$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/xOx3mLlHL3Cm-GM6pf7BXm0S-ZQ.roa File: xOx3mLlHL3Cm-GM6pf7BXm0S-ZQ.roa (raw, json) Hash identifier: hOu4onhAlfi6nQ4uPxJ+Wgu+QI2j9DoZBa2DV1/VQEg= Subject key identifier: C4:EC:77:98:B9:47:2F:70:A6:F8:63:3A:A5:FE:C1:5E:6D:12:F9:94 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: D1 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/xOx3mLlHL3Cm-GM6pf7BXm0S-ZQ.roa Signing time: Thu 24 Jul 2025 01:44:29 +0000 ROA not before: Thu 24 Jul 2025 01:44:29 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 210.171.104.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 00:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 01:44:29 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=C4EC7798B9472F70A6F8633AA5FEC15E6D12F994 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f1:23:9e:aa:c1:bc:e6:9b:71:f4:75:d0:5c: 1b:0c:74:8c:8a:46:35:a3:8d:5f:b7:dd:98:05:4f: 75:97:87:40:34:ab:75:2a:8d:0f:70:64:79:31:3c: 28:f6:aa:f3:87:34:9d:2c:49:f8:5d:0c:66:e8:3b: aa:c8:dd:e1:f7:78:d9:da:8b:ea:8b:18:de:6b:e4: 2e:50:ac:b4:3e:5d:ca:30:c8:da:fb:82:fe:b3:4c: 22:34:62:33:6a:82:7f:29:10:9a:b4:cb:b8:dd:c8: 99:f9:df:ed:46:c6:79:c2:17:f2:52:9c:66:ff:03: 31:5a:09:9e:62:b2:41:e6:04:cc:9e:a6:11:64:29: 0c:8f:c5:10:a3:fc:3b:42:c2:be:bb:fb:bb:23:65: 11:69:22:99:a6:b7:f9:7c:90:72:ff:88:97:58:b6: d1:b3:7b:d2:c2:32:7e:0a:62:ae:87:9a:e0:09:03: 92:48:7f:2e:02:b5:c7:ee:c8:64:96:7f:3e:7e:95: d2:ac:20:0e:fc:ad:22:eb:55:9c:5d:d9:13:48:87: ff:92:c5:c3:52:d5:a6:3e:05:3e:fd:1b:a2:1f:c4: 86:97:a7:b9:bc:df:a6:87:fa:f3:ad:37:6a:40:37: a5:06:cb:1c:6e:cc:33:e4:0d:31:df:1f:2c:cb:ad: 2e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:EC:77:98:B9:47:2F:70:A6:F8:63:3A:A5:FE:C1:5E:6D:12:F9:94 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/xOx3mLlHL3Cm-GM6pf7BXm0S-ZQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.171.104.0/21 Signature Algorithm: sha256WithRSAEncryption 52:45:c5:48:6f:a4:7a:8b:eb:26:40:a0:82:a9:3b:0f:0a:f7: 0e:52:b9:81:c6:2e:d4:7b:28:70:b7:36:b9:c8:b1:e0:4c:7f: bd:ce:72:14:33:93:57:4a:55:d8:42:6d:ce:da:c5:53:71:db: 78:82:af:dc:90:f3:65:d8:7a:46:1f:b5:94:1e:f6:e0:68:70: cf:53:df:77:32:7a:2a:2b:74:0d:62:b0:71:6c:04:57:e5:37: 6d:d7:44:76:49:61:73:1b:3c:75:bb:da:2f:92:f1:54:9a:aa: da:11:42:60:66:50:f7:da:6e:f6:21:84:e9:98:46:4b:10:32: d3:5a:a2:6e:6d:f7:2e:8e:6b:7b:5f:58:f0:80:af:34:48:bb: 78:9f:d5:59:a9:b1:4b:fb:4c:a7:38:db:dd:34:1d:3a:1e:ad: 75:3e:b3:9f:ec:32:a2:29:4a:6f:0f:10:57:bc:b2:07:11:95: e7:cc:5e:44:b6:bd:66:f9:f7:2b:49:7e:9b:13:1a:e5:cd:b3: 21:a3:2b:05:21:04:41:ee:20:bb:f4:9c:91:0e:e9:3e:bc:75: 65:dc:62:6a:b1:df:81:19:f9:db:2d:39:68:1f:2c:81:04:75: 1a:42:6b:2f:1a:79:8c:4d:05:16:e9:d3:64:f6:36:25:62:d0: a2:75:2f:b8 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICANEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MTQ0MjlaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKEM0RUM3Nzk4Qjk0NzJG NzBBNkY4NjMzQUE1RkVDMTVFNkQxMkY5OTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDD8SOeqsG85ptx9HXQXBsMdIyKRjWjjV+33ZgFT3WXh0A0q3Uq jQ9wZHkxPCj2qvOHNJ0sSfhdDGboO6rI3eH3eNnai+qLGN5r5C5QrLQ+XcowyNr7 gv6zTCI0YjNqgn8pEJq0y7jdyJn53+1GxnnCF/JSnGb/AzFaCZ5iskHmBMyephFk KQyPxRCj/DtCwr67+7sjZRFpIpmmt/l8kHL/iJdYttGze9LCMn4KYq6HmuAJA5JI fy4CtcfuyGSWfz5+ldKsIA78rSLrVZxd2RNIh/+SxcNS1aY+BT79G6IfxIaXp7m8 36aH+vOtN2pAN6UGyxxuzDPkDTHfHyzLrS5DAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUxOx3mLlHL3Cm+GM6pf7BXm0S+ZQwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My94T3gzbUxsSEwzQ20tR002cGY3QlhtMFMtWlEu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQD0qtoMA0GCSqGSIb3DQEBCwUAA4IBAQBSRcVIb6R6i+smQKCCqTsP CvcOUrmBxi7Ueyhwtza5yLHgTH+9znIUM5NXSlXYQm3O2sVTcdt4gq/ckPNl2HpG H7WUHvbgaHDPU993MnoqK3QNYrBxbARX5Tdt10R2SWFzGzx1u9ovkvFUmqraEUJg ZlD32m72IYTpmEZLEDLTWqJubfcujmt7X1jwgK80SLt4n9VZqbFL+0ynONvdNB06 Hq11PrOf7DKiKUpvDxBXvLIHEZXnzF5Etr1m+fcrSX6bExrlzbMhoysFIQRB7iC7 9JyRDuk+vHVl3GJqsd+BGfnbLTloHyyBBHUaQmsvGnmMTQUW6dNk9jYlYtCidS+4 -----END CERTIFICATE-----Generated at Wed Jul 30 03:06:01 2025 by rpki-client