:28:1c:f4: d4:f4:ca:20:d6:44:f5:a6:03:dd:57:2d:df:5c:28:08:34:64: bb:eb:f7:b3:e1:65:af:e1:12:70:30:6f:11:31:99:fe:d5:67: 12:2d:37:2e:f5:1f:37:f7:81:75:73:0f:18:00:f8:62:64:32: 04:38:15:c1:9b:be:5b:6a:0c:53:e6:b4:2d:12:f7:b9:ae:89: b8:98:d2:16:56:0a:49:a0:53:5d:4e:a7:aa:48:21:1a:e9:58: ae:c0:31:6f:03:6c:4f:88:ee:8c:16:ea:04:8c:df:5c:15:34: 37:86:1a:dd:7c:91:1f:3d:60:2e:a8:be:35:64:39:a4:49:4d: 53:53:26:15:22:65:a4:60:6b:90:fc:47:6d:6f:38:10:f9:ef: 29:4c:ac:a0:11:2a:e9:25:21:bb:94:64:84:43:0c:1e:09:55: b9:5c:1d:e8:24:b0:8d:c9:f1:7d:f3:89:bf:0a:56:2d:ac:4f: 91:81:8e:fb:92:c2:39:b7:59:14:ee:44:26:77:ca:e2:f9:7e: 63:1a:9b:cf:b9:98:a6:71:be:92:f0:8d:b3:89:8c:70:47:06: fc:f2:5e:87 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDa8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI0NDJaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDFFOEE4MkM4N0E0RUU2 OTM0MDM2M0VFNEIzMjhGNkM3NzhBMzRDMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDj2nf7atBS/0lqUcnJaSx3UClAlwPvxWZizhnx8TLTlDhwqZ7y VVoYfIsSOhTHJodfYPMUQSvbHPzLutyDwLVA9OZbaIbLwkRupu5D1aCnmGLU4lSK aHwilx7hs7NqZSBXyvFbGktKMhTzLcUqsPeuPkcW3hDuhZfFiJOoOoDUwlQNFLh6 WZlc7hI+jb7n5p/lQJyRQwJP/1+JgjKsAtrAIpLaPyu7gN0w8sWdKPupOvPLD6tT 1VssW6vCUVRAdOPaR2lehu/tSEPK4Eh9VdSNDJkaLQx8OxGTAe+p8422F3kJaEes OgI8cKm0A1lIsbQpDdX3tA6wD87T1JBaE6W7AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUHoqCyHpO5pNANj7ksyj2x3ijTDcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0hvcUN5SHBPNXBOQU5qN2tzeWoyeDNpalREYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJunoQwDQYJKoZIhvcNAQELBQADggEBAHMKtYnqdifaT+NFbYRAakI+p5+C CmtthVqZFwaID3qejygc9NT0yiDWRPWmA91XLd9cKAg0ZLvr97PhZa/hEnAwbxEx mf7VZxItNy71Hzf3gXVzDxgA+GJkMgQ4FcGbvltqDFPmtC0S97muibiY0hZWCkmg U11Op6pIIRrpWK7AMW8DbE+I7owW6gSM31wVNDeGGt18kR89YC6ovjVkOaRJTVNT JhUiZaRga5D8R21vOBD57ylMrKARKuklIbuUZIRDDB4JVblcHegksI3J8X3zib8K Vi2sT5GBjvuSwjm3WRTuRCZ3yuL5fmMam8+5mKZxvpLwjbOJjHBHBvzyXoc= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:46 2025 by rpki-client on console.sobornost.net