$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/W9zdC_htWMqBfY2t6cYjsjh6fmE.roa File: W9zdC_htWMqBfY2t6cYjsjh6fmE.roa (raw, json) Hash identifier: v97qSZh3cXKVnDcuvLEC7ZGjeVbQsUyJMdQWOWA8uWU= Subject key identifier: 5B:DC:DD:0B:F8:6D:58:CA:81:7D:8D:AD:E9:C6:23:B2:38:7A:7E:61 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 011C Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/W9zdC_htWMqBfY2t6cYjsjh6fmE.roa Signing time: Thu 24 Jul 2025 02:22:06 +0000 ROA not before: Thu 24 Jul 2025 02:22:06 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 202.33.0.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 00:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 02:22:06 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=5BDCDD0BF86D58CA817D8DADE9C623B2387A7E61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9f:14:ed:bb:48:2d:73:e8:34:d9:37:93:ad: 8d:f0:a2:4f:37:18:72:a3:0e:4c:67:de:a5:b1:fd: 35:63:a6:2e:6d:19:8a:4a:67:3d:be:00:54:6d:35: b8:36:77:11:1d:52:5f:3b:44:77:fe:11:b3:4a:a9: 40:2a:fb:a0:53:f7:65:14:e1:2d:01:aa:9b:6e:21: 04:5e:43:6e:5e:05:17:06:04:eb:17:e8:6d:a1:84: 2b:7a:91:e8:34:f2:a2:5a:4e:cb:f3:d9:4b:92:75: 15:87:90:2b:d0:bc:40:36:c9:83:b1:ee:38:93:6d: 5e:b4:da:4a:8c:df:9e:63:d6:27:14:e1:f7:f1:71: b3:83:e4:da:00:c5:f2:58:eb:30:07:08:70:3c:69: 52:0b:e4:04:a7:dd:94:58:be:08:e2:ff:94:17:83: 0a:04:e5:ca:18:37:0c:7e:c0:17:86:21:df:ba:8d: b2:dd:69:9f:33:1f:0c:ff:23:26:4b:dc:63:67:a1: c8:c6:ac:d1:7e:2e:a0:e3:ae:f1:52:63:7e:96:89: 6d:80:70:49:50:c0:36:e3:db:17:b6:3d:4b:59:5c: f5:eb:fc:a2:c6:e2:2c:aa:9b:c3:06:b7:98:6f:18: b3:b9:de:29:a5:b0:09:45:6d:9a:99:38:fc:ed:83: bb:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:DC:DD:0B:F8:6D:58:CA:81:7D:8D:AD:E9:C6:23:B2:38:7A:7E:61 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/W9zdC_htWMqBfY2t6cYjsjh6fmE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.33.0.0/21 Signature Algorithm: sha256WithRSAEncryption b4:4a:16:4d:ea:d7:8e:94:e8:fa:92:7c:3a:3a:c0:4f:dd:d3: 2e:d1:d6:7f:7a:b5:02:02:0c:bd:e3:d1:17:55:27:64:91:df: 2e:17:92:f0:74:0a:d9:69:04:33:e8:79:24:f3:61:c8:28:26: 18:d3:d9:b6:ce:e5:c2:c2:61:22:17:41:92:bc:51:d6:a9:96: 7b:4c:3e:df:8d:76:c5:51:db:eb:72:49:59:28:99:fe:e5:4d: 4c:74:94:00:4c:e1:77:c8:fe:07:24:d6:5c:91:52:0c:47:32: 99:69:03:f1:c1:84:a6:19:e8:8e:d6:46:63:07:68:b0:11:4d: 87:47:db:ba:5a:76:c6:fa:4d:6a:2a:14:ce:c9:13:c0:d9:66: a2:ab:0d:ee:12:c5:c2:cf:1c:0e:16:fa:fe:00:d2:79:a4:e1: e0:4e:69:b4:f7:af:c2:09:05:2b:49:68:30:4b:05:2a:cf:d7: 3f:b1:a3:ee:e2:78:e8:8b:47:78:68:de:32:6b:e1:54:1f:20: 2f:32:ef:e1:b2:2e:93:56:7b:ce:9c:df:29:95:68:b8:7f:80: c4:a1:65:09:f8:6c:73:80:9e:e5:c8:46:e1:f9:d0:cb:79:76: ad:43:68:ef:fe:96:1d:5c:73:c1:96:4b:a8:fd:32:34:a3:22: 3a:d8:c1:e9 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICARwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MjIyMDZaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDVCRENERDBCRjg2RDU4 Q0E4MTdEOERBREU5QzYyM0IyMzg3QTdFNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCynxTtu0gtc+g02TeTrY3wok83GHKjDkxn3qWx/TVjpi5tGYpK Zz2+AFRtNbg2dxEdUl87RHf+EbNKqUAq+6BT92UU4S0BqptuIQReQ25eBRcGBOsX 6G2hhCt6keg08qJaTsvz2UuSdRWHkCvQvEA2yYOx7jiTbV602kqM355j1icU4ffx cbOD5NoAxfJY6zAHCHA8aVIL5ASn3ZRYvgji/5QXgwoE5coYNwx+wBeGId+6jbLd aZ8zHwz/IyZL3GNnocjGrNF+LqDjrvFSY36WiW2AcElQwDbj2xe2PUtZXPXr/KLG 4iyqm8MGt5hvGLO53imlsAlFbZqZOPztg7vJAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUW9zdC/htWMqBfY2t6cYjsjh6fmEwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9XOXpkQ19odFdNcUJmWTJ0NmNZanNqaDZmbUUu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDyiEAMA0GCSqGSIb3DQEBCwUAA4IBAQC0ShZN6teOlOj6knw6OsBP 3dMu0dZ/erUCAgy949EXVSdkkd8uF5LwdArZaQQz6Hkk82HIKCYY09m2zuXCwmEi F0GSvFHWqZZ7TD7fjXbFUdvrcklZKJn+5U1MdJQATOF3yP4HJNZckVIMRzKZaQPx wYSmGeiO1kZjB2iwEU2HR9u6WnbG+k1qKhTOyRPA2Waiqw3uEsXCzxwOFvr+ANJ5 pOHgTmm096/CCQUrSWgwSwUqz9c/saPu4njoi0d4aN4ya+FUHyAvMu/hsi6TVnvO nN8plWi4f4DEoWUJ+GxzgJ7lyEbh+dDLeXatQ2jv/pYdXHPBlkuo/TI0oyI62MHp -----END CERTIFICATE-----Generated at Wed Jul 30 03:04:45 2025 by rpki-client