$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20174/87nuI3Dkk9Afr4DCX_Q1vbbYWhc.roa File: 87nuI3Dkk9Afr4DCX_Q1vbbYWhc.roa (raw, json) Hash identifier: edcwT8U/Bq7s7OT5z3s/12fJO+gqyF2mm99ZQ0vjQPM= Subject key identifier: F3:B9:EE:23:70:E4:93:D0:1F:AF:80:C2:5F:F4:35:BD:B6:D8:5A:17 Certificate issuer: /CN=B773AE2B975AB2E4EEFF9B179D5A259A0CA49417 Certificate serial: 18 Authority key identifier: B7:73:AE:2B:97:5A:B2:E4:EE:FF:9B:17:9D:5A:25:9A:0C:A4:94:17 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/t3OuK5dasuTu_5sXnVolmgyklBc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20174/87nuI3Dkk9Afr4DCX_Q1vbbYWhc.roa Signing time: Tue 15 Jul 2025 05:37:30 +0000 ROA not before: Tue 15 Jul 2025 05:37:30 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 152858 IP address blocks: 209.107.142.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20174/t3OuK5dasuTu_5sXnVolmgyklBc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20174/t3OuK5dasuTu_5sXnVolmgyklBc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/t3OuK5dasuTu_5sXnVolmgyklBc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B773AE2B975AB2E4EEFF9B179D5A259A0CA49417 Validity Not Before: Jul 15 05:37:30 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=F3B9EE2370E493D01FAF80C25FF435BDB6D85A17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:76:fe:b5:60:7c:f2:2f:06:49:f3:38:b0:38: 77:1d:ef:61:db:91:99:dd:27:e9:28:85:eb:3d:99: a5:89:37:5a:98:07:c3:c8:13:48:3b:35:84:c3:0b: c2:27:92:6e:23:e0:e6:41:7d:a7:00:16:8e:03:5f: f3:23:72:c6:b5:f8:bd:09:71:ba:8d:e8:35:30:cb: a6:ce:03:7b:25:ab:e4:c4:16:4f:31:b0:bb:f5:e6: 01:4e:14:76:bc:0f:11:7d:f6:59:5c:ec:12:b4:7d: 55:5d:e5:0b:0e:ca:81:ee:f7:7a:ee:4f:6b:75:34: 84:82:a1:30:cd:ff:74:39:d7:5b:58:02:21:cf:bb: df:75:25:98:9b:ef:3c:9b:87:a5:ec:7f:38:b6:5f: 9f:53:83:5b:ef:85:63:9a:dc:c5:7b:5f:cd:23:69: ee:9d:04:73:af:9f:fd:62:99:f1:e5:e6:85:a9:0c: 88:7b:69:c5:41:38:81:f9:18:08:f4:62:6f:5b:14: 14:9f:b9:9e:23:1d:73:71:c8:59:5d:56:b6:bd:50: a7:2c:b6:2c:d6:ff:f7:e0:68:8e:4c:f2:1a:de:27: d7:e9:f0:4f:b1:96:00:a3:36:fa:a6:64:17:51:d2: 17:68:65:ba:8c:7e:12:d3:ae:db:04:90:4a:a8:f4: 0e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:B9:EE:23:70:E4:93:D0:1F:AF:80:C2:5F:F4:35:BD:B6:D8:5A:17 X509v3 Authority Key Identifier: keyid:B7:73:AE:2B:97:5A:B2:E4:EE:FF:9B:17:9D:5A:25:9A:0C:A4:94:17 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20174/t3OuK5dasuTu_5sXnVolmgyklBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/t3OuK5dasuTu_5sXnVolmgyklBc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20174/87nuI3Dkk9Afr4DCX_Q1vbbYWhc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 