$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/TW1U44ln5KPfofJAvqmtN7mo0QI.roa File: TW1U44ln5KPfofJAvqmtN7mo0QI.roa (raw, json) Hash identifier: Gq85ItZIsz+G6RNvPGapCKnRHoIr2MO7MuphAWiU8FA= Subject key identifier: 4D:6D:54:E3:89:67:E4:A3:DF:A1:F2:40:BE:A9:AD:37:B9:A8:D1:02 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: BF Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/TW1U44ln5KPfofJAvqmtN7mo0QI.roa Signing time: Thu 24 Jul 2025 01:09:52 +0000 ROA not before: Thu 24 Jul 2025 01:09:52 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 210.152.24.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 01:09:52 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=4D6D54E38967E4A3DFA1F240BEA9AD37B9A8D102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9a:42:01:92:9e:86:f6:3c:f6:21:5c:5a:68: c2:83:ee:8c:46:1b:e3:0f:16:1f:d6:18:dd:fd:52: 0b:80:79:7e:10:52:86:6f:6e:03:8f:04:1e:04:4e: b8:cd:41:db:3d:ed:ed:72:95:5c:c0:36:1d:f2:b9: de:ae:f2:3a:1c:55:ed:42:c0:85:bc:ff:e3:4d:a8: 96:0f:a5:0d:32:03:b0:53:1a:0d:e8:f3:78:6e:b3: e8:e1:46:b8:df:54:c8:df:50:f7:56:1f:69:ba:89: 25:cb:95:3f:4f:7d:17:91:2a:34:e7:cd:8a:02:9f: 17:ea:c5:e2:11:c4:6d:1b:5e:77:b8:61:b9:a9:b0: 7c:c6:b9:f4:c6:35:5e:68:a1:13:71:df:a0:5b:9a: 30:0b:e1:20:4d:b3:8c:7b:8f:b0:01:8e:8f:89:69: eb:7b:98:45:80:09:35:c6:34:bf:eb:2a:56:11:2b: c7:74:4f:38:57:fd:c6:2d:14:d9:f8:a9:fd:82:45: 3e:f4:8f:26:c0:62:04:7c:e6:38:da:71:da:3b:a7: 22:9f:bf:6f:bd:7e:9b:fc:22:cb:ac:a8:fc:48:d1: c5:8a:4d:73:0c:13:07:77:88:28:fd:91:26:f6:2b: ea:d1:15:7c:b5:5e:81:df:25:86:ca:71:50:e6:3d: 93:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:6D:54:E3:89:67:E4:A3:DF:A1:F2:40:BE:A9:AD:37:B9:A8:D1:02 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/TW1U44ln5KPfofJAvqmtN7mo0QI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.152.24.0/22 Signature Algorithm: sha256WithRSAEncryption 30:2d:d5:c3:d0:7e:61:3c:f3:4e:20:d6:54:cc:02:f1:86:48: 61:c6:31:6d:ea:4f:32:32:fa:85:e3:d2:15:aa:e1:a8:b7:98: 31:b1:5c:42:71:65:49:f2:c0:13:fa:70:c7:f7:12:29:e8:42: 15:73:29:49:c0:2a:48:9e:7f:11:d4:08:fa:69:7c:6b:85:f4: f4:38:61:b1:85:36:6a:09:7c:09:c1:8d:99:b2:02:d2:6d:6e: f1:d9:29:03:27:87:02:c2:a3:16:f0:7d:2e:f9:fa:a6:9f:91: ac:f3:45:e6:10:eb:0d:90:a3:dc:e4:33:df:7b:dd:27:47:ab: 29:e3:ab:a0:73:04:a9:c7:26:76:d4:24:bf:e5:be:c2:5e:03: e0:c7:dd:3e:72:41:9b:00:e0:5a:52:02:99:f5:8b:64:31:55: cc:7b:24:b8:ea:4b:33:3a:43:40:a1:44:55:b6:3e:f4:ef:6b: 93:71:ec:db:ba:de:4c:89:67:92:5d:bf:fb:15:1b:9d:42:86: 80:9a:fd:98:29:04:c9:f1:0e:cf:5a:17:ee:3a:7a:56:10:fd: 51:48:d5:cb:78:8d:9e:5a:8b:aa:36:23:88:21:77:db:31:78: 09:bf:99:b4:5a:39:b3:17:ae:51:ee:27:4d:5c:77:c2:b7:e8: 43:db:79:a8 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MTA5NTJaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDRENkQ1NEUzODk2N0U0 QTNERkExRjI0MEJFQTlBRDM3QjlBOEQxMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSmkIBkp6G9jz2IVxaaMKD7oxGG+MPFh/WGN39UguAeX4QUoZv bgOPBB4ETrjNQds97e1ylVzANh3yud6u8jocVe1CwIW8/+NNqJYPpQ0yA7BTGg3o 83hus+jhRrjfVMjfUPdWH2m6iSXLlT9PfReRKjTnzYoCnxfqxeIRxG0bXne4Ybmp sHzGufTGNV5ooRNx36BbmjAL4SBNs4x7j7ABjo+Jaet7mEWACTXGNL/rKlYRK8d0 TzhX/cYtFNn4qf2CRT70jybAYgR85jjacdo7pyKfv2+9fpv8IsusqPxI0cWKTXMM Ewd3iCj9kSb2K+rRFXy1XoHfJYbKcVDmPZNzAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUTW1U44ln5KPfofJAvqmtN7mo0QIwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9UVzFVNDRsbjVLUGZvZkpBdnFtdE43bW8wUUku cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQC0pgYMA0GCSqGSIb3DQEBCwUAA4IBAQAwLdXD0H5hPPNOINZUzALx hkhhxjFt6k8yMvqF49IVquGot5gxsVxCcWVJ8sAT+nDH9xIp6EIVcylJwCpInn8R 1Aj6aXxrhfT0OGGxhTZqCXwJwY2ZsgLSbW7x2SkDJ4cCwqMW8H0u+fqmn5Gs80Xm EOsNkKPc5DPfe90nR6sp46ugcwSpxyZ21CS/5b7CXgPgx90+ckGbAOBaUgKZ9Ytk MVXMeyS46kszOkNAoURVtj7072uTcezbut5MiWeSXb/7FRudQoaAmv2YKQTJ8Q7P WhfuOnpWEP1RSNXLeI2eWouqNiOIIXfbMXgJv5m0WjmzF65R7idNXHfCt+hD23mo -----END CERTIFICATE-----Generated at Wed Jul 30 03:11:07 2025 by rpki-client