$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/mj1l_e91WA8k9FkFKkUp-kFvus4.roa File: mj1l_e91WA8k9FkFKkUp-kFvus4.roa (raw, json) Hash identifier: 10d+rLwVgt34Mbgmx6r1kTqLdon/cZAd9piIlH8vXo0= Subject key identifier: 9A:3D:65:FD:EF:75:58:0F:24:F4:59:05:2A:45:29:FA:41:6F:BA:CE Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 0124 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/mj1l_e91WA8k9FkFKkUp-kFvus4.roa Signing time: Thu 24 Jul 2025 02:29:15 +0000 ROA not before: Thu 24 Jul 2025 02:29:15 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 202.33.200.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 00:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 02:29:15 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=9A3D65FDEF75580F24F459052A4529FA416FBACE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9c:9f:cb:f0:f0:a0:07:da:80:b8:2e:c6:25: f3:07:07:bd:85:d3:af:0c:0e:3b:39:c8:00:38:0e: a2:29:60:2d:9a:40:29:d9:25:3c:67:6e:bc:23:38: a8:8a:78:50:ab:ca:8f:e7:08:78:50:ff:8e:48:6a: a7:f6:d0:de:05:79:d9:f9:fe:91:bb:01:9f:e6:30: b2:61:a9:bd:c6:6e:e3:bb:5e:5d:ef:03:30:67:5c: 81:9a:09:61:dd:3f:28:c0:0f:5c:73:be:f8:40:79: bc:6b:ae:79:c0:45:20:fd:0b:a8:a0:61:4b:7d:ae: 90:91:84:9b:cd:e2:43:67:d1:60:82:5c:6b:49:ff: d5:cc:81:0e:34:e8:b2:3b:c5:85:4f:3a:68:4a:9a: 0f:b7:8e:44:2d:65:2f:19:53:7e:37:22:1f:0b:a9: 8b:55:a3:8a:56:4a:ec:01:cb:5a:2a:c0:69:ab:71: 68:d8:fb:2a:34:c8:15:14:10:6a:17:e9:c1:bd:ae: 37:11:de:90:33:88:b8:dd:54:e9:fc:76:55:e8:20: 2a:2c:1c:0b:1a:bc:f4:3b:59:3e:1c:fa:21:d3:c4: 9d:c1:b0:2b:24:f8:9b:43:82:7d:38:f6:af:3d:ef: 5a:24:0f:08:7c:02:1b:4f:be:f8:b1:48:97:bc:3e: ad:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:3D:65:FD:EF:75:58:0F:24:F4:59:05:2A:45:29:FA:41:6F:BA:CE X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/mj1l_e91WA8k9FkFKkUp-kFvus4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.33.200.0/21 Signature Algorithm: sha256WithRSAEncryption b3:21:33:c3:5a:52:0f:79:4c:02:0a:88:f8:ba:d6:92:9d:ed: 8e:fc:a2:69:5e:f1:65:24:f6:92:c6:ad:b0:a5:5f:b3:1a:ad: 3b:b3:f4:3d:00:1c:fe:44:1f:91:58:8b:8a:81:b7:75:1b:6d: 84:4d:28:23:bf:4b:a9:b1:d9:78:63:97:22:dc:ae:6e:dd:2e: c6:71:7c:22:96:a5:8c:a7:f2:53:bf:bc:6b:39:f7:70:2a:53: e1:47:7c:af:21:3f:a8:e5:7d:c6:f5:79:58:0a:20:9a:34:b0: 34:a3:0d:11:a1:f0:aa:99:af:f6:8a:dc:60:9c:08:b7:bd:35: f0:88:d0:d1:c4:75:db:1d:97:ac:c0:f0:b3:23:e2:7f:02:6e: 40:d8:38:77:70:54:a6:67:ed:1e:c7:11:04:98:8d:63:f2:3d: 50:53:84:28:98:b8:bc:77:62:f8:81:dc:87:0b:ed:7b:b3:4b: 99:fe:10:3d:c0:1e:b8:11:11:9a:9a:a9:5c:a3:b8:4c:8a:e9: 8c:ec:7d:f7:17:0e:ce:81:2c:41:e4:fc:93:12:1d:1e:ec:68: 70:bc:bb:e0:fb:83:77:9d:72:3c:d8:b7:0f:41:3a:23:3a:b5: 58:22:fe:34:fc:ce:af:08:04:70:ea:1d:f6:3c:10:79:ac:30: 83:5b:94:54 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICASQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MjI5MTVaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDlBM0Q2NUZERUY3NTU4 MEYyNEY0NTkwNTJBNDUyOUZBNDE2RkJBQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKnJ/L8PCgB9qAuC7GJfMHB72F068MDjs5yAA4DqIpYC2aQCnZ JTxnbrwjOKiKeFCryo/nCHhQ/45Iaqf20N4Fedn5/pG7AZ/mMLJhqb3GbuO7Xl3v AzBnXIGaCWHdPyjAD1xzvvhAebxrrnnARSD9C6igYUt9rpCRhJvN4kNn0WCCXGtJ /9XMgQ406LI7xYVPOmhKmg+3jkQtZS8ZU343Ih8LqYtVo4pWSuwBy1oqwGmrcWjY +yo0yBUUEGoX6cG9rjcR3pAziLjdVOn8dlXoICosHAsavPQ7WT4c+iHTxJ3BsCsk +JtDgn049q8971okDwh8AhtPvvixSJe8Pq3dAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUmj1l/e91WA8k9FkFKkUp+kFvus4wHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9tajFsX2U5MVdBOGs5RmtGS2tVcC1rRnZ1czQu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDyiHIMA0GCSqGSIb3DQEBCwUAA4IBAQCzITPDWlIPeUwCCoj4utaS ne2O/KJpXvFlJPaSxq2wpV+zGq07s/Q9ABz+RB+RWIuKgbd1G22ETSgjv0upsdl4 Y5ci3K5u3S7GcXwilqWMp/JTv7xrOfdwKlPhR3yvIT+o5X3G9XlYCiCaNLA0ow0R ofCqma/2itxgnAi3vTXwiNDRxHXbHZeswPCzI+J/Am5A2Dh3cFSmZ+0exxEEmI1j 8j1QU4QomLi8d2L4gdyHC+17s0uZ/hA9wB64ERGamqlco7hMiumM7H33Fw7OgSxB 5PyTEh0e7GhwvLvg+4N3nXI82LcPQTojOrVYIv40/M6vCARw6h32PBB5rDCDW5RU -----END CERTIFICATE-----Generated at Wed Jul 30 03:04:44 2025 by rpki-client