$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/2wTezv-4XveEtzvcvC6_MOQAAJs.roa File: 2wTezv-4XveEtzvcvC6_MOQAAJs.roa (raw, json) Hash identifier: wBIuzIa+GpNMmFlJslJ+wvnLPuuojk8tXWU8cc1eIn4= Subject key identifier: DB:04:DE:CE:FF:B8:5E:F7:84:B7:3B:DC:BC:2E:BF:30:E4:00:00:9B Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: FA Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/2wTezv-4XveEtzvcvC6_MOQAAJs.roa Signing time: Thu 24 Jul 2025 02:05:28 +0000 ROA not before: Thu 24 Jul 2025 02:05:28 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 211.14.136.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 02:05:28 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=DB04DECEFFB85EF784B73BDCBC2EBF30E400009B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:cb:d0:20:77:54:00:fc:c0:83:25:ab:e6:56: 25:3e:12:30:f4:39:99:6a:4a:cd:76:63:71:94:de: 80:a1:b7:99:ea:38:5c:6e:e6:32:de:34:45:86:73: bb:b8:8d:65:a6:98:4b:9a:88:2d:1f:66:dd:94:e4: 88:ec:44:7a:5c:8e:eb:48:3e:77:dd:e8:5a:75:5d: 7a:00:c4:41:2c:c0:59:a7:4e:b8:02:02:59:3a:b6: e4:b7:b7:57:ba:c0:43:7e:1f:aa:1d:15:c4:f6:6d: f4:39:98:3d:26:37:63:a1:87:03:f8:24:80:2d:c4: aa:58:38:76:a8:06:f4:84:5a:a3:ea:5d:80:df:09: ca:76:d3:52:b2:21:95:92:84:dc:c5:3e:fc:84:e0: 88:45:99:da:3a:71:21:e7:57:be:41:d8:0f:ab:69: cd:46:98:4e:09:24:6a:49:89:72:7a:04:d3:3f:2d: 0b:11:92:fe:94:40:fe:5a:52:30:bc:ae:b5:52:18: 30:17:0e:3b:20:47:79:ef:a6:6d:db:6e:5d:50:02: 79:cb:51:eb:00:68:ae:05:88:40:7b:42:da:34:9f: b3:46:37:d9:e1:98:82:f8:42:c6:38:91:f9:fd:13: bd:7e:d3:b4:8c:8c:c0:54:3c:7f:f9:b6:15:0c:ad: df:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:04:DE:CE:FF:B8:5E:F7:84:B7:3B:DC:BC:2E:BF:30:E4:00:00:9B X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/2wTezv-4XveEtzvcvC6_MOQAAJs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.136.0/21 Signature Algorithm: sha256WithRSAEncryption 3d:49:92:3e:f5:20:19:43:17:d5:25:f6:7e:53:68:31:d0:4a: b8:1c:7b:c5:d8:c9:a2:22:20:56:b8:38:94:bd:0d:f8:b1:04: 3d:42:ea:3d:05:cb:85:cb:13:6c:f2:f6:25:8d:a3:6f:dd:50: 29:f4:9d:6f:65:01:c3:1e:95:c6:9d:9b:29:c0:e8:da:4e:27: 1f:6e:71:6a:33:6f:64:19:46:a1:f7:83:70:e8:89:38:61:39: 67:29:f1:15:95:e7:f8:f0:23:2f:dd:e1:85:a3:dd:3c:9a:0e: 3a:30:9f:0e:99:09:45:84:71:46:2e:d1:66:ca:56:bf:c8:1b: 6e:08:57:a6:12:42:a6:6d:0d:15:77:5c:7a:9a:b2:f5:23:8d: e1:96:00:9e:40:da:11:24:9a:a0:2f:c6:c6:cf:22:dc:3c:bc: 7e:8f:4f:73:2d:d4:3e:a3:d7:82:9d:82:4b:c2:60:76:96:e0: 9d:b0:3c:b3:05:30:30:42:b3:b4:05:48:37:75:9d:d5:89:e6: 3b:06:0e:09:e8:de:cd:d9:d1:35:a3:8b:82:26:84:88:af:2b: 48:6c:e7:93:46:c2:f7:0e:da:a2:05:e1:ab:ad:18:fc:7b:51: 1b:61:75:fa:33:f9:4a:1e:67:f8:97:5c:5a:37:d6:44:01:24: 57:e5:ee:14 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAPowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MjA1MjhaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKERCMDRERUNFRkZCODVF Rjc4NEI3M0JEQ0JDMkVCRjMwRTQwMDAwOUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXy9Agd1QA/MCDJavmViU+EjD0OZlqSs12Y3GU3oCht5nqOFxu 5jLeNEWGc7u4jWWmmEuaiC0fZt2U5IjsRHpcjutIPnfd6Fp1XXoAxEEswFmnTrgC Alk6tuS3t1e6wEN+H6odFcT2bfQ5mD0mN2OhhwP4JIAtxKpYOHaoBvSEWqPqXYDf Ccp201KyIZWShNzFPvyE4IhFmdo6cSHnV75B2A+rac1GmE4JJGpJiXJ6BNM/LQsR kv6UQP5aUjC8rrVSGDAXDjsgR3nvpm3bbl1QAnnLUesAaK4FiEB7Qto0n7NGN9nh mIL4QsY4kfn9E71+07SMjMBUPH/5thUMrd9rAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQU2wTezv+4XveEtzvcvC6/MOQAAJswHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My8yd1RlenYtNFh2ZUV0enZjdkM2X01PUUFBSnMu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQD0w6IMA0GCSqGSIb3DQEBCwUAA4IBAQA9SZI+9SAZQxfVJfZ+U2gx 0Eq4HHvF2MmiIiBWuDiUvQ34sQQ9Quo9BcuFyxNs8vYljaNv3VAp9J1vZQHDHpXG nZspwOjaTicfbnFqM29kGUah94Nw6Ik4YTlnKfEVlef48CMv3eGFo908mg46MJ8O mQlFhHFGLtFmyla/yBtuCFemEkKmbQ0Vd1x6mrL1I43hlgCeQNoRJJqgL8bGzyLc PLx+j09zLdQ+o9eCnYJLwmB2luCdsDyzBTAwQrO0BUg3dZ3VieY7Bg4J6N7N2dE1 o4uCJoSIrytIbOeTRsL3DtqiBeGrrRj8e1EbYXX6M/lKHmf4l1xaN9ZEASRX5e4U -----END CERTIFICATE-----Generated at Wed Jul 30 03:19:52 2025 by rpki-client