$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30349/tdkO_qsoIc8uN3lHkzj5tTygqbE.roa File: tdkO_qsoIc8uN3lHkzj5tTygqbE.roa (raw, json) Hash identifier: fhDU4yPe29qHKF+ELe3CC1b7xSregXp089abz8Y2RYw= Subject key identifier: B5:D9:0E:FE:AB:28:21:CF:2E:37:79:47:93:38:F9:B5:3C:A0:A9:B1 Certificate issuer: /CN=5A5A08F9BFE0C541CC8D98027A16497EA5192023 Certificate serial: 42 Authority key identifier: 5A:5A:08:F9:BF:E0:C5:41:CC:8D:98:02:7A:16:49:7E:A5:19:20:23 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WloI-b_gxUHMjZgCehZJfqUZICM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30349/tdkO_qsoIc8uN3lHkzj5tTygqbE.roa Signing time: Mon 01 Sep 2025 01:32:08 +0000 ROA not before: Mon 01 Sep 2025 01:32:08 +0000 ROA not after: Sat 15 Aug 2026 01:30:02 +0000 asID: 0 IP address blocks: 2405:25c0:a700::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30349/WloI-b_gxUHMjZgCehZJfqUZICM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30349/WloI-b_gxUHMjZgCehZJfqUZICM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WloI-b_gxUHMjZgCehZJfqUZICM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Oct 2025 12:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A5A08F9BFE0C541CC8D98027A16497EA5192023 Validity Not Before: Sep 1 01:32:08 2025 GMT Not After : Aug 15 01:30:02 2026 GMT Subject: CN=B5D90EFEAB2821CF2E3779479338F9B53CA0A9B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:94:64:07:6e:87:2c:eb:73:9d:2c:b7:6f:29: 78:a5:ac:bc:77:4e:5c:79:f8:1e:cd:16:21:0b:83: a7:e4:78:c5:87:4b:08:69:7f:99:b0:a1:13:7e:ba: 9c:cf:d2:0b:7c:6f:df:24:27:9d:1d:2f:f1:2d:7a: 3c:42:da:a7:dd:aa:a2:47:ef:ea:5f:df:b3:9d:b8: f9:1c:5d:46:0c:e5:45:dd:2b:e2:3f:80:64:d4:81: fa:49:1c:f1:48:4b:b4:b4:ce:5d:5b:16:83:48:4b: ea:26:78:d3:bf:5c:35:2f:e8:7e:d5:d9:a4:1d:5f: b7:e8:62:e3:7f:ad:3b:ca:10:cf:19:54:a4:a8:e2: 6e:1c:27:6e:7a:fb:50:99:91:be:b7:df:36:04:5e: a3:72:01:1c:26:25:2c:f7:56:c7:85:c0:dc:1b:7a: fc:82:4b:ca:f8:70:e1:98:0e:08:1e:ab:c2:b9:f8: 65:00:5c:7a:d3:e0:cc:7f:fa:8a:8a:b4:ee:ad:6a: ae:da:bd:a6:40:c6:e8:ee:09:88:b9:49:71:a8:19: ac:28:c7:ff:90:a1:ba:f3:29:1c:ee:5c:ce:fc:ec: a5:b9:4f:1c:ee:bf:97:b4:48:61:8f:71:b9:3e:90: 63:7e:38:18:8c:ad:f4:6c:e4:b5:e7:22:38:41:e9: 57:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:D9:0E:FE:AB:28:21:CF:2E:37:79:47:93:38:F9:B5:3C:A0:A9:B1 X509v3 Authority Key Identifier: keyid:5A:5A:08:F9:BF:E0:C5:41:CC:8D:98:02:7A:16:49:7E:A5:19:20:23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30349/WloI-b_gxUHMjZgCehZJfqUZICM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WloI-b_gxUHMjZgCehZJfqUZICM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30349/tdkO_qsoIc8uN3lHkzj5tTygqbE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:25c0:a700::/40 