$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/YMXpkdJl-cqtGHRRpMW2Nu3Uf-A.roa File: YMXpkdJl-cqtGHRRpMW2Nu3Uf-A.roa (raw, json) Hash identifier: qof9ABH6V5aOsh1/+czp6s3mFV0SnABm+I4Lrx08X+k= Subject key identifier: 60:C5:E9:91:D2:65:F9:CA:AD:18:74:51:A4:C5:B6:36:ED:D4:7F:E0 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: A1 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/YMXpkdJl-cqtGHRRpMW2Nu3Uf-A.roa Signing time: Thu 24 Jul 2025 00:54:31 +0000 ROA not before: Thu 24 Jul 2025 00:54:31 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 202.239.16.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 00:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 00:54:31 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=60C5E991D265F9CAAD187451A4C5B636EDD47FE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:02:a2:2a:eb:d6:92:3d:1d:7d:c3:20:7d:b3: 05:88:73:55:c5:29:69:02:b7:8f:75:5e:d4:79:e5: 6c:12:b6:8b:25:31:6b:cf:be:0c:83:66:c3:84:74: 37:43:3a:8b:7d:47:f2:95:8e:fe:be:f7:94:83:59: 54:4d:6f:d1:4e:7e:13:29:79:3a:1d:5a:ac:b2:65: e4:f0:45:1f:c9:ae:e9:c7:d1:32:d6:0e:67:70:ab: 07:37:28:d6:6a:2a:c0:99:e6:08:ec:a1:dc:49:4b: c2:50:91:66:49:dc:cf:8c:7a:b0:55:09:7d:bf:d9: 43:18:9e:ea:1f:0a:10:dd:7b:89:b8:3f:37:42:18: f0:3e:51:2a:91:c6:72:12:cc:e6:77:e1:b7:4d:f6: d3:ba:10:36:46:0d:a6:22:c5:03:1b:76:9e:3b:00: 6f:5c:8d:22:b2:f5:85:b9:49:1d:7a:ca:5e:f0:f2: 71:b3:63:5c:07:9f:d7:24:b2:f9:0f:82:19:5d:14: 9d:f7:19:8e:03:05:c0:de:c7:36:81:e0:25:b8:a9: 43:c3:aa:44:d8:5a:44:af:e4:40:95:91:64:70:85: 9c:08:f2:9c:61:12:b3:47:64:44:3d:71:38:a8:68: 79:53:d0:a0:9d:d6:b2:ed:e7:84:15:c9:aa:76:94: 98:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:C5:E9:91:D2:65:F9:CA:AD:18:74:51:A4:C5:B6:36:ED:D4:7F:E0 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/YMXpkdJl-cqtGHRRpMW2Nu3Uf-A.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.239.16.0/22 Signature Algorithm: sha256WithRSAEncryption 23:e6:99:82:66:09:50:68:80:ff:3d:01:90:d6:6c:50:6f:c6: 80:a2:bb:e0:9d:e8:47:d1:55:e2:6b:6d:6a:cc:ba:64:d2:a7: 4b:ee:19:07:c9:a5:48:5a:51:04:d1:e9:d2:2a:26:f2:bb:c0: 3b:4b:ac:5b:fd:ae:ee:26:fb:cf:c7:45:e0:8b:88:4b:9b:b2: aa:1e:2c:d2:d9:72:05:7f:0f:98:35:0c:0f:0b:22:71:a4:9c: 5e:a4:34:b4:6d:74:22:08:2f:9a:15:f6:2f:a1:21:3a:5f:ca: 7d:4e:00:e4:f5:93:e6:1a:c5:4b:b3:89:59:02:79:50:e8:6a: 65:3f:55:f3:ed:ab:9b:ae:6f:e8:b5:fc:95:f0:fc:16:58:b4: 4f:b7:89:1e:a9:29:73:be:73:fa:0f:f2:8c:bf:49:80:af:ec: c6:0f:bb:c6:23:93:d6:3c:20:ea:ad:0a:e5:61:78:66:a0:d6: 84:4a:5e:44:28:0b:e6:53:ab:ca:ce:dd:d7:87:9b:7f:e6:dd: ce:23:49:ad:9b:b4:cd:65:32:04:30:22:d4:ba:99:e2:44:3f: a4:a4:c2:3d:96:35:8a:d3:bb:df:cf:41:e3:4f:9d:51:43:01: 27:e8:e5:de:49:24:1a:79:94:55:7c:63:5a:e7:a9:ef:8f:05: 99:96:c1:e5 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MDU0MzFaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDYwQzVFOTkxRDI2NUY5 Q0FBRDE4NzQ1MUE0QzVCNjM2RURENDdGRTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/AqIq69aSPR19wyB9swWIc1XFKWkCt491XtR55WwStoslMWvP vgyDZsOEdDdDOot9R/KVjv6+95SDWVRNb9FOfhMpeTodWqyyZeTwRR/JrunH0TLW Dmdwqwc3KNZqKsCZ5gjsodxJS8JQkWZJ3M+MerBVCX2/2UMYnuofChDde4m4PzdC GPA+USqRxnISzOZ34bdN9tO6EDZGDaYixQMbdp47AG9cjSKy9YW5SR16yl7w8nGz Y1wHn9cksvkPghldFJ33GY4DBcDexzaB4CW4qUPDqkTYWkSv5ECVkWRwhZwI8pxh ErNHZEQ9cTioaHlT0KCd1rLt54QVyap2lJgbAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUYMXpkdJl+cqtGHRRpMW2Nu3Uf+AwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9ZTVhwa2RKbC1jcXRHSFJScE1XMk51M1VmLUEu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCyu8QMA0GCSqGSIb3DQEBCwUAA4IBAQAj5pmCZglQaID/PQGQ1mxQ b8aAorvgnehH0VXia21qzLpk0qdL7hkHyaVIWlEE0enSKibyu8A7S6xb/a7uJvvP x0Xgi4hLm7KqHizS2XIFfw+YNQwPCyJxpJxepDS0bXQiCC+aFfYvoSE6X8p9TgDk 9ZPmGsVLs4lZAnlQ6GplP1Xz7aubrm/otfyV8PwWWLRPt4keqSlzvnP6D/KMv0mA r+zGD7vGI5PWPCDqrQrlYXhmoNaESl5EKAvmU6vKzt3Xh5t/5t3OI0mtm7TNZTIE MCLUupniRD+kpMI9ljWK07vfz0HjT51RQwEn6OXeSSQaeZRVfGNa56nvjwWZlsHl -----END CERTIFICATE-----Generated at Wed Jul 30 03:05:27 2025 by rpki-client