$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/39071/1xi-D8RhFqvus27Lpc56_uFQ0BE.roa File: 1xi-D8RhFqvus27Lpc56_uFQ0BE.roa (raw, json) Hash identifier: /Ebb3zNpIdmyFQMfPdNLOGdg989KwNRxeaVX6BVjwJI= Subject key identifier: D7:18:BE:0F:C4:61:16:AB:EE:B3:6E:CB:A5:CE:7A:FE:E1:50:D0:11 Certificate issuer: /CN=620904E546F71B59255DC7671CF084AAFF0171EF Certificate serial: 02 Authority key identifier: 62:09:04:E5:46:F7:1B:59:25:5D:C7:67:1C:F0:84:AA:FF:01:71:EF Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/YgkE5Ub3G1klXcdnHPCEqv8Bce8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39071/1xi-D8RhFqvus27Lpc56_uFQ0BE.roa Signing time: Fri 08 Aug 2025 05:30:39 +0000 ROA not before: Fri 08 Aug 2025 05:30:39 +0000 ROA not after: Sat 08 Aug 2026 05:17:58 +0000 asID: 152870 IP address blocks: 2001:df5:bac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39071/YgkE5Ub3G1klXcdnHPCEqv8Bce8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39071/YgkE5Ub3G1klXcdnHPCEqv8Bce8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/YgkE5Ub3G1klXcdnHPCEqv8Bce8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 18:10:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=620904E546F71B59255DC7671CF084AAFF0171EF Validity Not Before: Aug 8 05:30:39 2025 GMT Not After : Aug 8 05:17:58 2026 GMT Subject: CN=D718BE0FC46116ABEEB36ECBA5CE7AFEE150D011 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:38:c0:e4:34:22:99:8e:15:6e:b3:58:c7:ac: 20:09:f3:99:80:54:f8:26:a9:36:a7:fd:e1:67:2b: ee:9b:74:1f:2f:af:39:21:98:4b:3b:96:da:92:a9: 66:0e:4c:79:7f:fa:d6:37:54:4a:ea:de:c4:53:e4: e8:0e:b2:10:22:a8:17:01:6c:34:48:6b:e6:4b:90: ef:1a:81:26:99:7d:1b:be:80:2f:33:03:23:14:19: 77:60:57:d2:b6:51:26:c0:42:4d:c0:dc:5e:bc:f2: 8b:26:b3:3d:f8:e3:aa:a8:03:ae:76:61:4f:74:9b: 38:24:88:41:23:08:7a:2b:64:85:4c:f8:0c:f7:ad: c1:fc:f5:1d:89:59:cd:ee:5d:08:21:4b:ff:53:5d: 2d:31:dd:b4:48:96:89:d9:c4:3d:7b:36:cb:2d:d5: 85:68:09:22:b3:b6:a8:3b:13:61:0e:46:d5:74:bf: 68:1f:d8:0f:e2:f7:6b:58:03:bb:0f:b5:31:72:da: 5f:1d:2e:6f:ac:d5:48:44:78:d9:f2:db:fd:bb:d4: 71:fe:ef:4d:01:d6:35:25:8b:a3:b9:36:96:26:65: 59:53:c7:2f:02:48:32:22:37:0b:2a:c8:e7:a2:6f: bf:b1:78:80:4d:5d:7a:8e:93:09:ae:14:24:c2:35: 32:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:18:BE:0F:C4:61:16:AB:EE:B3:6E:CB:A5:CE:7A:FE:E1:50:D0:11 X509v3 Authority Key Identifier: keyid:62:09:04:E5:46:F7:1B:59:25:5D:C7:67:1C:F0:84:AA:FF:01:71:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39071/YgkE5Ub3G1klXcdnHPCEqv8Bce8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/YgkE5Ub3G1klXcdnHPCEqv8Bce8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39071/1xi-D8RhFqvus27Lpc56_uFQ0BE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:bac0::/48 