$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/KG0mOOsKiaAesIJ2hOQzxWuhcQU.roa File: KG0mOOsKiaAesIJ2hOQzxWuhcQU.roa (raw, json) Hash identifier: jITyafy77YN5Aha2cNBxv+D/iT2QIM16Zdp1v9X4m84= Subject key identifier: 28:6D:26:38:EB:0A:89:A0:1E:B0:82:76:84:E4:33:C5:6B:A1:71:05 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: AD Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/KG0mOOsKiaAesIJ2hOQzxWuhcQU.roa Signing time: Thu 24 Jul 2025 01:04:24 +0000 ROA not before: Thu 24 Jul 2025 01:04:24 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 210.129.128.0/19 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 01:04:24 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=286D2638EB0A89A01EB0827684E433C56BA17105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:11:9b:ee:91:46:54:1c:90:7b:2b:00:47:50: 82:18:d0:93:5c:f0:ca:30:13:45:6a:7e:41:21:25: 9b:b8:f5:0d:7a:de:77:8c:77:99:33:dc:16:95:a9: 44:92:2f:94:90:9d:4a:59:77:9e:15:87:78:cb:7a: 72:6f:4e:cb:73:ad:2c:a0:dd:e7:f5:6a:99:e7:15: 1c:02:ba:eb:be:b2:2a:6a:40:e6:4c:46:13:82:1c: 53:b3:ee:03:7a:37:c4:bd:ed:d1:55:45:b9:15:37: 6d:ba:fe:04:da:ff:c8:0e:e2:58:16:8b:1a:2e:54: 6b:e4:54:f7:08:5a:40:d4:08:3d:84:39:d2:f0:d8: 3e:32:cb:c7:24:e9:b5:db:d0:a5:6d:84:e7:9d:56: 80:0d:59:31:fc:2e:d7:1d:64:d7:2c:7d:1d:c7:41: ec:de:4b:a8:ab:72:aa:36:66:82:e4:c8:f6:a2:6a: 0c:cf:4f:6c:82:89:3a:05:54:86:a1:8b:5f:b9:1f: 2e:1f:12:94:61:c7:26:66:c0:b9:a5:5a:56:78:42: 7b:0d:81:68:3c:25:c0:79:97:04:02:07:b8:f3:e4: 93:b2:34:6b:e4:bc:c8:b6:76:9a:8e:a2:ce:d7:f4: 0c:c5:99:ab:e6:fb:fe:8d:30:e0:ba:ee:ab:20:56: 28:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:6D:26:38:EB:0A:89:A0:1E:B0:82:76:84:E4:33:C5:6B:A1:71:05 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/KG0mOOsKiaAesIJ2hOQzxWuhcQU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.129.128.0/19 Signature Algorithm: sha256WithRSAEncryption 71:4f:ca:ba:2c:a5:2c:7f:3b:2a:8f:e1:bd:a4:7c:87:8f:a9: 11:66:4b:24:8a:fc:b4:09:6e:35:c4:e3:8f:61:93:bb:05:2a: 69:2a:ee:a1:61:80:a6:dc:ae:5f:34:8e:14:a3:1c:5b:6b:a2: 06:80:09:73:b5:e2:d9:56:84:e8:98:00:cc:09:02:47:72:3b: cf:1b:78:e7:15:ea:9e:2e:d8:60:d3:37:77:68:87:fc:06:97: 61:df:07:25:31:5e:49:99:9e:9a:db:56:ce:3b:aa:cb:64:28: fa:3e:09:7a:b9:35:f0:78:2b:af:fb:fd:7d:95:86:df:2f:73: a7:b1:8d:6b:22:1f:41:6e:b0:c1:2a:b4:95:1b:dd:a6:10:00: b9:3c:2f:2c:35:79:ba:91:90:21:16:25:75:db:3c:db:a9:52: 79:38:ee:1a:47:80:4b:d7:c0:97:50:46:ec:05:9c:01:0f:d6: 32:c3:cc:35:d9:12:4c:74:fa:9b:e2:de:d9:70:b0:80:a6:b1: 23:54:3e:8f:5e:85:9e:ad:dc:a0:9c:5f:15:e6:05:8e:b2:3b: 46:f9:85:5b:15:3f:28:9c:3b:86:96:df:69:0e:d5:92:0a:52: 02:8d:31:4e:04:80:9c:56:df:69:26:d2:7a:c8:81:44:4e:0d: 75:cb:55:93 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MTA0MjRaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDI4NkQyNjM4RUIwQTg5 QTAxRUIwODI3Njg0RTQzM0M1NkJBMTcxMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3EZvukUZUHJB7KwBHUIIY0JNc8MowE0VqfkEhJZu49Q163neM d5kz3BaVqUSSL5SQnUpZd54Vh3jLenJvTstzrSyg3ef1apnnFRwCuuu+sipqQOZM RhOCHFOz7gN6N8S97dFVRbkVN226/gTa/8gO4lgWixouVGvkVPcIWkDUCD2EOdLw 2D4yy8ck6bXb0KVthOedVoANWTH8LtcdZNcsfR3HQezeS6ircqo2ZoLkyPaiagzP T2yCiToFVIahi1+5Hy4fEpRhxyZmwLmlWlZ4QnsNgWg8JcB5lwQCB7jz5JOyNGvk vMi2dpqOos7X9AzFmavm+/6NMOC67qsgVijlAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUKG0mOOsKiaAesIJ2hOQzxWuhcQUwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9LRzBtT09zS2lhQWVzSUoyaE9RenhXdWhjUVUu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQF0oGAMA0GCSqGSIb3DQEBCwUAA4IBAQBxT8q6LKUsfzsqj+G9pHyH j6kRZkskivy0CW41xOOPYZO7BSppKu6hYYCm3K5fNI4Uoxxba6IGgAlzteLZVoTo mADMCQJHcjvPG3jnFeqeLthg0zd3aIf8Bpdh3wclMV5JmZ6a21bOO6rLZCj6Pgl6 uTXweCuv+/19lYbfL3OnsY1rIh9BbrDBKrSVG92mEAC5PC8sNXm6kZAhFiV12zzb qVJ5OO4aR4BL18CXUEbsBZwBD9Yyw8w12RJMdPqb4t7ZcLCAprEjVD6PXoWerdyg nF8V5gWOsjtG+YVbFT8onDuGlt9pDtWSClICjTFOBICcVt9pJtJ6yIFETg11y1WT -----END CERTIFICATE-----Generated at Wed Jul 30 03:22:06 2025 by rpki-client