Signature Algorithm: sha256WithRSAEncryption 33:e8:d6:46:e7:56:d6:a2:d4:ef:6f:7a:89:b3:ac:68:89:47: 9d:6b:94:68:fc:84:d5:c5:61:4e:78:67:d3:df:bb:bd:66:c0: bf:1c:71:d8:b5:c4:42:ae:7c:9b:4e:74:93:14:a1:1a:5f:e1: 8f:22:19:32:b3:32:1c:a1:1e:9f:1f:4b:8f:ad:2d:f4:0e:57: 7c:1e:4a:4d:06:5f:ed:24:24:47:80:e7:db:27:4d:5f:90:a4: 51:ff:f3:d7:99:fa:4f:52:11:03:3f:f7:12:ec:58:42:a9:2d: 36:e3:4d:87:67:d9:66:95:f0:a0:fd:c4:ee:a0:f8:57:9c:b7: 7c:31:e8:e3:63:d4:94:19:fa:70:32:be:37:7b:c6:c4:a1:34: 91:74:d1:ec:1c:83:01:3f:d6:b3:7d:40:30:dc:14:52:11:ad: 57:5c:85:fd:4c:fa:f8:44:94:dd:d0:61:76:50:44:47:45:9c: cb:96:2b:c5:35:7e:ec:51:50:85:d4:82:05:a9:1e:0f:3f:0e: 8e:e3:80:f3:1f:b8:f6:9b:c2:cf:ed:79:0e:57:a2:c6:fb:69: 20:26:54:22:93:0f:38:4f:94:81:9b:40:fa:74:0e:c8:ea:32: c3:b5:d1:c3:ed:ea:74:07:3b:d2:39:17:bf:0a:5b:03:9a:72: 59:b1:d8:34 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIBQjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1QTVB MDhGOUJGRTBDNTQxQ0M4RDk4MDI3QTE2NDk3RUE1MTkyMDIzMB4XDTI1MDkwMTAx MzIwOFoXDTI2MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoQjVEOTBFRkVBQjI4MjFD RjJFMzc3OTQ3OTMzOEY5QjUzQ0EwQTlCMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOGUZAduhyzrc50st28peKWsvHdOXHn4Hs0WIQuDp+R4xYdLCGl/ mbChE366nM/SC3xv3yQnnR0v8S16PELap92qokfv6l/fs524+RxdRgzlRd0r4j+A ZNSB+kkc8UhLtLTOXVsWg0hL6iZ4079cNS/oftXZpB1ft+hi43+tO8oQzxlUpKji bhwnbnr7UJmRvrffNgReo3IBHCYlLPdWx4XA3Bt6/IJLyvhw4ZgOCB6rwrn4ZQBc etPgzH/6ioq07q1qrtq9pkDG6O4JiLlJcagZrCjH/5ChuvMpHO5czvzspblPHO6/ l7RIYY9xuT6QY344GIyt9GzkteciOEHpVwUCAwEAAaOCAiowggImMB0GA1UdDgQW BBS12Q7+qyghzy43eUeTOPm1PKCpsTAfBgNVHSMEGDAWgBRaWgj5v+DFQcyNmAJ6 Fkl+pRkgIzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAzNDkvV2xvSS1iX2d4VUhNalpnQ2VoWkpmcVVaSUNNLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvV2xvSS1iX2d4VUhNalpnQ2VoWkpm cVVaSUNNLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMzQ5L3Rka09fcXNvSWM4dU4zbEhremo1dFR5Z3FiRS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgAkBSXApzANBgkqhkiG9w0BAQsFAAOCAQEAM+jWRudW1qLU7296ibOs aIlHnWuUaPyE1cVhTnhn09+7vWbAvxxx2LXEQq58m050kxShGl/hjyIZMrMyHKEe nx9Lj60t9A5XfB5KTQZf7SQkR4Dn2ydNX5CkUf/z15n6T1IRAz/3EuxYQqktNuNN h2fZZpXwoP3E7qD4V5y3fDHo42PUlBn6cDK+N3vGxKE0kXTR7ByDAT/Ws31AMNwU UhGtV1yF/Uz6+ESU3dBhdlBER0Wcy5YrxTV+7FFQhdSCBakeDz8OjuOA8x+49pvC z+15DleixvtpICZUIpMPOE+UgZtA+nQOyOoyw7XRw+3qdAc70jkXvwpbA5pyWbHY NA== -----END CERTIFICATE-----Generated at Wed Oct 8 14:01:42 2025 by rpki-client