$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/BH1d9fpreSVv7KpkV8kKbSy9t9Q.roa File: BH1d9fpreSVv7KpkV8kKbSy9t9Q.roa (raw, json) Hash identifier: r9Hx8sSi9/8eSG5Z0XI5s3xWZOV4KZwCogympW46VpI= Subject key identifier: 04:7D:5D:F5:FA:6B:79:25:6F:EC:AA:64:57:C9:0A:6D:2C:BD:B7:D4 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: A4 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/BH1d9fpreSVv7KpkV8kKbSy9t9Q.roa Signing time: Thu 24 Jul 2025 00:54:33 +0000 ROA not before: Thu 24 Jul 2025 00:54:33 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 202.239.24.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 00:54:33 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=047D5DF5FA6B79256FECAA6457C90A6D2CBDB7D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0e:08:9e:5a:ee:1d:3f:6d:7e:d6:7e:a8:9c: 3f:8a:e9:3d:88:34:20:35:a9:6b:dc:9d:5b:0f:04: de:b8:c4:10:78:bf:2a:35:6a:c1:4a:e5:01:32:e0: e3:dc:2e:4d:7d:b5:a6:58:bb:32:3d:3c:c5:d9:31: 78:42:2b:9a:71:c7:16:46:98:23:c4:ef:6a:58:1d: 05:f5:99:cd:43:7f:cf:16:14:b5:53:f0:46:23:73: 23:b2:15:3c:02:df:c3:d3:5b:a1:69:54:aa:60:6e: 68:44:76:9c:bf:c4:56:10:27:22:ff:d6:c6:cd:5d: d1:b4:f0:ad:09:f8:90:2d:18:5e:36:f8:5d:d9:c4: be:c2:c6:23:49:79:ec:c8:ff:99:c6:91:5c:70:22: 5d:b2:1a:07:b6:73:63:1e:03:73:89:33:bd:bd:46: 76:63:f9:54:fa:73:89:4f:80:9e:1c:36:63:2d:e7: ba:cd:0f:1f:dd:bc:0b:18:e3:29:44:78:8f:9e:65: cf:59:6c:b0:d7:5a:b4:a3:7d:6f:c8:c1:a4:67:35: 65:63:47:1d:d2:1b:e3:91:6b:de:bd:73:17:42:0e: 75:73:b0:d8:8c:d9:2b:74:1a:0e:e7:ad:4a:e1:c4: 5c:a4:97:7a:43:fd:e6:92:0c:b6:15:a1:7a:98:67: 45:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:7D:5D:F5:FA:6B:79:25:6F:EC:AA:64:57:C9:0A:6D:2C:BD:B7:D4 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/BH1d9fpreSVv7KpkV8kKbSy9t9Q.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.239.24.0/21 Signature Algorithm: sha256WithRSAEncryption 18:5c:16:43:ff:50:45:79:8d:8b:71:18:7e:26:3e:bd:75:b4: a2:9b:9d:82:cb:db:56:a7:f8:a2:f4:f0:73:0e:fc:5a:1c:24: 65:2c:69:5f:f5:a7:9b:39:20:b5:6b:25:c1:65:25:c0:84:5d: 11:0e:aa:37:39:be:4a:85:f2:4c:ae:59:e8:a7:46:7b:da:87: cc:52:e0:ef:ba:c1:6c:9e:6d:3f:60:20:f5:e0:5a:44:0a:63: 1c:bb:c7:2a:8e:27:94:a0:61:a3:59:8b:8b:48:60:1e:54:f9: 78:6e:8d:68:e9:fc:bc:7e:15:87:36:08:d0:06:22:56:d7:b5: 0e:e8:66:b1:d3:be:30:de:f7:c0:34:4e:ff:8c:d9:7c:ae:44: d1:97:6e:89:50:d6:42:2e:0f:63:6f:df:b0:63:bf:e1:88:df: e1:8b:54:0b:c9:b8:c9:72:86:23:42:0f:0b:77:f3:d5:10:ee: fe:8b:d7:9a:ba:16:0b:43:09:25:cb:74:fb:21:5b:5d:c5:9b: 70:63:b0:e1:a8:cb:d2:6d:a4:21:2d:99:9b:66:61:14:4d:a7: e8:20:ec:22:c1:78:bd:a0:36:09:c9:93:c1:02:d3:60:5d:34: 4d:36:89:cc:ff:1c:43:68:40:ff:1c:9f:60:a0:b6:2c:07:1b: b4:d1:ab:c0 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MDU0MzNaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDA0N0Q1REY1RkE2Qjc5 MjU2RkVDQUE2NDU3QzkwQTZEMkNCREI3RDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbDgieWu4dP21+1n6onD+K6T2INCA1qWvcnVsPBN64xBB4vyo1 asFK5QEy4OPcLk19taZYuzI9PMXZMXhCK5pxxxZGmCPE72pYHQX1mc1Df88WFLVT 8EYjcyOyFTwC38PTW6FpVKpgbmhEdpy/xFYQJyL/1sbNXdG08K0J+JAtGF42+F3Z xL7CxiNJeezI/5nGkVxwIl2yGge2c2MeA3OJM729RnZj+VT6c4lPgJ4cNmMt57rN Dx/dvAsY4ylEeI+eZc9ZbLDXWrSjfW/IwaRnNWVjRx3SG+ORa969cxdCDnVzsNiM 2St0Gg7nrUrhxFykl3pD/eaSDLYVoXqYZ0XbAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUBH1d9fpreSVv7KpkV8kKbSy9t9QwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9CSDFkOWZwcmVTVnY3S3BrVjhrS2JTeTl0OVEu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDyu8YMA0GCSqGSIb3DQEBCwUAA4IBAQAYXBZD/1BFeY2LcRh+Jj69 dbSim52Cy9tWp/ii9PBzDvxaHCRlLGlf9aebOSC1ayXBZSXAhF0RDqo3Ob5KhfJM rlnop0Z72ofMUuDvusFsnm0/YCD14FpECmMcu8cqjieUoGGjWYuLSGAeVPl4bo1o 6fy8fhWHNgjQBiJW17UO6Gax074w3vfANE7/jNl8rkTRl26JUNZCLg9jb9+wY7/h iN/hi1QLybjJcoYjQg8Ld/PVEO7+i9eauhYLQwkly3T7IVtdxZtwY7DhqMvSbaQh LZmbZmEUTafoIOwiwXi9oDYJyZPBAtNgXTRNNonM/xxDaED/HJ9goLYsBxu00avA -----END CERTIFICATE-----Generated at Wed Jul 30 03:19:52 2025 by rpki-client