$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/tXgy-nMjGN2VjN-KmXNsi5Y3-CA.roa File: tXgy-nMjGN2VjN-KmXNsi5Y3-CA.roa (raw, json) Hash identifier: NkuN3Zu5/pSaVuYC2rThAEWrryBVOViXskzZw3VAnhQ= Subject key identifier: B5:78:32:FA:73:23:18:DD:95:8C:DF:8A:99:73:6C:8B:96:37:F8:20 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 9E Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/tXgy-nMjGN2VjN-KmXNsi5Y3-CA.roa Signing time: Thu 24 Jul 2025 00:46:54 +0000 ROA not before: Thu 24 Jul 2025 00:46:54 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 202.230.128.0/18 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 00:46:54 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=B57832FA732318DD958CDF8A99736C8B9637F820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c2:ca:bd:5f:fe:6f:ac:d5:2d:61:bd:b9:d6: 56:33:5e:78:7b:2a:e6:dd:95:d4:e7:a3:0c:8a:6b: 84:48:5d:ee:65:42:3d:b9:f8:41:ef:de:4e:16:8a: 32:4b:8c:a3:4c:0a:68:e2:b7:57:5d:b2:28:92:8d: b3:04:af:b4:bd:6f:53:47:d4:1e:8d:8f:98:39:71: 28:bd:c6:74:83:ed:90:31:6e:01:4a:c6:f4:69:04: 20:c8:f4:f9:93:78:41:06:9e:5c:8f:58:64:84:de: 4c:f6:9e:43:6f:c0:1a:d3:9a:98:f9:71:45:ed:e0: a9:5d:79:a2:24:6a:cc:45:d3:cc:15:2f:4d:f6:03: 8b:d9:be:1d:4f:64:c6:e9:85:d6:d1:fd:eb:4b:f8: ab:96:df:28:b0:9c:87:49:09:6b:e3:27:e8:fd:9d: 3a:fd:5e:83:f4:de:dc:9f:c6:6e:20:9b:d4:61:44: 75:a5:f8:00:68:db:bb:93:ad:e4:51:5b:d1:d6:7c: 40:36:ed:44:0f:36:87:d4:ad:a0:14:00:46:45:08: 24:62:63:2e:d5:16:77:95:7c:5f:f9:7d:d2:61:2b: 68:91:ed:0d:79:c9:8d:af:9d:5d:39:4f:71:b7:31: a5:01:0a:c4:42:6d:74:8c:d0:fb:75:d9:fc:8b:72: 3b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:78:32:FA:73:23:18:DD:95:8C:DF:8A:99:73:6C:8B:96:37:F8:20 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/tXgy-nMjGN2VjN-KmXNsi5Y3-CA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.230.128.0/18 Signature Algorithm: sha256WithRSAEncryption 59:2e:35:f3:8a:2c:20:36:df:b2:32:e9:b1:6e:13:e8:6b:cc: 14:a0:fb:87:ab:75:95:b4:45:cc:d8:60:c2:2a:0d:ee:77:7e: 94:15:a4:85:65:94:98:69:6f:a4:50:eb:cd:97:dc:13:ba:73: ef:c1:38:41:18:d5:5e:b9:7e:63:24:c0:12:7b:08:fe:8e:94: 45:3e:c2:4d:ec:4c:5a:29:b1:05:8f:a9:9e:4e:68:44:e3:d7: 26:1f:6b:7a:1d:87:95:3a:64:2b:d2:bb:f5:16:fd:f8:88:78: 3c:dd:11:89:02:9a:10:91:1c:30:0b:ac:38:ed:45:13:3e:54: b7:fb:01:98:d4:16:9a:c9:6b:9d:32:3e:10:e3:96:ac:09:81: be:ab:e5:df:b4:3d:d1:2c:29:54:53:37:cd:8c:62:ce:18:2b: 97:8f:fc:32:43:c4:d1:aa:dc:8f:ea:45:39:91:47:69:b9:49: 9f:0e:4a:21:95:ae:05:b3:1b:d1:d5:73:a3:71:9a:f0:8e:af: be:7e:ad:a1:d9:1b:2e:e1:cd:fe:fb:85:cc:07:a5:87:d0:c2: 82:4d:94:7e:86:56:aa:dc:19:33:a1:a2:2b:fd:4c:43:54:01: 36:1f:bb:73:0d:a9:28:97:66:4f:77:0e:9e:7f:af:ee:a1:c3: 60:c1:58:2a -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MDQ2NTRaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKEI1NzgzMkZBNzMyMzE4 REQ5NThDREY4QTk5NzM2QzhCOTYzN0Y4MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAwsq9X/5vrNUtYb251lYzXnh7KubdldTnowyKa4RIXe5lQj25 +EHv3k4WijJLjKNMCmjit1ddsiiSjbMEr7S9b1NH1B6Nj5g5cSi9xnSD7ZAxbgFK xvRpBCDI9PmTeEEGnlyPWGSE3kz2nkNvwBrTmpj5cUXt4KldeaIkasxF08wVL032 A4vZvh1PZMbphdbR/etL+KuW3yiwnIdJCWvjJ+j9nTr9XoP03tyfxm4gm9RhRHWl +ABo27uTreRRW9HWfEA27UQPNofUraAUAEZFCCRiYy7VFneVfF/5fdJhK2iR7Q15 yY2vnV05T3G3MaUBCsRCbXSM0Pt12fyLcjulAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUtXgy+nMjGN2VjN+KmXNsi5Y3+CAwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My90WGd5LW5NakdOMlZqTi1LbVhOc2k1WTMtQ0Eu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGyuaAMA0GCSqGSIb3DQEBCwUAA4IBAQBZLjXziiwgNt+yMumxbhPo a8wUoPuHq3WVtEXM2GDCKg3ud36UFaSFZZSYaW+kUOvNl9wTunPvwThBGNVeuX5j JMASewj+jpRFPsJN7ExaKbEFj6meTmhE49cmH2t6HYeVOmQr0rv1Fv34iHg83RGJ ApoQkRwwC6w47UUTPlS3+wGY1BaayWudMj4Q45asCYG+q+XftD3RLClUUzfNjGLO GCuXj/wyQ8TRqtyP6kU5kUdpuUmfDkohla4FsxvR1XOjcZrwjq++fq2h2Rsu4c3+ +4XMB6WH0MKCTZR+hlaq3BkzoaIr/UxDVAE2H7tzDakol2ZPdw6ef6/uocNgwVgq -----END CERTIFICATE-----Generated at Wed Jul 30 03:09:45 2025 by rpki-client