$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/KEwiKAIXVTIZJnktUPChsqEHL3Q.roa File: KEwiKAIXVTIZJnktUPChsqEHL3Q.roa (raw, json) Hash identifier: 0Iki+D7cAgNZCfgSFRxOLnUdmfisexDNCjKO8pkxCXQ= Subject key identifier: 28:4C:22:28:02:17:55:32:19:26:79:2D:50:F0:A1:B2:A1:07:2F:74 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: F2 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/KEwiKAIXVTIZJnktUPChsqEHL3Q.roa Signing time: Thu 24 Jul 2025 01:58:24 +0000 ROA not before: Thu 24 Jul 2025 01:58:24 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 211.2.204.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 01:58:24 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=284C2228021755321926792D50F0A1B2A1072F74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3d:b0:20:90:98:eb:bf:b9:d9:52:5a:45:41: fd:59:16:04:15:df:8d:0c:62:31:ee:07:28:07:44: 9e:ec:a8:ae:49:ac:14:f2:32:63:a2:43:a5:c5:2e: ab:f4:03:73:86:6b:bf:86:f1:4e:29:3c:89:3c:4c: d5:d6:43:03:a5:f4:a1:2c:27:e8:20:5f:30:28:6d: 77:6c:6e:44:e7:97:5d:19:92:ab:19:05:7e:33:2e: 57:13:10:55:d9:39:a6:3f:4d:da:a5:7b:25:0f:c8: a1:15:e4:10:20:45:a5:33:44:27:5f:39:cd:e4:8f: e5:14:a9:c2:13:58:96:e2:27:62:9c:c1:4c:eb:9e: 25:19:23:4f:0b:fa:f5:aa:78:37:6c:73:54:28:95: a3:1a:33:de:a0:62:94:e7:71:87:b1:21:99:77:69: cf:90:52:2b:87:e2:ac:ea:1d:38:59:4f:cb:d8:0c: 7c:fc:58:a1:b4:2c:be:8d:80:69:49:6d:f7:fe:60: a3:44:aa:9b:c9:bf:0f:56:ad:5f:16:6f:99:ea:14: e8:83:90:f3:10:f0:5d:d2:a4:5c:d1:78:93:e2:32: 1e:9c:9f:06:e1:81:88:ba:64:db:17:46:b7:a0:0e: 42:fe:b0:62:8e:bd:fd:22:eb:f9:23:85:bc:6b:1e: 32:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:4C:22:28:02:17:55:32:19:26:79:2D:50:F0:A1:B2:A1:07:2F:74 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/KEwiKAIXVTIZJnktUPChsqEHL3Q.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.2.204.0/23 Signature Algorithm: sha256WithRSAEncryption 44:0b:c9:2c:24:37:e1:d8:10:4b:82:42:08:e9:63:dc:02:87: 36:7d:3e:c2:ce:ba:b4:d2:d1:9f:d5:8c:e5:a8:5f:ec:22:15: 63:ea:9a:d1:0d:90:cf:1c:b7:e1:13:13:91:6b:f7:6c:48:38: 87:29:d0:c7:a5:70:17:a1:fc:a9:9e:d8:78:6c:59:01:45:fa: 66:58:96:35:cb:8b:f1:41:60:66:dd:ab:7b:d4:f3:0c:e8:d1: 84:68:23:e7:6b:cd:99:e5:c5:50:40:e3:a2:c0:cb:46:85:f7: bb:7a:df:06:1a:f9:8f:75:6d:ea:72:63:88:a4:d0:07:58:70: 61:fb:3d:43:6a:f9:db:93:9a:88:cd:a0:c0:60:8e:21:09:a4: 27:ba:26:2e:a2:7e:3a:c9:9a:1e:47:1d:c1:ce:06:e1:96:06: 2f:3a:db:af:15:c2:2f:2d:f2:0b:06:d7:d6:4d:3f:47:12:51: fb:f2:10:7e:c5:40:14:5b:2b:2a:a6:af:2a:ec:81:10:6b:1c: 8e:c5:a1:f4:e8:20:4a:8c:48:55:1a:51:77:f8:e8:12:90:1d: 53:30:63:ac:0f:5c:8e:da:19:ff:57:c7:59:7d:b9:fb:b3:48: fc:01:27:98:ed:af:81:f7:d4:db:b5:73:b0:1f:6f:82:0f:19: 63:1a:1b:c8 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MTU4MjRaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDI4NEMyMjI4MDIxNzU1 MzIxOTI2NzkyRDUwRjBBMUIyQTEwNzJGNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuPbAgkJjrv7nZUlpFQf1ZFgQV340MYjHuBygHRJ7sqK5JrBTy MmOiQ6XFLqv0A3OGa7+G8U4pPIk8TNXWQwOl9KEsJ+ggXzAobXdsbkTnl10ZkqsZ BX4zLlcTEFXZOaY/TdqleyUPyKEV5BAgRaUzRCdfOc3kj+UUqcITWJbiJ2KcwUzr niUZI08L+vWqeDdsc1QolaMaM96gYpTncYexIZl3ac+QUiuH4qzqHThZT8vYDHz8 WKG0LL6NgGlJbff+YKNEqpvJvw9WrV8Wb5nqFOiDkPMQ8F3SpFzReJPiMh6cnwbh gYi6ZNsXRregDkL+sGKOvf0i6/kjhbxrHjKfAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUKEwiKAIXVTIZJnktUPChsqEHL3QwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9LRXdpS0FJWFZUSVpKbmt0VVBDaHNxRUhMM1Eu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQB0wLMMA0GCSqGSIb3DQEBCwUAA4IBAQBEC8ksJDfh2BBLgkII6WPc Aoc2fT7Czrq00tGf1YzlqF/sIhVj6prRDZDPHLfhExORa/dsSDiHKdDHpXAXofyp nth4bFkBRfpmWJY1y4vxQWBm3at71PMM6NGEaCPna82Z5cVQQOOiwMtGhfe7et8G GvmPdW3qcmOIpNAHWHBh+z1Davnbk5qIzaDAYI4hCaQnuiYuon46yZoeRx3Bzgbh lgYvOtuvFcIvLfILBtfWTT9HElH78hB+xUAUWysqpq8q7IEQaxyOxaH06CBKjEhV GlF3+OgSkB1TMGOsD1yO2hn/V8dZfbn7s0j8ASeY7a+B99TbtXOwH2+CDxljGhvI -----END CERTIFICATE-----Generated at Wed Jul 30 03:09:47 2025 by rpki-client