$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/EwASZUpo453o3V9aLXe7ns83WKg.roa File: EwASZUpo453o3V9aLXe7ns83WKg.roa (raw, json) Hash identifier: kI6U5NriIp9aRTcw4RTgl65f2NmIqlFI7/Kz6h0IG30= Subject key identifier: 13:00:12:65:4A:68:E3:9D:E8:DD:5F:5A:2D:77:BB:9E:CF:37:58:A8 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: FB Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/EwASZUpo453o3V9aLXe7ns83WKg.roa Signing time: Thu 24 Jul 2025 02:05:29 +0000 ROA not before: Thu 24 Jul 2025 02:05:29 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 211.14.144.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 00:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 02:05:29 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=130012654A68E39DE8DD5F5A2D77BB9ECF3758A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6a:92:d2:bf:98:fa:0f:f7:d2:6c:c6:67:23: de:de:19:85:05:37:fa:fc:5c:85:b7:63:dc:10:6e: fb:97:84:19:26:73:a6:ba:5c:71:36:06:5b:2f:ab: e6:75:d2:8b:f2:e4:d0:bd:f2:35:4b:e8:29:5c:f5: 32:91:04:aa:c5:d1:8d:1a:67:b7:0e:42:98:be:2f: 91:ec:60:ab:4f:51:bc:3a:6c:89:5b:fe:97:fa:52: 2f:88:df:c5:93:f4:e5:1a:8d:b2:6b:cd:86:aa:fa: 36:91:9d:df:20:27:f2:16:07:0e:59:8b:d6:d8:df: 9c:54:47:67:f7:a7:4b:b1:e2:94:0b:c1:c7:81:0d: 83:4a:f2:01:b2:04:2a:5b:f5:ea:db:27:a6:20:79: 08:a5:0f:8a:f5:c4:87:a8:40:1b:b6:76:b6:fc:c5: d5:db:0b:01:e5:99:e4:48:ff:45:44:62:20:07:f4: 63:8b:d6:e9:08:b1:7b:49:b6:ad:82:d0:29:0d:73: 40:cc:52:fe:c9:f9:1d:7a:e1:0e:8f:cc:e9:c4:bd: be:98:17:84:b1:f8:f6:6e:64:22:ce:ef:13:78:0d: ab:5c:47:28:b5:f3:94:0a:a0:c9:06:46:4d:44:47: 00:81:be:e7:52:85:71:3a:aa:e0:cb:88:d2:5c:01: 3c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:00:12:65:4A:68:E3:9D:E8:DD:5F:5A:2D:77:BB:9E:CF:37:58:A8 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/EwASZUpo453o3V9aLXe7ns83WKg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.144.0/20 Signature Algorithm: sha256WithRSAEncryption 29:44:75:25:7b:11:bf:2a:e5:93:f4:f3:9d:36:ef:0e:8f:e3: b3:aa:fd:9e:b4:2d:7b:39:a0:66:a4:d5:cc:d9:a1:6a:78:ac: 21:46:fb:b1:45:4d:f7:b6:df:5a:98:a9:4f:f4:eb:97:ab:e8: 02:65:27:ff:ff:02:5d:ef:71:e7:88:d1:1d:98:1a:17:bc:20: 62:fa:f3:96:02:67:75:ec:cc:9c:3e:50:f0:1f:0a:a4:bc:9a: b5:dc:7d:51:3c:e7:50:7d:da:d7:a5:6d:56:14:ef:49:ed:bb: 83:0a:05:9b:82:24:59:c5:c8:c6:64:6c:26:24:f5:36:26:9d: 14:fb:94:15:c8:5b:1f:1b:1b:43:74:9f:60:a8:29:3b:a4:9e: bd:34:be:d5:b5:43:6b:56:95:f5:16:73:fd:4c:8e:0e:8a:8c: 30:fa:b1:84:10:85:48:93:48:96:88:c4:ed:98:e4:62:e6:3b: 97:cf:ea:cb:fd:49:d6:8a:59:e1:b0:43:43:c0:e4:69:f5:b1: 66:a5:a8:1d:ef:eb:1b:83:49:3b:62:c7:98:7a:e0:a3:1e:a9: 4f:58:76:8f:2c:84:4b:cd:ed:c7:59:e0:92:9a:da:1c:69:5e: 38:f3:74:60:e6:51:36:f8:61:32:f7:9e:13:99:8c:63:5d:cd: 81:50:82:1c -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAPswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MjA1MjlaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDEzMDAxMjY1NEE2OEUz OURFOERENUY1QTJENzdCQjlFQ0YzNzU4QTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNapLSv5j6D/fSbMZnI97eGYUFN/r8XIW3Y9wQbvuXhBkmc6a6 XHE2Blsvq+Z10ovy5NC98jVL6Clc9TKRBKrF0Y0aZ7cOQpi+L5HsYKtPUbw6bIlb /pf6Ui+I38WT9OUajbJrzYaq+jaRnd8gJ/IWBw5Zi9bY35xUR2f3p0ux4pQLwceB DYNK8gGyBCpb9erbJ6YgeQilD4r1xIeoQBu2drb8xdXbCwHlmeRI/0VEYiAH9GOL 1ukIsXtJtq2C0CkNc0DMUv7J+R164Q6PzOnEvb6YF4Sx+PZuZCLO7xN4DatcRyi1 85QKoMkGRk1ERwCBvudShXE6quDLiNJcATzjAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUEwASZUpo453o3V9aLXe7ns83WKgwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9Fd0FTWlVwbzQ1M28zVjlhTFhlN25zODNXS2cu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQE0w6QMA0GCSqGSIb3DQEBCwUAA4IBAQApRHUlexG/KuWT9POdNu8O j+Ozqv2etC17OaBmpNXM2aFqeKwhRvuxRU33tt9amKlP9OuXq+gCZSf//wJd73Hn iNEdmBoXvCBi+vOWAmd17MycPlDwHwqkvJq13H1RPOdQfdrXpW1WFO9J7buDCgWb giRZxcjGZGwmJPU2Jp0U+5QVyFsfGxtDdJ9gqCk7pJ69NL7VtUNrVpX1FnP9TI4O ioww+rGEEIVIk0iWiMTtmORi5juXz+rL/UnWilnhsENDwORp9bFmpagd7+sbg0k7 YseYeuCjHqlPWHaPLIRLze3HWeCSmtocaV4483Rg5lE2+GEy954TmYxjXc2BUIIc -----END CERTIFICATE-----Generated at Wed Jul 30 03:03:10 2025 by rpki-client