209.107.142.0/23 Signature Algorithm: sha256WithRSAEncryption 74:1f:52:0c:1a:95:63:c4:1f:93:59:2e:23:1b:6a:a7:d9:df: 6b:d4:af:4d:2d:10:3c:7e:15:28:a7:88:2c:d3:54:87:b1:4f: 93:bc:d0:b9:b1:41:c5:e1:7f:69:4a:d2:6e:00:98:75:f0:39: 4a:81:c9:36:20:44:b7:01:7c:69:13:81:d3:13:ed:3d:90:d3: 73:7c:45:b5:50:07:ca:e1:ed:ee:79:a3:fd:c9:a1:69:b6:72: 34:9e:0e:79:01:4e:92:71:f7:86:95:4e:28:b1:fe:c7:f3:8b: 6a:2f:f4:4e:fc:e9:c8:23:14:fb:40:3e:57:27:b0:6d:65:99: 59:ad:d6:ce:87:2a:26:dc:35:60:f8:a3:63:4d:80:2d:92:90: 6b:59:9d:44:46:78:29:60:3a:9d:46:9f:84:68:26:26:32:24: 4f:b6:e3:32:47:04:2f:4f:95:0d:3a:34:3c:12:9d:93:15:4b: 96:e4:86:d3:6b:7c:10:45:3f:ea:54:b3:28:7d:bc:45:a2:8c: 3f:7b:6e:85:c6:70:15:34:e3:e0:98:cb:07:00:34:b3:2a:f4: ef:71:ee:b3:d6:68:f1:eb:c0:e1:0b:cc:ce:15:fb:46:29:3e: cb:5b:a4:8a:4e:b3:1b:7e:1b:57:2f:d0:a2:fd:9b:0d:0d:5f: 23:71:64:97 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBGDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCNzcz QUUyQjk3NUFCMkU0RUVGRjlCMTc5RDVBMjU5QTBDQTQ5NDE3MB4XDTI1MDcxNTA1 MzczMFoXDTI2MDcxNTAxMzAwMVowMzExMC8GA1UEAxMoRjNCOUVFMjM3MEU0OTNE MDFGQUY4MEMyNUZGNDM1QkRCNkQ4NUExNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOx2/rVgfPIvBknzOLA4dx3vYduRmd0n6SiF6z2ZpYk3WpgHw8gT SDs1hMMLwieSbiPg5kF9pwAWjgNf8yNyxrX4vQlxuo3oNTDLps4DeyWr5MQWTzGw u/XmAU4UdrwPEX32WVzsErR9VV3lCw7Kge73eu5Pa3U0hIKhMM3/dDnXW1gCIc+7 33UlmJvvPJuHpex/OLZfn1ODW++FY5rcxXtfzSNp7p0Ec6+f/WKZ8eXmhakMiHtp xUE4gfkYCPRib1sUFJ+5niMdc3HIWV1Wtr1Qpyy2LNb/9+BojkzyGt4n1+nwT7GW AKM2+qZkF1HSF2hluox+EtOu2wSQSqj0DqkCAwEAAaOCAigwggIkMB0GA1UdDgQW BBTzue4jcOST0B+vgMJf9DW9tthaFzAfBgNVHSMEGDAWgBS3c64rl1qy5O7/mxed WiWaDKSUFzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxNzQvdDNPdUs1ZGFzdVR1XzVzWG5Wb2xtZ3lrbEJjLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdDNPdUs1ZGFzdVR1XzVzWG5Wb2xt Z3lrbEJjLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMTc0Lzg3bnVJM0RrazlBZnI0RENYX1ExdmJiWVdoYy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAHRa44wDQYJKoZIhvcNAQELBQADggEBAHQfUgwalWPEH5NZLiMbaqfZ 32vUr00tEDx+FSiniCzTVIexT5O80LmxQcXhf2lK0m4AmHXwOUqByTYgRLcBfGkT gdMT7T2Q03N8RbVQB8rh7e55o/3JoWm2cjSeDnkBTpJx94aVTiix/sfzi2ov9E78 6cgjFPtAPlcnsG1lmVmt1s6HKibcNWD4o2NNgC2SkGtZnURGeClgOp1Gn4RoJiYy JE+24zJHBC9PlQ06NDwSnZMVS5bkhtNrfBBFP+pUsyh9vEWijD97boXGcBU04+CY ywcANLMq9O9x7rPWaPHrwOELzM4V+0YpPstbpIpOsxt+G1cv0KL9mw0NXyNxZJc= -----END CERTIFICATE-----Generated at Fri Jul 25 18:27:54 2025 by rpki-client