$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/czMrmm5_KGOFYev4eUaR4GLod8o.roa File: czMrmm5_KGOFYev4eUaR4GLod8o.roa (raw, json) Hash identifier: idWE3Neoaf3YsH/VA9LHNlmxZYxvY7zlDE9qcxrg8s0= Subject key identifier: 73:33:2B:9A:6E:7F:28:63:85:61:EB:F8:79:46:91:E0:62:E8:77:CA Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: F8 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/czMrmm5_KGOFYev4eUaR4GLod8o.roa Signing time: Thu 24 Jul 2025 02:05:28 +0000 ROA not before: Thu 24 Jul 2025 02:05:28 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 211.14.132.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 02:05:28 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=73332B9A6E7F28638561EBF8794691E062E877CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e1:36:8e:0f:fb:22:78:7b:7e:da:96:2d:7b: 2f:f1:95:c5:e1:5d:14:c0:6d:1f:1e:f9:e3:fb:39: fd:9a:d1:b9:75:92:fa:0f:61:01:93:ae:1a:fd:c3: 38:1f:8b:d1:3a:2c:2e:d8:a2:3a:c4:0c:f2:89:70: cc:a1:09:87:a5:5f:bc:bb:54:81:cc:d8:18:80:8d: 0b:44:ec:dc:4c:a6:89:3d:48:d4:b3:3e:2b:76:2c: 2d:85:35:a2:3a:87:57:ab:3a:7d:a0:e1:60:47:ce: 9b:5e:9e:d7:78:54:1b:ea:2a:cf:71:42:88:8a:6b: 4b:5d:0f:40:5b:69:50:6d:9c:d9:22:8d:7f:f8:ce: 11:74:ad:24:61:e1:40:d7:bd:b5:59:75:a9:9d:0b: c7:16:a2:f7:77:92:2c:80:7f:f0:ba:b4:df:58:9d: ac:fc:17:10:a4:fd:b5:a9:a9:e5:e5:c7:a1:43:cd: 89:1a:51:8e:8c:97:5e:6b:af:13:f2:01:bd:7c:48: ff:fb:52:f8:ed:1f:a2:5c:df:d4:67:da:14:16:d1: bf:b3:bf:0d:1e:be:d8:a8:16:28:b7:95:7b:5d:92: dd:05:59:16:d5:55:86:6a:92:72:af:45:f5:c1:d8: af:d9:f0:d1:43:a5:f1:03:42:70:ce:5b:3f:3b:89: 69:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:33:2B:9A:6E:7F:28:63:85:61:EB:F8:79:46:91:E0:62:E8:77:CA X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/czMrmm5_KGOFYev4eUaR4GLod8o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.132.0/23 Signature Algorithm: sha256WithRSAEncryption a7:91:f2:53:15:ca:15:a4:63:d8:08:f7:f7:58:f9:12:a4:d0: 51:46:44:31:69:a4:be:4d:a2:f5:1c:86:1f:4e:f1:48:60:81: 5c:47:df:81:97:67:74:6c:bd:5d:e5:06:da:9b:c3:68:3a:96: 03:fe:b0:cb:04:d5:13:31:bd:81:29:27:bf:a0:5f:fb:b4:5b: 32:21:e0:97:ef:38:42:b1:d7:42:4c:46:18:49:0e:56:67:96: 96:69:5d:68:1f:6a:d3:97:18:75:bc:ce:2e:14:51:10:09:e4: e2:1c:de:e5:1b:55:c0:89:a2:74:68:c9:00:34:7e:2f:a9:01: df:c6:ff:37:e8:ac:f9:a7:fe:97:af:d0:d9:ab:b8:a4:e0:2e: d2:a3:c9:10:36:0d:c7:51:c5:de:95:2b:f0:1b:14:cf:16:34: 94:ac:fa:31:8f:30:29:55:e1:0e:3e:4c:3d:be:20:5f:31:93: ba:00:7c:fd:62:d7:1d:3a:c8:d4:fb:8f:f5:e8:2d:d0:72:98: 8e:20:36:5d:17:c1:e5:70:56:07:9a:0e:87:22:e9:0e:6b:ce: 90:6b:51:fb:b3:ab:1c:99:6d:5f:42:a2:4f:7b:ba:95:c5:b3: 16:cb:0a:2b:2a:3f:23:a7:c2:d5:a6:18:97:d7:79:8f:a0:4d: fd:8c:d4:ca -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MjA1MjhaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDczMzMyQjlBNkU3RjI4 NjM4NTYxRUJGODc5NDY5MUUwNjJFODc3Q0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDE4TaOD/sieHt+2pYtey/xlcXhXRTAbR8e+eP7Of2a0bl1kvoP YQGTrhr9wzgfi9E6LC7YojrEDPKJcMyhCYelX7y7VIHM2BiAjQtE7NxMpok9SNSz Pit2LC2FNaI6h1erOn2g4WBHzptentd4VBvqKs9xQoiKa0tdD0BbaVBtnNkijX/4 zhF0rSRh4UDXvbVZdamdC8cWovd3kiyAf/C6tN9Ynaz8FxCk/bWpqeXlx6FDzYka UY6Ml15rrxPyAb18SP/7UvjtH6Jc39Rn2hQW0b+zvw0evtioFii3lXtdkt0FWRbV VYZqknKvRfXB2K/Z8NFDpfEDQnDOWz87iWlRAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUczMrmm5/KGOFYev4eUaR4GLod8owHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9jek1ybW01X0tHT0ZZZXY0ZVVhUjRHTG9kOG8u cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQB0w6EMA0GCSqGSIb3DQEBCwUAA4IBAQCnkfJTFcoVpGPYCPf3WPkS pNBRRkQxaaS+TaL1HIYfTvFIYIFcR9+Bl2d0bL1d5Qbam8NoOpYD/rDLBNUTMb2B KSe/oF/7tFsyIeCX7zhCsddCTEYYSQ5WZ5aWaV1oH2rTlxh1vM4uFFEQCeTiHN7l G1XAiaJ0aMkANH4vqQHfxv836Kz5p/6Xr9DZq7ik4C7So8kQNg3HUcXelSvwGxTP FjSUrPoxjzApVeEOPkw9viBfMZO6AHz9YtcdOsjU+4/16C3QcpiOIDZdF8HlcFYH mg6HIukOa86Qa1H7s6scmW1fQqJPe7qVxbMWyworKj8jp8LVphiX13mPoE39jNTK -----END CERTIFICATE-----Generated at Wed Jul 30 03:07:32 2025 by rpki-client