$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/pB0U70GB7er3vHCQHSiNdHOCcNY.roa File: pB0U70GB7er3vHCQHSiNdHOCcNY.roa (raw, json) Hash identifier: XnZEDdEosrqGOfYC4MLGxCg41yKc7IRBWK+EHSJ5OBw= Subject key identifier: A4:1D:14:EF:41:81:ED:EA:F7:BC:70:90:1D:28:8D:74:73:82:70:D6 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: F1 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/pB0U70GB7er3vHCQHSiNdHOCcNY.roa Signing time: Thu 24 Jul 2025 01:58:23 +0000 ROA not before: Thu 24 Jul 2025 01:58:23 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 211.2.200.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 01:58:23 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=A41D14EF4181EDEAF7BC70901D288D74738270D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:88:5f:08:7e:c3:5d:2f:d6:ff:48:a2:46:98: ec:1c:a0:7e:04:a7:c6:27:b7:07:67:10:77:ff:aa: 38:2d:25:2a:2e:3f:37:59:5d:aa:f9:a9:7c:19:aa: 9b:eb:01:6c:3d:05:c9:46:c4:21:44:64:00:7d:7f: 88:ed:a5:da:06:da:d0:80:c5:af:2e:a1:d0:2d:e7: c7:c9:3a:fb:a5:97:b2:14:4f:42:e2:b1:7a:e5:f0: 3f:46:41:b8:80:79:d6:31:f8:bf:9e:e5:e5:12:37: 7d:73:72:2d:5c:fe:10:22:d6:f0:05:cf:78:78:2d: 58:3e:85:e1:51:85:a0:53:6d:6c:82:2e:15:93:4c: 73:eb:10:f5:46:c5:ad:00:5f:d5:31:8f:27:09:ea: 53:93:23:24:7d:b4:be:7a:a2:b2:9a:9a:d9:b5:5c: fe:58:62:d4:bc:d4:5b:f2:1f:af:fc:d9:5a:20:fb: b6:e6:be:3f:1a:95:06:79:69:2e:9d:42:b9:9e:a7: 64:11:c3:77:c1:6a:b9:ba:bd:66:14:63:4e:72:93: e8:da:73:6d:c2:70:09:a7:b4:60:9d:25:3c:4d:c7: 76:65:45:5e:62:df:63:3e:99:e7:a6:02:8c:08:b3: d4:c1:39:41:ca:24:77:00:fa:df:06:00:d6:81:c9: 51:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:1D:14:EF:41:81:ED:EA:F7:BC:70:90:1D:28:8D:74:73:82:70:D6 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/pB0U70GB7er3vHCQHSiNdHOCcNY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.2.200.0/22 Signature Algorithm: sha256WithRSAEncryption 26:9c:01:4b:82:5c:70:93:a5:e2:32:1a:c6:de:24:28:4a:d8: f6:cb:71:65:70:83:57:b9:55:29:1f:9a:c2:fd:81:76:a0:3c: fe:8f:27:71:51:7c:6b:39:55:20:43:10:13:14:d8:dc:89:c6: 98:cc:1f:e8:6c:69:ae:1c:22:b2:d3:9a:e4:a7:84:40:5f:32: e9:43:5c:1f:2a:3c:61:a8:b3:12:d3:d2:3d:b5:0c:9e:ee:4f: 06:2b:ba:ab:2a:d5:7b:6c:26:ff:2d:b4:73:80:1a:fd:22:f9: b1:e4:c0:3c:cd:00:ec:e0:85:81:97:ed:e4:32:2a:05:20:d0: 37:65:db:7c:54:b2:5b:d4:d0:4e:92:ef:0a:ea:7b:74:28:56: 29:5b:8d:34:5a:c4:1a:4c:fb:f2:6a:97:f4:e9:30:4c:16:05: 4c:b6:61:27:96:f9:94:e0:9d:da:3a:7f:47:2a:e6:ff:a0:14: 3f:fa:09:f2:46:c4:ef:4c:0e:d2:4e:7b:3c:2f:82:62:46:85: 12:0e:a0:0f:ff:89:63:56:5e:18:d4:11:eb:15:28:bb:25:5b: d3:dc:bf:39:b1:ac:c7:55:2c:f1:50:0c:1c:38:56:eb:91:57: aa:3c:36:3d:9a:c0:b1:0f:b7:6f:2c:cd:21:50:b9:8f:ca:70: 3d:50:c3:a0 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MTU4MjNaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKEE0MUQxNEVGNDE4MUVE RUFGN0JDNzA5MDFEMjg4RDc0NzM4MjcwRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeiF8IfsNdL9b/SKJGmOwcoH4Ep8YntwdnEHf/qjgtJSouPzdZ Xar5qXwZqpvrAWw9BclGxCFEZAB9f4jtpdoG2tCAxa8uodAt58fJOvull7IUT0Li sXrl8D9GQbiAedYx+L+e5eUSN31zci1c/hAi1vAFz3h4LVg+heFRhaBTbWyCLhWT THPrEPVGxa0AX9UxjycJ6lOTIyR9tL56orKamtm1XP5YYtS81FvyH6/82Vog+7bm vj8alQZ5aS6dQrmep2QRw3fBarm6vWYUY05yk+jac23CcAmntGCdJTxNx3ZlRV5i 32M+meemAowIs9TBOUHKJHcA+t8GANaByVHlAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUpB0U70GB7er3vHCQHSiNdHOCcNYwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9wQjBVNzBHQjdlcjN2SENRSFNpTmRIT0NjTlku cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQC0wLIMA0GCSqGSIb3DQEBCwUAA4IBAQAmnAFLglxwk6XiMhrG3iQo Stj2y3FlcINXuVUpH5rC/YF2oDz+jydxUXxrOVUgQxATFNjcicaYzB/obGmuHCKy 05rkp4RAXzLpQ1wfKjxhqLMS09I9tQye7k8GK7qrKtV7bCb/LbRzgBr9Ivmx5MA8 zQDs4IWBl+3kMioFINA3Zdt8VLJb1NBOku8K6nt0KFYpW400WsQaTPvyapf06TBM FgVMtmEnlvmU4J3aOn9HKub/oBQ/+gnyRsTvTA7STns8L4JiRoUSDqAP/4ljVl4Y 1BHrFSi7JVvT3L85sazHVSzxUAwcOFbrkVeqPDY9msCxD7dvLM0hULmPynA9UMOg -----END CERTIFICATE-----Generated at Wed Jul 30 03:10:26 2025 by rpki-client