$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/KdxwwZl51jyphjEBV6_24npX7ZA.roa File: KdxwwZl51jyphjEBV6_24npX7ZA.roa (raw, json) Hash identifier: 8F2sJNHLIquFi8CpbdT8EvUGduSICmkrQGe7DSvlDW0= Subject key identifier: 29:DC:70:C1:99:79:D6:3C:A9:86:31:01:57:AF:F6:E2:7A:57:ED:90 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0457 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/KdxwwZl51jyphjEBV6_24npX7ZA.roa Signing time: Mon 01 Sep 2025 01:34:02 +0000 ROA not before: Mon 01 Sep 2025 01:34:02 +0000 ROA not after: Sat 15 Aug 2026 01:30:02 +0000 asID: 10013 IP address blocks: 27.135.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Sep 2025 05:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1111 (0x457) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Sep 1 01:34:02 2025 GMT Not After : Aug 15 01:30:02 2026 GMT Subject: CN=29DC70C19979D63CA986310157AFF6E27A57ED90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:88:5a:84:a1:42:2d:63:65:6a:55:c0:e5:e0: 88:63:2e:6f:05:d1:31:ef:12:4d:1d:ec:ff:4f:2e: 78:04:9b:08:5f:9b:3f:82:6f:e6:26:19:72:f3:9f: cd:f4:a7:6a:fd:1a:2b:69:1d:a0:19:70:b3:7f:22: 8f:1d:df:44:fd:79:7b:cc:6a:87:16:84:80:1e:61: 38:f1:58:2d:52:7a:36:3d:83:88:ba:8e:b9:9e:70: 7e:7b:07:95:b2:a3:b4:eb:6f:ad:6f:fa:73:a6:67: 21:c7:65:a7:b2:53:b2:c8:8e:fe:ad:1a:a0:5b:3f: 52:1e:91:b5:c7:4f:3b:d9:ac:f9:00:1c:56:5f:fe: 4a:21:7f:77:74:8c:94:13:b0:24:ed:f8:95:58:0e: 26:0d:e5:64:90:4e:c5:2d:0e:8f:9e:ff:9d:93:9d: 4e:ed:45:b2:e4:ad:1d:18:af:3c:71:16:c6:9b:8c: e6:eb:a5:0e:d9:a2:77:4e:be:8b:a7:ee:16:77:e7: 2e:c1:c0:95:df:f4:a7:2f:b1:c3:ec:a9:f1:16:d6: b7:20:ab:21:89:d1:b0:00:3e:af:27:29:fb:4d:c7: 88:0a:23:b6:ac:40:47:de:8a:ef:af:60:72:87:0e: d1:71:b5:d3:04:51:36:cc:11:05:d1:4c:8a:26:bc: cf:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:DC:70:C1:99:79:D6:3C:A9:86:31:01:57:AF:F6:E2:7A:57:ED:90 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/KdxwwZl51jyphjEBV6_24npX7ZA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.135.73.0/24 Signature Algorithm: sha256WithRSAEncryption 24:ac:1e:74:11:29:d8:82:d3:4b:c9:f8:60:ba:95:97:80:1f: 49:32:a9:08:89:53:2f:ce:0f:0b:1f:b0:ee:24:6b:c3:20:ec: cb:1c:3c:ca:47:e6:36:b5:33:e1:21:16:ea:8b:df:10:ad:f3: 5d:c8:7d:f5:14:c4:19:ac:91:69:e8:cb:b9:5b:f1:6f:c9:3c: d2:6a:e9:d0:cd:7b:58:e3:74:a7:ff:f8:25:02:f4:b5:76:a7: c3:35:03:62:45:5f:b6:fd:45:19:e3:05:06:33:fb:2d:d5:59: 5c:a2:71:b7:41:91:bb:f1:cb:2b:d3:93:2c:df:08:ff:0c:da: 33:d7:59:76:03:59:97:7a:98:e2:d4:12:51:4c:07:6a:60:e3: 19:cc:ee:c1:9f:24:f7:27:b8:b0:3d:65:e6:56:75:0d:8a:06: 28:c6:12:52:6c:47:39:2b:7c:38:b0:cf:34:d0:c1:24:27:08: 82:97:23:6b:05:48:c1:90:f5:3f:9d:66:54:cb:b8:8f:a8:5c: 70:9a:79:06:d8:c1:04:ef:42:9e:40:47:83:f2:a5:1e:44:e0: 8f:a7:7b:2c:84:e1:8f:d1:2a:f8:e3:f8:d4:ab:cd:0d:99:16: 1d:7e:fd:f5:dc:95:c7:6c:46:8b:d5:f4:6f:00:ac:06:91:31: 80:8b:58:74 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBFcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA5MDEw MTM0MDJaFw0yNjA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDI5REM3MEMxOTk3OUQ2 M0NBOTg2MzEwMTU3QUZGNkUyN0E1N0VEOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9iFqEoUItY2VqVcDl4IhjLm8F0THvEk0d7P9PLngEmwhfmz+C b+YmGXLzn830p2r9GitpHaAZcLN/Io8d30T9eXvMaocWhIAeYTjxWC1SejY9g4i6 jrmecH57B5Wyo7Trb61v+nOmZyHHZaeyU7LIjv6tGqBbP1IekbXHTzvZrPkAHFZf /kohf3d0jJQTsCTt+JVYDiYN5WSQTsUtDo+e/52TnU7tRbLkrR0YrzxxFsabjObr pQ7ZondOvoun7hZ35y7BwJXf9KcvscPsqfEW1rcgqyGJ0bAAPq8nKftNx4gKI7as QEfeiu+vYHKHDtFxtdMEUTbMEQXRTIomvM/fAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKdxwwZl51jyphjEBV6/24npX7ZAwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0tkeHd3Wmw1MWp5cGhqRUJWNl8yNG5wWDdaQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAbh0kwDQYJKoZIhvcNAQELBQADggEBACSsHnQRKdiC00vJ+GC6lZeAH0ky qQiJUy/ODwsfsO4ka8Mg7MscPMpH5ja1M+EhFuqL3xCt813IffUUxBmskWnoy7lb 8W/JPNJq6dDNe1jjdKf/+CUC9LV2p8M1A2JFX7b9RRnjBQYz+y3VWVyicbdBkbvx yyvTkyzfCP8M2jPXWXYDWZd6mOLUElFMB2pg4xnM7sGfJPcnuLA9ZeZWdQ2KBijG ElJsRzkrfDiwzzTQwSQnCIKXI2sFSMGQ9T+dZlTLuI+oXHCaeQbYwQTvQp5AR4Py pR5E4I+neyyE4Y/RKvjj+NSrzQ2ZFh1+/fXclcdsRovV9G8ArAaRMYCLWHQ= -----END CERTIFICATE-----Generated at Wed Sep 10 09:13:14 2025 by rpki-client