$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/8QiRKz0EZ1XXNK_-TJM6zdUNv3c.roa File: 8QiRKz0EZ1XXNK_-TJM6zdUNv3c.roa (raw, json) Hash identifier: lGMom5607p2/iqRTPQHE+LKIqJZsfyXgmrnuNUQ5LqI= Subject key identifier: F1:08:91:2B:3D:04:67:55:D7:34:AF:FE:4C:93:3A:CD:D5:0D:BF:77 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 7F Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/8QiRKz0EZ1XXNK_-TJM6zdUNv3c.roa Signing time: Thu 17 Jul 2025 01:19:14 +0000 ROA not before: Thu 17 Jul 2025 01:19:14 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 210.152.192.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 17 01:19:14 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=F108912B3D046755D734AFFE4C933ACDD50DBF77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:cc:13:b8:59:09:88:8e:98:82:74:50:ac:f6: f0:e6:7f:32:e4:b3:10:f0:02:ab:73:05:26:e2:7a: eb:ee:81:86:2e:e4:b2:50:52:2b:ea:c8:95:2a:61: 2b:8e:e9:21:d6:97:a0:64:df:43:f6:3f:46:d4:c7: 6b:ed:ec:86:95:cc:85:61:7c:3b:5c:6a:ff:96:51: 75:f0:15:d5:56:ca:b6:de:72:77:b6:77:96:e4:b6: f0:5e:76:b1:ae:59:d8:84:71:6a:35:2f:4c:18:18: e0:e5:1a:67:74:25:83:66:e8:6d:e9:9a:3c:e2:7c: 7f:5c:1c:b1:bd:57:b0:91:c4:95:97:e2:92:0c:06: 7b:d3:eb:61:00:13:2b:9e:1f:49:92:b6:cb:63:b7: 95:60:e3:95:b3:08:39:79:02:00:e6:06:39:2c:67: 69:ea:fb:5f:a9:65:00:c8:9c:a6:54:4b:33:42:0c: d0:51:40:d8:c9:fb:9c:86:3d:9d:ac:d5:a3:ff:70: 22:5f:b7:f3:33:68:e4:f1:0f:d4:f2:8b:b3:5c:a2: 78:51:cf:d4:f8:44:b0:80:1f:69:c8:eb:10:5c:0d: b8:14:21:de:e7:52:8c:78:6e:94:d3:ad:bb:fb:81: f2:51:48:7e:b1:94:a6:75:ee:4a:34:7e:05:2c:d9: db:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:08:91:2B:3D:04:67:55:D7:34:AF:FE:4C:93:3A:CD:D5:0D:BF:77 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/8QiRKz0EZ1XXNK_-TJM6zdUNv3c.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.152.192.0/21 Signature Algorithm: sha256WithRSAEncryption 7d:3d:1e:eb:34:17:eb:50:aa:39:d7:65:ae:82:12:16:9a:46: 86:a9:bb:51:e3:05:39:d0:17:cb:52:c2:84:8f:a0:1f:eb:f0: ab:7d:99:7a:c9:3d:69:44:a1:5e:13:25:61:fe:64:3f:67:e9: 79:9c:9e:d5:ff:e4:3f:91:db:41:53:cd:9f:23:6b:b0:54:f4: ac:fc:80:38:b3:85:0b:1d:cf:41:9e:fb:b6:a5:e1:d4:df:5a: b8:34:54:f1:d6:ff:f0:24:d9:76:e8:a7:01:df:e9:2c:b1:19: 11:03:f3:8d:7e:db:d4:17:04:95:0f:a5:d0:19:18:eb:14:01: b2:c7:09:0b:5e:72:e2:0f:33:9c:74:7b:02:4e:06:d9:e0:4d: 42:fa:4d:ab:d5:79:b4:50:ca:af:81:8b:0c:e7:56:b6:3b:b1: ca:93:96:e8:99:c3:f0:46:e3:b4:81:f9:b2:c4:d4:40:02:18: 87:a6:10:e6:44:8f:ac:35:5c:c2:40:ea:5f:a0:5b:8c:05:52: 2a:89:b0:b9:1b:ea:ba:9f:a3:a3:05:0c:6e:b0:50:56:90:cd: 41:df:ea:ce:49:77:9b:3c:56:4b:32:6d:44:a3:7d:88:c6:2e: 29:bb:82:9d:c5:e6:de:db:0a:e3:2b:7a:5e:4a:e6:10:4b:c5: cd:4f:aa:b0 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBfzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1OTBB ODIyODhEMkUyM0RCRkE4NzYzOEYzRUI4Qjk5NUUxODk3RTk1MB4XDTI1MDcxNzAx MTkxNFoXDTI2MDcxNTAxMzAwMVowMzExMC8GA1UEAxMoRjEwODkxMkIzRDA0Njc1 NUQ3MzRBRkZFNEM5MzNBQ0RENTBEQkY3NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALPME7hZCYiOmIJ0UKz28OZ/MuSzEPACq3MFJuJ66+6Bhi7kslBS K+rIlSphK47pIdaXoGTfQ/Y/RtTHa+3shpXMhWF8O1xq/5ZRdfAV1VbKtt5yd7Z3 luS28F52sa5Z2IRxajUvTBgY4OUaZ3Qlg2bobemaPOJ8f1wcsb1XsJHElZfikgwG e9PrYQATK54fSZK2y2O3lWDjlbMIOXkCAOYGOSxnaer7X6llAMicplRLM0IM0FFA 2Mn7nIY9nazVo/9wIl+38zNo5PEP1PKLs1yieFHP1PhEsIAfacjrEFwNuBQh3udS jHhulNOtu/uB8lFIfrGUpnXuSjR+BSzZ2x0CAwEAAaOCAigwggIkMB0GA1UdDgQW BBTxCJErPQRnVdc0r/5MkzrN1Q2/dzAfBgNVHSMEGDAWgBRZCoIojS4j2/qHY48+ uLmV4Yl+lTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwODMvV1FxQ0tJMHVJOXY2aDJPUFByaTVsZUdKZnBVLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvV1FxQ0tJMHVJOXY2aDJPUFByaTVs ZUdKZnBVLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDgzLzhRaVJLejBFWjFYWE5LXy1USk02emRVTnYzYy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAPSmMAwDQYJKoZIhvcNAQELBQADggEBAH09Hus0F+tQqjnXZa6CEhaa Roapu1HjBTnQF8tSwoSPoB/r8Kt9mXrJPWlEoV4TJWH+ZD9n6XmcntX/5D+R20FT zZ8ja7BU9Kz8gDizhQsdz0Ge+7al4dTfWrg0VPHW//Ak2XbopwHf6SyxGRED841+ 29QXBJUPpdAZGOsUAbLHCQtecuIPM5x0ewJOBtngTUL6TavVebRQyq+BiwznVrY7 scqTluiZw/BG47SB+bLE1EACGIemEOZEj6w1XMJA6l+gW4wFUiqJsLkb6rqfo6MF DG6wUFaQzUHf6s5Jd5s8VksybUSjfYjGLim7gp3F5t7bCuMrel5K5hBLxc1PqrA= -----END CERTIFICATE-----Generated at Wed Jul 30 03:09:45 2025 by rpki-client