$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/sTa1hZg3PFYZCuX9_xzoM8wXyU4.roa File: sTa1hZg3PFYZCuX9_xzoM8wXyU4.roa (raw, json) Hash identifier: 5w9WYnFtMPLvLHKy3yl0NRxR5GfaGjMMr/Kvy6+cvyc= Subject key identifier: B1:36:B5:85:98:37:3C:56:19:0A:E5:FD:FF:1C:E8:33:CC:17:C9:4E Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Certificate serial: 0264 Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/sTa1hZg3PFYZCuX9_xzoM8wXyU4.roa Signing time: Mon 01 Sep 2025 01:29:14 +0000 ROA not before: Mon 01 Sep 2025 01:29:14 +0000 ROA not after: Sat 15 Aug 2026 01:30:02 +0000 asID: 7684 IP address blocks: 219.94.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 07:46:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 612 (0x264) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Validity Not Before: Sep 1 01:29:14 2025 GMT Not After : Aug 15 01:30:02 2026 GMT Subject: CN=B136B58598373C56190AE5FDFF1CE833CC17C94E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0a:0d:ce:44:6c:ec:ac:04:10:ab:b0:dd:7c: 4f:3b:57:8b:02:50:e5:89:b5:9d:64:4e:cb:14:66: 9e:3c:e8:22:c2:61:3f:9f:ea:0e:e1:c6:38:d8:71: 63:5c:32:76:d8:9c:75:f6:ce:e1:ac:d7:f8:db:f1: d5:01:f8:dc:16:12:14:8d:ed:93:db:ea:ff:ec:d3: ec:f1:cb:c1:41:56:08:e8:7a:88:2b:fe:44:a5:12: 36:8d:b6:1f:c8:e0:de:18:32:11:53:37:a1:f7:a6: 82:72:2e:0f:ae:68:e2:4f:68:88:b8:07:43:d9:a9: 5e:d3:66:01:88:14:18:01:9a:85:78:f4:ac:10:12: 56:77:66:ef:f3:b5:d6:7f:f9:8c:02:59:7c:a6:16: 51:29:34:4c:b6:c2:e0:a6:27:8a:8f:f2:41:a7:b5: 80:5c:7e:e7:ee:91:e4:10:a1:b1:14:08:48:db:67: 3b:49:bf:f0:ff:ea:f0:88:d4:a8:41:8f:17:85:06: 00:d9:5c:d3:6e:60:a3:6c:61:08:f2:c4:c7:03:5c: 0b:01:2d:7b:5b:1c:6f:83:51:55:a2:80:cf:6f:f4: 93:95:f3:a9:a8:41:99:18:74:07:b5:23:41:d1:23: de:25:d0:12:56:94:2a:a7:b1:78:6a:a0:c1:39:fd: 6e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:36:B5:85:98:37:3C:56:19:0A:E5:FD:FF:1C:E8:33:CC:17:C9:4E X509v3 Authority Key Identifier: keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/sTa1hZg3PFYZCuX9_xzoM8wXyU4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.94.227.0/24 Signature Algorithm: sha256WithRSAEncryption 67:73:49:be:5d:73:e1:ad:6b:80:25:16:eb:da:f1:73:92:2c: f4:9d:cd:64:e2:b5:fa:9f:1e:7d:e6:2e:6f:50:34:3e:28:ee: 24:fe:0d:b8:5e:e9:6b:a4:10:1b:0a:fd:03:25:d0:e8:2d:8a: 80:a3:35:5d:30:e3:7d:cc:e7:58:f1:fb:4f:a7:a4:23:bf:b3: dc:a9:bd:d9:2e:a8:8c:e1:9e:d8:57:a5:88:03:fe:dc:56:bb: 37:cb:f9:8a:e8:d0:65:b7:49:16:0f:49:9c:3c:18:3d:7e:53: f2:04:2e:e0:da:bc:92:23:49:15:ad:3a:34:f9:fb:dd:6a:b9: 35:ca:bf:26:e6:d2:67:b5:58:dc:f0:c7:d0:b7:b0:bd:d4:40: 4e:de:89:89:51:b1:6d:64:7f:83:35:e0:5f:d2:15:30:4c:8e: 6d:ec:5b:aa:49:d6:b3:cb:01:f7:3d:0b:b1:f8:cf:bd:84:ec: b4:c2:0e:f6:00:e3:54:47:cd:43:fa:6a:0b:33:4b:ac:fd:80: 2a:f0:1f:3f:d0:92:3c:ac:b3:15:e6:e5:63:1c:dd:6e:53:ee: dc:30:90:d4:00:16:f5:7c:ca:3f:c5:00:9b:17:e7:f7:df:fe: 95:d0:97:04:e1:d0:c4:a8:96:7b:49:7f:8d:57:8c:00:85:f7: cd:ad:a3:8e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAmQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjAz MjBGNkQwOURCMThDMEY3MEIzNTRBM0Q4NzQ1MEY3MEU2RDcxQTAeFw0yNTA5MDEw MTI5MTRaFw0yNjA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEIxMzZCNTg1OTgzNzND NTYxOTBBRTVGREZGMUNFODMzQ0MxN0M5NEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyCg3ORGzsrAQQq7DdfE87V4sCUOWJtZ1kTssUZp486CLCYT+f 6g7hxjjYcWNcMnbYnHX2zuGs1/jb8dUB+NwWEhSN7ZPb6v/s0+zxy8FBVgjoeogr /kSlEjaNth/I4N4YMhFTN6H3poJyLg+uaOJPaIi4B0PZqV7TZgGIFBgBmoV49KwQ ElZ3Zu/ztdZ/+YwCWXymFlEpNEy2wuCmJ4qP8kGntYBcfufukeQQobEUCEjbZztJ v/D/6vCI1KhBjxeFBgDZXNNuYKNsYQjyxMcDXAsBLXtbHG+DUVWigM9v9JOV86mo QZkYdAe1I0HRI94l0BJWlCqnsXhqoME5/W4dAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUsTa1hZg3PFYZCuX9/xzoM8wXyU4wHwYDVR0jBBgwFoAUIDIPbQnbGMD3CzVK PYdFD3Dm1xowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEwMjQ3L0lESVBiUW5iR01EM0N6VktQWWRGRDNEbTF4by5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lESVBiUW5iR01EM0N6VktQWWRG RDNEbTF4by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8xMDI0Ny9zVGExaFpnM1BGWVpDdVg5X3h6b004d1h5VTQu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQA217jMA0GCSqGSIb3DQEBCwUAA4IBAQBnc0m+XXPhrWuAJRbr2vFz kiz0nc1k4rX6nx595i5vUDQ+KO4k/g24XulrpBAbCv0DJdDoLYqAozVdMON9zOdY 8ftPp6Qjv7Pcqb3ZLqiM4Z7YV6WIA/7cVrs3y/mK6NBlt0kWD0mcPBg9flPyBC7g 2rySI0kVrTo0+fvdark1yr8m5tJntVjc8MfQt7C91EBO3omJUbFtZH+DNeBf0hUw TI5t7FuqSdazywH3PQux+M+9hOy0wg72AONUR81D+moLM0us/YAq8B8/0JI8rLMV 5uVjHN1uU+7cMJDUABb1fMo/xQCbF+f33/6V0JcE4dDEqJZ7SX+NV4wAhffNraOO -----END CERTIFICATE-----Generated at Tue Sep 9 12:44:53 2025 by rpki-client