$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Fb5OLh1Rb0sSaYuRcdob0eLv3so.roa File: Fb5OLh1Rb0sSaYuRcdob0eLv3so.roa (raw, json) Hash identifier: 62TmGrQLZMcqLK0Gtz3LtHPr5v+wQvqBM3rpZi0WgmA= Subject key identifier: 15:BE:4E:2E:1D:51:6F:4B:12:69:8B:91:71:DA:1B:D1:E2:EF:DE:CA Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 0101 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Fb5OLh1Rb0sSaYuRcdob0eLv3so.roa Signing time: Thu 24 Jul 2025 02:05:31 +0000 ROA not before: Thu 24 Jul 2025 02:05:31 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 211.120.40.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 00:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 02:05:31 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=15BE4E2E1D516F4B12698B9171DA1BD1E2EFDECA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:06:fd:7e:ab:c3:67:92:89:64:90:8f:fd:b9: 4e:99:4d:45:e8:3c:51:fa:04:4a:e4:62:28:b0:a5: bc:94:eb:41:b5:a7:3d:81:44:f3:96:1b:0c:d1:17: 2f:2c:5e:cf:6b:14:db:20:5f:df:c3:0e:69:58:54: 84:9d:92:70:9f:da:ef:7e:ba:fe:23:ba:fe:5e:6a: d4:a3:6a:a2:9d:3f:65:5e:2a:f8:7a:20:ff:c6:91: c1:35:5c:3d:83:f0:72:9a:52:79:cd:90:99:2b:60: a0:c8:fe:32:bc:93:09:db:68:db:1e:30:3a:76:b0: da:f5:38:eb:13:e8:e7:30:31:a5:fd:d1:49:24:2a: 0e:7c:5c:87:20:a9:c7:7f:53:82:84:71:ee:46:8c: 71:87:64:a8:41:aa:b6:f5:c2:9d:b0:a9:e4:39:19: 14:81:15:2e:2a:b7:70:fa:af:3b:9c:0f:87:85:5c: cd:43:68:ec:3d:e7:ad:9f:db:55:3e:08:fb:a3:08: 66:28:67:73:53:74:81:ee:b8:c9:e9:55:5e:b6:0c: f0:6b:89:ad:79:c0:7b:de:c5:ec:b6:0e:f5:82:0f: d9:2b:1f:c0:4c:9c:62:d6:05:3c:58:b4:97:b1:e4: c2:18:8d:ed:b2:a8:2e:7f:19:66:ef:52:39:8d:07: 2e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:BE:4E:2E:1D:51:6F:4B:12:69:8B:91:71:DA:1B:D1:E2:EF:DE:CA X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Fb5OLh1Rb0sSaYuRcdob0eLv3so.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.120.40.0/21 Signature Algorithm: sha256WithRSAEncryption 5f:c3:4f:a8:94:85:fe:d8:b3:a1:2d:e9:a9:af:9e:36:f3:8c: 02:b7:5b:6f:94:ef:f8:c8:10:06:e5:70:45:8a:89:dd:53:c8: e5:c5:5a:7b:35:96:e8:cd:67:99:99:6d:1d:40:b6:73:5b:6d: e5:cd:28:d0:a0:fc:a7:20:ac:34:b4:21:2d:07:6a:14:54:de: e6:b4:c6:db:63:9c:cf:e4:d0:d1:15:dd:18:36:c1:e7:ad:51: b0:78:4c:f3:0a:70:36:5e:92:e5:e4:1e:d4:3d:8c:94:b4:df: 37:81:b1:66:5d:b8:92:e1:8e:a3:b9:57:54:39:45:9e:89:9a: cf:f5:c9:44:f1:7f:03:7a:aa:c3:75:ac:e8:0b:24:67:3d:8e: 82:0b:fa:97:f1:f0:30:db:df:c2:a5:18:82:1b:52:83:99:49: b4:44:42:fe:52:be:43:3c:a6:2d:ee:89:71:9c:e5:21:3e:2b: 49:e3:57:b4:fe:de:a1:7d:15:b1:eb:b5:a3:76:4f:f3:42:97: b1:5a:29:13:df:72:64:7f:45:a9:71:74:0d:d8:da:23:08:88: ea:40:10:ca:b2:5e:0a:80:06:c7:35:96:a4:48:b4:d6:42:53: 52:d5:5b:b1:67:df:33:56:ab:49:e8:1d:b3:8e:1f:a5:2e:a8: f7:18:66:29 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MjA1MzFaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDE1QkU0RTJFMUQ1MTZG NEIxMjY5OEI5MTcxREExQkQxRTJFRkRFQ0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgBv1+q8NnkolkkI/9uU6ZTUXoPFH6BErkYiiwpbyU60G1pz2B RPOWGwzRFy8sXs9rFNsgX9/DDmlYVISdknCf2u9+uv4juv5eatSjaqKdP2VeKvh6 IP/GkcE1XD2D8HKaUnnNkJkrYKDI/jK8kwnbaNseMDp2sNr1OOsT6OcwMaX90Ukk Kg58XIcgqcd/U4KEce5GjHGHZKhBqrb1wp2wqeQ5GRSBFS4qt3D6rzucD4eFXM1D aOw9562f21U+CPujCGYoZ3NTdIHuuMnpVV62DPBria15wHvexey2DvWCD9krH8BM nGLWBTxYtJex5MIYje2yqC5/GWbvUjmNBy41AgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUFb5OLh1Rb0sSaYuRcdob0eLv3sowHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9GYjVPTGgxUmIwc1NhWXVSY2RvYjBlTHYzc28u cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQD03goMA0GCSqGSIb3DQEBCwUAA4IBAQBfw0+olIX+2LOhLempr542 84wCt1tvlO/4yBAG5XBFiondU8jlxVp7NZbozWeZmW0dQLZzW23lzSjQoPynIKw0 tCEtB2oUVN7mtMbbY5zP5NDRFd0YNsHnrVGweEzzCnA2XpLl5B7UPYyUtN83gbFm XbiS4Y6juVdUOUWeiZrP9clE8X8DeqrDdazoCyRnPY6CC/qX8fAw29/CpRiCG1KD mUm0REL+Ur5DPKYt7olxnOUhPitJ41e0/t6hfRWx67Wjdk/zQpexWikT33Jkf0Wp cXQN2NojCIjqQBDKsl4KgAbHNZakSLTWQlNS1VuxZ98zVqtJ6B2zjh+lLqj3GGYp -----END CERTIFICATE-----Generated at Wed Jul 30 03:03:11 2025 by rpki-client