$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/f9rM3opy4zzlJW-_v1np5UMCwE0.roa File: f9rM3opy4zzlJW-_v1np5UMCwE0.roa (raw, json) Hash identifier: 263UCRzTazIIqOMfCPat7kG/9zpUciFTGiptZjUk+Dc= Subject key identifier: 7F:DA:CC:DE:8A:72:E3:3C:E5:25:6F:BF:BF:59:E9:E5:43:02:C0:4D Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 0125 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/f9rM3opy4zzlJW-_v1np5UMCwE0.roa Signing time: Thu 24 Jul 2025 02:29:16 +0000 ROA not before: Thu 24 Jul 2025 02:29:16 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 202.33.216.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 02:29:16 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=7FDACCDE8A72E33CE5256FBFBF59E9E54302C04D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:46:87:e5:b9:07:ad:85:8f:0f:93:98:ea:23: 9d:cc:62:e1:61:35:d8:6d:90:d1:0a:cb:62:e4:e8: a2:b8:f2:50:e2:b4:55:c2:df:28:6f:09:aa:d6:4f: 76:88:4a:03:da:5e:62:16:6b:36:d2:15:3a:25:be: 40:09:dd:78:f8:2e:f8:ab:04:6b:b8:46:46:cf:4f: 86:33:1c:35:bc:af:f0:fb:e9:92:8d:fa:13:30:eb: 73:46:37:d7:19:17:c8:81:1f:94:ba:b3:dc:a8:12: 8a:e5:66:34:3b:46:d5:32:7d:e3:ac:56:e6:8b:21: 9b:35:d5:49:10:2d:98:62:fc:4b:56:4c:47:32:9f: 1d:bb:b8:90:6b:68:6e:01:84:82:22:5f:74:be:a4: ed:a5:ca:93:5c:2f:02:16:80:a1:6e:fa:18:72:54: 07:8a:fc:60:ef:45:78:b0:ff:b8:9c:5c:53:9d:82: f1:72:10:97:de:b8:ea:38:35:06:23:e8:9c:b7:92: b7:92:ff:ff:82:18:7d:2f:9b:d3:a9:c1:6d:07:54: 34:2a:ec:12:0f:23:6b:8e:43:2c:97:45:00:a5:fe: 56:7a:32:20:75:6b:3a:58:9e:2e:10:66:ad:e9:23: 48:54:4c:3b:65:29:43:f3:ba:ea:6e:7d:c5:a2:df: 50:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:DA:CC:DE:8A:72:E3:3C:E5:25:6F:BF:BF:59:E9:E5:43:02:C0:4D X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/f9rM3opy4zzlJW-_v1np5UMCwE0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.33.216.0/21 Signature Algorithm: sha256WithRSAEncryption 95:c6:c9:64:48:bc:ab:9c:18:1f:21:7c:b1:51:1a:63:ce:66: 79:4e:7e:83:cb:f7:0e:c4:d8:08:b7:7e:91:a3:9d:6e:e6:f1: 2b:4e:35:3c:2e:66:07:05:b5:1e:0f:03:b6:a9:46:33:82:90: f9:8a:81:d2:c1:86:15:ab:6f:7a:7a:41:1f:66:d3:27:2d:46: 88:2d:bb:86:46:13:15:1e:06:84:85:a1:d6:ef:6f:46:6a:e7: 72:e8:c7:56:c3:d6:05:a2:8f:d1:24:f4:7d:f8:bb:f3:99:61: ee:3c:c8:ac:1d:57:8a:7c:36:d5:75:d3:54:ea:e6:8d:a5:23: e3:f1:1a:34:b6:3c:9a:e3:1a:b6:0b:b6:1e:b2:af:af:f7:99: d9:f7:94:d9:cc:5f:f5:31:13:70:8d:3f:26:48:a2:94:7a:4b: 00:e4:80:0a:4a:d9:ef:cb:11:31:59:b0:18:eb:44:af:fb:eb: 15:61:83:19:58:97:ca:ea:10:1a:fe:06:c8:48:38:42:34:b0: 0e:d5:2b:e7:8a:f9:8b:12:ec:96:09:c7:9f:28:9b:b9:81:47: a0:35:73:6e:40:5d:41:d8:a6:07:38:4c:17:3f:57:a0:c5:f8: bc:6a:58:b0:bb:6f:6e:1c:1d:c4:1e:69:b4:f0:0d:4c:ac:29: 7d:f0:60:3f -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICASUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MjI5MTZaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDdGREFDQ0RFOEE3MkUz M0NFNTI1NkZCRkJGNTlFOUU1NDMwMkMwNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgRofluQethY8Pk5jqI53MYuFhNdhtkNEKy2Lk6KK48lDitFXC 3yhvCarWT3aISgPaXmIWazbSFTolvkAJ3Xj4LvirBGu4RkbPT4YzHDW8r/D76ZKN +hMw63NGN9cZF8iBH5S6s9yoEorlZjQ7RtUyfeOsVuaLIZs11UkQLZhi/EtWTEcy nx27uJBraG4BhIIiX3S+pO2lypNcLwIWgKFu+hhyVAeK/GDvRXiw/7icXFOdgvFy EJfeuOo4NQYj6Jy3kreS//+CGH0vm9OpwW0HVDQq7BIPI2uOQyyXRQCl/lZ6MiB1 azpYni4QZq3pI0hUTDtlKUPzuupufcWi31BXAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUf9rM3opy4zzlJW+/v1np5UMCwE0wHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9mOXJNM29weTR6emxKVy1fdjFucDVVTUN3RTAu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDyiHYMA0GCSqGSIb3DQEBCwUAA4IBAQCVxslkSLyrnBgfIXyxURpj zmZ5Tn6Dy/cOxNgIt36Ro51u5vErTjU8LmYHBbUeDwO2qUYzgpD5ioHSwYYVq296 ekEfZtMnLUaILbuGRhMVHgaEhaHW729Gaudy6MdWw9YFoo/RJPR9+LvzmWHuPMis HVeKfDbVddNU6uaNpSPj8Ro0tjya4xq2C7Yesq+v95nZ95TZzF/1MRNwjT8mSKKU eksA5IAKStnvyxExWbAY60Sv++sVYYMZWJfK6hAa/gbISDhCNLAO1SvnivmLEuyW CcefKJu5gUegNXNuQF1B2KYHOEwXP1egxfi8aliwu29uHB3EHmm08A1MrCl98GA/ -----END CERTIFICATE-----Generated at Wed Jul 30 03:10:25 2025 by rpki-client