$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Wb9ma-lAu8m8Jn7Wxg4H3T5wwb4.roa File: Wb9ma-lAu8m8Jn7Wxg4H3T5wwb4.roa (raw, json) Hash identifier: A3dHNYPEmTBdxhw7wwHkkZsTjDcDU7zH8V6rEB11G28= Subject key identifier: 59:BF:66:6B:E9:40:BB:C9:BC:26:7E:D6:C6:0E:07:DD:3E:70:C1:BE Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Certificate serial: D8 Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Wb9ma-lAu8m8Jn7Wxg4H3T5wwb4.roa Signing time: Thu 24 Jul 2025 01:50:56 +0000 ROA not before: Thu 24 Jul 2025 01:50:56 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 4694 IP address blocks: 210.189.248.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95 Validity Not Before: Jul 24 01:50:56 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=59BF666BE940BBC9BC267ED6C60E07DD3E70C1BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:67:6d:e8:51:1c:56:7d:38:86:0b:ba:63:36: a8:79:08:06:30:61:bb:4b:81:c8:9a:fa:4b:67:3b: 23:ca:58:6e:fe:cc:0d:5c:f6:f4:35:02:08:3e:b9: 31:fd:1b:e4:96:64:9c:75:3e:f0:1f:52:49:81:9a: c0:01:a4:d3:a9:5c:00:cc:45:30:37:d1:c4:6f:96: e3:26:62:7d:75:bb:f3:38:d6:f8:d6:88:24:05:dd: 10:50:23:67:db:36:ac:9d:c0:ac:8d:f0:05:f7:4d: 28:3a:c6:bf:48:92:b6:38:b2:65:30:b7:3b:0d:6e: 20:54:fb:c0:39:84:66:ed:b9:87:da:64:32:b8:47: fe:8c:a5:45:02:a5:da:2e:8a:99:a4:8e:a0:41:43: 63:ab:dd:64:07:bd:24:9e:dd:5a:76:82:8e:ca:8b: 7b:e3:37:b4:d4:fa:8f:89:f1:64:a3:9f:36:82:3d: 5e:f6:02:49:79:a9:6b:29:3f:f9:aa:19:64:9c:4d: 2a:75:d1:62:09:63:55:fd:c4:b3:5b:68:05:37:70: 04:17:c8:8a:62:0b:eb:4d:1e:d4:72:6e:3e:dc:a3: 6a:a6:2f:f7:3b:22:72:92:99:7c:3e:85:15:c4:72: bb:4a:a9:e0:af:b5:f7:f7:de:5f:fa:fa:39:d1:1a: 5c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:BF:66:6B:E9:40:BB:C9:BC:26:7E:D6:C6:0E:07:DD:3E:70:C1:BE X509v3 Authority Key Identifier: keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Wb9ma-lAu8m8Jn7Wxg4H3T5wwb4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.189.248.0/24 Signature Algorithm: sha256WithRSAEncryption 69:ff:be:20:76:10:ad:c5:b9:b2:4d:a3:b1:8a:16:08:44:b1: 2a:9e:42:18:3b:17:b7:41:d5:e1:44:c8:9c:65:a5:e8:5c:35: 59:30:b4:f4:7f:a6:37:f0:a3:ca:dd:7e:4b:77:a9:07:5a:07: 2b:20:31:5f:33:65:74:ed:3b:65:0d:8b:9f:85:cc:fc:e2:b7: 51:6e:1d:f4:bb:84:4b:d8:7e:35:c0:ea:71:cc:34:44:d4:fd: 70:82:b6:9e:9e:4e:a7:96:a8:cb:f6:53:c7:33:03:ef:9f:c7: 86:85:cc:c9:68:3e:14:b3:d8:15:a6:1a:c3:95:95:79:b9:41: 8c:1c:9a:e9:62:b7:d2:c1:46:61:88:0f:c5:3c:4c:79:72:4b: b9:e2:a1:30:d8:16:d5:b2:a6:67:0d:75:aa:ac:49:4e:23:0c: 4a:59:d0:f1:9b:40:f3:54:73:b5:1c:ec:b7:b4:f8:d9:5e:0f: 97:86:30:e6:bc:e1:32:69:97:2d:6f:e2:61:07:87:0c:26:6a: b5:02:73:41:05:d7:e6:8d:98:55:f2:07:e0:84:73:2a:d6:5f: 7d:99:cb:eb:58:95:7d:de:ed:5d:6a:70:60:a2:d6:5b:42:c9: 51:bf:1a:ac:04:19:c8:ad:68:45:dd:f0:94:e6:96:36:61:f1: a4:78:29:06 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICANgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTkw QTgyMjg4RDJFMjNEQkZBODc2MzhGM0VCOEI5OTVFMTg5N0U5NTAeFw0yNTA3MjQw MTUwNTZaFw0yNjA3MTUwMTMwMDFaMDMxMTAvBgNVBAMTKDU5QkY2NjZCRTk0MEJC QzlCQzI2N0VENkM2MEUwN0REM0U3MEMxQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOZ23oURxWfTiGC7pjNqh5CAYwYbtLgcia+ktnOyPKWG7+zA1c 9vQ1Agg+uTH9G+SWZJx1PvAfUkmBmsABpNOpXADMRTA30cRvluMmYn11u/M41vjW iCQF3RBQI2fbNqydwKyN8AX3TSg6xr9IkrY4smUwtzsNbiBU+8A5hGbtuYfaZDK4 R/6MpUUCpdouipmkjqBBQ2Or3WQHvSSe3Vp2go7Ki3vjN7TU+o+J8WSjnzaCPV72 Akl5qWspP/mqGWScTSp10WIJY1X9xLNbaAU3cAQXyIpiC+tNHtRybj7co2qmL/c7 InKSmXw+hRXEcrtKqeCvtff33l/6+jnRGlzlAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUWb9ma+lAu8m8Jn7Wxg4H3T5wwb4wHwYDVR0jBBgwFoAUWQqCKI0uI9v6h2OP Pri5leGJfpUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDgzL1dRcUNLSTB1STl2NmgyT1BQcmk1bGVHSmZwVS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dRcUNLSTB1STl2NmgyT1BQcmk1 bGVHSmZwVS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA4My9XYjltYS1sQXU4bThKbjdXeGc0SDNUNXd3YjQu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQA0r34MA0GCSqGSIb3DQEBCwUAA4IBAQBp/74gdhCtxbmyTaOxihYI RLEqnkIYOxe3QdXhRMicZaXoXDVZMLT0f6Y38KPK3X5Ld6kHWgcrIDFfM2V07Ttl DYufhcz84rdRbh30u4RL2H41wOpxzDRE1P1wgraenk6nlqjL9lPHMwPvn8eGhczJ aD4Us9gVphrDlZV5uUGMHJrpYrfSwUZhiA/FPEx5cku54qEw2BbVsqZnDXWqrElO IwxKWdDxm0DzVHO1HOy3tPjZXg+XhjDmvOEyaZctb+JhB4cMJmq1AnNBBdfmjZhV 8gfghHMq1l99mcvrWJV93u1danBgotZbQslRvxqsBBnIrWhF3fCU5pY2YfGkeCkG -----END CERTIFICATE-----Generated at Mon Aug 11 13:32:27 2025 by rpki-client