$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/-qIuVs-T2rQLwB95CtUgDoG1sbw.roa File: -qIuVs-T2rQLwB95CtUgDoG1sbw.roa (raw, json) Hash identifier: GR8OjT18WVPtSL/yTxpYO6y8mfEarPVRlulRe7wtXGM= Subject key identifier: FA:A2:2E:56:CF:93:DA:B4:0B:C0:1F:79:0A:D5:20:0E:81:B5:B1:BC Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 87 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/-qIuVs-T2rQLwB95CtUgDoG1sbw.roa Signing time: Thu 17 Jul 2025 01:25:36 +0000 ROA not before: Thu 17 Jul 2025 01:25:36 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 203.145.224.0/19 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 17 01:25:36 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=FAA22E56CF93DAB40BC01F790AD5200E81B5B1BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1d:38:52:73:b6:6b:0e:3b:c0:50:21:ae:38: e9:68:b8:6c:aa:30:ed:d2:f3:a3:84:a5:d2:79:7a: 1c:0a:68:42:04:e5:dd:bd:02:39:f8:2d:e8:8c:7d: d1:2f:4a:72:cf:81:81:a2:df:ce:36:a2:79:47:6d: 3a:dc:7b:d1:c3:9c:7d:96:4a:08:a0:46:dc:d9:56: 1f:6b:c1:3f:13:4d:df:05:b4:b3:43:58:c0:5b:09: 28:3e:dd:1a:e8:15:12:04:a7:f2:62:e3:74:34:ff: ba:c5:76:32:4f:bd:ea:ee:b7:7a:73:5e:e2:59:08: e1:0b:dd:9d:a2:93:5e:98:8b:f5:f6:ae:50:67:bb: 29:e5:32:71:71:10:66:c3:ef:cf:8b:5d:89:17:b9: 19:ba:eb:e4:eb:9d:2c:2f:47:96:12:7a:78:a5:7f: 22:98:ae:22:3f:ca:b0:66:17:7a:e8:42:cd:a3:c9: 6f:4a:3d:75:a7:af:bb:b6:a0:20:68:af:e5:6b:ff: f5:fd:21:58:08:05:4e:0d:22:05:dc:78:24:63:8e: 5d:cd:f0:ea:a0:ea:a8:cd:c1:54:be:6b:bf:8c:a2: ba:d3:a7:f6:5c:f6:90:27:fc:c0:6f:f7:85:cb:8f: 42:c2:2f:9b:ec:54:12:27:49:ed:0e:12:23:41:e2: 95:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:A2:2E:56:CF:93:DA:B4:0B:C0:1F:79:0A:D5:20:0E:81:B5:B1:BC X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/-qIuVs-T2rQLwB95CtUgDoG1sbw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.145.224.0/19 Signature Algorithm: sha256WithRSAEncryption 62:10:7f:c6:79:53:f3:23:b7:d5:1e:08:ab:62:03:c1:c0:53: 8f:64:9d:e4:58:db:d0:84:e2:70:ed:bc:e8:1e:cb:0e:f9:a8: eb:3a:d6:9a:05:7b:45:87:f8:6e:48:00:f2:b5:b4:44:f1:8a: e1:90:99:63:20:9d:6a:8a:d6:63:e4:54:eb:e2:13:c4:b1:b6: 89:63:58:8b:5e:dc:04:1f:00:aa:d0:5e:97:f1:e1:ef:87:53: 30:db:6f:92:2e:f3:bd:27:0b:03:5e:93:f9:ad:84:3f:3d:66: d1:a0:03:69:a0:58:b6:87:c3:8f:e0:ad:24:60:9c:99:45:2a: 32:a8:96:fc:f3:2c:31:bb:ae:27:d2:b0:9b:87:27:07:34:f6: a0:6d:69:2e:1e:39:c7:73:1d:14:71:f5:06:1f:b0:6f:db:6e: 0d:db:95:91:83:f4:b1:d7:09:e4:49:a3:1f:84:3b:5a:27:ba: 93:1b:aa:f3:18:13:0a:b8:a2:48:4c:c3:29:00:53:0f:71:cb: e2:6f:e2:d5:2e:f0:15:a2:49:22:48:e0:19:8d:26:38:8c:22: 87:0f:51:7d:11:6a:0a:15:b5:13:49:74:a3:93:65:f4:48:4e: e9:1b:46:d3:15:3b:0c:72:86:56:e6:fc:82:88:e7:a1:f6:2a: 09:ed:5b:80 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MTcw MTI1MzZaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKEZBQTIyRTU2Q0Y5M0RB QjQwQkMwMUY3OTBBRDUyMDBFODFCNUIxQkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1HThSc7ZrDjvAUCGuOOlouGyqMO3S86OEpdJ5ehwKaEIE5d29 Ajn4LeiMfdEvSnLPgYGi3842onlHbTrce9HDnH2WSgigRtzZVh9rwT8TTd8FtLND WMBbCSg+3RroFRIEp/Ji43Q0/7rFdjJPverut3pzXuJZCOEL3Z2ik16Yi/X2rlBn uynlMnFxEGbD78+LXYkXuRm66+TrnSwvR5YSenilfyKYriI/yrBmF3roQs2jyW9K PXWnr7u2oCBor+Vr//X9IVgIBU4NIgXceCRjjl3N8Oqg6qjNwVS+a7+MorrTp/Zc 9pAn/MBv94XLj0LCL5vsVBInSe0OEiNB4pU1AgMBAAGjggIoMIICJDAdBgNVHQ4E FgQU+qIuVs+T2rQLwB95CtUgDoG1sbwwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My8tcUl1VnMtVDJyUUx3Qjk1Q3RVZ0RvRzFzYncu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFy5HgMA0GCSqGSIb3DQEBCwUAA4IBAQBiEH/GeVPzI7fVHgirYgPB wFOPZJ3kWNvQhOJw7bzoHssO+ajrOtaaBXtFh/huSADytbRE8YrhkJljIJ1qitZj 5FTr4hPEsbaJY1iLXtwEHwCq0F6X8eHvh1Mw22+SLvO9JwsDXpP5rYQ/PWbRoANp oFi2h8OP4K0kYJyZRSoyqJb88ywxu64n0rCbhycHNPagbWkuHjnHcx0UcfUGH7Bv 224N25WRg/Sx1wnkSaMfhDtaJ7qTG6rzGBMKuKJITMMpAFMPccvib+LVLvAVokki SOAZjSY4jCKHD1F9EWoKFbUTSXSjk2X0SE7pG0bTFTsMcoZW5vyCiOeh9ioJ7VuA -----END CERTIFICATE-----Generated at Wed Jul 30 03:20:13 2025 by rpki-client