$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/KXJmvK2siElzeeOCx66sThDXpuE.roa File: KXJmvK2siElzeeOCx66sThDXpuE.roa (raw, json) Hash identifier: I/iXFqe4pp+lNotFfLwJMTLSohBaHA3op7dlb07lwR0= Subject key identifier: 29:72:66:BC:AD:AC:88:49:73:79:E3:82:C7:AE:AC:4E:10:D7:A6:E1 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 0109 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/KXJmvK2siElzeeOCx66sThDXpuE.roa Signing time: Thu 24 Jul 2025 02:12:59 +0000 ROA not before: Thu 24 Jul 2025 02:12:59 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 203.216.128.0/19 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 02:12:59 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=297266BCADAC88497379E382C7AEAC4E10D7A6E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:37:88:4a:07:09:56:4f:9e:fc:71:b3:5e:6e: 60:5d:4e:1d:38:1c:6e:70:86:40:49:12:d9:3f:5a: 06:4a:60:aa:bc:75:54:43:02:f9:15:4e:3e:78:c4: 3e:a6:f4:80:3a:c4:e0:3e:e6:9f:23:b4:ba:24:96: 79:0a:8f:f6:27:47:86:22:8c:f2:9f:10:32:cd:89: d7:e8:e7:6d:6e:9e:a7:20:36:1c:84:78:75:ac:a1: ce:b1:02:0c:53:dd:92:69:24:85:12:dd:a7:e9:46: b2:3c:53:34:fb:97:1b:66:68:c5:3d:f8:45:58:ce: d0:11:59:2a:84:2d:84:fb:8e:fd:37:a8:5f:94:65: bf:8a:e4:fd:d0:8c:07:b1:75:55:0c:72:ee:9c:26: 0e:c9:f6:6d:c4:8d:18:61:1c:ea:35:82:34:ee:2b: 5d:57:ad:3e:26:64:a5:19:87:04:45:56:d7:71:ee: d4:63:3b:e6:b0:fa:7d:8f:3d:06:6a:52:b3:f8:72: b0:71:09:06:de:8b:f6:51:83:d2:44:a4:64:82:6d: 99:af:35:c0:b8:3c:a4:69:69:12:ee:a6:68:8a:b1: 2c:7b:b4:97:89:2d:77:09:9f:7e:bd:bb:bd:5b:78: 89:88:ac:e9:48:e0:42:b4:51:d4:0a:8e:54:a3:27: 06:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:72:66:BC:AD:AC:88:49:73:79:E3:82:C7:AE:AC:4E:10:D7:A6:E1 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/KXJmvK2siElzeeOCx66sThDXpuE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.216.128.0/19 Signature Algorithm: sha256WithRSAEncryption 26:01:2e:73:0a:c5:44:64:64:06:d9:93:f8:ff:1d:82:56:32: e2:dd:53:ca:5d:ff:04:2e:07:56:e0:46:ea:20:7c:82:4b:00: 9b:87:6b:bf:b7:dc:37:76:04:ce:36:92:8f:79:b1:3c:2f:0a: 10:ea:cd:5b:5a:f4:00:ae:03:f0:97:b0:e3:22:a3:e9:51:02: 25:64:b4:58:24:4d:04:9a:96:ae:82:89:1a:12:e0:a5:92:d5: 66:d2:68:65:1f:99:f2:4d:07:ea:c9:3c:66:1d:59:38:6d:ba: 8b:1f:58:65:51:a5:81:11:c3:34:ba:21:95:fb:e5:c9:7b:0a: eb:a8:7d:2b:58:0f:ac:df:aa:d5:48:00:ab:6b:12:13:03:5c: 8c:31:aa:f8:50:bd:6c:57:b9:7d:b4:8c:90:7b:c7:9a:8b:2b: 69:9f:ef:7d:f7:cb:df:95:b0:b5:c7:f0:7a:56:94:f7:86:92: e3:e6:18:c1:ac:63:cd:b2:ef:aa:5f:2e:f7:ee:92:ca:31:49: 7a:b6:fa:b7:d0:1b:89:3b:33:36:c3:d3:57:05:fb:7f:22:93: 77:d5:52:62:9e:ce:c0:f8:21:6c:b2:4d:6d:27:ca:16:5b:4c: c8:88:99:bc:9f:7a:63:a0:62:ea:59:7d:c7:a5:51:88:81:a0: 01:ff:bc:73 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MjEyNTlaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDI5NzI2NkJDQURBQzg4 NDk3Mzc5RTM4MkM3QUVBQzRFMTBEN0E2RTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiN4hKBwlWT578cbNebmBdTh04HG5whkBJEtk/WgZKYKq8dVRD AvkVTj54xD6m9IA6xOA+5p8jtLoklnkKj/YnR4YijPKfEDLNidfo521unqcgNhyE eHWsoc6xAgxT3ZJpJIUS3afpRrI8UzT7lxtmaMU9+EVYztARWSqELYT7jv03qF+U Zb+K5P3QjAexdVUMcu6cJg7J9m3EjRhhHOo1gjTuK11XrT4mZKUZhwRFVtdx7tRj O+aw+n2PPQZqUrP4crBxCQbei/ZRg9JEpGSCbZmvNcC4PKRpaRLupmiKsSx7tJeJ LXcJn369u71beImIrOlI4EK0UdQKjlSjJwYNAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUKXJmvK2siElzeeOCx66sThDXpuEwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9LWEptdksyc2lFbHplZU9DeDY2c1RoRFhwdUUu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFy9iAMA0GCSqGSIb3DQEBCwUAA4IBAQAmAS5zCsVEZGQG2ZP4/x2C VjLi3VPKXf8ELgdW4EbqIHyCSwCbh2u/t9w3dgTONpKPebE8LwoQ6s1bWvQArgPw l7DjIqPpUQIlZLRYJE0EmpaugokaEuClktVm0mhlH5nyTQfqyTxmHVk4bbqLH1hl UaWBEcM0uiGV++XJewrrqH0rWA+s36rVSACraxITA1yMMar4UL1sV7l9tIyQe8ea iytpn+9998vflbC1x/B6VpT3hpLj5hjBrGPNsu+qXy737pLKMUl6tvq30BuJOzM2 w9NXBft/IpN31VJins7A+CFssk1tJ8oWW0zIiJm8n3pjoGLqWX3HpVGIgaAB/7xz -----END CERTIFICATE-----Generated at Wed Jul 30 03:09:46 2025 by rpki-client