$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/kyfFL1ycEoxcucWIOWAr9FGYrIM.roa File: kyfFL1ycEoxcucWIOWAr9FGYrIM.roa (raw, json) Hash identifier: 8hLjbAtYTM3/9POiVDMG1qeWwcTduaCPUDYeAQvXhr8= Subject key identifier: 93:27:C5:2F:5C:9C:12:8C:5C:B9:C5:88:39:60:2B:F4:51:98:AC:83 Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Certificate serial: 025C Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/kyfFL1ycEoxcucWIOWAr9FGYrIM.roa Signing time: Mon 01 Sep 2025 01:29:10 +0000 ROA not before: Mon 01 Sep 2025 01:29:10 +0000 ROA not after: Sat 15 Aug 2026 01:30:02 +0000 asID: 7684 IP address blocks: 49.212.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 07:46:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Validity Not Before: Sep 1 01:29:10 2025 GMT Not After : Aug 15 01:30:02 2026 GMT Subject: CN=9327C52F5C9C128C5CB9C58839602BF45198AC83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:fb:f8:33:c6:6a:c1:fc:7d:23:a3:6a:00:56: 82:e5:89:10:01:0e:a7:73:b7:79:98:7f:4c:cb:d6: 2f:c5:fa:90:77:f9:35:c0:2d:b4:6b:a9:d9:04:cf: 84:90:9d:b3:73:e2:6b:c9:40:70:35:4e:3e:8f:67: 4c:a3:44:8d:98:98:3b:9e:8d:33:de:86:36:92:3e: fe:fe:c9:33:d3:d7:a8:f1:f0:75:84:01:e2:49:ab: bc:86:c6:bf:ae:bb:20:4b:b3:5e:ab:03:33:85:eb: 93:f2:b1:b6:e8:12:0a:4d:6e:05:bc:d5:76:3e:35: e5:50:70:96:4b:ac:27:4f:d5:b0:24:3d:9c:e0:78: a1:61:9a:fa:b1:9f:08:39:7d:05:c9:0f:16:28:1b: 14:ef:f2:7b:9c:b3:5b:34:7c:a4:a1:05:eb:95:e8: 29:a1:0b:37:09:bf:ff:52:0e:b9:ae:ad:d8:a8:19: 02:eb:1b:36:67:9f:6e:e2:64:de:9e:ce:14:c2:d4: b6:e4:11:f1:ae:9b:40:5d:63:9d:9a:4f:df:a6:2e: b4:64:81:62:7c:3e:8b:ce:3c:8e:7d:5e:85:5a:fb: 6b:1e:a0:c6:89:8e:c1:69:4f:0f:d0:8b:5b:a9:f2: d9:b8:03:f1:a2:f5:82:30:c4:56:7a:61:52:ca:05: ea:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:27:C5:2F:5C:9C:12:8C:5C:B9:C5:88:39:60:2B:F4:51:98:AC:83 X509v3 Authority Key Identifier: keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/kyfFL1ycEoxcucWIOWAr9FGYrIM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.212.239.0/24 Signature Algorithm: sha256WithRSAEncryption 18:b6:8f:96:b4:e9:b2:d5:d6:ac:87:d3:dd:46:3f:4a:55:b4: e2:73:70:72:f7:5b:dc:88:18:9e:f9:46:0b:52:9a:82:f8:5c: 84:ff:88:4f:31:d2:6a:4c:11:04:89:0f:bc:12:bc:1e:79:0b: 3f:c1:65:db:81:b0:18:c2:44:3e:5d:3d:bf:7f:4f:85:e3:da: 43:95:c3:ca:06:8b:5a:79:78:8a:b3:34:c8:a5:b6:95:dd:75: ed:d5:8a:57:77:96:3a:59:7b:46:7e:ac:16:bc:ff:1a:1c:45: a1:ae:c5:cf:38:bd:3e:53:d5:28:d6:c4:4c:38:00:6e:82:38: 1d:ab:19:5b:74:54:de:cb:68:35:d0:31:06:0d:07:4e:34:1d: 49:9e:2f:bf:ae:15:5a:6f:de:9d:45:b6:f3:b6:a7:49:82:de: 8c:74:ac:40:44:d5:2c:31:e7:c3:70:0b:96:14:d0:d2:c9:f1: 63:f8:78:a1:5b:09:89:3e:71:9d:8e:7a:aa:5f:df:c7:be:e2: f6:f5:0e:e9:81:54:5c:7b:79:65:30:4c:e2:f1:97:58:c4:c4: 04:fa:91:3d:c3:ef:c4:c4:15:3c:24:9b:95:e9:c2:c9:31:61: 73:c6:7c:8c:1e:8a:ae:59:d9:76:33:46:2d:9a:ab:6c:8d:ae: 96:bd:cd:e4 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjAz MjBGNkQwOURCMThDMEY3MEIzNTRBM0Q4NzQ1MEY3MEU2RDcxQTAeFw0yNTA5MDEw MTI5MTBaFw0yNjA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDkzMjdDNTJGNUM5QzEy OEM1Q0I5QzU4ODM5NjAyQkY0NTE5OEFDODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCr+/gzxmrB/H0jo2oAVoLliRABDqdzt3mYf0zL1i/F+pB3+TXA LbRrqdkEz4SQnbNz4mvJQHA1Tj6PZ0yjRI2YmDuejTPehjaSPv7+yTPT16jx8HWE AeJJq7yGxr+uuyBLs16rAzOF65PysbboEgpNbgW81XY+NeVQcJZLrCdP1bAkPZzg eKFhmvqxnwg5fQXJDxYoGxTv8nucs1s0fKShBeuV6CmhCzcJv/9SDrmurdioGQLr GzZnn27iZN6ezhTC1LbkEfGum0BdY52aT9+mLrRkgWJ8PovOPI59XoVa+2seoMaJ jsFpTw/Qi1up8tm4A/Gi9YIwxFZ6YVLKBepXAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUkyfFL1ycEoxcucWIOWAr9FGYrIMwHwYDVR0jBBgwFoAUIDIPbQnbGMD3CzVK PYdFD3Dm1xowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEwMjQ3L0lESVBiUW5iR01EM0N6VktQWWRGRDNEbTF4by5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lESVBiUW5iR01EM0N6VktQWWRG RDNEbTF4by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8xMDI0Ny9reWZGTDF5Y0VveGN1Y1dJT1dBcjlGR1lySU0u cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAMdTvMA0GCSqGSIb3DQEBCwUAA4IBAQAYto+WtOmy1dash9PdRj9K VbTic3By91vciBie+UYLUpqC+FyE/4hPMdJqTBEEiQ+8ErweeQs/wWXbgbAYwkQ+ XT2/f0+F49pDlcPKBotaeXiKszTIpbaV3XXt1YpXd5Y6WXtGfqwWvP8aHEWhrsXP OL0+U9Uo1sRMOABugjgdqxlbdFTey2g10DEGDQdONB1Jni+/rhVab96dRbbztqdJ gt6MdKxARNUsMefDcAuWFNDSyfFj+HihWwmJPnGdjnqqX9/HvuL29Q7pgVRce3ll MEzi8ZdYxMQE+pE9w+/ExBU8JJuV6cLJMWFzxnyMHoquWdl2M0Ytmqtsja6Wvc3k -----END CERTIFICATE-----Generated at Tue Sep 9 12:44:55 2025 by rpki-client