$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20075/XY9SWx4m37-01AfvzqZtdSFIHbc.roa File: XY9SWx4m37-01AfvzqZtdSFIHbc.roa (raw, json) Hash identifier: xY/sSui9qs9g2FBNX1A2vMmpgUdQcLBscv0ZzJBQn2c= Subject key identifier: 5D:8F:52:5B:1E:26:DF:BF:B4:D4:07:EF:CE:A6:6D:75:21:48:1D:B7 Certificate issuer: /CN=B8D07A5A02B1B45993E6CAEFB47D1D5E75DA193C Certificate serial: 3A Authority key identifier: B8:D0:7A:5A:02:B1:B4:59:93:E6:CA:EF:B4:7D:1D:5E:75:DA:19:3C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/XY9SWx4m37-01AfvzqZtdSFIHbc.roa Signing time: Mon 01 Sep 2025 01:30:15 +0000 ROA not before: Mon 01 Sep 2025 01:30:15 +0000 ROA not after: Sat 15 Aug 2026 01:30:02 +0000 asID: 0 IP address blocks: 133.88.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Oct 2025 12:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8D07A5A02B1B45993E6CAEFB47D1D5E75DA193C Validity Not Before: Sep 1 01:30:15 2025 GMT Not After : Aug 15 01:30:02 2026 GMT Subject: CN=5D8F525B1E26DFBFB4D407EFCEA66D7521481DB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4a:a2:d4:48:b1:3e:42:78:53:4c:95:a8:8b: 6b:ef:6c:ec:a3:e0:ba:18:45:b0:6a:97:d7:e3:1c: 60:f5:bc:26:e3:5a:52:a0:d3:be:2d:dd:fa:44:3d: 47:29:f9:5c:92:cd:02:fd:e7:fb:e5:4e:f0:80:64: 48:fc:df:db:dd:dd:e1:2b:dc:b3:ea:37:7f:f3:07: d4:d9:df:bd:ee:4b:e4:ca:a1:da:35:c2:48:a8:57: 0c:38:c1:39:4d:9c:04:cf:2f:4b:5d:6c:60:df:24: 3b:17:3d:6b:f3:55:63:1a:71:c9:87:33:51:ee:5a: 12:cd:78:65:24:4b:13:87:7d:dc:60:62:48:db:7a: 56:68:ff:fa:94:08:34:f3:ab:34:b0:d3:86:a3:4e: 01:ec:c6:33:b0:86:8b:1e:3d:98:d0:cb:ee:79:02: ef:e5:e2:10:94:1b:22:1a:bd:69:fe:87:fe:83:e7: 3b:f8:74:bf:7e:7a:c5:f3:19:8b:8d:02:43:6c:79: d6:ab:23:8e:20:7e:27:be:55:3f:19:c9:f0:3a:8a: 64:34:ee:81:e4:26:1f:e9:72:e6:5b:e3:7d:d1:63: fc:3a:0e:ef:39:ef:36:77:20:a4:e0:d7:da:cc:76: 52:22:e2:39:e6:15:df:aa:63:fb:a7:03:04:d2:ab: c7:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:8F:52:5B:1E:26:DF:BF:B4:D4:07:EF:CE:A6:6D:75:21:48:1D:B7 X509v3 Authority Key Identifier: keyid:B8:D0:7A:5A:02:B1:B4:59:93:E6:CA:EF:B4:7D:1D:5E:75:DA:19:3C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/XY9SWx4m37-01AfvzqZtdSFIHbc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.88.29.