$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20042/Q96g01N1Ko1wcDB4imCyXf0gkvM.roa File: Q96g01N1Ko1wcDB4imCyXf0gkvM.roa (raw, json) Hash identifier: vXKSBvol47PmT9aWSbwe++omPmqyzaR6wTsbqiyLGjc= Subject key identifier: 43:DE:A0:D3:53:75:2A:8D:70:70:30:78:8A:60:B2:5D:FD:20:92:F3 Certificate issuer: /CN=961BC18512722AAF9A90D898ADEA9AF7793C2543 Certificate serial: 8E Authority key identifier: 96:1B:C1:85:12:72:2A:AF:9A:90:D8:98:AD:EA:9A:F7:79:3C:25:43 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/Q96g01N1Ko1wcDB4imCyXf0gkvM.roa Signing time: Fri 01 Aug 2025 01:29:57 +0000 ROA not before: Fri 01 Aug 2025 01:29:57 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 15830 IP address blocks: 202.131.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=961BC18512722AAF9A90D898ADEA9AF7793C2543 Validity Not Before: Aug 1 01:29:57 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=43DEA0D353752A8D707030788A60B25DFD2092F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7f:d2:4d:fe:15:5f:f1:ba:a1:25:70:31:7f: 45:24:21:c5:01:5b:c9:1d:b8:ff:bf:1f:8f:06:9c: 14:a9:d9:8a:0f:54:35:27:1c:89:b9:01:54:dc:b7: 23:45:a3:69:a5:29:14:a8:c6:32:2c:ec:2a:71:2a: 3f:9b:7a:db:35:68:ad:76:ee:18:35:dd:96:45:11: d5:fe:c6:8a:1b:94:a4:01:36:e4:9a:d1:b2:73:c2: 71:44:6d:1d:d3:c2:54:74:59:59:1a:b9:b2:95:ac: 34:70:d6:1c:88:a6:e7:05:c3:d7:2f:65:92:5c:85: 4b:2f:90:ba:90:7a:1e:88:06:6a:35:d6:b7:37:b9: cc:54:8d:06:32:bb:18:fd:ad:0e:d7:d4:5c:e2:d3: ac:99:70:6d:cc:9f:04:43:3c:ea:d9:62:f2:a5:51: 72:ee:9a:dd:89:29:e9:65:53:9c:7a:21:58:4a:b0: 0e:43:96:e8:a6:d5:4a:46:64:9e:a9:33:50:c0:62: 6e:0a:39:43:85:b0:35:fe:3c:3b:75:6a:b2:fc:41: 22:8e:fc:98:90:84:9e:bd:0a:6d:10:9f:2e:7d:40: dc:53:23:50:b8:22:76:cf:f8:08:64:09:3e:d4:65: cd:35:b5:c1:d7:be:cc:51:b8:81:c7:dc:c4:53:67: 72:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:DE:A0:D3:53:75:2A:8D:70:70:30:78:8A:60:B2:5D:FD:20:92:F3 X509v3 Authority Key Identifier: keyid:96:1B:C1:85:12:72:2A:AF:9A:90:D8:98:AD:EA:9A:F7:79:3C:25:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/Q96g01N1Ko1wcDB4imCyXf0gkvM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.131.192.0/20 Signature Algorithm: sha256WithRSAEncryption 8d:88:6a:7d:1a:3b:c6:07:3c:7b:64:27:d2:27:fd:50:0f:e8: 0f:f6:7b:43:0c:72:0d:24:99:36:1f:3b:af:fa:c7:28:38:19: c9:7f:34:d0:85:ea:b6:89:23:fa:94:c6:6d:f0:b9:51:63:4d: d1:3e:ca:7a:38:5f:c6:6a:3a:55:ba:92:90:2e:bb:94:92:fc: 9b:cc:13:c4:e5:c5:dc:11:c9:65:c1:d8:20:a2:ad:67:71:91: 64:1f:c0:dd:7d:b1:47:e3:e6:de:5a:79:66:97:89:d1:d8:4c: b9:24:b4:e1:6e:22:83:6a:7f:b0:9c:09:0b:74:b9:4b:c4:3a: ab:d4:36:29:6d:dc:a3:43:57:ac:fa:3c:ce:1a:5a:f3:eb:50: fc:ce:55:a0:8a:10:5e:95:dd:40:4e:c4:73:92:2c:c3:84:9e: 53:12:08:7e:f8:df:9c:b3:2c:38:82:80:0e:6e:06:65:04:60: 45:f0:70:c1:96:1b:94:4a:97:5a:c0:25:bb:08:77:0f:01:4f: 87:15:70:2c:0c:3a:7a:5d:47:1c:5d:85:c9:f8:35:77:f6:3a: 68:0f:a3:8a:12:a0:8e:a5:ec:53:52:74:e5:81:39:66:9f:98: 6b:23:3f:3d:03:c3:e3:ff:99:7e:8b:5c:da:fb:b6:8d:39:99: b0:15:e1:48 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTYx QkMxODUxMjcyMkFBRjlBOTBEODk4QURFQTlBRjc3OTNDMjU0MzAeFw0yNTA4MDEw MTI5NTdaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDQzREVBMEQzNTM3NTJB OEQ3MDcwMzA3ODhBNjBCMjVERkQyMDkyRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuf9JN/hVf8bqhJXAxf0UkIcUBW8kduP+/H48GnBSp2YoPVDUn HIm5AVTctyNFo2mlKRSoxjIs7CpxKj+bets1aK127hg13ZZFEdX+xooblKQBNuSa 0bJzwnFEbR3TwlR0WVkaubKVrDRw1hyIpucFw9cvZZJchUsvkLqQeh6IBmo11rc3 ucxUjQYyuxj9rQ7X1Fzi06yZcG3MnwRDPOrZYvKlUXLumt2JKellU5x6IVhKsA5D luim1UpGZJ6pM1DAYm4KOUOFsDX+PDt1arL8QSKO/JiQhJ69Cm0Qny59QNxTI1C4 InbP+AhkCT7UZc01tcHXvsxRuIHH3MRTZ3KzAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUQ96g01N1Ko1wcDB4imCyXf0gkvMwHwYDVR0jBBgwFoAUlhvBhRJyKq+akNiY reqa93k8JUMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDQyL2xodkJoUkp5S3EtYWtOaVlyZXFhOTNrOEpVTS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2xodkJoUkp5S3EtYWtOaVlyZXFh OTNrOEpVTS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA0Mi9ROTZnMDFOMUtvMXdjREI0aW1DeVhmMGdrdk0u cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEyoPAMA0GCSqGSIb3DQEBCwUAA4IBAQCNiGp9GjvGBzx7ZCfSJ/1Q D+gP9ntDDHINJJk2Hzuv+scoOBnJfzTQheq2iSP6lMZt8LlRY03RPsp6OF/GajpV upKQLruUkvybzBPE5cXcEcllwdggoq1ncZFkH8DdfbFH4+beWnlml4nR2Ey5JLTh biKDan+wnAkLdLlLxDqr1DYpbdyjQ1es+jzOGlrz61D8zlWgihBeld1ATsRzkizD hJ5TEgh++N+csyw4goAObgZlBGBF8HDBlhuUSpdawCW7CHcPAU+HFXAsDDp6XUcc XYXJ+DV39jpoD6OKEqCOpexTUnTlgTlmn5hrIz89A8Pj/5l+i1za+7aNOZmwFeFI -----END CERTIFICATE-----Generated at Mon Aug 11 07:32:32 2025 by rpki-client