$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/J1Rvk1ks8KDuD4DuMTMpK7AOPSs.roa File: J1Rvk1ks8KDuD4DuMTMpK7AOPSs.roa (raw, json) Hash identifier: dACcQdaNuvjAPNHsw5HLf28r3xhm80zkA/zs9C++PVk= Subject key identifier: 27:54:6F:93:59:2C:F0:A0:EE:0F:80:EE:31:33:29:2B:B0:0E:3D:2B Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: A2 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/J1Rvk1ks8KDuD4DuMTMpK7AOPSs.roa Signing time: Thu 24 Jul 2025 00:54:32 +0000 ROA not before: Thu 24 Jul 2025 00:54:32 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 202.239.20.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 00:54:32 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=27546F93592CF0A0EE0F80EE3133292BB00E3D2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c0:0a:30:19:92:ce:7a:8d:07:d2:0d:27:14: ee:ac:8c:91:08:f9:ef:1e:61:e2:3e:47:0b:b2:ba: 6b:b3:ec:02:28:b7:8c:18:ac:ce:ae:07:97:68:e8: e7:84:16:ce:95:48:39:a3:56:a9:d4:d6:d8:8d:41: 0b:63:38:0d:77:df:ee:84:45:0b:d0:cf:19:ac:e0: e2:be:57:33:a7:db:95:05:75:e9:eb:78:0b:9f:49: 02:5b:dd:3d:6a:27:f0:ff:c6:7c:ee:a2:b5:b3:78: c0:9a:b4:7d:7e:b1:2c:65:1a:da:55:07:58:fd:dd: c3:63:50:04:0f:06:7e:11:16:09:33:63:68:0b:a3: c0:c1:3a:07:38:42:af:a6:ea:5b:c3:33:6c:2a:c5: 29:a7:1d:4f:4e:be:84:cf:ab:fc:69:6a:37:6d:12: 27:65:59:78:07:58:c0:80:4b:19:64:e8:44:9c:28: b0:77:83:7b:bf:7e:b8:db:b8:80:98:80:28:fc:19: b1:ba:bd:cd:80:b0:c7:93:6d:46:03:79:e2:ed:b8: 12:f3:d0:98:af:26:29:e0:4c:7d:a2:c2:de:9b:f0: b5:37:34:24:fb:60:6a:03:a5:79:cc:05:ae:8d:2e: 81:ce:b2:68:71:97:6b:a8:a9:1b:b4:e0:d9:22:8b: 06:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:54:6F:93:59:2C:F0:A0:EE:0F:80:EE:31:33:29:2B:B0:0E:3D:2B X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/J1Rvk1ks8KDuD4DuMTMpK7AOPSs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.239.20.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:93:33:0d:d9:e7:8f:6a:b3:8a:21:cd:01:fe:11:71:3b:ac: 69:10:77:d7:ca:59:be:1d:d5:a1:c4:8f:71:e9:8f:dc:31:1c: a6:26:a7:55:a5:18:24:73:3b:ec:85:79:b0:b5:f4:83:fb:88: 13:b0:13:99:fa:07:a4:26:88:40:97:71:f4:18:5d:d7:a3:0a: ed:6e:25:27:6b:49:f6:20:a2:aa:94:67:46:f4:27:21:56:3a: 57:3e:7c:f7:c1:68:44:5f:80:d7:6b:d6:15:38:bc:bc:bf:d9: 97:97:48:1f:6c:62:cd:cd:2a:74:ab:6f:a1:b5:4f:44:00:26: d3:67:ee:d4:58:3e:0d:4c:47:dc:7e:8c:2d:1e:bc:1e:b7:79: b0:9b:49:d2:b0:9d:14:23:e1:89:55:de:5e:bf:26:ab:06:f3: 82:c1:73:d6:01:1a:10:0a:0a:83:d0:86:de:ee:9c:49:a4:74: 8d:bf:3c:1d:fe:91:53:5e:70:cc:82:f7:af:72:f1:83:cd:1a: 54:b3:a2:3c:3b:a1:e7:3f:6f:ea:b7:50:f0:92:b1:17:d9:14: 09:af:10:7c:b4:94:96:6c:38:f8:09:67:cc:a6:8a:8d:e6:91: 89:7e:ba:8d:36:9b:df:56:c4:09:20:0c:f6:fb:c4:dd:a5:98: 42:9b:4d:2b -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MDU0MzJaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDI3NTQ2RjkzNTkyQ0Yw QTBFRTBGODBFRTMxMzMyOTJCQjAwRTNEMkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkwAowGZLOeo0H0g0nFO6sjJEI+e8eYeI+Rwuyumuz7AIot4wY rM6uB5do6OeEFs6VSDmjVqnU1tiNQQtjOA133+6ERQvQzxms4OK+VzOn25UFdenr eAufSQJb3T1qJ/D/xnzuorWzeMCatH1+sSxlGtpVB1j93cNjUAQPBn4RFgkzY2gL o8DBOgc4Qq+m6lvDM2wqxSmnHU9OvoTPq/xpajdtEidlWXgHWMCASxlk6EScKLB3 g3u/frjbuICYgCj8GbG6vc2AsMeTbUYDeeLtuBLz0JivJingTH2iwt6b8LU3NCT7 YGoDpXnMBa6NLoHOsmhxl2uoqRu04NkiiwaVAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUJ1Rvk1ks8KDuD4DuMTMpK7AOPSswHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9KMVJ2azFrczhLRHVENER1TVRNcEs3QU9QU3Mu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQByu8UMA0GCSqGSIb3DQEBCwUAA4IBAQAKkzMN2eeParOKIc0B/hFx O6xpEHfXylm+HdWhxI9x6Y/cMRymJqdVpRgkczvshXmwtfSD+4gTsBOZ+gekJohA l3H0GF3XowrtbiUna0n2IKKqlGdG9CchVjpXPnz3wWhEX4DXa9YVOLy8v9mXl0gf bGLNzSp0q2+htU9EACbTZ+7UWD4NTEfcfowtHrwet3mwm0nSsJ0UI+GJVd5evyar BvOCwXPWARoQCgqD0Ibe7pxJpHSNvzwd/pFTXnDMgvevcvGDzRpUs6I8O6HnP2/q t1DwkrEX2RQJrxB8tJSWbDj4CWfMpoqN5pGJfrqNNpvfVsQJIAz2+8TdpZhCm00r -----END CERTIFICATE-----Generated at Wed Jul 30 03:21:28 2025 by rpki-client