$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/suoAZ7lA8bBuZpB-m9ossk3J9Es.roa File: suoAZ7lA8bBuZpB-m9ossk3J9Es.roa (raw, json) Hash identifier: aDT4DE1v7fasUJzGooJduJ2qL+WDInl31tuj7LaunZM= Subject key identifier: B2:EA:00:67:B9:40:F1:B0:6E:66:90:7E:9B:DA:2C:B2:4D:C9:F4:4B Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Certificate serial: 025E Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/suoAZ7lA8bBuZpB-m9ossk3J9Es.roa Signing time: Mon 01 Sep 2025 01:29:10 +0000 ROA not before: Mon 01 Sep 2025 01:29:10 +0000 ROA not after: Sat 15 Aug 2026 01:30:02 +0000 asID: 9371 IP address blocks: 210.224.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 20:49:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 606 (0x25e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Validity Not Before: Sep 1 01:29:10 2025 GMT Not After : Aug 15 01:30:02 2026 GMT Subject: CN=B2EA0067B940F1B06E66907E9BDA2CB24DC9F44B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bc:d5:44:c6:d5:6b:12:27:68:7a:5a:1d:0e: 1c:3c:95:19:59:d9:e2:13:df:ce:da:10:94:56:e8: ce:50:fc:93:df:3e:be:1f:c1:5c:5f:db:84:b5:f2: c2:d1:c7:51:33:80:ed:ce:b4:51:2e:46:68:96:78: 49:0e:53:ed:cd:89:b7:08:c2:53:db:40:ab:35:34: 0c:5f:18:84:86:c5:1b:5d:b5:45:29:ef:4f:ac:49: a0:27:ac:bf:74:04:46:9b:0d:09:1c:79:a6:f0:bf: 6e:a2:75:82:ef:5b:d8:f8:cb:10:7c:9e:a5:f7:2e: 7c:82:df:71:79:a3:48:20:7d:94:6a:12:08:f5:6d: ce:d8:06:43:7a:95:a3:3c:c9:a8:6c:ee:c4:c8:ca: 65:7c:ba:f1:8e:37:a9:7e:5f:e8:34:e9:84:92:f2: 22:ff:91:a4:d0:31:10:6b:36:8c:86:51:15:62:71: 0d:00:50:31:71:83:4b:18:8c:08:8c:b7:6b:15:74: e9:c0:ad:de:b3:2f:34:b4:60:00:f2:61:67:c7:aa: be:58:f2:75:c3:2e:b8:e0:97:9a:a8:2d:bc:5e:b7: 61:55:37:16:45:b2:bf:ac:11:a2:79:09:9d:32:ac: 35:93:bc:4e:ae:ac:5a:f5:7f:51:ae:bc:2f:8a:7c: 04:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:EA:00:67:B9:40:F1:B0:6E:66:90:7E:9B:DA:2C:B2:4D:C9:F4:4B X509v3 Authority Key Identifier: keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/suoAZ7lA8bBuZpB-m9ossk3J9Es.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.224.160.0/20 Signature Algorithm: sha256WithRSAEncryption 4a:c5:c8:b8:88:e3:28:9d:9f:6d:b2:49:09:33:95:68:8e:9b: f2:7c:3a:0e:2c:cf:50:29:16:b5:b6:d0:c0:a0:b3:43:92:b3: 6b:2c:d2:67:6c:3a:30:9a:b8:03:04:61:1a:19:e8:23:16:44: 41:6f:01:19:9b:37:8d:82:04:80:e9:0e:a6:31:3b:9c:6f:06: fd:87:6b:19:42:57:5a:80:0e:da:34:f3:9c:e9:f9:40:e0:bf: 0c:67:b2:ac:f8:f6:cb:4f:99:df:e8:eb:f0:aa:3d:70:c3:43: ac:2a:5c:a2:cd:be:64:a8:69:7d:12:dd:b9:f9:86:52:95:6a: 70:85:f2:e8:88:b1:1b:6a:ed:35:9f:d5:bf:08:bd:98:f9:7b: 2e:45:c3:57:17:72:ba:b3:3f:ca:87:3e:78:5a:a0:66:43:62: 30:11:bd:25:2c:d3:02:83:6c:c0:5b:0f:7c:b9:9e:a4:76:67: 23:58:37:8a:b8:a2:c7:71:00:56:17:ad:a1:dd:e8:66:c3:be: 36:f9:8d:ad:79:99:43:71:f8:dd:06:01:37:c9:70:d2:da:52: d4:ae:1d:33:ba:3c:1d:5c:65:3a:41:3e:fa:37:82:00:57:86: 10:de:11:8d:f0:0d:65:60:3a:e4:2b:fd:96:e4:b9:38:27:ac: 29:74:6b:c4 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAl4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjAz MjBGNkQwOURCMThDMEY3MEIzNTRBM0Q4NzQ1MEY3MEU2RDcxQTAeFw0yNTA5MDEw MTI5MTBaFw0yNjA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEIyRUEwMDY3Qjk0MEYx QjA2RTY2OTA3RTlCREEyQ0IyNERDOUY0NEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6vNVExtVrEidoelodDhw8lRlZ2eIT387aEJRW6M5Q/JPfPr4f wVxf24S18sLRx1EzgO3OtFEuRmiWeEkOU+3NibcIwlPbQKs1NAxfGISGxRtdtUUp 70+sSaAnrL90BEabDQkceabwv26idYLvW9j4yxB8nqX3LnyC33F5o0ggfZRqEgj1 bc7YBkN6laM8yahs7sTIymV8uvGON6l+X+g06YSS8iL/kaTQMRBrNoyGURVicQ0A UDFxg0sYjAiMt2sVdOnArd6zLzS0YADyYWfHqr5Y8nXDLrjgl5qoLbxet2FVNxZF sr+sEaJ5CZ0yrDWTvE6urFr1f1GuvC+KfAS3AgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUsuoAZ7lA8bBuZpB+m9ossk3J9EswHwYDVR0jBBgwFoAUIDIPbQnbGMD3CzVK PYdFD3Dm1xowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEwMjQ3L0lESVBiUW5iR01EM0N6VktQWWRGRDNEbTF4by5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lESVBiUW5iR01EM0N6VktQWWRG RDNEbTF4by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8xMDI0Ny9zdW9BWjdsQThiQnVacEItbTlvc3NrM0o5RXMu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQE0uCgMA0GCSqGSIb3DQEBCwUAA4IBAQBKxci4iOMonZ9tskkJM5Vo jpvyfDoOLM9QKRa1ttDAoLNDkrNrLNJnbDowmrgDBGEaGegjFkRBbwEZmzeNggSA 6Q6mMTucbwb9h2sZQldagA7aNPOc6flA4L8MZ7Ks+PbLT5nf6Ovwqj1ww0OsKlyi zb5kqGl9Et25+YZSlWpwhfLoiLEbau01n9W/CL2Y+XsuRcNXF3K6sz/Khz54WqBm Q2IwEb0lLNMCg2zAWw98uZ6kdmcjWDeKuKLHcQBWF62h3ehmw742+Y2teZlDcfjd BgE3yXDS2lLUrh0zujwdXGU6QT76N4IAV4YQ3hGN8A1lYDrkK/2W5Lk4J6wpdGvE -----END CERTIFICATE-----Generated at Tue Sep 9 23:01:08 2025 by rpki-client