$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/1xhsMQ8emkl68fL-N7bqPZm2hl8.roa File: 1xhsMQ8emkl68fL-N7bqPZm2hl8.roa (raw, json) Hash identifier: VcnGwdZVxQUA2tbfZrgjFM5RStQxXRjoT0lwda9yzS0= Subject key identifier: D7:18:6C:31:0F:1E:9A:49:7A:F1:F2:FE:37:B6:EA:3D:99:B6:86:5F Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: D5 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/1xhsMQ8emkl68fL-N7bqPZm2hl8.roa Signing time: Thu 24 Jul 2025 01:44:31 +0000 ROA not before: Thu 24 Jul 2025 01:44:31 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 210.171.124.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 01:44:31 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=D7186C310F1E9A497AF1F2FE37B6EA3D99B6865F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ee:99:51:32:9b:d0:d2:95:2d:8a:fe:84:46: 66:47:dc:86:bb:fa:11:53:c4:1d:1b:cd:c0:73:25: af:62:95:9d:ce:b0:9a:42:a5:1d:6f:50:96:7c:0c: 60:c5:c1:a8:ea:3a:3c:3e:28:00:7d:a1:97:3a:9b: c2:bc:50:00:7c:99:d9:e6:0c:dd:19:d3:af:7a:7f: cc:17:6a:20:67:8c:1d:09:05:08:34:ab:b9:5b:3c: 84:d6:8a:b7:c6:9b:5b:55:8e:90:a7:8f:b3:3e:2e: 75:ff:07:c8:af:99:89:f6:26:8f:75:39:c4:d5:52: 86:90:5f:fe:f1:bf:cd:cb:96:b8:40:a8:1b:5c:20: 1b:d3:35:15:7f:c8:d7:63:3b:a3:bc:b1:c3:08:1e: e6:55:e6:66:4a:11:22:ac:d9:6f:43:0d:e8:3a:8a: 20:94:61:2f:8c:61:d0:b8:cf:99:1c:1a:30:8d:e6: d3:db:32:be:fb:50:75:dc:cb:39:6a:0f:15:1c:1f: d5:17:f2:c4:25:30:18:03:b2:fe:5d:9b:ec:38:d1: 43:d4:72:62:ef:5c:8c:e4:c9:a0:51:f0:b2:e5:2b: b0:e6:22:f0:64:d6:83:6f:e2:11:e2:a9:c7:ff:83: 73:c0:09:da:f0:ab:12:d3:65:d9:26:92:e4:73:e1: 63:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:18:6C:31:0F:1E:9A:49:7A:F1:F2:FE:37:B6:EA:3D:99:B6:86:5F X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/1xhsMQ8emkl68fL-N7bqPZm2hl8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.171.124.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:a6:22:e5:74:7c:02:20:a1:af:28:2e:cc:ff:e4:17:e4:8b: 2f:c7:9b:52:31:89:68:8b:49:35:8c:7c:d8:f0:b7:93:34:db: ba:d0:a8:d9:17:92:8d:e9:49:c6:f1:9d:c4:85:44:55:35:42: 29:3b:4c:09:74:05:c9:bc:08:7a:c6:18:7b:00:a1:9b:38:a3: ec:a1:a1:f8:d3:b1:67:4f:e6:6b:a6:8c:39:ba:ea:d7:b0:6a: f4:04:80:88:bc:42:74:41:0b:57:b0:32:b2:81:fb:b8:f7:0e: a7:19:2d:49:00:5b:fb:9d:1f:73:89:8a:16:bc:30:6d:62:a1: a5:5b:05:d8:5a:fb:b5:5c:06:2e:60:87:e1:cb:83:2c:4f:2c: 3d:48:16:67:d3:52:9a:81:05:6c:61:9f:a8:e6:01:95:7a:a3: 19:dc:5d:7e:ec:48:aa:61:2e:92:aa:8d:d5:39:42:49:02:bc: 88:cb:05:c3:ef:bb:aa:b3:8a:ec:e0:31:cf:c5:37:4d:c5:4a: a7:b9:dc:a7:66:7f:0b:98:c1:f2:1a:6a:b8:16:0e:92:58:58: cd:99:85:06:c8:94:5f:5d:62:5c:71:c9:a6:99:77:f0:5f:39: 87:4d:a8:67:cc:e0:5f:6a:05:2b:db:dd:08:a0:48:2f:16:e4: a2:7a:b0:b7 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICANUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MTQ0MzFaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKEQ3MTg2QzMxMEYxRTlB NDk3QUYxRjJGRTM3QjZFQTNEOTlCNjg2NUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDS7plRMpvQ0pUtiv6ERmZH3Ia7+hFTxB0bzcBzJa9ilZ3OsJpC pR1vUJZ8DGDFwajqOjw+KAB9oZc6m8K8UAB8mdnmDN0Z0696f8wXaiBnjB0JBQg0 q7lbPITWirfGm1tVjpCnj7M+LnX/B8ivmYn2Jo91OcTVUoaQX/7xv83LlrhAqBtc IBvTNRV/yNdjO6O8scMIHuZV5mZKESKs2W9DDeg6iiCUYS+MYdC4z5kcGjCN5tPb Mr77UHXcyzlqDxUcH9UX8sQlMBgDsv5dm+w40UPUcmLvXIzkyaBR8LLlK7DmIvBk 1oNv4hHiqcf/g3PACdrwqxLTZdkmkuRz4WN7AgMBAAGjggIoMIICJDAdBgNVHQ4E FgQU1xhsMQ8emkl68fL+N7bqPZm2hl8wHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My8xeGhzTVE4ZW1rbDY4ZkwtTjdicVBabTJobDgu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQC0qt8MA0GCSqGSIb3DQEBCwUAA4IBAQAMpiLldHwCIKGvKC7M/+QX 5Isvx5tSMYloi0k1jHzY8LeTNNu60KjZF5KN6UnG8Z3EhURVNUIpO0wJdAXJvAh6 xhh7AKGbOKPsoaH407FnT+Zrpow5uurXsGr0BICIvEJ0QQtXsDKygfu49w6nGS1J AFv7nR9ziYoWvDBtYqGlWwXYWvu1XAYuYIfhy4MsTyw9SBZn01KagQVsYZ+o5gGV eqMZ3F1+7EiqYS6Sqo3VOUJJAryIywXD77uqs4rs4DHPxTdNxUqnudynZn8LmMHy Gmq4Fg6SWFjNmYUGyJRfXWJcccmmmXfwXzmHTahnzOBfagUr290IoEgvFuSierC3 -----END CERTIFICATE-----Generated at Wed Jul 30 03:19:52 2025 by rpki-client