$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Y7FWHQ-1U6ZBh-hjWY8FtMKnPIE.roa File: Y7FWHQ-1U6ZBh-hjWY8FtMKnPIE.roa (raw, json) Hash identifier: 08w6ElmffrcjAzjnF2aQiV3ID4XNgDaxTp5YGo2MQq8= Subject key identifier: 63:B1:56:1D:0F:B5:53:A6:41:87:E8:63:59:8F:05:B4:C2:A7:3C:81 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: CD Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Y7FWHQ-1U6ZBh-hjWY8FtMKnPIE.roa Signing time: Thu 24 Jul 2025 01:30:20 +0000 ROA not before: Thu 24 Jul 2025 01:30:20 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 210.158.216.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 00:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 01:30:20 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=63B1561D0FB553A64187E863598F05B4C2A73C81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0d:cb:13:99:0d:d3:b1:08:10:c3:64:39:fc: 5a:4f:ef:4e:ec:e7:be:f6:d2:39:40:08:b2:92:92: 08:df:dc:4e:78:88:84:e8:d2:69:8d:26:ab:86:51: ad:8d:34:fe:16:51:1e:b9:a0:0f:a1:66:a8:a8:af: 74:ec:05:eb:eb:34:be:95:c1:43:86:3d:4e:09:f5: c5:42:28:4d:60:eb:0e:39:14:c2:66:0a:cf:38:c3: 0c:8a:af:c1:17:8a:de:0d:a3:ee:c6:2e:05:ad:0e: 4c:e5:4f:6e:4b:44:0e:a9:e9:4b:ad:f3:5c:60:c8: ee:f7:e4:61:dc:4a:23:60:1f:87:5e:c6:53:14:14: f5:b3:6d:d9:f6:e5:d4:ec:29:89:bf:c1:5f:e9:be: bf:33:6b:ef:0d:ce:ac:53:d7:bf:dd:d2:b3:7e:62: 40:0b:96:b5:db:8e:78:d3:f0:f5:ae:5d:09:92:4d: 81:ac:cd:cc:6e:5e:0d:3a:72:df:76:08:ca:42:66: 1a:16:65:12:dd:4d:24:05:69:30:ff:3f:5c:fe:41: 8e:05:03:48:2d:76:66:cb:56:bc:3e:d6:da:69:0c: c7:1b:a2:3d:da:de:be:2c:be:af:e8:72:e5:e7:46: 4d:27:a4:42:4d:bd:cc:9c:1c:d8:55:9a:0e:74:ec: 05:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:B1:56:1D:0F:B5:53:A6:41:87:E8:63:59:8F:05:B4:C2:A7:3C:81 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Y7FWHQ-1U6ZBh-hjWY8FtMKnPIE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.158.216.0/21 Signature Algorithm: sha256WithRSAEncryption a7:57:e4:96:7e:e8:46:61:75:66:9f:dc:6d:88:b5:48:f9:db: 5c:b5:05:aa:4e:0f:a6:f0:91:4e:d7:fa:17:a2:d6:29:93:9b: bc:49:9d:41:d5:3b:39:f0:ef:9b:6f:64:d9:93:0f:59:1c:5c: db:17:7e:77:d5:75:a3:e9:97:f9:de:b7:dd:f5:0b:53:49:b9: 0a:75:6f:45:a2:8e:31:2a:62:45:48:6e:83:9e:00:a5:4d:2f: 72:62:e5:2c:85:ec:0f:0b:67:ed:c1:ea:2e:52:d2:8d:f2:72: d8:df:4a:07:7a:08:60:49:5b:98:bd:b7:6d:62:dd:9c:b2:d4: f9:7e:12:13:ac:74:3a:ba:78:0c:1e:be:e0:56:78:1a:17:4f: 6d:38:33:18:0c:27:49:d1:7c:31:f8:eb:8d:3e:52:4e:55:a1: 72:60:f8:da:87:42:c7:05:a8:eb:69:c6:99:51:2a:5b:b3:06: 44:75:94:12:6c:98:35:83:a7:16:c5:15:6c:4e:83:7a:75:33: d3:01:c0:de:47:ab:72:b4:4f:0a:cd:3c:e9:26:a7:21:f4:f9: 32:b2:7a:9a:89:41:cd:79:62:10:d6:34:78:62:74:d0:da:75: 8c:85:52:dc:30:c6:5d:3b:1c:ea:2d:fb:78:88:db:d5:77:cf: 57:67:c3:c9 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MTMwMjBaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDYzQjE1NjFEMEZCNTUz QTY0MTg3RTg2MzU5OEYwNUI0QzJBNzNDODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0DcsTmQ3TsQgQw2Q5/FpP707s57720jlACLKSkgjf3E54iITo 0mmNJquGUa2NNP4WUR65oA+hZqior3TsBevrNL6VwUOGPU4J9cVCKE1g6w45FMJm Cs84wwyKr8EXit4No+7GLgWtDkzlT25LRA6p6Uut81xgyO735GHcSiNgH4dexlMU FPWzbdn25dTsKYm/wV/pvr8za+8NzqxT17/d0rN+YkALlrXbjnjT8PWuXQmSTYGs zcxuXg06ct92CMpCZhoWZRLdTSQFaTD/P1z+QY4FA0gtdmbLVrw+1tppDMcboj3a 3r4svq/ocuXnRk0npEJNvcycHNhVmg507AUxAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUY7FWHQ+1U6ZBh+hjWY8FtMKnPIEwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9ZN0ZXSFEtMVU2WkJoLWhqV1k4RnRNS25QSUUu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQD0p7YMA0GCSqGSIb3DQEBCwUAA4IBAQCnV+SWfuhGYXVmn9xtiLVI +dtctQWqTg+m8JFO1/oXotYpk5u8SZ1B1Ts58O+bb2TZkw9ZHFzbF3531XWj6Zf5 3rfd9QtTSbkKdW9Foo4xKmJFSG6DngClTS9yYuUshewPC2ftweouUtKN8nLY30oH eghgSVuYvbdtYt2cstT5fhITrHQ6ungMHr7gVngaF09tODMYDCdJ0Xwx+OuNPlJO VaFyYPjah0LHBajracaZUSpbswZEdZQSbJg1g6cWxRVsToN6dTPTAcDeR6tytE8K zTzpJqch9PkysnqaiUHNeWIQ1jR4YnTQ2nWMhVLcMMZdOxzqLft4iNvVd89XZ8PJ -----END CERTIFICATE-----Generated at Wed Jul 30 03:03:41 2025 by rpki-client