$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20153/hDrpwWxCMMmd3hJ0ZPiHEvyD2wc.roa File: hDrpwWxCMMmd3hJ0ZPiHEvyD2wc.roa (raw, json) Hash identifier: AvmZaAIozD5EB1f//QqygollsiGsAt1BYELkz18nqCs= Subject key identifier: 84:3A:E9:C1:6C:42:30:C9:9D:DE:12:74:64:F8:87:12:FC:83:DB:07 Certificate issuer: /CN=5C57DDC59248271E71E1325877992B9738E043D4 Certificate serial: 18 Authority key identifier: 5C:57:DD:C5:92:48:27:1E:71:E1:32:58:77:99:2B:97:38:E0:43:D4 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/hDrpwWxCMMmd3hJ0ZPiHEvyD2wc.roa Signing time: Sat 26 Jul 2025 06:00:26 +0000 ROA not before: Sat 26 Jul 2025 06:00:26 +0000 ROA not after: Wed 15 Jul 2026 01:30:01 +0000 asID: 131986 IP address blocks: 133.32.108.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5C57DDC59248271E71E1325877992B9738E043D4 Validity Not Before: Jul 26 06:00:26 2025 GMT Not After : Jul 15 01:30:01 2026 GMT Subject: CN=843AE9C16C4230C99DDE127464F88712FC83DB07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8c:82:9c:d4:2a:b9:2f:78:cf:c7:6a:3c:0f: 97:da:cd:5c:27:7d:a8:1c:3d:69:ee:3f:d8:6a:c8: 53:14:03:cb:83:e4:0b:6d:63:5f:a6:3f:3a:b7:8a: d3:9a:de:c7:6a:8a:24:b6:51:6b:de:f7:7b:32:a1: 5d:ab:54:3c:3a:82:ee:de:46:ce:db:e5:11:b3:74: f1:4c:d1:1e:b7:73:6d:f6:8a:fc:6a:55:e3:42:5e: 0c:20:af:a9:b6:be:61:ea:1c:f5:7f:1d:e0:ca:9d: 35:40:43:85:9f:86:67:ab:37:b2:30:8e:c4:53:d3: 9e:7d:de:e0:74:56:c0:e7:ae:19:ea:8e:22:74:78: dd:1e:a9:91:59:89:9d:b2:d5:6f:0d:e5:37:fc:5f: f4:78:01:ea:c1:50:d5:df:fb:ac:c2:6b:17:8b:2b: 6e:d8:42:8a:8c:47:02:bd:85:9a:7f:be:ce:ad:35: 81:e2:92:9a:42:5f:21:b1:ca:e4:67:5e:a9:e2:3a: ee:1c:c7:52:0a:0d:9f:05:2f:51:d8:17:2e:49:d8: 4c:7b:ec:1f:4d:d2:b4:36:7d:bd:be:67:70:3e:e8: 6e:d5:f3:a2:6c:8c:43:88:df:64:3d:ae:04:a7:ba: 50:21:af:7a:64:7a:33:16:43:d0:0d:14:ad:1e:ca: 41:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:3A:E9:C1:6C:42:30:C9:9D:DE:12:74:64:F8:87:12:FC:83:DB:07 X509v3 Authority Key Identifier: keyid:5C:57:DD:C5:92:48:27:1E:71:E1:32:58:77:99:2B:97:38:E0:43:D4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XFfdxZJIJx5x4TJYd5krlzjgQ9Q.