$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20042/cz2nb9lxyWMqkzYLvtTZ9XcBJBA.roa File: cz2nb9lxyWMqkzYLvtTZ9XcBJBA.roa (raw, json) Hash identifier: rKKtwj25LgJU9wI6pccwOvIFlNQZXLM1B3YH42ItXFg= Subject key identifier: 73:3D:A7:6F:D9:71:C9:63:2A:93:36:0B:BE:D4:D9:F5:77:01:24:10 Certificate issuer: /CN=961BC18512722AAF9A90D898ADEA9AF7793C2543 Certificate serial: 81 Authority key identifier: 96:1B:C1:85:12:72:2A:AF:9A:90:D8:98:AD:EA:9A:F7:79:3C:25:43 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/cz2nb9lxyWMqkzYLvtTZ9XcBJBA.roa Signing time: Fri 01 Aug 2025 01:29:48 +0000 ROA not before: Fri 01 Aug 2025 01:29:48 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 15830 IP address blocks: 101.97.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=961BC18512722AAF9A90D898ADEA9AF7793C2543 Validity Not Before: Aug 1 01:29:48 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=733DA76FD971C9632A93360BBED4D9F577012410 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:67:8e:b7:b4:b4:c9:d1:7c:a7:ee:95:29:02: 15:23:cc:5a:6a:d8:3a:34:bd:0e:19:dd:1d:ee:60: ce:3b:93:22:66:32:c3:7d:e8:31:e6:b1:b5:0b:a5: 9e:bd:ec:84:c5:ba:61:27:6f:9f:db:9d:2d:0a:b8: 87:9e:b0:16:80:0a:a5:e1:0e:7f:78:ec:5e:87:d5: 24:4f:7b:42:60:71:9d:92:28:25:05:05:5d:c6:b6: d6:c5:ae:3b:5f:57:27:9e:6b:2a:ec:3f:a8:22:51: 1b:15:3d:e0:ec:a0:46:ba:b5:2d:9b:25:d2:2e:be: 5d:7a:1a:49:7c:8a:ae:7d:82:2d:bc:19:7d:b9:79: ac:22:25:70:6c:62:da:09:ab:5e:74:19:42:a1:8a: ad:58:56:cd:78:d9:98:8d:53:e9:d8:f4:38:5c:db: a1:c0:08:b0:93:21:99:ac:99:67:76:3b:a3:34:b3: 74:e0:5e:09:0e:41:48:ab:60:57:5a:af:c9:76:e5: 10:35:56:e8:15:e5:cb:d4:94:90:d0:24:39:4e:1e: dd:6f:3a:37:ea:c9:b7:52:fc:48:46:f5:87:4f:ec: fc:46:8e:10:d5:50:8b:60:09:69:d4:99:10:b4:67: a6:7c:92:5a:ce:b0:02:44:86:aa:75:d1:96:04:99: 96:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:3D:A7:6F:D9:71:C9:63:2A:93:36:0B:BE:D4:D9:F5:77:01:24:10 X509v3 Authority Key Identifier: keyid:96:1B:C1:85:12:72:2A:AF:9A:90:D8:98:AD:EA:9A:F7:79:3C:25:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/cz2nb9lxyWMqkzYLvtTZ9XcBJBA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.97.0.0/19 Signature Algorithm: sha256WithRSAEncryption 1b:b9:90:4f:14:4c:1e:77:33:1f:fb:d4:48:30:30:bf:f5:91: a1:36:46:45:fc:a0:20:85:e8:10:71:49:74:f6:0c:c0:60:a5: a8:15:b9:70:f2:54:19:37:a5:5b:68:b9:2c:83:f4:e8:09:72: 80:be:bc:e0:b0:93:9f:a1:4d:69:ed:aa:5a:f1:57:93:0f:e6: 18:14:23:2b:0b:9c:0d:3b:99:19:44:bc:17:85:f2:26:cf:89: 18:29:ea:b6:05:c9:34:db:2e:62:10:af:4e:5a:b4:a1:bc:95: 5f:d7:32:51:aa:0a:b0:3e:74:2b:55:c3:ee:1c:b4:c3:0a:75: b3:6b:de:75:27:4c:89:bf:a1:95:61:0d:3b:c3:1d:64:aa:c2: fc:79:20:65:cc:43:64:d2:20:9f:5f:62:aa:2e:d5:2b:57:18: 20:d3:36:31:6d:3b:da:52:6f:9e:74:bc:16:82:0f:fa:39:2f: e7:f6:f8:1a:24:15:54:b5:44:88:8a:11:74:27:03:65:87:44: da:5f:0f:9c:c3:eb:44:67:63:72:97:e0:7a:d7:dc:8d:e7:36: 43:2b:90:9c:1c:85:df:e7:c5:06:37:5b:bd:f4:d7:97:76:2f: c6:af:7e:91:05:cd:90:fe:c7:dc:11:38:93:9d:a3:0c:34:a7: 5b:b8:02:a8 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTYx QkMxODUxMjcyMkFBRjlBOTBEODk4QURFQTlBRjc3OTNDMjU0MzAeFw0yNTA4MDEw MTI5NDhaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDczM0RBNzZGRDk3MUM5 NjMyQTkzMzYwQkJFRDREOUY1NzcwMTI0MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWZ463tLTJ0Xyn7pUpAhUjzFpq2Do0vQ4Z3R3uYM47kyJmMsN9 6DHmsbULpZ697ITFumEnb5/bnS0KuIeesBaACqXhDn947F6H1SRPe0JgcZ2SKCUF BV3GttbFrjtfVyeeayrsP6giURsVPeDsoEa6tS2bJdIuvl16Gkl8iq59gi28GX25 eawiJXBsYtoJq150GUKhiq1YVs142ZiNU+nY9Dhc26HACLCTIZmsmWd2O6M0s3Tg XgkOQUirYFdar8l25RA1VugV5cvUlJDQJDlOHt1vOjfqybdS/EhG9YdP7PxGjhDV UItgCWnUmRC0Z6Z8klrOsAJEhqp10ZYEmZa9AgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUcz2nb9lxyWMqkzYLvtTZ9XcBJBAwHwYDVR0jBBgwFoAUlhvBhRJyKq+akNiY reqa93k8JUMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDQyL2xodkJoUkp5S3EtYWtOaVlyZXFhOTNrOEpVTS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2xodkJoUkp5S3EtYWtOaVlyZXFh OTNrOEpVTS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA0Mi9jejJuYjlseHlXTXFrellMdnRUWjlYY0JKQkEu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFZWEAMA0GCSqGSIb3DQEBCwUAA4IBAQAbuZBPFEwedzMf+9RIMDC/ 9ZGhNkZF/KAghegQcUl09gzAYKWoFblw8lQZN6VbaLksg/ToCXKAvrzgsJOfoU1p 7apa8VeTD+YYFCMrC5wNO5kZRLwXhfImz4kYKeq2Bck02y5iEK9OWrShvJVf1zJR qgqwPnQrVcPuHLTDCnWza951J0yJv6GVYQ07wx1kqsL8eSBlzENk0iCfX2KqLtUr Vxgg0zYxbTvaUm+edLwWgg/6OS/n9vgaJBVUtUSIihF0JwNlh0TaXw+cw+tEZ2Ny l+B619yN5zZDK5CcHIXf58UGN1u99NeXdi/Gr36RBc2Q/sfcETiTnaMMNKdbuAKo -----END CERTIFICATE-----Generated at Mon Aug 11 04:48:29 2025 by rpki-client