$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/zXaOz-lr2KbvtQCYBOV__-n-RWE.roa File: zXaOz-lr2KbvtQCYBOV__-n-RWE.roa (raw, json) Hash identifier: /kPM7Pum4zAtmV750crGzjC6zl3c00Hkegf65lNNk6Q= Subject key identifier: CD:76:8E:CF:E9:6B:D8:A6:EF:B5:00:98:04:E5:7F:FF:E9:FE:45:61 Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: 95 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/zXaOz-lr2KbvtQCYBOV__-n-RWE.roa Signing time: Thu 24 Jul 2025 00:39:49 +0000 ROA not before: Thu 24 Jul 2025 00:39:49 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 202.230.18.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 Aug 2025 01:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 00:39:49 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=CD768ECFE96BD8A6EFB5009804E57FFFE9FE4561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:6d:c9:49:6b:7a:e4:59:aa:8d:9f:d0:cb:42: 9b:97:17:00:c3:73:2e:20:df:87:1a:46:a7:0d:f6: ae:6a:93:90:2b:34:07:a2:0f:c9:3a:b7:5e:17:ca: a5:b8:8f:39:81:59:86:74:af:83:e4:7a:87:a9:50: 8a:3b:6b:1f:f6:71:4e:02:ca:dd:0e:a7:32:69:4f: 0a:2f:f3:5c:be:b5:ce:5d:97:53:64:0b:39:58:d8: 58:2f:f0:af:5d:6f:37:45:cd:9f:ed:a7:44:40:76: aa:99:32:c2:8e:32:36:20:90:19:f6:13:45:fa:46: 1e:d8:c6:32:d1:82:96:db:e7:9a:df:17:da:33:11: f1:6a:2d:98:5f:27:8e:40:a0:e9:7b:f9:3c:6b:e7: c0:ff:2d:d9:b8:2b:33:6f:60:89:f9:8f:8f:fa:44: 94:1f:36:8a:aa:1c:f7:3f:8b:b4:3e:e3:5d:83:e7: 84:00:00:f2:79:6d:5f:92:0e:e3:af:2d:67:28:43: 61:58:f5:ad:eb:ee:67:fa:d6:44:f3:20:66:8b:a0: f9:a0:a5:a2:ec:69:9c:d4:9b:aa:7d:de:46:d6:02: 23:9d:a6:ab:c2:79:00:d9:a2:90:46:3d:b6:e3:d4: 7b:46:ac:fa:e9:6c:54:dc:59:81:4c:40:a1:ef:27: 79:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:76:8E:CF:E9:6B:D8:A6:EF:B5:00:98:04:E5:7F:FF:E9:FE:45:61 X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/zXaOz-lr2KbvtQCYBOV__-n-RWE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.230.18.0/24 Signature Algorithm: sha256WithRSAEncryption c9:d8:5d:0e:8c:f2:ae:e5:f3:79:95:9f:28:49:76:18:fd:1d: 6a:c1:c4:fc:52:b4:51:9e:74:fd:3a:20:83:b7:a6:3c:10:5a: d8:b7:94:0f:8f:c4:0c:c8:42:fc:f8:7b:ff:e8:b5:e8:fd:d2: a7:fc:dd:45:41:fc:57:63:c0:d0:5c:35:8a:87:27:d2:ba:9f: 64:1c:aa:df:c4:46:16:fa:f9:34:ed:df:ce:83:a0:3b:66:9c: 88:db:5d:c3:c4:f8:49:de:d0:ee:12:95:91:0d:ee:0b:e2:0c: 82:15:b5:86:3b:46:f6:66:68:31:3a:95:1c:31:51:15:18:56: 23:bb:8e:7a:ed:4e:16:38:68:0e:2e:ad:c5:86:15:f4:81:b2: 5f:e6:09:0c:81:7e:0a:8a:12:d9:09:0f:3b:1d:4a:79:08:76: 79:ce:6f:ec:63:97:57:e8:6f:d3:60:39:c2:cc:65:f0:ed:39: 96:cc:f5:6e:e4:0b:49:dc:38:df:08:0f:09:75:20:10:2f:44: ce:10:15:f0:92:b1:10:dc:18:0f:91:ac:b3:af:9f:4c:f4:55: d2:df:28:c6:54:c0:19:be:7c:41:12:ed:6c:8a:3b:5e:3f:da: 90:e1:9c:f6:90:86:7f:6f:e5:a0:7e:b2:e6:b0:2c:ec:9c:c0: 88:eb:eb:7f -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MDM5NDlaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKENENzY4RUNGRTk2QkQ4 QTZFRkI1MDA5ODA0RTU3RkZGRTlGRTQ1NjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDebclJa3rkWaqNn9DLQpuXFwDDcy4g34caRqcN9q5qk5ArNAei D8k6t14XyqW4jzmBWYZ0r4PkeoepUIo7ax/2cU4Cyt0OpzJpTwov81y+tc5dl1Nk CzlY2Fgv8K9dbzdFzZ/tp0RAdqqZMsKOMjYgkBn2E0X6Rh7YxjLRgpbb55rfF9oz EfFqLZhfJ45AoOl7+Txr58D/Ldm4KzNvYIn5j4/6RJQfNoqqHPc/i7Q+412D54QA APJ5bV+SDuOvLWcoQ2FY9a3r7mf61kTzIGaLoPmgpaLsaZzUm6p93kbWAiOdpqvC eQDZopBGPbbj1HtGrPrpbFTcWYFMQKHvJ3n5AgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUzXaOz+lr2KbvtQCYBOV//+n+RWEwHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My96WGFPei1scjJLYnZ0UUNZQk9WX18tbi1SV0Uu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyuYSMA0GCSqGSIb3DQEBCwUAA4IBAQDJ2F0OjPKu5fN5lZ8oSXYY /R1qwcT8UrRRnnT9OiCDt6Y8EFrYt5QPj8QMyEL8+Hv/6LXo/dKn/N1FQfxXY8DQ XDWKhyfSup9kHKrfxEYW+vk07d/Og6A7ZpyI213DxPhJ3tDuEpWRDe4L4gyCFbWG O0b2ZmgxOpUcMVEVGFYju4567U4WOGgOLq3FhhX0gbJf5gkMgX4KihLZCQ87HUp5 CHZ5zm/sY5dX6G/TYDnCzGXw7TmWzPVu5AtJ3DjfCA8JdSAQL0TOEBXwkrEQ3BgP kayzr59M9FXS3yjGVMAZvnxBEu1sijteP9qQ4Zz2kIZ/b+WgfrLmsCzsnMCI6+t/ -----END CERTIFICATE-----Generated at Wed Jul 30 03:09:45 2025 by rpki-client