$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/NpxN7x9cxlZ1xENewMSDzamepfc.roa File: NpxN7x9cxlZ1xENewMSDzamepfc.roa (raw, json) Hash identifier: B2TbG8ePW6Aiuna2aNsC9UtoBdjgA5Rn2t4PPFzrad4= Subject key identifier: 36:9C:4D:EF:1F:5C:C6:56:75:C4:43:5E:C0:C4:83:CD:A9:9E:A5:F7 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 8C Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/NpxN7x9cxlZ1xENewMSDzamepfc.roa Signing time: Thu 24 Jul 2025 00:30:39 +0000 ROA not before: Thu 24 Jul 2025 00:30:39 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 202.218.0.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 00:30:39 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=369C4DEF1F5CC65675C4435EC0C483CDA99EA5F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:45:e5:6c:dc:44:10:b1:55:a8:80:4f:93:80: 0f:a5:8d:6c:11:0a:4f:86:60:b4:6f:9a:17:76:25: 95:3d:bc:e7:96:2a:30:14:16:08:7b:63:09:76:34: 7d:33:82:9d:cb:56:fc:86:22:f0:5e:54:08:7d:f1: 0b:de:a9:a4:ea:e6:5f:cc:a3:69:68:ff:e7:81:83: af:9f:29:f1:e7:f9:f6:3a:90:53:87:23:68:f7:96: 05:4d:bf:9f:08:bc:ae:07:3d:0c:03:03:3c:7a:5b: 76:55:39:5c:ad:a4:02:8c:75:79:90:82:3d:a2:1b: 95:ab:7f:67:67:32:8e:89:70:55:99:93:54:95:01: 9e:49:b1:a2:39:b3:e7:cf:5e:9d:42:26:47:26:c7: be:d1:b2:21:53:8a:a2:4a:5b:98:f3:3b:7f:cc:55: da:6c:b5:0b:c7:37:1f:9d:43:c9:09:f2:47:11:f4: dd:7e:95:4a:30:1d:77:fb:f0:f2:66:97:7c:60:f3: 5b:7d:6f:69:14:25:52:18:12:3d:15:eb:61:88:b6: 87:47:f1:c4:8e:e3:b0:ca:2b:e8:38:c7:cc:f7:4d: c7:90:64:b8:45:bd:5a:48:1e:7c:ed:d0:d3:78:86: 1e:9d:0e:71:54:95:d7:da:36:d0:e8:f8:66:02:63: 1e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:9C:4D:EF:1F:5C:C6:56:75:C4:43:5E:C0:C4:83:CD:A9:9E:A5:F7 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/NpxN7x9cxlZ1xENewMSDzamepfc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.218.0.0/21 Signature Algorithm: sha256WithRSAEncryption 4a:b5:77:05:ea:f3:d8:e7:dd:8b:67:67:9a:c8:a5:4f:e5:9c: 66:3b:9f:09:6e:6c:9b:99:64:32:83:c8:e4:1b:f3:ad:9e:1b: a0:5d:17:59:76:fc:32:c5:c1:6f:24:a3:04:11:8b:97:ab:2b: b7:e5:17:c3:b0:bf:e2:85:9b:0a:d6:85:20:be:7a:b3:25:6c: 4a:82:7e:0e:73:5a:b3:c4:72:30:c7:1c:61:d1:86:c9:96:8b: 7a:3b:80:ab:55:a2:b0:22:8d:fb:f7:4d:ad:ea:67:1e:b1:25: af:d8:e1:27:7d:36:79:6a:70:31:5f:1a:e7:3f:55:de:6b:61: f0:4b:45:2b:24:9d:e4:4e:65:0c:e3:bb:c8:a3:75:35:2b:3c: 89:42:e1:2d:78:85:ff:9a:d2:fa:1e:ba:db:7b:dc:f3:40:95: 0e:ba:44:c2:9c:db:c0:1c:b8:38:85:cf:c8:60:03:1b:f9:ce: 92:82:ce:78:fc:e7:c7:ad:a1:fe:2f:d8:0a:c3:bc:b7:79:28: 7d:f9:f8:ea:38:a3:23:a4:71:c5:2e:9d:a2:a4:e2:24:bd:c0: 45:72:c4:9d:d7:5d:0f:fe:4d:23:f7:df:63:2c:c5:a7:97:a4: c8:ce:64:fe:ef:71:7a:89:ff:60:5c:4d:c6:4d:05:41:66:86: 21:48:86:ec -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MDMwMzlaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDM2OUM0REVGMUY1Q0M2 NTY3NUM0NDM1RUMwQzQ4M0NEQTk5RUE1RjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvReVs3EQQsVWogE+TgA+ljWwRCk+GYLRvmhd2JZU9vOeWKjAU Fgh7Ywl2NH0zgp3LVvyGIvBeVAh98QveqaTq5l/Mo2lo/+eBg6+fKfHn+fY6kFOH I2j3lgVNv58IvK4HPQwDAzx6W3ZVOVytpAKMdXmQgj2iG5Wrf2dnMo6JcFWZk1SV AZ5JsaI5s+fPXp1CJkcmx77RsiFTiqJKW5jzO3/MVdpstQvHNx+dQ8kJ8kcR9N1+ lUowHXf78PJml3xg81t9b2kUJVIYEj0V62GItodH8cSO47DKK+g4x8z3TceQZLhF vVpIHnzt0NN4hh6dDnFUldfaNtDo+GYCYx7nAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUNpxN7x9cxlZ1xENewMSDzamepfcwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9OcHhON3g5Y3hsWjF4RU5ld01TRHphbWVwZmMu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDytoAMA0GCSqGSIb3DQEBCwUAA4IBAQBKtXcF6vPY592LZ2eayKVP 5ZxmO58JbmybmWQyg8jkG/OtnhugXRdZdvwyxcFvJKMEEYuXqyu35RfDsL/ihZsK 1oUgvnqzJWxKgn4Oc1qzxHIwxxxh0YbJlot6O4CrVaKwIo37902t6mcesSWv2OEn fTZ5anAxXxrnP1Xea2HwS0UrJJ3kTmUM47vIo3U1KzyJQuEteIX/mtL6Hrrbe9zz QJUOukTCnNvAHLg4hc/IYAMb+c6Sgs54/OfHraH+L9gKw7y3eSh9+fjqOKMjpHHF Lp2ipOIkvcBFcsSd110P/k0j999jLMWnl6TIzmT+73F6if9gXE3GTQVBZoYhSIbs -----END CERTIFICATE-----Generated at Wed Jul 30 03:20:13 2025 by rpki-client