$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/shDbT70EJgUDJ6h8FunExAzmlNg.roa File: shDbT70EJgUDJ6h8FunExAzmlNg.roa (raw, json) Hash identifier: eyA05lIAnt2IBAYE6UDHMm5MfFcLVouhLhDDulhOypw= Subject key identifier: B2:10:DB:4F:BD:04:26:05:03:27:A8:7C:16:E9:C4:C4:0C:E6:94:D8 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: F5 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/shDbT70EJgUDJ6h8FunExAzmlNg.roa Signing time: Thu 24 Jul 2025 01:58:25 +0000 ROA not before: Thu 24 Jul 2025 01:58:25 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 211.2.224.0/19 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 00:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 01:58:25 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=B210DB4FBD0426050327A87C16E9C4C40CE694D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5b:a9:de:2f:ab:35:95:32:dd:54:26:77:91: 06:92:0d:88:52:ec:a6:0e:df:eb:9a:62:c3:43:58: f5:a0:48:12:cc:65:2a:e8:41:1f:d0:52:18:42:85: 29:38:21:5a:64:cb:73:ac:cd:b4:b2:de:54:db:59: 0f:43:3a:1e:ba:b7:76:79:40:70:6b:26:14:29:7b: f0:da:d6:a2:b1:df:bd:2a:02:b5:16:e4:d5:44:b0: 48:81:e3:c9:91:fd:11:f9:94:53:f1:2b:b8:04:7a: 2d:a5:21:87:b2:20:aa:a1:75:93:15:f8:bc:19:6e: 71:4b:0f:67:71:6d:35:fd:20:dc:fb:88:89:b1:25: 02:3d:3e:ef:4d:bd:0a:73:1b:44:3e:95:45:36:a2: b8:d0:03:c7:9e:b9:04:76:74:19:2f:0e:c5:81:9f: df:3c:9a:e2:46:44:f8:5f:7d:76:dd:ec:6b:cf:22: 35:21:63:b6:e3:e8:8c:9e:5d:12:f2:a5:e8:d9:ff: f4:9f:99:86:ee:c9:ae:ce:87:ef:93:56:e2:57:94: 4d:9e:f2:42:71:36:22:41:bc:d3:e5:be:48:ac:0e: e3:f7:26:75:bb:6f:3f:32:48:71:34:20:60:90:16: 64:ee:94:ce:26:37:25:fc:2f:ea:e1:0d:77:3c:5e: 02:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:10:DB:4F:BD:04:26:05:03:27:A8:7C:16:E9:C4:C4:0C:E6:94:D8 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/shDbT70EJgUDJ6h8FunExAzmlNg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.2.224.0/19 Signature Algorithm: sha256WithRSAEncryption 0d:2e:39:ef:4e:96:fd:95:f6:61:0f:c6:29:eb:df:04:97:1d: 21:5f:1a:fb:e1:a9:3b:b8:50:a0:2e:4c:08:ed:6e:8c:8e:06: 7c:42:24:3e:4d:43:1a:20:bc:b2:2e:55:7e:5f:50:f6:5a:47: e7:09:c0:3e:be:c1:1e:c3:29:15:36:7f:e7:5d:57:42:b0:7c: ff:0f:3e:74:28:91:f9:35:99:8a:37:71:c7:fd:b7:a0:c8:a7: 72:f7:fd:d0:19:ee:dc:e9:9f:b9:8c:9f:2b:8e:2f:6a:48:be: 2c:c2:70:57:7f:9d:83:59:fb:c0:3c:b3:41:7e:a8:91:87:86: 31:b7:89:c0:04:2e:2e:2b:e1:89:17:ce:1f:52:0f:36:70:1c: 6f:cb:5f:34:f2:db:08:8d:e8:06:d8:8f:70:92:d5:a9:76:8f: 0a:f8:47:b6:d7:9d:0d:75:2a:af:6b:31:c6:dd:e1:5b:94:be: 66:68:1a:ee:60:76:c7:58:81:77:53:7e:84:28:2c:d7:11:9f: 67:4b:c0:e7:11:09:82:15:4a:f2:cd:eb:49:92:e6:70:3e:b5: 12:72:c4:85:5f:0c:9d:10:7c:4c:13:fd:48:0c:7a:9a:57:1c: f9:39:bf:89:43:01:b3:a6:c8:22:74:14:ad:e4:39:c2:22:96: 81:08:7a:12 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MTU4MjVaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKEIyMTBEQjRGQkQwNDI2 MDUwMzI3QTg3QzE2RTlDNEM0MENFNjk0RDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGW6neL6s1lTLdVCZ3kQaSDYhS7KYO3+uaYsNDWPWgSBLMZSro QR/QUhhChSk4IVpky3OszbSy3lTbWQ9DOh66t3Z5QHBrJhQpe/Da1qKx370qArUW 5NVEsEiB48mR/RH5lFPxK7gEei2lIYeyIKqhdZMV+LwZbnFLD2dxbTX9INz7iImx JQI9Pu9NvQpzG0Q+lUU2orjQA8eeuQR2dBkvDsWBn988muJGRPhffXbd7GvPIjUh Y7bj6IyeXRLypejZ//SfmYbuya7Oh++TVuJXlE2e8kJxNiJBvNPlvkisDuP3JnW7 bz8ySHE0IGCQFmTulM4mNyX8L+rhDXc8XgJPAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUshDbT70EJgUDJ6h8FunExAzmlNgwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9zaERiVDcwRUpnVURKNmg4RnVuRXhBem1sTmcu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQF0wLgMA0GCSqGSIb3DQEBCwUAA4IBAQANLjnvTpb9lfZhD8Yp698E lx0hXxr74ak7uFCgLkwI7W6MjgZ8QiQ+TUMaILyyLlV+X1D2WkfnCcA+vsEewykV Nn/nXVdCsHz/Dz50KJH5NZmKN3HH/begyKdy9/3QGe7c6Z+5jJ8rji9qSL4swnBX f52DWfvAPLNBfqiRh4Yxt4nABC4uK+GJF84fUg82cBxvy1808tsIjegG2I9wktWp do8K+Ee2150NdSqvazHG3eFblL5maBruYHbHWIF3U36EKCzXEZ9nS8DnEQmCFUry zetJkuZwPrUScsSFXwydEHxME/1IDHqaVxz5Ob+JQwGzpsgidBSt5DnCIpaBCHoS -----END CERTIFICATE-----Generated at Wed Jul 30 03:03:07 2025 by rpki-client