$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/11247/xy1FLI8pIscugDiB91qX4p9xzhs.roa File: xy1FLI8pIscugDiB91qX4p9xzhs.roa (raw, json) Hash identifier: Lx9dtPBjFVqdyJ+eUHLvEZxB5n7A288cfMm8V+kvd8g= Subject key identifier: C7:2D:45:2C:8F:29:22:C7:2E:80:38:81:F7:5A:97:E2:9F:71:CE:1B Certificate issuer: /CN=EFC15649A8257F64FC942167E310AD38AD02CDBC Certificate serial: 8D Authority key identifier: EF:C1:56:49:A8:25:7F:64:FC:94:21:67:E3:10:AD:38:AD:02:CD:BC Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/78FWSaglf2T8lCFn4xCtOK0Czbw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/xy1FLI8pIscugDiB91qX4p9xzhs.roa Signing time: Fri 01 Aug 2025 01:33:38 +0000 ROA not before: Fri 01 Aug 2025 01:33:38 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 7684 IP address blocks: 133.242.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/78FWSaglf2T8lCFn4xCtOK0Czbw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/78FWSaglf2T8lCFn4xCtOK0Czbw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/78FWSaglf2T8lCFn4xCtOK0Czbw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EFC15649A8257F64FC942167E310AD38AD02CDBC Validity Not Before: Aug 1 01:33:38 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=C72D452C8F2922C72E803881F75A97E29F71CE1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:34:41:36:f3:e3:81:e6:53:f4:7f:bd:07:67: 70:c9:9c:ed:03:b8:7b:fb:42:77:5a:ca:25:52:6d: b6:aa:32:aa:0c:df:b8:77:79:34:a4:ca:1b:52:dd: 3b:8b:de:10:4b:c1:83:e4:46:04:fa:4d:1a:36:42: 29:29:78:0a:de:ea:20:8e:c7:67:8b:f9:68:a7:aa: a7:bd:5f:6e:8e:98:d0:3d:96:01:3a:0e:1f:41:59: d3:ed:2a:44:a2:d5:05:4b:27:00:d8:86:33:11:e9: 50:fb:3e:e3:34:4f:a6:35:d8:1d:02:99:57:0e:59: eb:24:13:e1:5c:20:dc:79:56:43:53:d8:58:ca:c0: 33:ac:eb:f6:a4:43:44:00:0c:b1:9d:a6:e8:a8:2b: 65:06:20:39:39:ea:01:7c:0e:9c:45:12:da:6c:d3: 12:3c:e8:e8:b8:59:aa:b8:96:9a:0c:5d:d0:3a:0c: 71:c9:a9:a8:ac:4b:bb:e3:43:ff:b4:54:e9:c9:dd: 62:59:c2:f7:c6:b8:6d:13:67:b3:38:d5:cb:0b:0c: 7a:56:7a:70:7b:90:8d:87:bb:69:ec:8d:9b:38:fb: 20:e3:c0:a9:1a:cf:02:c1:e5:f3:b4:6f:c8:7e:58: 8a:6c:0d:01:4e:b3:c3:97:95:31:fe:53:87:4a:9c: 94:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:2D:45:2C:8F:29:22:C7:2E:80:38:81:F7:5A:97:E2:9F:71:CE:1B X509v3 Authority Key Identifier: keyid:EF:C1:56:49:A8:25:7F:64:FC:94:21:67:E3:10:AD:38:AD:02:CD:BC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/78FWSaglf2T8lCFn4xCtOK0Czbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/78FWSaglf2T8lCFn4xCtOK0Czbw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/xy1FLI8pIscugDiB91qX4p9xzhs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.242.0.0/16 