$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Od6p4hch9xS9WFYV7ejZaa1B8Pk.roa File: Od6p4hch9xS9WFYV7ejZaa1B8Pk.roa (raw, json) Hash identifier: zAmvOARztbdCq9pZXq5dnSdxXLCV0pPInJp85oFl9wY= Subject key identifier: 39:DE:A9:E2:17:21:F7:14:BD:58:56:15:ED:E8:D9:69:AD:41:F0:F9 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 9A Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Od6p4hch9xS9WFYV7ejZaa1B8Pk.roa Signing time: Thu 24 Jul 2025 00:46:52 +0000 ROA not before: Thu 24 Jul 2025 00:46:52 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 202.230.56.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 00:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 00:46:52 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=39DEA9E21721F714BD585615EDE8D969AD41F0F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:25:f2:de:34:38:e0:2b:6d:a1:1e:17:f6:b5: 05:68:24:98:96:a6:8d:72:c7:47:17:2a:71:01:99: 81:d1:06:1d:a9:04:8c:90:70:d0:23:2d:8c:5d:40: 5a:87:3c:1e:32:af:42:18:94:70:f9:3c:cc:a2:c9: 45:ce:e5:be:a0:a3:d4:ee:42:7d:7d:58:9f:18:ac: a3:8a:e6:fc:5b:8c:49:26:b2:37:65:4f:15:92:c9: fb:36:07:25:f8:8e:73:7a:a8:bd:41:9d:69:dc:83: 06:f1:59:d1:0c:bb:38:8f:d3:64:53:f1:69:63:c2: 53:19:7e:a8:40:f0:b2:cf:9c:8d:a0:9b:53:01:91: c8:de:3d:be:bb:3c:0a:41:a7:7b:96:55:b5:2d:9e: b2:06:02:c8:2d:f5:74:b2:0a:8e:30:51:12:56:a4: 78:9a:13:ef:ae:e7:45:cb:33:e4:e5:d3:79:91:73: c5:ca:21:af:13:be:32:21:52:ea:b5:e8:6f:82:0d: 77:c8:36:1e:92:94:65:8c:be:16:67:af:56:b3:d0: f7:d7:48:eb:c4:97:8b:02:03:11:9b:64:86:85:cd: 80:f6:4e:6e:69:e6:bc:7c:c6:4d:8a:fa:05:e8:9e: 03:09:e7:0b:7d:bb:57:19:3d:84:b6:30:1c:21:23: 6c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:DE:A9:E2:17:21:F7:14:BD:58:56:15:ED:E8:D9:69:AD:41:F0:F9 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Od6p4hch9xS9WFYV7ejZaa1B8Pk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.230.56.0/23 Signature Algorithm: sha256WithRSAEncryption bb:77:e9:6f:3b:73:fb:08:2c:04:06:2f:8c:5f:90:4e:23:55: e4:41:8b:01:03:1c:20:99:33:d3:e6:ca:0f:bd:d8:1f:31:2f: 7f:8f:41:63:20:43:21:81:11:dc:c6:df:f7:ff:8e:dd:ff:c4: 56:3e:0b:79:0f:24:a6:ae:98:ce:a9:16:e5:57:14:ba:e9:07: 2a:4d:67:5f:19:d6:a6:2e:68:21:1b:64:52:1e:09:ab:85:b7: 88:9b:f2:53:e6:43:38:a1:c8:f8:9b:73:89:bd:46:b1:66:34: d7:37:12:55:f6:98:d5:61:14:a9:38:80:d2:31:26:79:81:37: 47:f8:fb:09:fd:73:23:8c:86:11:ba:16:a9:dd:ba:4d:26:5a: 46:0c:db:e4:9c:a0:93:b3:c1:ba:8c:d7:fb:92:ae:fe:35:3d: 44:13:b4:36:ad:70:b0:fb:e4:73:11:69:7c:32:76:d4:e6:fc: 5f:14:92:37:bc:5d:48:2a:5b:26:2c:4c:94:ed:ce:b7:a8:ec: b0:49:76:cc:29:7b:0f:9b:cd:b0:6d:5d:6c:b8:26:1e:81:63: 45:63:a1:f3:43:af:d9:25:ec:0e:0f:35:f2:44:c9:ca:3f:c9: 92:2d:14:04:6f:fd:a3:06:1d:01:62:f1:0b:37:f3:82:fc:d9: 4e:80:e5:8a -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAJowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MDQ2NTJaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDM5REVBOUUyMTcyMUY3 MTRCRDU4NTYxNUVERThEOTY5QUQ0MUYwRjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkJfLeNDjgK22hHhf2tQVoJJiWpo1yx0cXKnEBmYHRBh2pBIyQ cNAjLYxdQFqHPB4yr0IYlHD5PMyiyUXO5b6go9TuQn19WJ8YrKOK5vxbjEkmsjdl TxWSyfs2ByX4jnN6qL1BnWncgwbxWdEMuziP02RT8WljwlMZfqhA8LLPnI2gm1MB kcjePb67PApBp3uWVbUtnrIGAsgt9XSyCo4wURJWpHiaE++u50XLM+Tl03mRc8XK Ia8TvjIhUuq16G+CDXfINh6SlGWMvhZnr1az0PfXSOvEl4sCAxGbZIaFzYD2Tm5p 5rx8xk2K+gXongMJ5wt9u1cZPYS2MBwhI2xpAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUOd6p4hch9xS9WFYV7ejZaa1B8PkwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9PZDZwNGhjaDl4UzlXRllWN2VqWmFhMUI4UGsu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQByuY4MA0GCSqGSIb3DQEBCwUAA4IBAQC7d+lvO3P7CCwEBi+MX5BO I1XkQYsBAxwgmTPT5soPvdgfMS9/j0FjIEMhgRHcxt/3/47d/8RWPgt5DySmrpjO qRblVxS66QcqTWdfGdamLmghG2RSHgmrhbeIm/JT5kM4ocj4m3OJvUaxZjTXNxJV 9pjVYRSpOIDSMSZ5gTdH+PsJ/XMjjIYRuhap3bpNJlpGDNvknKCTs8G6jNf7kq7+ NT1EE7Q2rXCw++RzEWl8MnbU5vxfFJI3vF1IKlsmLEyU7c63qOywSXbMKXsPm82w bV1suCYegWNFY6HzQ6/ZJewODzXyRMnKP8mSLRQEb/2jBh0BYvELN/OC/NlOgOWK -----END CERTIFICATE-----Generated at Wed Jul 30 03:06:01 2025 by rpki-client