$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/39067/Xr7e2ET1HkWuFM2jbdaM9bLSd10.roa File: Xr7e2ET1HkWuFM2jbdaM9bLSd10.roa (raw, json) Hash identifier: K/oKWAVwlCWal01ggpcxJkKGp+Rl3OVPevL1KE/PiRg= Subject key identifier: 5E:BE:DE:D8:44:F5:1E:45:AE:14:CD:A3:6D:D6:8C:F5:B2:D2:77:5D Certificate issuer: /CN=88EDBD88734B8DBB3586A6D059B8A657BFB3A218 Certificate serial: 23 Authority key identifier: 88:ED:BD:88:73:4B:8D:BB:35:86:A6:D0:59:B8:A6:57:BF:B3:A2:18 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/iO29iHNLjbs1hqbQWbimV7-zohg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39067/Xr7e2ET1HkWuFM2jbdaM9bLSd10.roa Signing time: Wed 01 Oct 2025 01:32:22 +0000 ROA not before: Wed 01 Oct 2025 01:32:22 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 63806 IP address blocks: 2001:df3:14c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39067/iO29iHNLjbs1hqbQWbimV7-zohg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39067/iO29iHNLjbs1hqbQWbimV7-zohg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/iO29iHNLjbs1hqbQWbimV7-zohg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 16 Oct 2025 00:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88EDBD88734B8DBB3586A6D059B8A657BFB3A218 Validity Not Before: Oct 1 01:32:22 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=5EBEDED844F51E45AE14CDA36DD68CF5B2D2775D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:bf:cb:70:2a:a5:5f:8b:5b:76:f8:fc:50:1e: 4e:26:1f:72:d7:3b:c6:db:71:58:e2:38:9a:0c:15: 73:0d:da:79:ec:7a:a2:2a:4b:e9:86:43:34:2b:21: ff:8f:c8:33:84:31:69:00:27:0a:bc:aa:98:c1:59: 27:92:1c:86:36:30:69:83:08:84:da:06:6e:6b:ec: d6:cc:1c:2b:c4:6c:8e:5b:ee:47:44:20:ed:10:63: c9:b4:4e:06:3b:7b:a9:d5:aa:ce:4b:53:ce:8f:16: 96:ca:a9:99:7b:ea:0d:3e:46:58:df:a2:c9:d8:0b: 5e:a4:e2:0d:51:ea:6d:df:e1:6b:ad:10:1c:8b:bf: b8:a6:ee:73:c7:24:a8:c5:1c:5e:92:f7:f4:2f:0b: 16:0e:bf:25:06:6c:12:cd:89:39:e7:13:4a:5c:53: 0f:2e:d0:2c:b9:3e:31:84:ff:66:00:40:e4:78:90: 61:d3:90:e8:fa:7a:05:3e:52:42:d8:5d:c7:4d:20: e2:21:08:95:9f:55:21:9b:87:3b:6b:fc:cd:84:fa: cd:52:df:60:58:9c:cf:88:aa:4a:62:9e:b1:e3:46: e6:ae:06:a1:e6:5d:bf:8b:5b:af:76:0e:87:d2:d3: 9c:f8:3b:35:90:dc:54:9d:f5:ed:d0:83:f2:03:e6: 0c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:BE:DE:D8:44:F5:1E:45:AE:14:CD:A3:6D:D6:8C:F5:B2:D2:77:5D X509v3 Authority Key Identifier: keyid:88:ED:BD:88:73:4B:8D:BB:35:86:A6:D0:59:B8:A6:57:BF:B3:A2:18 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39067/iO29iHNLjbs1hqbQWbimV7-zohg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/iO29iHNLjbs1hqbQWbimV7-zohg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39067/Xr7e2ET1HkWuFM2jbdaM9bLSd10.