$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/cfcKv01uhQ-Ce88hFEK8sHI_yQ4.roa File: cfcKv01uhQ-Ce88hFEK8sHI_yQ4.roa (raw, json) Hash identifier: /n7O8UNEgBV5HGbkSeEpdZDNHlZzwmNXxGScunahrds= Subject key identifier: 71:F7:0A:BF:4D:6E:85:0F:82:7B:CF:21:14:42:BC:B0:72:3F:C9:0E Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: A3 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/cfcKv01uhQ-Ce88hFEK8sHI_yQ4.roa Signing time: Thu 24 Jul 2025 00:54:32 +0000 ROA not before: Thu 24 Jul 2025 00:54:32 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 202.239.23.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 00:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 00:54:32 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=71F70ABF4D6E850F827BCF211442BCB0723FC90E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b2:3f:6c:3d:17:18:5d:00:4e:e7:22:08:37: 95:72:62:1a:ab:28:bc:04:84:99:29:4a:eb:a4:e4: 0f:fd:84:66:d2:34:69:b2:bd:9a:08:11:bd:1a:f9: d3:57:95:94:9c:91:3e:a4:5d:09:50:cb:c9:17:f7: c6:ec:b8:df:61:86:88:bf:32:10:b4:70:34:5a:60: 4b:2e:36:d7:b9:23:93:5a:a8:f8:b3:f1:f4:4f:a5: 93:61:8e:bc:bf:04:f5:44:76:d7:1e:c7:b4:93:a4: 83:73:69:bf:0e:2f:8f:8d:ad:92:f5:b4:66:4d:bc: b7:07:f2:11:e8:7c:00:40:37:3a:d5:16:64:fe:ea: 53:cd:d8:12:28:c2:14:d2:d1:10:43:12:2a:ef:a0: 5e:2f:b3:82:63:13:61:dc:bb:92:4e:24:6c:74:01: 51:c2:f4:a6:0f:1e:96:8f:e2:e9:de:38:c6:ab:f9: 12:91:86:78:d1:3f:39:c2:5d:aa:15:8b:ce:ca:0e: e7:bf:52:5f:6e:5a:1b:ad:8b:8b:57:b4:b5:89:9f: 11:a5:e5:e2:40:a7:23:1b:5c:33:b2:f6:9d:0e:f1: 4e:bc:62:f0:15:f5:b1:79:e1:03:4c:81:2b:91:2b: 79:47:02:54:07:fb:b8:3d:7b:b2:fe:36:b6:82:16: f2:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F7:0A:BF:4D:6E:85:0F:82:7B:CF:21:14:42:BC:B0:72:3F:C9:0E X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/cfcKv01uhQ-Ce88hFEK8sHI_yQ4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.239.23.0/24 Signature Algorithm: sha256WithRSAEncryption 01:0b:d4:87:3e:b2:4c:62:08:cd:97:bf:2a:d0:08:1c:2e:3e: 7a:61:67:ca:52:c4:3c:7c:8c:47:fe:87:36:3f:d2:fd:af:f2: 74:99:a7:31:d0:d4:ae:d6:62:0f:a7:53:9e:a1:1d:ae:70:e9: 7b:14:87:3d:4f:b3:3a:17:d3:68:66:a3:1c:b5:98:1c:00:bd: 84:02:a0:92:eb:68:67:b3:c6:cc:52:1d:98:c9:c6:ef:63:ba: 36:a9:1e:58:32:85:88:3c:64:a5:51:67:83:1c:bc:f5:b5:f1: 1e:f4:ed:45:7e:9f:06:46:4b:89:18:0c:44:1d:0c:9b:21:0e: 8b:7b:7a:8e:53:d6:e4:cc:48:95:87:e7:5e:8f:7b:90:11:20: cb:8e:73:78:b5:6a:d8:74:59:7b:d3:e0:6c:d0:b0:86:a9:b3: 60:de:7c:2d:f7:a3:2d:23:09:5e:6d:ff:a9:02:1d:92:13:82: a7:81:39:97:c5:14:26:1e:48:2d:78:2d:66:46:45:5a:05:c5: 6c:d7:2e:59:2e:4c:b1:8b:32:bd:bf:26:aa:7c:02:fb:98:c4: cf:2b:4e:dc:84:f8:36:d6:a6:49:bc:a1:2e:7d:3f:f4:06:bd: d8:59:ec:ab:30:ad:f7:5c:43:5c:43:7d:3c:3f:76:29:ae:2d: c9:9c:99:65 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MDU0MzJaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDcxRjcwQUJGNEQ2RTg1 MEY4MjdCQ0YyMTE0NDJCQ0IwNzIzRkM5MEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDosj9sPRcYXQBO5yIIN5VyYhqrKLwEhJkpSuuk5A/9hGbSNGmy vZoIEb0a+dNXlZSckT6kXQlQy8kX98bsuN9hhoi/MhC0cDRaYEsuNte5I5NaqPiz 8fRPpZNhjry/BPVEdtcex7STpINzab8OL4+NrZL1tGZNvLcH8hHofABANzrVFmT+ 6lPN2BIowhTS0RBDEirvoF4vs4JjE2Hcu5JOJGx0AVHC9KYPHpaP4uneOMar+RKR hnjRPznCXaoVi87KDue/Ul9uWhuti4tXtLWJnxGl5eJApyMbXDOy9p0O8U68YvAV 9bF54QNMgSuRK3lHAlQH+7g9e7L+NraCFvLxAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUcfcKv01uhQ+Ce88hFEK8sHI/yQ4wHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9jZmNLdjAxdWhRLUNlODhoRkVLOHNISV95UTQu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyu8XMA0GCSqGSIb3DQEBCwUAA4IBAQABC9SHPrJMYgjNl78q0Agc Lj56YWfKUsQ8fIxH/oc2P9L9r/J0macx0NSu1mIPp1OeoR2ucOl7FIc9T7M6F9No ZqMctZgcAL2EAqCS62hns8bMUh2YycbvY7o2qR5YMoWIPGSlUWeDHLz1tfEe9O1F fp8GRkuJGAxEHQybIQ6Le3qOU9bkzEiVh+dej3uQESDLjnN4tWrYdFl70+Bs0LCG qbNg3nwt96MtIwlebf+pAh2SE4KngTmXxRQmHkgteC1mRkVaBcVs1y5ZLkyxizK9 vyaqfAL7mMTPK07chPg21qZJvKEufT/0Br3YWeyrMK33XENcQ308P3Ypri3JnJll -----END CERTIFICATE-----Generated at Wed Jul 30 03:06:45 2025 by rpki-client