$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/U2FnaBtbqlQQ8YpnrrmYFd7yi6c.roa File: U2FnaBtbqlQQ8YpnrrmYFd7yi6c.roa (raw, json) Hash identifier: 9ZYQU56+vrDCV4n9Bo6/hb9EsCOcFBTdzn+2w9TU5tI= Subject key identifier: 53:61:67:68:1B:5B:AA:54:10:F1:8A:67:AE:B9:98:15:DE:F2:8B:A7 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 91 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/U2FnaBtbqlQQ8YpnrrmYFd7yi6c.roa Signing time: Thu 24 Jul 2025 00:39:48 +0000 ROA not before: Thu 24 Jul 2025 00:39:48 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 202.218.64.0/18 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 00:39:48 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=536167681B5BAA5410F18A67AEB99815DEF28BA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9e:c5:01:02:6d:95:d2:de:af:13:91:2c:ce: a3:9e:67:c6:50:66:d4:83:5c:58:7e:18:f5:69:b6: f9:4e:24:99:01:55:d2:68:74:1e:cd:7d:af:99:45: f3:fd:33:5a:97:28:14:a4:3d:47:b7:bc:5b:7c:74: c8:af:8c:0d:c8:88:58:51:dc:96:fc:da:13:c0:b2: de:28:01:e1:ee:94:a0:46:29:6a:5d:34:fa:24:a4: eb:dc:32:82:55:ab:29:68:85:a2:6a:83:79:99:7e: 4b:b2:64:cd:9e:a4:e1:a4:88:cc:50:48:5f:d7:57: cb:35:76:e6:3d:92:ca:c3:37:29:07:bd:47:55:e5: 73:86:5e:f3:d2:0a:58:e5:f5:1c:ce:c1:64:9d:f1: 4d:ae:91:0a:04:bb:01:42:c4:52:a6:87:32:46:fd: d6:73:d9:52:b5:20:88:77:e0:11:fe:20:c1:e7:b2: a4:75:1b:b5:65:54:f7:e2:bd:dc:a4:80:3e:e4:32: 88:a3:c5:13:a2:75:83:70:cc:f0:72:d7:4d:a4:29: 1c:82:ce:d9:c8:f2:73:46:6c:d7:60:74:94:25:27: 72:98:e1:de:7f:d7:2e:cf:f6:23:5b:76:05:e7:5a: 9a:31:4c:21:63:af:35:37:64:a9:7d:12:0b:11:1e: ee:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:61:67:68:1B:5B:AA:54:10:F1:8A:67:AE:B9:98:15:DE:F2:8B:A7 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/U2FnaBtbqlQQ8YpnrrmYFd7yi6c.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.218.64.0/18 Signature Algorithm: sha256WithRSAEncryption 20:64:0b:3a:2a:25:c7:d7:d8:ab:44:d4:d2:28:7d:c2:53:33: 44:52:f2:05:ec:9a:a1:ea:6e:3a:0f:e8:60:5e:2d:ec:20:0e: be:65:57:ea:78:e5:a1:a0:c6:c4:5c:94:e4:68:3d:62:fa:f4: 9f:fe:31:a5:81:1f:0d:8a:11:d5:06:3e:50:77:3b:6a:83:fd: bf:f8:52:0b:0e:af:66:15:33:8f:9d:c8:ec:32:8a:a1:91:6b: 7b:68:ef:f2:7a:f9:1c:56:d6:70:6e:51:df:49:c1:24:11:70: 1f:67:7c:48:36:f1:ac:18:01:77:f7:9e:21:87:66:36:8b:f7: 87:d9:a4:68:28:07:0d:6d:47:f4:06:cf:c8:3f:9a:37:c2:6c: 03:e8:2c:5d:bd:29:af:56:8b:30:d9:0f:e1:10:ae:b5:d0:f2: 5b:41:71:9d:39:b1:97:7b:76:87:ea:9d:d4:39:cb:52:7a:b5: 0c:4b:af:4c:d6:f2:99:8e:7b:d8:74:ec:6f:79:d5:d6:fc:12: bb:1a:fd:72:0d:9c:dc:74:61:b8:2b:89:c2:b5:6c:b7:fc:2f: de:36:08:f5:ea:e7:bd:20:a0:dd:8b:c9:ef:82:69:fe:94:fb: e5:11:36:bd:29:74:57:90:aa:fc:34:0d:8b:c1:04:96:67:2b: c9:c3:d3:60 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MDM5NDhaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDUzNjE2NzY4MUI1QkFB NTQxMEYxOEE2N0FFQjk5ODE1REVGMjhCQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxnsUBAm2V0t6vE5EszqOeZ8ZQZtSDXFh+GPVptvlOJJkBVdJo dB7Nfa+ZRfP9M1qXKBSkPUe3vFt8dMivjA3IiFhR3Jb82hPAst4oAeHulKBGKWpd NPokpOvcMoJVqylohaJqg3mZfkuyZM2epOGkiMxQSF/XV8s1duY9ksrDNykHvUdV 5XOGXvPSCljl9RzOwWSd8U2ukQoEuwFCxFKmhzJG/dZz2VK1IIh34BH+IMHnsqR1 G7VlVPfivdykgD7kMoijxROidYNwzPBy102kKRyCztnI8nNGbNdgdJQlJ3KY4d5/ 1y7P9iNbdgXnWpoxTCFjrzU3ZKl9EgsRHu4hAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUU2FnaBtbqlQQ8YpnrrmYFd7yi6cwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9VMkZuYUJ0YnFsUVE4WXBucnJtWUZkN3lpNmMu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGytpAMA0GCSqGSIb3DQEBCwUAA4IBAQAgZAs6KiXH19irRNTSKH3C UzNEUvIF7Jqh6m46D+hgXi3sIA6+ZVfqeOWhoMbEXJTkaD1i+vSf/jGlgR8NihHV Bj5Qdztqg/2/+FILDq9mFTOPncjsMoqhkWt7aO/yevkcVtZwblHfScEkEXAfZ3xI NvGsGAF3954hh2Y2i/eH2aRoKAcNbUf0Bs/IP5o3wmwD6CxdvSmvVosw2Q/hEK61 0PJbQXGdObGXe3aH6p3UOctSerUMS69M1vKZjnvYdOxvedXW/BK7Gv1yDZzcdGG4 K4nCtWy3/C/eNgj16ue9IKDdi8nvgmn+lPvlETa9KXRXkKr8NA2LwQSWZyvJw9Ng -----END CERTIFICATE-----Generated at Wed Jul 30 03:08:54 2025 by rpki-client