$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/53T4kfAzNMwQbKJCg4GYRWoyCG4.roa File: 53T4kfAzNMwQbKJCg4GYRWoyCG4.roa (raw, json) Hash identifier: iP26c/CRWb7tey3bEB6qVueNLwtItdqxFd59r4pKDu8= Subject key identifier: E7:74:F8:91:F0:33:34:CC:10:6C:A2:42:83:81:98:45:6A:32:08:6E Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0449 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/53T4kfAzNMwQbKJCg4GYRWoyCG4.roa Signing time: Mon 01 Sep 2025 01:33:54 +0000 ROA not before: Mon 01 Sep 2025 01:33:54 +0000 ROA not after: Sat 15 Aug 2026 01:30:02 +0000 asID: 4686 IP address blocks: 124.255.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Sep 2025 13:06:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1097 (0x449) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Sep 1 01:33:54 2025 GMT Not After : Aug 15 01:30:02 2026 GMT Subject: CN=E774F891F03334CC106CA242838198456A32086E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ec:9e:dc:77:17:b2:58:f9:0e:0e:5a:60:8e: 72:44:6c:b1:40:81:b5:66:43:e1:54:94:74:6b:aa: 99:0f:5e:4f:59:9e:a3:88:38:6c:4a:60:bc:47:e8: 8e:74:5a:de:49:f4:a7:38:df:18:6f:6a:f6:05:52: 3d:73:89:e2:f2:ff:c8:1d:e6:0f:72:f5:ec:30:2f: 93:27:ce:72:79:c5:00:8c:f8:ba:33:76:56:7e:23: 88:ad:dd:4b:a5:91:31:d5:01:09:9a:1f:cc:58:41: 67:69:8e:00:d1:54:69:d9:d8:fd:37:fc:bc:3c:fd: 09:b3:39:ad:7f:93:7e:25:7a:c2:34:4f:84:76:b5: 01:e3:ee:f2:d4:36:d4:0d:a6:8e:f3:b0:a4:ef:b2: f6:4c:b6:37:a8:01:d3:f8:99:a3:ab:97:c2:3e:05: d7:25:f1:57:f6:f3:f9:a3:f1:45:b3:8d:d3:93:4e: e7:f9:a8:c7:f6:61:99:f1:d6:81:30:bf:b6:e8:25: f6:44:02:66:d8:13:43:07:74:ce:f3:5b:34:a9:02: ac:19:a1:b9:0d:f0:2f:fb:3d:2f:ea:de:74:eb:5b: 3b:57:55:63:8c:64:77:9a:be:ba:b7:67:7b:8e:0a: a7:64:d2:c9:c5:15:24:d9:69:e0:02:37:0b:04:08: da:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:74:F8:91:F0:33:34:CC:10:6C:A2:42:83:81:98:45:6A:32:08:6E X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/53T4kfAzNMwQbKJCg4GYRWoyCG4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.255.32.0/20 Signature Algorithm: sha256WithRSAEncryption 38:70:af:ab:40:28:de:be:c5:bf:61:63:13:7f:c9:fe:22:51: bd:35:93:f6:15:09:92:2f:91:07:9b:89:c3:91:d7:0c:33:48: 2b:1b:e8:75:9d:aa:31:7a:27:01:f3:ef:b5:b9:53:14:d2:69: b0:c6:89:1f:d9:11:40:77:99:15:99:74:23:f8:a0:0b:87:b3: 98:65:b1:22:00:af:74:15:34:ea:69:07:b3:dd:93:fe:94:f6: 3b:45:40:4c:63:f8:f6:b9:a7:c3:10:a0:23:37:eb:93:af:c8: 8f:72:7b:1b:3d:c2:8b:58:8a:a1:b8:3a:c0:80:b9:81:0c:da: 09:87:2c:9c:4e:f7:59:30:48:f6:f3:e1:58:49:10:ec:f7:22: a2:d8:bc:a7:ca:3c:d9:4b:2e:db:5d:a6:2d:ee:d6:3f:a9:bb: 80:7e:fa:4d:2b:ba:0e:1a:cc:b2:ce:3d:7b:db:2e:e2:d5:bc: 6c:93:f8:6d:55:37:ab:8a:c3:5f:b4:6c:ac:e5:46:1e:0d:0c: 86:ea:3a:af:54:09:5e:f4:51:cb:ac:c1:6b:00:61:d0:86:36: e7:5e:2e:ed:f5:76:4d:09:08:4d:e8:85:d5:cd:24:3e:3b:b3: b6:0a:09:f3:f5:c6:54:7d:5c:0e:a5:46:93:bd:75:b6:14:fa: b4:10:97:2c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBEkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA5MDEw MTMzNTRaFw0yNjA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEU3NzRGODkxRjAzMzM0 Q0MxMDZDQTI0MjgzODE5ODQ1NkEzMjA4NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDe7J7cdxeyWPkODlpgjnJEbLFAgbVmQ+FUlHRrqpkPXk9ZnqOI OGxKYLxH6I50Wt5J9Kc43xhvavYFUj1zieLy/8gd5g9y9ewwL5MnznJ5xQCM+Loz dlZ+I4it3UulkTHVAQmaH8xYQWdpjgDRVGnZ2P03/Lw8/QmzOa1/k34lesI0T4R2 tQHj7vLUNtQNpo7zsKTvsvZMtjeoAdP4maOrl8I+Bdcl8Vf28/mj8UWzjdOTTuf5 qMf2YZnx1oEwv7boJfZEAmbYE0MHdM7zWzSpAqwZobkN8C/7PS/q3nTrWztXVWOM ZHeavrq3Z3uOCqdk0snFFSTZaeACNwsECNoTAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU53T4kfAzNMwQbKJCg4GYRWoyCG4wHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0LzUzVDRrZkF6Tk13UWJLSkNnNEdZUldveUNHNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAR8/yAwDQYJKoZIhvcNAQELBQADggEBADhwr6tAKN6+xb9hYxN/yf4iUb01 k/YVCZIvkQebicOR1wwzSCsb6HWdqjF6JwHz77W5UxTSabDGiR/ZEUB3mRWZdCP4 oAuHs5hlsSIAr3QVNOppB7Pdk/6U9jtFQExj+Pa5p8MQoCM365OvyI9yexs9wotY iqG4OsCAuYEM2gmHLJxO91kwSPbz4VhJEOz3IqLYvKfKPNlLLttdpi3u1j+pu4B+ +k0rug4azLLOPXvbLuLVvGyT+G1VN6uKw1+0bKzlRh4NDIbqOq9UCV70UcuswWsA YdCGNudeLu31dk0JCE3ohdXNJD47s7YKCfP1xlR9XA6lRpO9dbYU+rQQlyw= -----END CERTIFICATE-----Generated at Wed Sep 10 15:27:10 2025 by rpki-client