$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20044/JDgeaMKQJV5QrEw8FvQvdbx-B7M.roa File: JDgeaMKQJV5QrEw8FvQvdbx-B7M.roa (raw, json) Hash identifier: Ebn3c/G70pJ3WMwcFxysJ9IT5J1p47JGyO+jwH3KcB8= Subject key identifier: 24:38:1E:68:C2:90:25:5E:50:AC:4C:3C:16:F4:2F:75:BC:7E:07:B3 Certificate issuer: /CN=EE749AEDB27453827DBA8325F42984FA79C3CF76 Certificate serial: 26 Authority key identifier: EE:74:9A:ED:B2:74:53:82:7D:BA:83:25:F4:29:84:FA:79:C3:CF:76 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7nSa7bJ0U4J9uoMl9CmE-nnDz3Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20044/JDgeaMKQJV5QrEw8FvQvdbx-B7M.roa Signing time: Mon 01 Sep 2025 01:34:31 +0000 ROA not before: Mon 01 Sep 2025 01:34:31 +0000 ROA not after: Sat 15 Aug 2026 01:30:02 +0000 asID: 63772 IP address blocks: 172.86.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20044/7nSa7bJ0U4J9uoMl9CmE-nnDz3Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20044/7nSa7bJ0U4J9uoMl9CmE-nnDz3Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7nSa7bJ0U4J9uoMl9CmE-nnDz3Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 18:22:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EE749AEDB27453827DBA8325F42984FA79C3CF76 Validity Not Before: Sep 1 01:34:31 2025 GMT Not After : Aug 15 01:30:02 2026 GMT Subject: CN=24381E68C290255E50AC4C3C16F42F75BC7E07B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:82:c2:c5:a7:db:81:01:23:e3:d7:62:fa:42: 44:69:d5:80:d5:7f:e4:0b:f9:7b:c7:e6:e7:56:3c: 39:ef:04:f7:c9:51:33:f3:bb:18:dd:85:15:b2:6d: c5:fa:14:6e:b6:09:78:86:1f:69:00:9a:45:8e:1b: 31:aa:38:c1:2c:9b:e7:83:d4:91:2c:0b:cc:05:98: f1:6f:c3:fd:6c:a6:51:21:fb:14:27:eb:79:f1:ae: 56:7e:7b:29:b7:9c:02:7f:db:92:aa:15:02:02:2f: 3b:da:46:5d:d2:47:88:15:ec:17:2e:11:d1:4f:10: 90:f3:51:17:79:da:10:bd:d2:84:77:26:43:e2:d1: 6f:be:d8:79:23:fe:b2:08:d6:de:9b:03:24:f4:c3: fe:d3:fb:b6:1e:4b:2d:d2:d2:83:c0:17:85:b9:03: 21:c2:24:db:d5:62:cc:e1:b0:e8:8e:a7:d1:f9:f1: 06:96:55:19:d4:db:3e:82:3e:1d:d2:40:75:89:e1: b1:19:8b:44:33:46:c0:87:fc:29:0d:56:1e:0d:47: 07:c1:0a:4f:44:f6:bf:89:81:fc:f5:22:5b:38:0f: 22:df:52:2e:50:7d:98:43:d3:c3:79:4d:26:04:3d: d8:3c:e3:f2:23:a5:9a:bd:a6:50:58:7c:8d:34:16: 00:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:38:1E:68:C2:90:25:5E:50:AC:4C:3C:16:F4:2F:75:BC:7E:07:B3 X509v3 Authority Key Identifier: keyid:EE:74:9A:ED:B2:74:53:82:7D:BA:83:25:F4:29:84:FA:79:C3:CF:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20044/7nSa7bJ0U4J9uoMl9CmE-nnDz3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7nSa7bJ0U4J9uoMl9CmE-nnDz3Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20044/JDgeaMKQJV5QrEw8FvQvdbx-B7M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 