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:14c0::/48 Signature Algorithm: sha256WithRSAEncryption aa:18:98:a5:00:e1:0a:9e:1f:e2:0c:37:1f:fb:51:a5:e9:af: 55:35:a2:d7:7b:3d:e4:46:f2:1e:29:e2:9f:d6:6f:80:7b:f8: de:15:56:3d:93:7b:08:01:a3:62:01:ed:cb:5b:23:1d:34:d7: 7c:7a:64:13:a2:6a:53:2a:7a:fe:4f:f2:18:05:e0:5f:37:86: ed:2a:2a:84:d6:9d:37:70:48:2b:59:db:00:4f:de:79:bf:30: ed:7d:e7:25:d0:3b:ed:21:35:7c:22:59:86:19:24:51:34:72: c2:61:51:ed:42:ae:50:b7:90:4e:39:90:49:49:c9:54:a0:bb: f5:55:69:c5:de:9a:3b:31:19:3a:02:83:96:46:e4:7a:31:e3: 65:d3:1e:94:6e:58:51:df:12:87:49:82:1e:15:9e:60:31:32: 37:95:7d:00:09:a2:51:1c:df:b2:cd:c3:e8:d4:8d:52:7e:18: cd:98:e1:d9:4f:84:ed:6a:f0:20:f7:46:79:3a:93:e1:dc:59: 07:37:3c:8c:6b:9b:9f:fe:7c:78:28:58:ee:66:ba:70:bf:bc: 4d:c0:45:b9:eb:03:9a:a1:5e:bb:23:fe:5e:c0:1b:30:9e:2e: ca:3c:1a:80:49:36:ff:5f:3f:6a:52:05:52:9f:e1:82:ac:70: 09:fd:40:98 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIBIzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4OEVE QkQ4ODczNEI4REJCMzU4NkE2RDA1OUI4QTY1N0JGQjNBMjE4MB4XDTI1MTAwMTAx MzIyMloXDTI2MDkxNTAxMzAwMlowMzExMC8GA1UEAxMoNUVCRURFRDg0NEY1MUU0 NUFFMTRDREEzNkRENjhDRjVCMkQyNzc1RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPa/y3AqpV+LW3b4/FAeTiYfctc7xttxWOI4mgwVcw3aeex6oipL 6YZDNCsh/4/IM4QxaQAnCryqmMFZJ5IchjYwaYMIhNoGbmvs1swcK8RsjlvuR0Qg 7RBjybROBjt7qdWqzktTzo8WlsqpmXvqDT5GWN+iydgLXqTiDVHqbd/ha60QHIu/ uKbuc8ckqMUcXpL39C8LFg6/JQZsEs2JOecTSlxTDy7QLLk+MYT/ZgBA5HiQYdOQ 6Pp6BT5SQthdx00g4iEIlZ9VIZuHO2v8zYT6zVLfYFicz4iqSmKeseNG5q4GoeZd v4tbr3YOh9LTnPg7NZDcVJ317dCD8gPmDO8CAwEAAaOCAiswggInMB0GA1UdDgQW BBRevt7YRPUeRa4UzaNt1oz1stJ3XTAfBgNVHSMEGDAWgBSI7b2Ic0uNuzWGptBZ uKZXv7OiGDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzkwNjcvaU8yOWlITkxqYnMxaHFiUVdiaW1WNy16b2hnLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvaU8yOWlITkxqYnMxaHFiUVdiaW1W Ny16b2hnLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzM5MDY3L1hyN2UyRVQxSGtXdUZNMmpiZGFNOWJMU2QxMC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ3zFMAwDQYJKoZIhvcNAQELBQADggEBAKoYmKUA4QqeH+IMNx/7 UaXpr1U1otd7PeRG8h4p4p/Wb4B7+N4VVj2TewgBo2IB7ctbIx0013x6ZBOialMq ev5P8hgF4F83hu0qKoTWnTdwSCtZ2wBP3nm/MO195yXQO+0hNXwiWYYZJFE0csJh Ue1CrlC3kE45kElJyVSgu/VVacXemjsxGToCg5ZG5Hox42XTHpRuWFHfEodJgh4V nmAxMjeVfQAJolEc37LNw+jUjVJ+GM2Y4dlPhO1q8CD3Rnk6k+HcWQc3PIxrm5/+ fHgoWO5munC/vE3ARbnrA5qhXrsj/l7AGzCeLso8GoBJNv9fP2pSBVKf4YKscAn9 QJg= -----END CERTIFICATE-----Generated at Thu Oct 9 01:27:58 2025 by rpki-client