$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/454/Opx5wg0WF-5E6zDseE1mZXHqzBU.roa File: Opx5wg0WF-5E6zDseE1mZXHqzBU.roa (raw, json) Hash identifier: U40LmeWNqAR/wEt5u9K0EWxKlPvgBANbRIla5GeCxNg= Subject key identifier: 3A:9C:79:C2:0D:16:17:EE:44:EB:30:EC:78:4D:66:65:71:EA:CC:15 Certificate issuer: /CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Certificate serial: 71 Authority key identifier: AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/Opx5wg0WF-5E6zDseE1mZXHqzBU.roa Signing time: Fri 01 Aug 2025 01:30:55 +0000 ROA not before: Fri 01 Aug 2025 01:30:55 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 10000 IP address blocks: 203.217.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Validity Not Before: Aug 1 01:30:55 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=3A9C79C20D1617EE44EB30EC784D666571EACC15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5d:41:d1:6b:7a:84:89:37:a2:43:d7:42:b4: a3:56:35:c5:13:9d:cd:1f:8a:dc:23:a9:7e:e5:a4: b2:d6:9d:9f:7e:44:bf:6a:1f:09:1a:21:91:4f:6d: 16:d7:6f:b2:71:11:58:66:31:7e:a5:55:e6:17:24: 8e:21:aa:75:b1:e6:a2:98:ca:1e:7a:7a:b4:6c:63: 1c:dd:89:24:51:8e:90:47:68:75:ef:78:12:e1:80: d4:b7:18:5a:db:74:1f:75:89:1d:c2:0a:c0:22:40: 79:1b:54:3a:74:d9:d8:56:d0:c3:c5:7d:18:cf:8e: 43:44:44:df:ee:18:7a:1d:6b:38:66:03:16:82:03: 49:12:7f:27:78:c4:8c:25:d5:b7:01:7c:8e:3e:83: e3:78:ef:d2:98:b2:2c:07:af:2c:41:60:e2:9a:e0: ba:1a:5d:0b:d8:61:df:19:1f:1b:35:37:d4:87:4f: 9a:70:5c:d1:6e:69:99:fb:89:51:41:b9:1a:98:e3: 94:ac:6d:cc:f7:48:3d:2e:4f:6a:71:e6:51:b1:3f: b6:b0:84:ad:58:ae:41:2f:74:48:cc:28:6e:ca:d6: 0e:08:ff:31:08:28:12:21:16:56:95:84:06:86:f7: 38:fd:e7:eb:a8:26:72:f4:e8:34:f4:8b:3f:24:e0: 13:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:9C:79:C2:0D:16:17:EE:44:EB:30:EC:78:4D:66:65:71:EA:CC:15 X509v3 Authority Key Identifier: keyid:AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/Opx5wg0WF-5E6zDseE1mZXHqzBU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.217.156.0/22 Signature Algorithm: sha256WithRSAEncryption 8c:72:0d:28:99:35:66:eb:be:81:e7:db:eb:00:0a:ee:32:d2: e2:0f:6e:23:f8:0d:c7:25:cf:8b:af:ff:e9:d1:6d:3b:a9:e5: a3:4b:fa:c9:dd:7c:21:9a:48:d4:b7:46:04:f4:1b:c2:6b:05: 28:57:84:bf:2f:2a:6e:27:5b:b9:ec:29:11:8e:86:f7:3a:4d: aa:29:b7:95:58:67:a2:51:b4:8e:93:52:58:c6:a6:54:8e:b8: d2:14:f6:de:22:e2:b2:2f:93:fb:a1:81:9b:b8:48:46:18:cb: 5c:7d:12:22:a5:31:6a:b0:cf:74:2f:b1:66:24:68:aa:9a:87: 61:90:fa:df:2a:5b:f6:ef:fe:5c:9e:6a:52:c7:b0:88:22:52: 84:8b:68:6d:ed:1a:b3:ad:6d:08:ca:a1:d1:5e:21:8d:2c:a3: 1b:9e:15:f9:32:c3:f1:81:d4:be:15:3a:0c:20:16:d0:54:20: 98:4a:5a:2e:28:ac:18:42:2a:47:cd:d0:a2:95:bb:0c:75:27: 64:9e:e1:7d:ff:a8:3a:1a:9b:a6:b8:37:90:e3:ca:79:8c:49: 4e:32:97:9d:29:4b:8d:73:b5:18:99:d9:d9:5f:c7:60:de:5e: f3:a9:5e:ff:16:8c:d8:07:b0:03:17:66:2f:27:61:13:37:e3: 90:17:3a:b7 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBcTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBRDQ3 NDFGMDM0OUZCQzE1QTcwOEUyOEEyQ0UzMDc5MDZDQUM1REUwMB4XDTI1MDgwMTAx MzA1NVoXDTI2MDczMDA2MjkwOFowMzExMC8GA1UEAxMoM0E5Qzc5QzIwRDE2MTdF RTQ0RUIzMEVDNzg0RDY2NjU3MUVBQ0MxNTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKtdQdFreoSJN6JD10K0o1Y1xROdzR+K3COpfuWkstadn35Ev2of CRohkU9tFtdvsnERWGYxfqVV5hckjiGqdbHmopjKHnp6tGxjHN2JJFGOkEdode94 EuGA1LcYWtt0H3WJHcIKwCJAeRtUOnTZ2FbQw8V9GM+OQ0RE3+4Yeh1rOGYDFoID SRJ/J3jEjCXVtwF8jj6D43jv0piyLAevLEFg4prguhpdC9hh3xkfGzU31IdPmnBc 0W5pmfuJUUG5GpjjlKxtzPdIPS5PanHmUbE/trCErViuQS90SMwobsrWDgj/MQgo EiEWVpWEBob3OP3n66gmcvToNPSLPyTgE8kCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ6nHnCDRYX7kTrMOx4TWZlcerMFTAfBgNVHSMEGDAWgBStR0HwNJ+8FacI4oos 4weQbKxd4DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDU0L3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5c1hlQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5 c1hlQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NTQvT3B4NXdnMFdGLTVFNnpEc2VFMW1aWEhxekJVLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAsvZnDANBgkqhkiG9w0BAQsFAAOCAQEAjHINKJk1Zuu+gefb6wAK7jLS4g9u I/gNxyXPi6//6dFtO6nlo0v6yd18IZpI1LdGBPQbwmsFKFeEvy8qbidbuewpEY6G 9zpNqim3lVhnolG0jpNSWMamVI640hT23iLisi+T+6GBm7hIRhjLXH0SIqUxarDP dC+xZiRoqpqHYZD63ypb9u/+XJ5qUsewiCJShItobe0as61tCMqh0V4hjSyjG54V +TLD8YHUvhU6DCAW0FQgmEpaLiisGEIqR83QopW7DHUnZJ7hff+oOhqbprg3kOPK eYxJTjKXnSlLjXO1GJnZ2V/HYN5e86le/xaM2AewAxdmLydhEzfjkBc6tw== -----END CERTIFICATE-----Generated at Mon Aug 11 10:46:37 2025 by rpki-client