172.86.208.0/20 Signature Algorithm: sha256WithRSAEncryption 06:53:b1:89:5d:a8:2a:6e:b4:0b:ce:73:71:4a:9c:dc:b8:8c: f5:db:67:67:9a:41:04:11:19:0d:d9:2d:26:68:d4:af:81:38: 21:20:e7:44:84:48:2f:7e:3c:7d:c3:3b:24:cc:6e:36:a6:88: 18:1a:69:4e:d2:39:67:54:21:ec:cc:5a:9e:68:16:02:71:3f: 27:e9:40:4b:c2:ea:71:ed:72:04:2d:8d:5c:0a:df:48:7c:ba: 95:e3:26:b5:7b:18:ca:72:0f:5f:3f:48:44:73:6c:36:21:fd: f1:09:5d:f2:83:5b:92:c4:57:d5:40:3e:31:0b:b5:c3:b5:4f: 3f:a7:7b:70:a9:cb:bb:bc:3c:ef:02:b2:b5:8e:f4:56:0a:4a: 6a:67:6b:76:1e:e5:8b:6a:ce:bb:7f:2c:4a:27:04:a8:31:90: 25:1e:0e:b1:29:4b:df:26:53:b3:e0:d1:e7:dc:0b:e7:e1:65: 00:3c:27:e9:c6:d6:63:f8:fa:2e:be:ce:a5:38:4d:78:ad:cc: c7:b8:cf:6a:44:5f:07:ff:a0:e1:d2:4d:2d:65:da:95:54:0b: f7:7b:4b:52:7f:2d:28:fd:39:e3:49:77:99:84:33:b4:a1:e5: 6d:51:d0:f5:fb:4b:6f:43:36:5c:35:28:ac:d1:1a:93:0c:0f: 08:b3:76:69 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBJjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFRTc0 OUFFREIyNzQ1MzgyN0RCQTgzMjVGNDI5ODRGQTc5QzNDRjc2MB4XDTI1MDkwMTAx MzQzMVoXDTI2MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoMjQzODFFNjhDMjkwMjU1 RTUwQUM0QzNDMTZGNDJGNzVCQzdFMDdCMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL6CwsWn24EBI+PXYvpCRGnVgNV/5Av5e8fm51Y8Oe8E98lRM/O7 GN2FFbJtxfoUbrYJeIYfaQCaRY4bMao4wSyb54PUkSwLzAWY8W/D/WymUSH7FCfr efGuVn57KbecAn/bkqoVAgIvO9pGXdJHiBXsFy4R0U8QkPNRF3naEL3ShHcmQ+LR b77YeSP+sgjW3psDJPTD/tP7th5LLdLSg8AXhbkDIcIk29VizOGw6I6n0fnxBpZV GdTbPoI+HdJAdYnhsRmLRDNGwIf8KQ1WHg1HB8EKT0T2v4mB/PUiWzgPIt9SLlB9 mEPTw3lNJgQ92Dzj8iOlmr2mUFh8jTQWAP8CAwEAAaOCAigwggIkMB0GA1UdDgQW BBQkOB5owpAlXlCsTDwW9C91vH4HszAfBgNVHSMEGDAWgBTudJrtsnRTgn26gyX0 KYT6ecPPdjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNDQvN25TYTdiSjBVNEo5dW9NbDlDbUUtbm5EejNZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvN25TYTdiSjBVNEo5dW9NbDlDbUUt bm5EejNZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDQ0L0pEZ2VhTUtRSlY1UXJFdzhGdlF2ZGJ4LUI3TS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBASsVtAwDQYJKoZIhvcNAQELBQADggEBAAZTsYldqCputAvOc3FKnNy4 jPXbZ2eaQQQRGQ3ZLSZo1K+BOCEg50SESC9+PH3DOyTMbjamiBgaaU7SOWdUIezM Wp5oFgJxPyfpQEvC6nHtcgQtjVwK30h8upXjJrV7GMpyD18/SERzbDYh/fEJXfKD W5LEV9VAPjELtcO1Tz+ne3Cpy7u8PO8CsrWO9FYKSmpna3Ye5Ytqzrt/LEonBKgx kCUeDrEpS98mU7Pg0efcC+fhZQA8J+nG1mP4+i6+zqU4TXitzMe4z2pEXwf/oOHS TS1l2pVUC/d7S1J/LSj9OeNJd5mEM7Sh5W1R0PX7S29DNlw1KKzRGpMMDwizdmk= -----END CERTIFICATE-----Generated at Sun Sep 7 20:47:53 2025 by rpki-client