$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/xqSQpdsRHLnfZsCtQ4ksbXpXueA.roa File: xqSQpdsRHLnfZsCtQ4ksbXpXueA.roa (raw, json) Hash identifier: BXiT6nCwgglH1v4ebDMBXFvh6mIyh+e5nJ3ncfDPhug= Subject key identifier: C6:A4:90:A5:DB:11:1C:B9:DF:66:C0:AD:43:89:2C:6D:7A:57:B9:E0 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 88 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/xqSQpdsRHLnfZsCtQ4ksbXpXueA.roa Signing time: Thu 17 Jul 2025 01:31:23 +0000 ROA not before: Thu 17 Jul 2025 01:31:23 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 210.152.0.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 17 01:31:23 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=C6A490A5DB111CB9DF66C0AD43892C6D7A57B9E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:96:e9:47:37:84:22:b9:af:7d:51:7d:03:11: 73:18:7b:1f:d3:c4:4a:09:db:d3:54:65:d2:13:09: db:55:62:12:8e:40:a6:81:21:d6:7a:2e:6c:93:50: 0d:9c:31:89:32:d4:59:8e:24:e2:43:83:7b:2d:74: 28:1f:5e:6e:d3:cc:4e:e2:2c:06:59:7a:ed:c5:16: 2b:42:ff:1f:b8:3a:34:0f:7d:0f:1e:f3:35:ef:01: a9:29:ce:d0:40:0e:68:28:c9:fc:98:f1:f6:6f:2c: af:f2:d9:4e:8b:31:18:81:ac:ee:ce:a3:41:12:82: 13:a2:8e:c1:6d:e8:e7:50:e9:31:55:d3:02:38:c8: 90:24:2a:5c:2e:69:20:a7:03:62:ba:75:f1:60:d5: 3c:5c:d7:b9:2d:b0:df:bf:f3:0a:d3:cb:ba:46:d6: 66:79:16:e1:ed:6b:97:7c:e4:62:59:1a:2b:b4:48: 2c:e7:69:2b:67:a8:70:78:c4:fc:a4:d5:dd:f9:e2: 9c:2b:fc:c0:75:1d:84:5a:73:01:b4:b5:53:c8:2c: 44:a2:7c:3d:f7:7c:cc:22:72:1d:86:89:b7:0c:48: 4e:07:e8:eb:80:a0:d7:c8:35:29:73:d9:43:23:cf: c3:0e:b0:15:57:97:7b:b6:cd:85:d0:81:bc:ca:cc: 87:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:A4:90:A5:DB:11:1C:B9:DF:66:C0:AD:43:89:2C:6D:7A:57:B9:E0 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/xqSQpdsRHLnfZsCtQ4ksbXpXueA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.152.0.0/20 Signature Algorithm: sha256WithRSAEncryption 15:11:35:b3:98:6f:1e:db:d3:2f:4d:fd:de:ca:a7:a6:5a:78: cc:96:da:98:9d:16:a2:14:40:7c:66:54:83:b6:e1:0b:81:71: b3:51:2f:d1:12:7b:a3:83:5f:b4:a5:11:3b:9b:57:f0:c6:3d: 67:7a:76:dc:2d:df:f4:b4:38:86:b1:38:13:6c:69:02:2c:61: 24:3a:75:94:f0:cb:3e:17:4c:8c:02:76:da:e9:05:3b:5a:bd: 7c:fd:2c:59:fb:77:ac:50:97:a9:68:cf:3a:93:b6:59:be:88: 52:5f:ce:cb:d6:08:41:47:36:fc:d0:2c:66:68:ff:57:5f:db: 66:41:53:f3:07:97:b9:ef:4c:95:fe:ef:8d:96:04:20:52:62: c6:3c:03:cc:e7:a7:45:b9:1d:02:3d:66:39:c2:f1:83:ab:10: 7e:97:a9:fa:46:44:5d:51:ab:54:74:5a:72:6c:31:73:d7:e7: 1b:06:db:1a:58:69:33:c1:05:64:82:1e:f1:b7:97:99:74:dd: 47:13:5b:35:80:59:0a:ba:12:5f:f1:81:ef:da:f3:13:05:5b: 33:d3:b3:bc:64:3e:24:20:a9:b6:8e:f6:c2:53:79:f3:04:d2: 64:c6:50:be:d3:58:3a:d6:47:ee:1c:23:3e:e9:0e:a9:01:39: 76:02:56:83 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MTcw MTMxMjNaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKEM2QTQ5MEE1REIxMTFD QjlERjY2QzBBRDQzODkyQzZEN0E1N0I5RTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVlulHN4Qiua99UX0DEXMYex/TxEoJ29NUZdITCdtVYhKOQKaB IdZ6LmyTUA2cMYky1FmOJOJDg3stdCgfXm7TzE7iLAZZeu3FFitC/x+4OjQPfQ8e 8zXvAakpztBADmgoyfyY8fZvLK/y2U6LMRiBrO7Oo0ESghOijsFt6OdQ6TFV0wI4 yJAkKlwuaSCnA2K6dfFg1Txc17ktsN+/8wrTy7pG1mZ5FuHta5d85GJZGiu0SCzn aStnqHB4xPyk1d354pwr/MB1HYRacwG0tVPILESifD33fMwich2GibcMSE4H6OuA oNfINSlz2UMjz8MOsBVXl3u2zYXQgbzKzIdTAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUxqSQpdsRHLnfZsCtQ4ksbXpXueAwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My94cVNRcGRzUkhMbmZac0N0UTRrc2JYcFh1ZUEu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQE0pgAMA0GCSqGSIb3DQEBCwUAA4IBAQAVETWzmG8e29MvTf3eyqem WnjMltqYnRaiFEB8ZlSDtuELgXGzUS/REnujg1+0pRE7m1fwxj1nenbcLd/0tDiG sTgTbGkCLGEkOnWU8Ms+F0yMAnba6QU7Wr18/SxZ+3esUJepaM86k7ZZvohSX87L 1ghBRzb80CxmaP9XX9tmQVPzB5e570yV/u+NlgQgUmLGPAPM56dFuR0CPWY5wvGD qxB+l6n6RkRdUatUdFpybDFz1+cbBtsaWGkzwQVkgh7xt5eZdN1HE1s1gFkKuhJf 8YHv2vMTBVsz07O8ZD4kIKm2jvbCU3nzBNJkxlC+01g61kfuHCM+6Q6pATl2AlaD -----END CERTIFICATE-----Generated at Wed Jul 30 03:22:06 2025 by rpki-client