$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20042/kAYiuIuhD2hPXMFdCEp-MazuNrw.roa File: kAYiuIuhD2hPXMFdCEp-MazuNrw.roa (raw, json) Hash identifier: 9+HxG8n7pYBP4IV/JgKUi8nNQSENVBvEPivVoeqbQo4= Subject key identifier: 90:06:22:B8:8B:A1:0F:68:4F:5C:C1:5D:08:4A:7E:31:AC:EE:36:BC Certificate issuer: /CN=961BC18512722AAF9A90D898ADEA9AF7793C2543 Certificate serial: 8B Authority key identifier: 96:1B:C1:85:12:72:2A:AF:9A:90:D8:98:AD:EA:9A:F7:79:3C:25:43 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/kAYiuIuhD2hPXMFdCEp-MazuNrw.roa Signing time: Fri 01 Aug 2025 01:29:55 +0000 ROA not before: Fri 01 Aug 2025 01:29:55 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 15830 IP address blocks: 180.148.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=961BC18512722AAF9A90D898ADEA9AF7793C2543 Validity Not Before: Aug 1 01:29:55 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=900622B88BA10F684F5CC15D084A7E31ACEE36BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9e:ec:b8:0c:8c:43:5b:aa:31:6d:20:0b:e0: 79:ed:c3:cb:d8:55:c4:f9:dd:d4:01:2d:98:74:34: 71:83:24:f6:5d:50:be:56:29:10:ae:bd:74:df:13: f5:a4:79:72:6e:8a:4b:99:a3:3b:a1:e1:d8:f3:51: 1d:6a:0b:e0:dd:14:31:be:9c:50:40:53:e1:6a:63: d9:cc:bb:04:bd:fd:33:3f:ee:33:76:38:94:d9:43: 75:1f:8b:fb:81:20:b6:21:15:6d:bc:57:44:7b:69: 4c:33:05:75:80:56:08:86:ab:53:50:6f:a0:e0:fa: f7:95:cc:ec:28:d3:33:6f:10:6d:6a:1a:1a:79:e5: a2:2b:a6:8a:1a:55:6d:23:6d:05:20:e7:79:14:e3: 34:04:2e:7e:ba:e2:ff:1b:80:0b:ad:62:30:2e:0e: 34:2a:d4:14:ed:24:c1:30:3d:dc:a2:9d:f6:7d:04: f4:56:8f:80:65:2b:69:71:db:f4:f2:84:01:4b:d2: c9:45:9d:65:5a:97:c3:ea:fa:b8:c6:70:a1:a7:71: ad:c6:a0:f1:92:48:e0:29:19:0f:a0:a7:8b:92:ae: c8:cc:17:24:5a:40:9f:83:99:54:5e:b4:2b:d5:fa: 78:80:cd:62:5f:d0:77:fe:1d:f3:57:3b:c8:48:8a: ae:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:06:22:B8:8B:A1:0F:68:4F:5C:C1:5D:08:4A:7E:31:AC:EE:36:BC X509v3 Authority Key Identifier: keyid:96:1B:C1:85:12:72:2A:AF:9A:90:D8:98:AD:EA:9A:F7:79:3C:25:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/kAYiuIuhD2hPXMFdCEp-MazuNrw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.148.160.0/20 Signature Algorithm: sha256WithRSAEncryption a3:33:47:ba:04:56:bb:ff:a8:f4:05:71:58:d6:f4:c7:ff:a3: 2d:b2:11:af:c8:8a:59:6c:6b:5c:f1:aa:f9:9a:cb:6b:b8:06: d0:b2:77:02:34:40:44:4f:69:8b:bb:55:7b:9f:93:f2:6d:ab: d8:72:58:8f:61:9f:5b:b8:34:e8:6f:bd:87:85:eb:59:c7:a8: 21:cf:c5:b0:ff:b4:10:eb:2e:1e:ba:fe:f0:54:55:fd:65:0d: ec:9c:e3:5b:52:e4:5a:ab:c8:70:1e:5d:22:57:f0:8c:28:5c: 45:d1:41:7e:28:f8:2b:bc:1c:90:2c:05:7c:a1:9e:21:dc:4b: 7f:8d:3f:41:1e:8e:80:63:18:5a:00:af:89:83:c8:a9:8a:32: 9b:66:b8:3e:f0:6f:57:b4:39:72:bd:01:4f:83:73:39:93:f3: f8:91:b5:df:29:8c:3d:c7:2b:a9:ec:fe:c3:0b:0a:a2:9a:65: 17:cf:62:27:11:58:7d:3c:f2:1e:78:5a:97:1d:70:4f:be:f4: e9:25:96:82:60:d6:0f:0e:8b:bc:48:62:77:b5:84:58:f6:a7: 56:72:3a:68:66:b4:7b:07:18:74:30:06:24:aa:1b:16:6c:af: d0:13:7b:98:0f:99:b7:cf:74:f6:1a:5f:95:0b:ba:0d:66:c7: e3:06:05:ed -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAIswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTYx QkMxODUxMjcyMkFBRjlBOTBEODk4QURFQTlBRjc3OTNDMjU0MzAeFw0yNTA4MDEw MTI5NTVaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDkwMDYyMkI4OEJBMTBG Njg0RjVDQzE1RDA4NEE3RTMxQUNFRTM2QkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwnuy4DIxDW6oxbSAL4Hntw8vYVcT53dQBLZh0NHGDJPZdUL5W KRCuvXTfE/WkeXJuikuZozuh4djzUR1qC+DdFDG+nFBAU+FqY9nMuwS9/TM/7jN2 OJTZQ3Ufi/uBILYhFW28V0R7aUwzBXWAVgiGq1NQb6Dg+veVzOwo0zNvEG1qGhp5 5aIrpooaVW0jbQUg53kU4zQELn664v8bgAutYjAuDjQq1BTtJMEwPdyinfZ9BPRW j4BlK2lx2/TyhAFL0slFnWVal8Pq+rjGcKGnca3GoPGSSOApGQ+gp4uSrsjMFyRa QJ+DmVRetCvV+niAzWJf0Hf+HfNXO8hIiq5JAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUkAYiuIuhD2hPXMFdCEp+MazuNrwwHwYDVR0jBBgwFoAUlhvBhRJyKq+akNiY reqa93k8JUMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDQyL2xodkJoUkp5S3EtYWtOaVlyZXFhOTNrOEpVTS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2xodkJoUkp5S3EtYWtOaVlyZXFh OTNrOEpVTS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA0Mi9rQVlpdUl1aEQyaFBYTUZkQ0VwLU1henVOcncu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEtJSgMA0GCSqGSIb3DQEBCwUAA4IBAQCjM0e6BFa7/6j0BXFY1vTH /6MtshGvyIpZbGtc8ar5mstruAbQsncCNEBET2mLu1V7n5PybavYcliPYZ9buDTo b72HhetZx6ghz8Ww/7QQ6y4euv7wVFX9ZQ3snONbUuRaq8hwHl0iV/CMKFxF0UF+ KPgrvByQLAV8oZ4h3Et/jT9BHo6AYxhaAK+Jg8ipijKbZrg+8G9XtDlyvQFPg3M5 k/P4kbXfKYw9xyup7P7DCwqimmUXz2InEVh9PPIeeFqXHXBPvvTpJZaCYNYPDou8 SGJ3tYRY9qdWcjpoZrR7Bxh0MAYkqhsWbK/QE3uYD5m3z3T2Gl+VC7oNZsfjBgXt -----END CERTIFICATE-----Generated at Mon Aug 11 04:44:02 2025 by rpki-client