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20153/hDrpwWxCMMmd3hJ0ZPiHEvyD2wc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.32.108.0/23 Signature Algorithm: sha256WithRSAEncryption 23:cd:da:71:59:4d:a8:a5:ee:e7:43:7b:0e:2b:c8:6d:fd:f7: 13:ec:3b:b7:74:1f:1d:97:a7:7f:3b:45:aa:81:04:65:2a:01: d9:3a:7c:72:5a:ed:49:26:11:b3:69:7d:c9:85:d4:f5:19:b9: 33:cc:fe:48:f4:db:84:1f:18:c1:e0:eb:a3:f6:43:10:23:52: 36:d2:ee:d0:ee:5c:be:f1:8c:48:f3:7a:04:b2:ad:6f:ee:1c: 87:ea:92:d4:80:17:c2:36:dd:0d:1d:ef:a6:da:f6:d3:6d:3b: 36:e9:4b:9d:38:9c:a6:03:1f:76:38:97:11:92:e3:fd:c9:9a: da:d1:1a:a8:16:f4:a1:64:28:16:8f:4e:af:c4:a0:3e:82:0a: 69:b5:42:cb:29:38:2c:33:d5:30:76:c0:ad:d7:bc:14:30:fa: aa:8b:68:69:51:a3:b1:47:34:c7:19:f9:40:80:d1:03:7a:71: 2d:1f:06:c7:81:51:64:38:06:4f:3a:2e:1f:b1:e4:52:f2:dd: 33:54:2c:b0:bb:46:74:6b:1c:0b:55:a5:05:cf:d7:32:f6:5c: 69:b0:1a:a2:ce:a4:27:57:be:cf:63:37:27:a9:25:de:8a:6f: 7a:87:5d:92:9f:dd:38:90:36:63:b8:b2:96:5a:12:5f:37:20: 97:1d:b8:55 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBGDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1QzU3 RERDNTkyNDgyNzFFNzFFMTMyNTg3Nzk5MkI5NzM4RTA0M0Q0MB4XDTI1MDcyNjA2 MDAyNloXDTI2MDcxNTAxMzAwMVowMzExMC8GA1UEAxMoODQzQUU5QzE2QzQyMzBD OTlEREUxMjc0NjRGODg3MTJGQzgzREIwNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALiMgpzUKrkveM/HajwPl9rNXCd9qBw9ae4/2GrIUxQDy4PkC21j X6Y/OreK05rex2qKJLZRa973ezKhXatUPDqC7t5GztvlEbN08UzRHrdzbfaK/GpV 40JeDCCvqba+Yeoc9X8d4MqdNUBDhZ+GZ6s3sjCOxFPTnn3e4HRWwOeuGeqOInR4 3R6pkVmJnbLVbw3lN/xf9HgB6sFQ1d/7rMJrF4srbthCioxHAr2Fmn++zq01geKS mkJfIbHK5GdeqeI67hzHUgoNnwUvUdgXLknYTHvsH03StDZ9vb5ncD7obtXzomyM Q4jfZD2uBKe6UCGvemR6MxZD0A0UrR7KQRUCAwEAAaOCAigwggIkMB0GA1UdDgQW BBSEOunBbEIwyZ3eEnRk+IcS/IPbBzAfBgNVHSMEGDAWgBRcV93FkkgnHnHhMlh3 mSuXOOBD1DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxNTMvWEZmZHhaSklKeDV4NFRKWWQ1a3JsempnUTlRLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWEZmZHhaSklKeDV4NFRKWWQ1a3Js empnUTlRLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMTUzL2hEcnB3V3hDTU1tZDNoSjBaUGlIRXZ5RDJ3Yy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGFIGwwDQYJKoZIhvcNAQELBQADggEBACPN2nFZTail7udDew4ryG39 9xPsO7d0Hx2Xp387RaqBBGUqAdk6fHJa7UkmEbNpfcmF1PUZuTPM/kj024QfGMHg 66P2QxAjUjbS7tDuXL7xjEjzegSyrW/uHIfqktSAF8I23Q0d76ba9tNtOzbpS504 nKYDH3Y4lxGS4/3JmtrRGqgW9KFkKBaPTq/EoD6CCmm1QsspOCwz1TB2wK3XvBQw +qqLaGlRo7FHNMcZ+UCA0QN6cS0fBseBUWQ4Bk86Lh+x5FLy3TNULLC7RnRrHAtV pQXP1zL2XGmwGqLOpCdXvs9jNyepJd6Kb3qHXZKf3TiQNmO4spZaEl83IJcduFU= -----END CERTIFICATE-----Generated at Mon Aug 11 13:11:59 2025 by rpki-client