$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/CDd_t-XMDck7d3DlEFT0W1tvWEQ.roa File: CDd_t-XMDck7d3DlEFT0W1tvWEQ.roa (raw, json) Hash identifier: J3+BPW2F3gGioxIgzKWsG557qGanQ4cElvOhPerH6mU= Subject key identifier: 08:37:7F:B7:E5:CC:0D:C9:3B:77:70:E5:10:54:F4:5B:5B:6F:58:44 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 045A Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/CDd_t-XMDck7d3DlEFT0W1tvWEQ.roa Signing time: Mon 01 Sep 2025 01:34:04 +0000 ROA not before: Mon 01 Sep 2025 01:34:04 +0000 ROA not after: Sat 15 Aug 2026 01:30:02 +0000 asID: 10013 IP address blocks: 36.52.174.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Sep 2025 05:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1114 (0x45a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Sep 1 01:34:04 2025 GMT Not After : Aug 15 01:30:02 2026 GMT Subject: CN=08377FB7E5CC0DC93B7770E51054F45B5B6F5844 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:09:d4:82:cf:f2:10:8f:ae:3b:1e:9a:d6:fa: b7:ec:d4:f5:a3:e2:d7:9e:23:3e:8b:10:34:f1:fa: 3d:e9:06:31:79:cf:0f:ab:93:71:40:4d:a1:83:61: ca:fa:d0:0b:26:4c:f8:74:9e:13:c8:6c:46:1c:90: 5b:05:fa:4e:b4:22:4b:28:c1:6f:a2:60:71:fc:68: 06:8c:e8:3c:34:a6:0b:91:8e:c1:8f:05:b7:dc:f9: 25:65:89:96:b3:b8:c1:00:65:9a:52:04:d0:c6:f7: 2b:8b:46:ff:a4:10:40:92:ec:92:f5:90:11:eb:c3: 68:f9:34:67:bd:df:c0:e1:c0:f6:42:0b:ac:7e:7c: 75:7d:f0:89:7e:b3:34:6f:0d:4d:0d:fa:02:ef:e4: f2:b4:3a:a2:f9:13:67:bc:6d:d5:b7:fb:33:02:1a: f1:5b:68:ca:09:71:43:ca:06:a3:91:df:c7:11:96: 89:e1:ac:b4:e4:81:bb:a8:ff:7c:dc:24:d0:41:8e: 6b:0a:c4:32:bb:00:4d:6d:76:3b:7f:ec:a1:c6:f2: 72:99:55:6e:e4:eb:fe:06:ee:24:72:47:ea:45:ad: ef:77:c5:34:de:5b:ce:eb:5c:2a:74:ad:f3:e9:d1: fd:e7:c5:e6:6c:1d:97:e7:17:c5:d9:38:92:21:e5: fb:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:37:7F:B7:E5:CC:0D:C9:3B:77:70:E5:10:54:F4:5B:5B:6F:58:44 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/CDd_t-XMDck7d3DlEFT0W1tvWEQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.52.174.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:51:3e:9d:e5:1e:85:64:35:eb:56:96:2d:72:b9:56:4b:ff: bf:96:e6:40:8f:85:ca:50:3b:ca:75:f5:a7:b1:54:61:a2:ad: cb:b8:00:22:6a:bc:88:dd:ea:38:00:6f:19:5d:fb:ea:82:0b: 89:fc:8f:a9:d4:aa:37:e0:92:50:8b:dd:4f:fc:42:33:49:4f: 02:b5:a0:99:e1:2b:c7:aa:04:ec:1c:32:45:49:d1:d8:c8:00: 3a:bb:e1:ff:a5:e4:5b:4b:1f:7b:bb:fc:be:e7:1b:0b:ae:36: a9:ce:34:1a:e9:b9:84:d4:84:11:8c:dc:b6:08:3c:91:45:2d: 07:49:b6:06:f2:84:6e:ec:7a:09:00:c6:c8:0a:70:51:69:d1: 86:7e:1f:ab:78:d2:ed:df:5a:d1:79:00:f0:da:9b:0d:52:33: 43:e2:b0:8a:59:21:f5:f2:8d:35:36:09:e5:e2:40:57:e4:5e: 06:96:a1:92:85:9a:fe:21:06:c1:ee:3c:09:87:17:d9:b2:38: ad:52:1f:f3:ca:88:de:1a:34:11:2c:41:e8:65:45:43:2d:92: db:a0:68:35:46:ff:c7:47:7f:3f:31:12:91:44:1d:04:77:0e: 43:cd:ac:79:9c:58:58:c1:a4:92:7d:a6:5a:e8:d3:12:1c:50: 13:f1:9d:3e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBFowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA5MDEw MTM0MDRaFw0yNjA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA4Mzc3RkI3RTVDQzBE QzkzQjc3NzBFNTEwNTRGNDVCNUI2RjU4NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4CdSCz/IQj647HprW+rfs1PWj4teeIz6LEDTx+j3pBjF5zw+r k3FATaGDYcr60AsmTPh0nhPIbEYckFsF+k60IksowW+iYHH8aAaM6Dw0pguRjsGP Bbfc+SVliZazuMEAZZpSBNDG9yuLRv+kEECS7JL1kBHrw2j5NGe938DhwPZCC6x+ fHV98Il+szRvDU0N+gLv5PK0OqL5E2e8bdW3+zMCGvFbaMoJcUPKBqOR38cRlonh rLTkgbuo/3zcJNBBjmsKxDK7AE1tdjt/7KHG8nKZVW7k6/4G7iRyR+pFre93xTTe W87rXCp0rfPp0f3nxeZsHZfnF8XZOJIh5ftFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCDd/t+XMDck7d3DlEFT0W1tvWEQwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0NEZF90LVhNRGNrN2QzRGxFRlQwVzF0dldFUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEkNK4wDQYJKoZIhvcNAQELBQADggEBAI1RPp3lHoVkNetWli1yuVZL/7+W 5kCPhcpQO8p19aexVGGircu4ACJqvIjd6jgAbxld++qCC4n8j6nUqjfgklCL3U/8 QjNJTwK1oJnhK8eqBOwcMkVJ0djIADq74f+l5FtLH3u7/L7nGwuuNqnONBrpuYTU hBGM3LYIPJFFLQdJtgbyhG7segkAxsgKcFFp0YZ+H6t40u3fWtF5APDamw1SM0Pi sIpZIfXyjTU2CeXiQFfkXgaWoZKFmv4hBsHuPAmHF9myOK1SH/PKiN4aNBEsQehl RUMtktugaDVG/8dHfz8xEpFEHQR3DkPNrHmcWFjBpJJ9plro0xIcUBPxnT4= -----END CERTIFICATE-----Generated at Wed Sep 10 09:12:37 2025 by rpki-client