$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/MZgGDLYwVGw9oJ7FlaQcBU2j83U.roa File: MZgGDLYwVGw9oJ7FlaQcBU2j83U.roa (raw, json) Hash identifier: reyLgj6uYHLulng3a6h0ObCvvsOJl5AOKnY6sStbwCE= Subject key identifier: 31:98:06:0C:B6:30:54:6C:3D:A0:9E:C5:95:A4:1C:05:4D:A3:F3:75 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 044C Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/MZgGDLYwVGw9oJ7FlaQcBU2j83U.roa Signing time: Mon 01 Sep 2025 01:33:57 +0000 ROA not before: Mon 01 Sep 2025 01:33:57 +0000 ROA not after: Sat 15 Aug 2026 01:30:02 +0000 asID: 4686 IP address blocks: 220.150.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Sep 2025 14:22:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1100 (0x44c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Sep 1 01:33:57 2025 GMT Not After : Aug 15 01:30:02 2026 GMT Subject: CN=3198060CB630546C3DA09EC595A41C054DA3F375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ff:0a:da:fe:c9:cd:5d:0c:33:30:e1:42:05: c1:88:20:4c:60:98:67:4b:80:da:d5:f1:0d:70:76: ab:ba:0b:76:e5:80:75:48:27:94:be:68:62:ae:30: 54:a9:4b:4d:e3:04:ac:b8:65:45:cd:40:fd:29:0c: 91:78:99:03:a7:dd:22:5d:c1:f6:cc:b3:46:f5:9d: 60:c1:32:3b:81:97:16:18:5c:26:c2:d7:29:54:cd: 6f:d0:f6:a1:cd:10:a0:ae:f3:49:c8:94:e8:08:4c: 64:64:87:40:19:18:3c:83:57:0d:e7:f7:c9:51:b2: 1a:89:fb:2b:f1:1e:c3:e1:1f:5d:ee:01:41:97:99: 8f:1b:8d:8b:ad:79:bc:0c:75:7e:8d:50:43:36:a4: df:a8:8a:f4:3e:18:15:b7:a0:cb:2e:ba:6a:15:52: 6d:1c:10:e1:0e:8d:72:69:80:7b:2c:94:81:ca:90: 58:86:e7:9b:cf:9e:cd:46:54:22:a4:ff:22:6a:63: 55:dd:7b:7f:7b:b8:17:68:e5:79:f4:c6:b3:0f:be: b5:4e:95:aa:c0:10:79:44:92:13:78:ac:90:71:b1: fe:9e:ac:8d:a9:17:c6:43:44:04:70:11:bc:41:99: ea:20:a4:ce:7a:2f:13:86:ba:e1:7d:95:91:94:dc: e0:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:98:06:0C:B6:30:54:6C:3D:A0:9E:C5:95:A4:1C:05:4D:A3:F3:75 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/MZgGDLYwVGw9oJ7FlaQcBU2j83U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.150.223.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:b3:58:46:52:67:12:5e:d4:88:d7:9d:62:99:a1:75:e7:a6: 5c:77:60:ef:3b:7f:37:00:95:5c:c0:3f:e3:b3:e2:ac:a6:b0: ae:98:43:19:21:76:4d:1a:5d:1e:91:05:81:87:fa:63:50:09: 04:e8:ff:83:51:8b:a5:bc:ad:89:c6:f9:f0:c5:33:bf:a2:d8: 52:fe:10:d4:5b:bd:c6:84:5e:ee:00:d8:41:1a:8a:26:e9:35: 11:ad:c4:a9:ae:58:a2:23:0a:03:a9:51:5c:60:9a:56:5a:38: 95:1b:07:ae:f5:84:50:c9:98:3d:7c:f5:51:d0:0a:2f:d2:5f: f9:cc:ea:78:21:22:58:14:57:f6:57:1b:bd:cb:70:c9:ab:0b: fc:52:97:a5:01:30:87:e7:ce:13:37:65:e9:fd:b9:7d:60:3f: dd:46:22:14:9c:1b:7a:8a:b0:05:c1:8a:5a:2b:21:8f:89:59: 7b:0d:f1:c5:16:50:53:38:f6:66:6e:58:90:63:cb:11:6c:4b: 4e:eb:89:4d:7e:bc:49:6b:71:d4:51:fe:77:47:d2:5b:7e:96: 88:36:66:06:45:9c:79:e1:cf:68:02:c2:76:f5:c3:5d:c7:2d: 8d:b6:c3:4a:60:a7:aa:3e:1f:c5:53:e9:eb:b2:4b:da:91:6d: 87:01:04:be -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBEwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA5MDEw MTMzNTdaFw0yNjA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDMxOTgwNjBDQjYzMDU0 NkMzREEwOUVDNTk1QTQxQzA1NERBM0YzNzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDl/wra/snNXQwzMOFCBcGIIExgmGdLgNrV8Q1wdqu6C3blgHVI J5S+aGKuMFSpS03jBKy4ZUXNQP0pDJF4mQOn3SJdwfbMs0b1nWDBMjuBlxYYXCbC 1ylUzW/Q9qHNEKCu80nIlOgITGRkh0AZGDyDVw3n98lRshqJ+yvxHsPhH13uAUGX mY8bjYutebwMdX6NUEM2pN+oivQ+GBW3oMsuumoVUm0cEOEOjXJpgHsslIHKkFiG 55vPns1GVCKk/yJqY1Xde397uBdo5Xn0xrMPvrVOlarAEHlEkhN4rJBxsf6erI2p F8ZDRARwEbxBmeogpM56LxOGuuF9lZGU3OA7AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUMZgGDLYwVGw9oJ7FlaQcBU2j83UwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L01aZ0dETFl3Vkd3OW9KN0ZsYVFjQlUyajgzVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADclt8wDQYJKoZIhvcNAQELBQADggEBAH6zWEZSZxJe1IjXnWKZoXXnplx3 YO87fzcAlVzAP+Oz4qymsK6YQxkhdk0aXR6RBYGH+mNQCQTo/4NRi6W8rYnG+fDF M7+i2FL+ENRbvcaEXu4A2EEaiibpNRGtxKmuWKIjCgOpUVxgmlZaOJUbB671hFDJ mD189VHQCi/SX/nM6nghIlgUV/ZXG73LcMmrC/xSl6UBMIfnzhM3Zen9uX1gP91G IhScG3qKsAXBilorIY+JWXsN8cUWUFM49mZuWJBjyxFsS07riU1+vElrcdRR/ndH 0lt+log2ZgZFnHnhz2gCwnb1w13HLY22w0pgp6o+H8VT6euyS9qRbYcBBL4= -----END CERTIFICATE-----Generated at Wed Sep 10 15:27:11 2025 by rpki-client