Signature Algorithm: sha256WithRSAEncryption aa:9f:3a:9a:06:75:06:2c:a3:08:6e:b5:44:ec:2b:55:2d:3c: 93:e2:43:b8:3a:b9:37:b9:62:d4:ef:29:2a:3b:a0:48:f7:b3: c7:7b:2e:b0:79:76:d3:12:5f:8e:c9:ac:4d:0f:44:37:8c:11: e6:f4:66:f2:66:2b:54:61:28:3e:f8:7b:4d:c4:49:99:81:e1: 93:e4:a4:22:34:53:6c:92:e3:60:f0:2f:9d:c8:87:93:cd:d3: c3:1b:e5:65:4a:6c:78:93:82:9f:f8:6e:bb:d4:43:1c:96:71: fd:51:07:b5:f4:45:5e:0d:ba:7a:e3:0c:b3:87:f4:11:4b:53: bd:39:52:4a:53:98:08:86:22:7f:5e:fb:df:b0:9b:bc:58:af: 0c:17:52:bf:cf:78:02:fd:18:2f:90:9a:3f:d5:b8:74:57:d8: 9c:65:5f:0a:5c:d8:c0:cd:bf:18:c3:b4:db:e4:ab:3b:c8:d6: f9:ec:82:b0:cd:e5:c2:66:2a:2a:62:6a:79:66:31:03:94:02: 16:0c:5c:e4:e9:ed:26:fc:21:50:6a:ac:25:a7:08:ad:c7:66: be:74:09:fd:35:8a:ed:16:43:f1:31:4b:dd:b9:fb:22:96:4c: 01:ff:44:4a:13:0a:af:43:79:24:15:e8:f3:a3:af:3f:17:ba: ee:74:bc:01 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD MTU2NDlBODI1N0Y2NEZDOTQyMTY3RTMxMEFEMzhBRDAyQ0RCQzAeFw0yNTA4MDEw MTMzMzhaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKEM3MkQ0NTJDOEYyOTIy QzcyRTgwMzg4MUY3NUE5N0UyOUY3MUNFMUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCiNEE28+OB5lP0f70HZ3DJnO0DuHv7QndayiVSbbaqMqoM37h3 eTSkyhtS3TuL3hBLwYPkRgT6TRo2QikpeAre6iCOx2eL+Winqqe9X26OmNA9lgE6 Dh9BWdPtKkSi1QVLJwDYhjMR6VD7PuM0T6Y12B0CmVcOWeskE+FcINx5VkNT2FjK wDOs6/akQ0QADLGdpuioK2UGIDk56gF8DpxFEtps0xI86Oi4Waq4lpoMXdA6DHHJ qaisS7vjQ/+0VOnJ3WJZwvfGuG0TZ7M41csLDHpWenB7kI2Hu2nsjZs4+yDjwKka zwLB5fO0b8h+WIpsDQFOs8OXlTH+U4dKnJS3AgMBAAGjggInMIICIzAdBgNVHQ4E FgQUxy1FLI8pIscugDiB91qX4p9xzhswHwYDVR0jBBgwFoAU78FWSaglf2T8lCFn 4xCtOK0CzbwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzExMjQ3Lzc4RldTYWdsZjJUOGxDRm40eEN0T0swQ3pidy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzc4RldTYWdsZjJUOGxDRm40eEN0 T0swQ3pidy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8xMTI0Ny94eTFGTEk4cElzY3VnRGlCOTFxWDRwOXh6aHMu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAhfIwDQYJKoZIhvcNAQELBQADggEBAKqfOpoGdQYsowhutUTsK1Ut PJPiQ7g6uTe5YtTvKSo7oEj3s8d7LrB5dtMSX47JrE0PRDeMEeb0ZvJmK1RhKD74 e03ESZmB4ZPkpCI0U2yS42DwL53Ih5PN08Mb5WVKbHiTgp/4brvUQxyWcf1RB7X0 RV4NunrjDLOH9BFLU705UkpTmAiGIn9e+9+wm7xYrwwXUr/PeAL9GC+Qmj/VuHRX 2JxlXwpc2MDNvxjDtNvkqzvI1vnsgrDN5cJmKipianlmMQOUAhYMXOTp7Sb8IVBq rCWnCK3HZr50Cf01iu0WQ/ExS925+yKWTAH/REoTCq9DeSQV6POjrz8Xuu50vAE= -----END CERTIFICATE-----Generated at Mon Aug 11 13:30:15 2025 by rpki-client