$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/454/HoTVVuBmQz7w-_GK8A50XT-oITg.roa File: HoTVVuBmQz7w-_GK8A50XT-oITg.roa (raw, json) Hash identifier: 2IqaLQ+EiS3PzlA9vQ01E0p37akz/m/L2FmPX9wHjo8= Subject key identifier: 1E:84:D5:56:E0:66:43:3E:F0:FB:F1:8A:F0:0E:74:5D:3F:A8:21:38 Certificate issuer: /CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Certificate serial: 67 Authority key identifier: AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/HoTVVuBmQz7w-_GK8A50XT-oITg.roa Signing time: Fri 01 Aug 2025 01:30:50 +0000 ROA not before: Fri 01 Aug 2025 01:30:50 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 10000 IP address blocks: 61.206.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Validity Not Before: Aug 1 01:30:50 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=1E84D556E066433EF0FBF18AF00E745D3FA82138 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e0:cb:06:06:4c:2f:00:2c:fe:dd:0d:30:cf: 7b:a2:7b:49:9e:5c:81:0f:e7:b9:8e:61:fe:0a:ad: 3f:e5:08:0b:23:08:11:ce:48:30:c3:12:70:cc:a9: 54:e1:da:e1:a5:83:8e:f5:1e:6b:20:30:b4:c5:bf: c2:61:a5:72:d9:5e:57:7d:0e:86:bf:63:b4:a5:71: 00:3d:ac:f1:58:d5:aa:ba:8a:85:24:00:40:1b:1f: c2:57:c3:70:53:29:f2:05:50:21:97:97:97:72:74: 17:39:2e:96:e9:ee:ab:72:38:99:d1:25:dc:53:1a: 09:7a:c7:35:74:38:ae:d0:45:e9:ff:0b:c4:d9:65: 16:80:d9:35:39:7e:aa:41:72:8b:81:11:1a:da:a6: 8c:bf:79:3a:a5:0a:c3:35:04:7d:8e:bc:5b:10:fd: 22:9a:c8:d5:4e:f1:ca:8a:21:c4:d3:86:4b:45:e0: 09:56:b3:58:d3:05:4c:8b:fe:4b:a9:bb:7b:75:81: 14:47:16:7c:28:22:db:73:70:c8:91:73:36:3b:cd: cd:b0:0b:6c:b8:da:e0:67:9f:df:30:fb:ed:60:d5: 98:ca:04:f0:cb:a7:d2:e1:4f:1a:d2:eb:0d:2a:bb: 79:e6:40:87:37:e4:84:7a:6b:c4:85:0e:a9:9a:f8: b3:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:84:D5:56:E0:66:43:3E:F0:FB:F1:8A:F0:0E:74:5D:3F:A8:21:38 X509v3 Authority Key Identifier: keyid:AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/HoTVVuBmQz7w-_GK8A50XT-oITg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.206.208.0/20 Signature Algorithm: sha256WithRSAEncryption 50:f5:99:3c:ee:88:05:b5:2b:a7:c0:12:57:6b:c7:b2:3c:75: f0:18:6d:e2:5d:86:d8:9a:6f:95:c6:38:74:2f:19:20:d2:33: 6d:53:f9:f7:45:ce:07:87:54:59:12:fc:1f:41:c5:c3:28:48: cd:44:28:1e:bf:41:3d:df:c4:91:0e:30:98:c2:3b:ae:76:78: 45:1b:d3:75:4c:6e:f1:66:68:94:06:50:a6:d7:e8:7b:cc:b2: 51:91:81:f9:56:68:24:e3:8d:be:30:e3:19:cd:d9:71:f4:88: dc:f2:51:1b:2f:de:c1:e1:c6:fe:29:ff:a4:10:c7:4d:10:da: a1:45:cc:e4:d4:fc:b2:14:44:6c:ad:b7:e2:6f:1e:8b:6a:77: 2c:a0:f0:aa:a0:eb:fa:b8:45:d3:57:50:3d:c1:06:e5:6b:e4: 2e:f5:5d:ad:58:b6:06:69:af:7e:5a:57:0d:68:c4:43:a5:78: fc:d4:ff:d3:9c:25:f2:f8:90:cb:bd:20:cd:a5:ef:93:36:2a: 84:ff:53:4a:83:4e:69:d7:44:88:8b:49:d7:f3:65:78:4d:69: 05:9c:96:2c:83:75:f7:56:5f:0b:1d:e6:d0:4e:9a:6b:08:bc: f2:ba:3a:a0:25:82:47:60:3d:2c:06:89:70:d9:9e:f2:86:44: ba:f0:f8:69 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBZzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBRDQ3 NDFGMDM0OUZCQzE1QTcwOEUyOEEyQ0UzMDc5MDZDQUM1REUwMB4XDTI1MDgwMTAx MzA1MFoXDTI2MDczMDA2MjkwOFowMzExMC8GA1UEAxMoMUU4NEQ1NTZFMDY2NDMz RUYwRkJGMThBRjAwRTc0NUQzRkE4MjEzODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM3gywYGTC8ALP7dDTDPe6J7SZ5cgQ/nuY5h/gqtP+UICyMIEc5I MMMScMypVOHa4aWDjvUeayAwtMW/wmGlctleV30Ohr9jtKVxAD2s8VjVqrqKhSQA QBsfwlfDcFMp8gVQIZeXl3J0Fzkulunuq3I4mdEl3FMaCXrHNXQ4rtBF6f8LxNll FoDZNTl+qkFyi4ERGtqmjL95OqUKwzUEfY68WxD9IprI1U7xyoohxNOGS0XgCVaz WNMFTIv+S6m7e3WBFEcWfCgi23NwyJFzNjvNzbALbLja4Gef3zD77WDVmMoE8Mun 0uFPGtLrDSq7eeZAhzfkhHprxIUOqZr4syUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQehNVW4GZDPvD78YrwDnRdP6ghODAfBgNVHSMEGDAWgBStR0HwNJ+8FacI4oos 4weQbKxd4DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDU0L3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5c1hlQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5 c1hlQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NTQvSG9UVlZ1Qm1Rejd3LV9HSzhBNTBYVC1vSVRnLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBD3O0DANBgkqhkiG9w0BAQsFAAOCAQEAUPWZPO6IBbUrp8ASV2vHsjx18Bht 4l2G2JpvlcY4dC8ZINIzbVP590XOB4dUWRL8H0HFwyhIzUQoHr9BPd/EkQ4wmMI7 rnZ4RRvTdUxu8WZolAZQptfoe8yyUZGB+VZoJOONvjDjGc3ZcfSI3PJRGy/eweHG /in/pBDHTRDaoUXM5NT8shREbK234m8ei2p3LKDwqqDr+rhF01dQPcEG5WvkLvVd rVi2BmmvflpXDWjEQ6V4/NT/05wl8viQy70gzaXvkzYqhP9TSoNOaddEiItJ1/Nl eE1pBZyWLIN191ZfCx3m0E6aawi88ro6oCWCR2A9LAaJcNme8oZEuvD4aQ== -----END CERTIFICATE-----Generated at Mon Aug 11 10:41:31 2025 by rpki-client