$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Koje3cELDctGFhi9X8lTNmhkoUQ.roa File: Koje3cELDctGFhi9X8lTNmhkoUQ.roa (raw, json) Hash identifier: 03WudZO9xZU4KrWwB8GTkgzqmNanDF/weHJpKaJWQzM= Subject key identifier: 2A:88:DE:DD:C1:0B:0D:CB:46:16:18:BD:5F:C9:53:36:68:64:A1:44 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 8D Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Koje3cELDctGFhi9X8lTNmhkoUQ.roa Signing time: Thu 24 Jul 2025 00:30:39 +0000 ROA not before: Thu 24 Jul 2025 00:30:39 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 202.218.12.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 00:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 00:30:39 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=2A88DEDDC10B0DCB461618BD5FC953366864A144 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:08:20:68:5f:b4:04:5e:64:b1:4f:b1:1a:13: 72:07:12:ba:a7:a5:fa:a9:7f:81:ea:fb:9d:52:ae: 53:fb:d4:47:ab:ce:fd:e3:c9:20:00:50:df:29:66: 47:09:fa:71:1c:eb:57:02:c5:e1:2f:cf:6e:5f:0d: 6e:1d:c8:7c:37:d0:7f:4d:d9:14:dd:2b:a1:c9:b9: 09:cc:d2:bb:d8:74:ac:00:4f:f1:1b:2f:bb:a0:10: 1e:72:a0:8c:88:d6:84:b2:a1:1c:13:f8:d8:88:1b: a0:b3:19:ad:d5:49:c5:2c:0a:61:1d:25:f2:4a:7f: c5:5b:e4:d6:0f:15:18:c2:49:db:41:2d:e7:85:b3: c5:d2:56:c6:2f:e2:60:48:a0:02:e6:f4:61:90:93: ca:5f:37:91:6d:57:56:5c:7e:e4:0b:d8:20:f8:ce: 4f:0a:8c:a9:5a:75:01:4a:a9:c3:2c:87:27:c2:02: 29:28:9b:d5:91:00:98:3c:8b:ad:ff:f1:35:61:54: aa:a2:60:69:a5:a5:d8:52:80:18:51:e8:7d:16:e1: a4:db:a4:cb:d7:8b:1a:3f:2f:0f:88:c6:01:5a:54: ce:36:dc:4b:15:ce:15:f1:3a:4a:c9:f9:d8:c3:bc: c8:26:31:09:4f:2b:70:d5:11:04:84:d2:ff:4a:40: e1:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:88:DE:DD:C1:0B:0D:CB:46:16:18:BD:5F:C9:53:36:68:64:A1:44 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Koje3cELDctGFhi9X8lTNmhkoUQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.218.12.0/23 Signature Algorithm: sha256WithRSAEncryption 79:5c:51:3e:5c:28:e1:25:d8:b1:f4:34:4f:21:60:0d:ec:0a: 9f:48:7a:be:0b:25:97:54:a0:2b:67:4a:44:75:47:e1:49:ff: 85:72:0f:81:65:7d:b9:7a:14:17:3e:ae:6e:1b:46:c2:09:30: 7b:83:45:67:dd:01:16:27:a8:cc:bb:1d:d7:8c:ff:22:98:f9: 88:39:40:72:37:b5:68:b4:2a:54:b9:ee:b4:6c:36:f7:4e:0c: 13:f0:83:41:dd:32:e3:b6:61:d1:09:7d:2e:15:d5:a5:69:08: d3:e7:22:cb:a1:bd:84:27:9e:cd:c9:b6:ed:76:e4:a8:3a:7c: bb:71:bc:c0:43:6c:8a:a6:f0:a8:8e:70:c9:fc:a4:34:c8:13: 56:d2:76:57:73:13:49:04:a5:10:29:18:f8:a9:79:1c:12:1e: bd:54:a0:84:2b:c9:ad:1a:f8:44:c5:67:19:14:97:ea:a1:7e: 4f:e3:68:b2:16:01:7c:48:ec:eb:ea:30:c4:1a:53:8b:5a:d9: db:07:a2:d7:44:78:fe:26:3a:d9:e9:fe:31:4f:5b:1f:8c:2e: b8:e7:33:fc:9e:43:de:76:54:28:b2:46:c4:6d:52:92:b1:64: 6b:97:4f:37:35:13:af:a1:4a:00:2d:b8:34:00:32:16:b8:e6: e2:e5:58:40 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MDMwMzlaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDJBODhERUREQzEwQjBE Q0I0NjE2MThCRDVGQzk1MzM2Njg2NEExNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOCCBoX7QEXmSxT7EaE3IHErqnpfqpf4Hq+51SrlP71Eerzv3j ySAAUN8pZkcJ+nEc61cCxeEvz25fDW4dyHw30H9N2RTdK6HJuQnM0rvYdKwAT/Eb L7ugEB5yoIyI1oSyoRwT+NiIG6CzGa3VScUsCmEdJfJKf8Vb5NYPFRjCSdtBLeeF s8XSVsYv4mBIoALm9GGQk8pfN5FtV1ZcfuQL2CD4zk8KjKladQFKqcMshyfCAiko m9WRAJg8i63/8TVhVKqiYGmlpdhSgBhR6H0W4aTbpMvXixo/Lw+IxgFaVM423EsV zhXxOkrJ+djDvMgmMQlPK3DVEQSE0v9KQOHTAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUKoje3cELDctGFhi9X8lTNmhkoUQwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9Lb2plM2NFTERjdEdGaGk5WDhsVE5taGtvVVEu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBytoMMA0GCSqGSIb3DQEBCwUAA4IBAQB5XFE+XCjhJdix9DRPIWAN 7AqfSHq+CyWXVKArZ0pEdUfhSf+Fcg+BZX25ehQXPq5uG0bCCTB7g0Vn3QEWJ6jM ux3XjP8imPmIOUByN7VotCpUue60bDb3TgwT8INB3TLjtmHRCX0uFdWlaQjT5yLL ob2EJ57NybbtduSoOny7cbzAQ2yKpvCojnDJ/KQ0yBNW0nZXcxNJBKUQKRj4qXkc Eh69VKCEK8mtGvhExWcZFJfqoX5P42iyFgF8SOzr6jDEGlOLWtnbB6LXRHj+JjrZ 6f4xT1sfjC645zP8nkPedlQoskbEbVKSsWRrl083NROvoUoALbg0ADIWuObi5VhA -----END CERTIFICATE-----Generated at Wed Jul 30 03:04:43 2025 by rpki-client