$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/3pAmG6D68TBkNEspe7WY4qeM8QU.roa File: 3pAmG6D68TBkNEspe7WY4qeM8QU.roa (raw, json) Hash identifier: 9Crbu+dp4FqvaCBeUQzB+oU8OSuzsoHtyPhZ1mGtWeE= Subject key identifier: DE:90:26:1B:A0:FA:F1:30:64:34:4B:29:7B:B5:98:E2:A7:8C:F1:05 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 010A Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/3pAmG6D68TBkNEspe7WY4qeM8QU.roa Signing time: Thu 24 Jul 2025 02:13:00 +0000 ROA not before: Thu 24 Jul 2025 02:13:00 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 210.189.208.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 02:13:00 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=DE90261BA0FAF13064344B297BB598E2A78CF105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:b2:33:bd:c6:6e:b4:91:14:0c:19:25:c1:d1: 8a:15:a3:4f:53:06:2d:50:17:6c:3b:11:5d:b1:53: 6f:45:b1:ee:fc:fb:25:fb:5c:eb:20:ec:08:32:9b: f0:32:2e:cb:ac:59:8f:e3:34:ba:24:ce:38:74:d4: ed:dc:a5:69:94:ba:b8:02:20:06:33:35:1a:f4:76: c9:36:c1:1b:a4:86:90:98:88:1a:3d:29:c3:e9:09: 68:4c:02:4a:f5:b5:38:76:6c:b3:13:51:00:27:72: e7:a8:59:2a:62:bc:cf:3d:74:a4:db:98:4c:b9:46: 63:ad:f4:39:8d:7a:67:8d:19:e7:97:d3:50:85:f9: 3a:5b:ee:5c:a2:17:a0:2c:29:25:13:1e:6c:74:2c: 69:88:97:17:8e:81:02:57:0e:e8:ed:c5:b6:8f:2e: 5e:31:6d:16:ef:ce:cc:1e:9d:10:95:73:40:fa:0c: 9d:c7:3d:36:b7:4c:88:0c:24:34:1f:f4:7a:75:be: dd:24:43:b3:d9:d8:3e:99:84:02:bc:09:dd:c8:34: a0:6e:0c:a9:90:c1:66:47:f3:e7:80:47:7f:ad:e5: 06:fe:f6:9e:5c:14:4b:f4:d4:b7:38:b9:86:61:0b: 95:24:bc:dc:e5:59:19:ff:41:a7:42:1a:bf:d2:c9: ad:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:90:26:1B:A0:FA:F1:30:64:34:4B:29:7B:B5:98:E2:A7:8C:F1:05 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/3pAmG6D68TBkNEspe7WY4qeM8QU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.189.208.0/20 Signature Algorithm: sha256WithRSAEncryption 1a:a3:b8:f9:cb:c6:b9:7e:80:b2:74:e4:36:6e:5b:88:f1:3b: e2:7d:cc:88:3a:75:13:22:fb:ac:62:a4:30:e3:60:9c:ee:ac: b6:8b:26:a8:40:eb:10:7b:fb:c6:de:d1:18:56:95:dc:da:ca: 20:2d:0b:b1:b0:de:34:79:15:51:cd:c3:7a:c8:1c:2e:9f:81: 28:94:08:eb:67:30:22:e6:fc:bc:8d:da:63:8b:eb:d6:10:7b: 9f:ca:e9:9d:79:2f:af:b4:14:cf:d6:ca:3f:4c:ba:3f:91:65: 79:d2:d2:2a:9a:d0:ec:bb:10:ae:e3:af:5d:a9:7d:07:6b:95: 67:51:e2:21:57:9c:94:d4:d5:64:e9:cd:0b:37:ff:6b:36:df: 3b:da:1c:a8:1a:ab:50:3c:b6:75:4b:eb:f1:20:ed:e5:e6:5d: e9:e4:ad:96:08:34:11:fb:b5:a8:fc:d9:d3:6d:fe:4d:a4:59: e4:06:b0:3c:79:f7:92:de:01:74:86:f5:a2:52:64:15:1e:f5: ea:90:3a:75:4b:47:23:09:85:be:0c:de:5c:ba:8c:21:89:ae: 69:bb:cd:ae:96:f7:0c:0b:d3:95:2d:a9:85:69:5c:ce:15:4b: b0:6f:26:71:48:d6:04:40:43:15:dc:b9:f8:18:14:4a:79:96: ed:e2:96:c6 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAQowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MjEzMDBaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKERFOTAyNjFCQTBGQUYx MzA2NDM0NEIyOTdCQjU5OEUyQTc4Q0YxMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlsjO9xm60kRQMGSXB0YoVo09TBi1QF2w7EV2xU29Fse78+yX7 XOsg7Agym/AyLsusWY/jNLokzjh01O3cpWmUurgCIAYzNRr0dsk2wRukhpCYiBo9 KcPpCWhMAkr1tTh2bLMTUQAncueoWSpivM89dKTbmEy5RmOt9DmNemeNGeeX01CF +Tpb7lyiF6AsKSUTHmx0LGmIlxeOgQJXDujtxbaPLl4xbRbvzswenRCVc0D6DJ3H PTa3TIgMJDQf9Hp1vt0kQ7PZ2D6ZhAK8Cd3INKBuDKmQwWZH8+eAR3+t5Qb+9p5c FEv01Lc4uYZhC5UkvNzlWRn/QadCGr/Sya2BAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQU3pAmG6D68TBkNEspe7WY4qeM8QUwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My8zcEFtRzZENjhUQmtORXNwZTdXWTRxZU04UVUu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQE0r3QMA0GCSqGSIb3DQEBCwUAA4IBAQAao7j5y8a5foCydOQ2bluI 8TvifcyIOnUTIvusYqQw42Cc7qy2iyaoQOsQe/vG3tEYVpXc2sogLQuxsN40eRVR zcN6yBwun4EolAjrZzAi5vy8jdpji+vWEHufyumdeS+vtBTP1so/TLo/kWV50tIq mtDsuxCu469dqX0Ha5VnUeIhV5yU1NVk6c0LN/9rNt872hyoGqtQPLZ1S+vxIO3l 5l3p5K2WCDQR+7Wo/NnTbf5NpFnkBrA8efeS3gF0hvWiUmQVHvXqkDp1S0cjCYW+ DN5cuowhia5pu82ulvcMC9OVLamFaVzOFUuwbyZxSNYEQEMV3Ln4GBRKeZbt4pbG -----END CERTIFICATE-----Generated at Wed Jul 30 03:21:28 2025 by rpki-client