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:a0:12:3c:76:76:59:36:af:1c:38:9c:69:98:f4:f2:84:11: 71:fe:33:a8:de:0a:d0:7e:9c:4f:95:a6:08:11:fa:68:78:e3: 0c:ff:72:b9:ab:24:54:c8:9d:80:3d:f7:55:0e:98:2e:22:74: 24:39:c6:90:68:17:69:5b:89:93:ba:06:10:56:b4:4b:67:9e: 09:4b:ea:58:46:aa:ca:7d:72:e2:bd:11:ee:a0:fa:83:2a:15: 5f:0c:b9:6e:27:f8:81:5a:54:b4:d6:b5:6f:a3:a1:51:ac:4c: fa:b0:80:a5:63:8b:ab:5c:72:10:11:ac:d9:8e:79:d2:09:06: f3:9e:3c:19:d7:f2:16:91:12:fc:32:aa:53:76:ed:90:bf:14: c5:4b:12:ff:e7:14:38:86:f4:3a:20:2c:b5:76:4a:a5:74:11: 46:41:34:50:87:97:29:04:91:0e:9f:25:3a:d1:8f:9b:56:93: 41:fb:c8:44:bf:ea:06:c0:71:2b:58:51:7f:27:39:b9:c3:9e: 7b:7e:30:d3:b8:11:6f:00:4a:14:06:32:44:16:20:26:6b:43: 4f:db:d4:ca:7c:40:09:0c:d2:f2:22:57:9a:13:df:b7:82:74: 27:e3:9b:f7:48:32:14:3c:12:c5:ee:b9:50:ff:98:da:0f:e3: 55:c9:da:f9 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBOjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOEQw N0E1QTAyQjFCNDU5OTNFNkNBRUZCNDdEMUQ1RTc1REExOTNDMB4XDTI1MDkwMTAx MzAxNVoXDTI2MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoNUQ4RjUyNUIxRTI2REZC RkI0RDQwN0VGQ0VBNjZENzUyMTQ4MURCNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALRKotRIsT5CeFNMlaiLa+9s7KPguhhFsGqX1+McYPW8JuNaUqDT vi3d+kQ9Ryn5XJLNAv3n++VO8IBkSPzf293d4Svcs+o3f/MH1Nnfve5L5Mqh2jXC SKhXDDjBOU2cBM8vS11sYN8kOxc9a/NVYxpxyYczUe5aEs14ZSRLE4d93GBiSNt6 Vmj/+pQINPOrNLDThqNOAezGM7CGix49mNDL7nkC7+XiEJQbIhq9af6H/oPnO/h0 v356xfMZi40CQ2x51qsjjiB+J75VPxnJ8DqKZDTugeQmH+ly5lvjfdFj/DoO7znv NncgpODX2sx2UiLiOeYV36pj+6cDBNKrx1ECAwEAAaOCAigwggIkMB0GA1UdDgQW BBRdj1JbHibfv7TUB+/Opm11IUgdtzAfBgNVHSMEGDAWgBS40HpaArG0WZPmyu+0 fR1eddoZPDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNzUvdU5CNldnS3h0Rm1UNXNydnRIMGRYblhhR1R3LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdU5CNldnS3h0Rm1UNXNydnRIMGRY blhhR1R3LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDc1L1hZOVNXeDRtMzctMDFBZnZ6cVp0ZFNGSUhiYy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACFWB0wDQYJKoZIhvcNAQELBQADggEBAJqgEjx2dlk2rxw4nGmY9PKE EXH+M6jeCtB+nE+VpggR+mh44wz/crmrJFTInYA991UOmC4idCQ5xpBoF2lbiZO6 BhBWtEtnnglL6lhGqsp9cuK9Ee6g+oMqFV8MuW4n+IFaVLTWtW+joVGsTPqwgKVj i6tcchARrNmOedIJBvOePBnX8haREvwyqlN27ZC/FMVLEv/nFDiG9DogLLV2SqV0 EUZBNFCHlykEkQ6fJTrRj5tWk0H7yES/6gbAcStYUX8nObnDnnt+MNO4EW8AShQG MkQWICZrQ0/b1Mp8QAkM0vIiV5oT37eCdCfjm/dIMhQ8EsXuuVD/mNoP41XJ2vk= -----END CERTIFICATE-----Generated at Wed Oct 8 14:05:07 2025 by rpki-client