$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/YirTHMr8u-g9_mLEsj4qJGU5NR4.roa File: YirTHMr8u-g9_mLEsj4qJGU5NR4.roa (raw, json) Hash identifier: 9NrVmoy7u/ixGOQGGylWGIEcRFOw0aw20TzNigL8LQ8= Subject key identifier: 62:2A:D3:1C:CA:FC:BB:E8:3D:FE:62:C4:B2:3E:2A:24:65:39:35:1E Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 8E Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/YirTHMr8u-g9_mLEsj4qJGU5NR4.roa Signing time: Thu 24 Jul 2025 00:30:39 +0000 ROA not before: Thu 24 Jul 2025 00:30:39 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 202.218.15.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 00:30:39 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=622AD31CCAFCBBE83DFE62C4B23E2A246539351E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:93:88:b2:a9:fd:de:4b:cd:01:07:86:76:d3: af:0f:da:fd:f9:5c:37:d7:4d:44:70:27:0b:8e:2f: 5c:66:e3:b8:1a:14:ae:16:a9:c6:f0:af:66:61:7a: 0a:e0:f0:fe:7f:1d:10:20:ab:14:4d:57:71:17:76: f3:6d:97:87:3c:a6:dc:73:c4:40:72:66:7c:4d:b8: ac:b0:91:45:37:22:61:57:ae:b4:ec:ba:d4:a7:4c: 1f:18:92:49:d0:a5:3d:ce:58:9e:87:23:54:f5:e8: 2b:02:d2:f2:f6:fe:82:5e:6e:54:b4:80:0d:2e:bb: 0a:d6:d2:0a:4e:bd:94:f7:11:d7:5c:27:cb:42:20: e8:13:48:76:35:25:cd:97:f9:3b:e4:39:99:d1:ac: 9a:6b:5d:4f:2f:b3:cb:70:78:8b:26:20:c9:5b:a6: 2c:3e:8c:75:d5:de:5e:d9:b6:3b:ea:8c:0d:fb:e2: dc:22:ea:99:fc:40:c2:46:3f:4d:86:b7:b2:39:4e: 5b:f7:c5:a9:6d:48:49:d8:41:21:e0:04:85:1c:83: 7f:df:50:7d:89:57:da:41:3c:71:d0:4f:f9:49:35: 51:fb:b6:7a:3c:ba:24:5b:24:c0:b7:c2:18:67:fe: c9:ad:b6:0f:50:d1:56:e6:f9:4b:a4:9d:f9:2c:13: cf:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:2A:D3:1C:CA:FC:BB:E8:3D:FE:62:C4:B2:3E:2A:24:65:39:35:1E X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/YirTHMr8u-g9_mLEsj4qJGU5NR4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.218.15.0/24 Signature Algorithm: sha256WithRSAEncryption 81:a7:e4:92:a0:22:8f:a9:4d:e5:59:7e:6c:f6:e2:03:a2:d0: 7e:c5:3a:14:e0:16:fd:d1:ec:08:bb:ca:21:c6:b1:60:53:22: fe:ac:bb:aa:a2:d1:a1:be:0f:46:ad:bf:4f:d9:4c:25:a4:e5: b2:b8:ee:f4:8c:d2:1b:48:e9:7d:6d:86:44:b9:f7:d1:cb:33: 62:a7:68:f1:4f:24:3e:84:8a:57:60:34:b0:f6:89:88:48:c7: a7:cf:c9:ad:91:4d:a4:6d:7f:71:a3:aa:89:66:e8:3f:01:8d: 97:98:98:e2:5b:32:97:f7:41:a9:1e:2d:f1:c6:7a:aa:26:34: 75:0a:89:58:d7:81:9f:4d:83:9a:05:76:25:cf:cf:2f:d5:1e: 78:94:1e:af:63:46:b3:d3:9c:4f:00:e9:45:3d:c6:ca:00:e9: ce:a1:b6:54:18:20:44:ec:ce:25:4d:ab:aa:dd:fa:7b:cf:7e: 98:d3:fe:c0:6f:d1:55:c9:20:07:fd:3c:f3:85:8a:d0:3a:01: fe:38:0e:9a:d6:86:e2:ae:99:5d:72:f6:d4:11:a9:3c:40:11: 53:19:5a:dc:a5:9c:27:b9:d5:a4:c7:29:5b:8f:bf:a5:71:60: d4:59:b9:d6:83:9f:8f:65:2a:77:bc:1e:aa:31:c1:49:b1:e8: c2:6f:9c:d3 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MDMwMzlaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDYyMkFEMzFDQ0FGQ0JC RTgzREZFNjJDNEIyM0UyQTI0NjUzOTM1MUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLk4iyqf3eS80BB4Z2068P2v35XDfXTURwJwuOL1xm47gaFK4W qcbwr2Zhegrg8P5/HRAgqxRNV3EXdvNtl4c8ptxzxEByZnxNuKywkUU3ImFXrrTs utSnTB8YkknQpT3OWJ6HI1T16CsC0vL2/oJeblS0gA0uuwrW0gpOvZT3EddcJ8tC IOgTSHY1Jc2X+TvkOZnRrJprXU8vs8tweIsmIMlbpiw+jHXV3l7ZtjvqjA374twi 6pn8QMJGP02Gt7I5Tlv3xaltSEnYQSHgBIUcg3/fUH2JV9pBPHHQT/lJNVH7tno8 uiRbJMC3whhn/smttg9Q0Vbm+UuknfksE8+RAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUYirTHMr8u+g9/mLEsj4qJGU5NR4wHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9ZaXJUSE1yOHUtZzlfbUxFc2o0cUpHVTVOUjQu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAytoPMA0GCSqGSIb3DQEBCwUAA4IBAQCBp+SSoCKPqU3lWX5s9uID otB+xToU4Bb90ewIu8ohxrFgUyL+rLuqotGhvg9Grb9P2UwlpOWyuO70jNIbSOl9 bYZEuffRyzNip2jxTyQ+hIpXYDSw9omISMenz8mtkU2kbX9xo6qJZug/AY2XmJji WzKX90GpHi3xxnqqJjR1ColY14GfTYOaBXYlz88v1R54lB6vY0az05xPAOlFPcbK AOnOobZUGCBE7M4lTauq3fp7z36Y0/7Ab9FVySAH/TzzhYrQOgH+OA6a1obirpld cvbUEak8QBFTGVrcpZwnudWkxylbj7+lcWDUWbnWg5+PZSp3vB6qMcFJsejCb5zT -----END CERTIFICATE-----Generated at Wed Jul 30 03:07:32 2025 by rpki-client