$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Cn-dmNKHFANT5vi71NQ_lcYxQFQ.roa File: Cn-dmNKHFANT5vi71NQ_lcYxQFQ.roa (raw, json) Hash identifier: hEwz1Ui39RRIBGw5RNE3u7uMBi3B1TKXPjPVqe9lLWE= Subject key identifier: 0A:7F:9D:98:D2:87:14:03:53:E6:F8:BB:D4:D4:3F:95:C6:31:40:54 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 85 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Cn-dmNKHFANT5vi71NQ_lcYxQFQ.roa Signing time: Thu 17 Jul 2025 01:25:35 +0000 ROA not before: Thu 17 Jul 2025 01:25:35 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 210.152.208.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 17 01:25:35 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=0A7F9D98D287140353E6F8BBD4D43F95C6314054 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:1f:2e:42:a2:78:06:80:73:a5:32:80:7e:93: 23:d4:d0:d3:bb:ed:68:50:96:64:43:a8:aa:04:61: 29:2c:a8:6c:cc:c3:85:f1:bc:d7:bb:e9:72:51:f8: 15:93:9f:1d:0f:f6:be:72:55:b3:0a:70:2e:7e:cc: f2:c2:2d:50:ab:a9:38:8b:b0:68:36:0f:ca:a6:68: 0b:ba:72:24:c7:9b:23:60:9f:dc:82:e9:60:20:7e: 68:02:6a:31:83:1b:41:70:36:c6:fe:ec:c4:8c:2d: e2:46:67:aa:29:37:e1:68:fc:61:0c:4f:16:34:4d: 61:39:6c:c8:a2:9c:12:5a:a0:2f:cf:bd:50:df:04: 36:9a:0e:b2:0b:f8:7a:22:0b:ac:6d:f8:fd:5b:d3: ca:43:5c:6d:47:61:d2:6d:6a:17:7f:5b:3f:97:9a: 89:2e:7b:08:3a:71:15:fe:51:c9:a4:20:6a:bf:0a: 3f:a1:f3:73:b5:81:75:21:18:e1:2c:dc:04:4a:95: 62:dd:66:77:55:18:e7:12:ee:d6:73:31:55:08:e2: fb:32:69:fe:99:ed:1d:f3:37:1b:12:c6:a1:a7:50: e8:8b:4c:a7:a2:66:57:cd:59:10:3d:35:9a:e2:30: 78:3d:5c:8d:99:e4:c2:f1:34:c1:30:fd:4c:40:2b: 22:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:7F:9D:98:D2:87:14:03:53:E6:F8:BB:D4:D4:3F:95:C6:31:40:54 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Cn-dmNKHFANT5vi71NQ_lcYxQFQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.152.208.0/20 Signature Algorithm: sha256WithRSAEncryption c9:48:3d:47:08:b5:b0:1b:c9:c6:7e:16:bb:3a:e1:ba:07:77: 15:52:26:c3:cf:e1:30:ec:b9:8b:73:4e:f5:c4:4c:bf:f5:7e: 51:ae:24:49:17:ca:b0:81:10:77:cb:65:bb:2c:05:c1:aa:5e: f3:19:b1:5a:b0:e0:a7:70:65:98:80:86:de:28:af:63:2f:d2: 73:66:75:8e:db:27:cb:18:4f:fd:d4:03:ae:c1:13:03:9b:8d: 97:51:e3:78:e5:8a:b2:2e:4a:b9:03:cc:0c:23:dd:4e:13:8c: 6f:10:99:e8:74:49:1a:68:83:f7:e3:f8:ab:d7:c8:eb:a9:6a: 4d:3d:75:5e:57:5c:93:46:e8:e8:c1:b3:7c:41:74:5b:c7:bd: fb:57:2c:a9:9b:31:ae:11:f0:d6:e1:23:b8:af:ce:9e:1f:9a: 42:3c:a5:60:ac:e5:49:b0:b9:21:8a:bc:32:03:ef:fa:cc:93: 01:35:18:06:76:a9:e5:ef:4d:ed:e3:54:66:d9:4a:2c:d2:f5: bd:cc:db:49:60:3c:da:d6:f7:8f:7e:f5:7c:6e:74:09:5d:73: 95:b4:78:e2:8e:d8:0f:aa:d2:0e:62:12:c0:c3:c6:2c:e1:ef: 45:64:16:f3:a3:b9:03:bd:0d:93:71:80:a4:2f:a8:e1:27:73: 58:de:c8:a1 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MTcw MTI1MzVaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDBBN0Y5RDk4RDI4NzE0 MDM1M0U2RjhCQkQ0RDQzRjk1QzYzMTQwNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCeHy5CongGgHOlMoB+kyPU0NO77WhQlmRDqKoEYSksqGzMw4Xx vNe76XJR+BWTnx0P9r5yVbMKcC5+zPLCLVCrqTiLsGg2D8qmaAu6ciTHmyNgn9yC 6WAgfmgCajGDG0FwNsb+7MSMLeJGZ6opN+Fo/GEMTxY0TWE5bMiinBJaoC/PvVDf BDaaDrIL+HoiC6xt+P1b08pDXG1HYdJtahd/Wz+Xmokuewg6cRX+UcmkIGq/Cj+h 83O1gXUhGOEs3ARKlWLdZndVGOcS7tZzMVUI4vsyaf6Z7R3zNxsSxqGnUOiLTKei ZlfNWRA9NZriMHg9XI2Z5MLxNMEw/UxAKyKHAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUCn+dmNKHFANT5vi71NQ/lcYxQFQwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9Dbi1kbU5LSEZBTlQ1dmk3MU5RX2xjWXhRRlEu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQE0pjQMA0GCSqGSIb3DQEBCwUAA4IBAQDJSD1HCLWwG8nGfha7OuG6 B3cVUibDz+Ew7LmLc071xEy/9X5RriRJF8qwgRB3y2W7LAXBql7zGbFasOCncGWY gIbeKK9jL9JzZnWO2yfLGE/91AOuwRMDm42XUeN45YqyLkq5A8wMI91OE4xvEJno dEkaaIP34/ir18jrqWpNPXVeV1yTRujowbN8QXRbx737VyypmzGuEfDW4SO4r86e H5pCPKVgrOVJsLkhirwyA+/6zJMBNRgGdqnl703t41Rm2Uos0vW9zNtJYDza1veP fvV8bnQJXXOVtHjijtgPqtIOYhLAw8Ys4e9FZBbzo7kDvQ2TcYCkL6jhJ3NY3sih -----END CERTIFICATE-----Generated at Wed Jul 30 03:10:27 2025 by rpki-client