$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/KLOYKaAFwj6QiEiUtmi2VzGSkdY.roa File: KLOYKaAFwj6QiEiUtmi2VzGSkdY.roa (raw, json) Hash identifier: zgtFta4ckAvBew6pOcEaNHvgElF8DOsDItkTQYNFq4o= Subject key identifier: 28:B3:98:29:A0:05:C2:3E:90:88:48:94:B6:68:B6:57:31:92:91:D6 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 0105 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/KLOYKaAFwj6QiEiUtmi2VzGSkdY.roa Signing time: Thu 24 Jul 2025 02:05:33 +0000 ROA not before: Thu 24 Jul 2025 02:05:33 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 211.133.253.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 00:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 02:05:33 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=28B39829A005C23E90884894B668B657319291D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3c:2e:3e:a9:50:f1:07:77:e8:3b:a7:93:32: ad:00:4b:15:d5:10:f8:0c:6c:5e:98:94:04:b7:81: fa:df:b7:e0:6b:5a:6c:36:cb:0b:33:eb:e9:30:df: ff:51:f6:d6:d9:12:88:dd:3b:17:83:84:c3:75:40: 1d:88:ba:f5:85:05:08:9a:06:81:e9:bb:68:a4:3d: b4:be:a5:0a:c1:38:12:14:91:ac:d7:9a:02:7c:c1: 94:ef:78:2e:20:5c:68:fe:4a:49:db:c9:00:8a:29: c4:7d:25:01:c9:b1:d8:1f:5f:27:c7:aa:7f:ac:a1: 48:21:af:80:c9:71:67:5c:46:f1:64:28:9e:ef:30: 54:2f:86:b7:51:53:50:a4:2f:99:cc:a0:44:b0:2b: b1:cb:d6:91:f2:ba:e9:95:5d:0c:da:cb:38:c9:75: c1:2c:55:3c:0c:04:56:df:8b:ca:37:42:bf:49:57: 5a:96:74:b6:0d:ba:bf:a9:23:30:f0:f3:14:19:fe: 87:d1:f5:90:66:25:aa:45:91:cc:fe:2a:7b:b2:53: d6:27:2b:03:ac:4e:e0:19:7d:c5:2b:31:77:d9:6e: ab:df:57:9d:ce:fe:12:24:6e:fa:d6:ff:6c:08:b0: cd:2a:4d:1f:4b:ed:37:e4:23:5f:42:28:73:f7:69: fb:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:B3:98:29:A0:05:C2:3E:90:88:48:94:B6:68:B6:57:31:92:91:D6 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/KLOYKaAFwj6QiEiUtmi2VzGSkdY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.133.253.0/24 Signature Algorithm: sha256WithRSAEncryption bd:a6:0e:89:1e:b0:a5:69:65:c7:cf:00:17:95:05:1d:37:dd: bd:21:8a:42:83:39:e0:8a:42:75:5f:a2:38:3b:38:75:26:36: 8e:3c:e7:0e:4c:aa:f0:7d:26:04:a8:23:04:5a:4f:e9:2f:8c: 25:60:1c:44:33:37:5b:8b:c6:58:3c:9d:b5:4c:ce:20:ba:97: 92:63:61:8f:9b:b9:9d:da:13:11:f4:b5:e5:8d:29:b4:fc:53: e0:d6:23:a2:ed:74:06:56:2b:6c:df:a7:b2:fc:86:53:3c:25: 45:60:00:a0:dd:54:d1:e3:6b:6a:8f:99:76:bd:d3:2b:4d:7d: 81:ec:9e:29:92:d7:3a:09:92:9b:10:e4:99:8c:41:24:95:17: 6c:4d:f4:0a:a7:7e:0f:f8:3b:28:d3:6a:e4:de:24:c6:41:f8: cc:d0:20:d9:6c:56:7d:fd:72:ce:f4:6d:a6:32:cd:3f:2e:c1: 43:f2:fe:5c:f5:d3:48:14:00:21:ad:a0:83:04:f6:ab:e9:05: a5:58:80:e5:1c:f2:97:3e:95:d0:61:70:26:ba:9a:20:8c:64: ea:77:bd:39:22:53:fa:c2:10:dc:e5:1b:dd:46:7a:b3:2b:20: 9f:f1:2d:e5:25:ef:6d:cf:ad:06:7d:36:f0:93:e7:ef:d8:ae: 26:2f:79:32 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MjA1MzNaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDI4QjM5ODI5QTAwNUMy M0U5MDg4NDg5NEI2NjhCNjU3MzE5MjkxRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMPC4+qVDxB3foO6eTMq0ASxXVEPgMbF6YlAS3gfrft+BrWmw2 ywsz6+kw3/9R9tbZEojdOxeDhMN1QB2IuvWFBQiaBoHpu2ikPbS+pQrBOBIUkazX mgJ8wZTveC4gXGj+SknbyQCKKcR9JQHJsdgfXyfHqn+soUghr4DJcWdcRvFkKJ7v MFQvhrdRU1CkL5nMoESwK7HL1pHyuumVXQzayzjJdcEsVTwMBFbfi8o3Qr9JV1qW dLYNur+pIzDw8xQZ/ofR9ZBmJapFkcz+KnuyU9YnKwOsTuAZfcUrMXfZbqvfV53O /hIkbvrW/2wIsM0qTR9L7TfkI19CKHP3afs7AgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUKLOYKaAFwj6QiEiUtmi2VzGSkdYwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9LTE9ZS2FBRndqNlFpRWlVdG1pMlZ6R1NrZFku cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQA04X9MA0GCSqGSIb3DQEBCwUAA4IBAQC9pg6JHrClaWXHzwAXlQUd N929IYpCgzngikJ1X6I4Ozh1JjaOPOcOTKrwfSYEqCMEWk/pL4wlYBxEMzdbi8ZY PJ21TM4gupeSY2GPm7md2hMR9LXljSm0/FPg1iOi7XQGVits36ey/IZTPCVFYACg 3VTR42tqj5l2vdMrTX2B7J4pktc6CZKbEOSZjEEklRdsTfQKp34P+Dso02rk3iTG QfjM0CDZbFZ9/XLO9G2mMs0/LsFD8v5c9dNIFAAhraCDBPar6QWlWIDlHPKXPpXQ YXAmupogjGTqd705IlP6whDc5RvdRnqzKyCf8S3lJe9tz60GfTbwk+fv2K4mL3ky -----END CERTIFICATE-----Generated at Wed Jul 30 03:03:41 2025 by rpki-client