Signature Algorithm: sha256WithRSAEncryption a7:33:7a:79:a8:7b:14:fc:37:0f:4e:2c:7e:10:83:74:47:02: a9:4c:90:70:20:2b:f6:6b:77:f0:68:08:d6:66:dc:d3:44:3f: aa:fc:c6:5c:56:f5:fc:1d:73:13:50:a2:fc:3f:b0:6a:95:d9: aa:57:0e:e1:a8:30:55:a8:19:74:2b:20:9a:c4:20:db:65:25: 3f:9c:ce:c4:03:cc:10:bb:59:4f:60:d6:68:71:18:2c:a8:54: c2:f6:b1:45:5e:ba:02:41:59:b6:37:07:8f:a3:a2:7d:fb:7d: b9:cd:bf:c7:18:43:e8:dd:48:fa:e5:95:79:d4:60:83:e8:c0: 04:da:83:80:82:95:2e:30:fc:50:ae:39:56:e6:e8:69:e0:ba: d3:6e:36:cc:9b:2b:58:55:c0:06:a9:51:a5:c4:80:cb:f4:42: 1b:53:36:d5:dc:35:6b:16:7f:6f:83:6c:c4:ba:d4:e6:1b:c5: cd:c6:1f:80:a3:88:31:2b:dd:02:a9:41:0a:ec:87:9f:d3:fd: 91:ae:f3:41:d2:5d:8e:17:6c:b8:1e:ac:1d:d2:32:59:15:81: a8:91:0d:e7:ff:00:fb:de:7f:a5:ba:19:5c:81:ad:72:1d:c2: 95:c3:29:70:62:34:19:fe:f3:a4:2c:2b:c3:a6:25:7c:05:b1: 7b:d8:bb:c3 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2MjA5 MDRFNTQ2RjcxQjU5MjU1REM3NjcxQ0YwODRBQUZGMDE3MUVGMB4XDTI1MDgwODA1 MzAzOVoXDTI2MDgwODA1MTc1OFowMzExMC8GA1UEAxMoRDcxOEJFMEZDNDYxMTZB QkVFQjM2RUNCQTVDRTdBRkVFMTUwRDAxMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALg4wOQ0IpmOFW6zWMesIAnzmYBU+CapNqf94Wcr7pt0Hy+vOSGY SzuW2pKpZg5MeX/61jdUSurexFPk6A6yECKoFwFsNEhr5kuQ7xqBJpl9G76ALzMD IxQZd2BX0rZRJsBCTcDcXrzyiyazPfjjqqgDrnZhT3SbOCSIQSMIeitkhUz4DPet wfz1HYlZze5dCCFL/1NdLTHdtEiWidnEPXs2yy3VhWgJIrO2qDsTYQ5G1XS/aB/Y D+L3a1gDuw+1MXLaXx0ub6zVSER42fLb/bvUcf7vTQHWNSWLo7k2liZlWVPHLwJI MiI3CyrI56Jvv7F4gE1deo6TCa4UJMI1MnMCAwEAAaOCAiswggInMB0GA1UdDgQW BBTXGL4PxGEWq+6zbsulznr+4VDQETAfBgNVHSMEGDAWgBRiCQTlRvcbWSVdx2cc 8ISq/wFx7zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzkwNzEvWWdrRTVVYjNHMWtsWGNkbkhQQ0VxdjhCY2U4LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWWdrRTVVYjNHMWtsWGNkbkhQQ0Vx djhCY2U4LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzM5MDcxLzF4aS1EOFJoRnF2dXMyN0xwYzU2X3VGUTBCRS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ31usAwDQYJKoZIhvcNAQELBQADggEBAKczenmoexT8Nw9OLH4Q g3RHAqlMkHAgK/Zrd/BoCNZm3NNEP6r8xlxW9fwdcxNQovw/sGqV2apXDuGoMFWo GXQrIJrEINtlJT+czsQDzBC7WU9g1mhxGCyoVML2sUVeugJBWbY3B4+jon37fbnN v8cYQ+jdSPrllXnUYIPowATag4CClS4w/FCuOVbm6GngutNuNsybK1hVwAapUaXE gMv0QhtTNtXcNWsWf2+DbMS61OYbxc3GH4CjiDEr3QKpQQrsh5/T/ZGu80HSXY4X bLgerB3SMlkVgaiRDef/APvef6W6GVyBrXIdwpXDKXBiNBn+86QsK8OmJXwFsXvY u8M= -----END CERTIFICATE-----Generated at Wed Nov 5 19:34:27 2025 by rpki-client