$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Pfxonim0R18uSKVLHHc_g_Z9OSE.roa File: Pfxonim0R18uSKVLHHc_g_Z9OSE.roa (raw, json) Hash identifier: SJQgSibBXzIJBps5X45bGxOVxdaIZL9UxO+ew9ca9RI= Subject key identifier: 3D:FC:68:9E:29:B4:47:5F:2E:48:A5:4B:1C:77:3F:83:F6:7D:39:21 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: C9 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Pfxonim0R18uSKVLHHc_g_Z9OSE.roa Signing time: Thu 24 Jul 2025 01:30:18 +0000 ROA not before: Thu 24 Jul 2025 01:30:18 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 210.158.204.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 01:30:18 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=3DFC689E29B4475F2E48A54B1C773F83F67D3921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:60:c1:f4:7c:57:48:3c:44:09:e8:7c:f6:a3: 08:de:16:17:bb:34:d7:bb:41:4c:70:ab:61:40:06: eb:ca:cc:39:77:86:09:7b:45:4c:1c:4d:59:02:fa: a7:ef:4f:3e:a1:04:9d:a3:98:a6:74:19:68:fa:3e: 9e:6b:c8:ac:b5:ec:01:18:7e:c8:26:5a:12:80:06: 54:82:cb:b3:90:92:67:6a:07:b0:6e:01:8e:9d:fd: 65:44:83:be:04:e0:4a:29:90:61:56:fc:a1:5b:94: 02:04:52:20:df:05:e2:59:3e:38:0a:6d:5d:bb:3e: 93:17:7a:c8:3e:93:d6:b8:05:f9:0e:25:a2:d4:aa: e1:2f:a5:47:34:b4:ca:7b:26:e9:d3:ae:2f:e2:92: 81:54:b2:19:f4:77:dc:51:d9:57:67:18:7b:57:84: 8e:31:48:88:75:c0:5a:ed:88:98:97:0d:96:9f:9e: 7e:bd:c3:00:9a:34:cb:f7:67:a8:60:27:f3:bd:c8: 92:09:60:e2:7e:91:b2:d5:eb:39:17:3a:b1:b8:6a: 1d:6a:4e:c0:20:74:cb:59:22:c9:e7:e4:79:a2:f7: 61:02:2c:13:a0:ad:98:f1:bf:a1:89:18:b4:7b:76: 23:ee:79:3b:10:25:85:80:5b:da:15:f4:64:43:83: 30:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:FC:68:9E:29:B4:47:5F:2E:48:A5:4B:1C:77:3F:83:F6:7D:39:21 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Pfxonim0R18uSKVLHHc_g_Z9OSE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.158.204.0/23 Signature Algorithm: sha256WithRSAEncryption 17:f7:d7:cd:8a:eb:d2:39:d1:fc:5d:13:4d:2d:2d:db:87:51: d5:aa:e6:29:0e:00:86:e4:07:d5:6e:53:27:10:02:71:f7:ae: a2:9b:68:01:0a:1e:f0:f8:64:c3:62:0e:ac:83:22:1c:bc:01: 53:92:bb:af:24:d4:89:b6:64:62:93:04:36:3d:45:51:26:9e: 4b:9d:15:c1:73:39:ca:ef:82:82:d0:61:4f:5a:6f:0d:a3:74: e5:cc:bf:34:75:72:09:1f:82:ff:48:0e:50:2f:0b:d3:7b:23: d2:a8:23:f4:17:63:b8:f7:0b:fe:20:0f:cf:10:a3:10:cd:0e: 78:76:58:b2:0f:6c:80:b4:43:03:84:0b:dc:62:ad:60:83:2e: ce:f8:eb:2f:1c:fa:59:0b:d9:0f:76:1a:b3:df:c4:5c:71:1d: 7c:a4:1c:af:82:96:4e:8d:4e:45:a7:eb:37:c8:3e:b4:d9:0e: 56:87:98:c3:8f:fd:a3:5b:b5:cd:53:9b:0f:0c:13:46:29:ae: 24:f8:f1:4a:48:aa:bc:8b:fd:6a:cb:3c:d1:31:11:55:85:10: a2:3e:08:7e:33:da:a8:25:85:f8:79:1d:a0:4f:98:18:a0:ae: fb:c2:14:7f:aa:0b:c0:46:fe:b6:7f:7a:16:6c:45:ba:0a:1c: 08:df:81:8a -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MTMwMThaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDNERkM2ODlFMjlCNDQ3 NUYyRTQ4QTU0QjFDNzczRjgzRjY3RDM5MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrYMH0fFdIPEQJ6Hz2owjeFhe7NNe7QUxwq2FABuvKzDl3hgl7 RUwcTVkC+qfvTz6hBJ2jmKZ0GWj6Pp5ryKy17AEYfsgmWhKABlSCy7OQkmdqB7Bu AY6d/WVEg74E4EopkGFW/KFblAIEUiDfBeJZPjgKbV27PpMXesg+k9a4BfkOJaLU quEvpUc0tMp7JunTri/ikoFUshn0d9xR2VdnGHtXhI4xSIh1wFrtiJiXDZafnn69 wwCaNMv3Z6hgJ/O9yJIJYOJ+kbLV6zkXOrG4ah1qTsAgdMtZIsnn5Hmi92ECLBOg rZjxv6GJGLR7diPueTsQJYWAW9oV9GRDgzAxAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUPfxonim0R18uSKVLHHc/g/Z9OSEwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9QZnhvbmltMFIxOHVTS1ZMSEhjX2dfWjlPU0Uu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQB0p7MMA0GCSqGSIb3DQEBCwUAA4IBAQAX99fNiuvSOdH8XRNNLS3b h1HVquYpDgCG5AfVblMnEAJx966im2gBCh7w+GTDYg6sgyIcvAFTkruvJNSJtmRi kwQ2PUVRJp5LnRXBcznK74KC0GFPWm8No3TlzL80dXIJH4L/SA5QLwvTeyPSqCP0 F2O49wv+IA/PEKMQzQ54dliyD2yAtEMDhAvcYq1ggy7O+OsvHPpZC9kPdhqz38Rc cR18pByvgpZOjU5Fp+s3yD602Q5Wh5jDj/2jW7XNU5sPDBNGKa4k+PFKSKq8i/1q yzzRMRFVhRCiPgh+M9qoJYX4eR2gT5gYoK77whR/qgvARv62f3oWbEW6ChwI34GK -----END CERTIFICATE-----Generated at Wed Jul 30 03:07:32 2025 by rpki-client