$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/454/bNZiILBQZCfv4rafHeI4ItJUj0M.roa File: bNZiILBQZCfv4rafHeI4ItJUj0M.roa (raw, json) Hash identifier: jdkVKrogZ1Uyh/9oUzhqOvxxE7mJ5gJwFU2JiVNkTOc= Subject key identifier: 6C:D6:62:20:B0:50:64:27:EF:E2:B6:9F:1D:E2:38:22:D2:54:8F:43 Certificate issuer: /CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Certificate serial: 70 Authority key identifier: AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/bNZiILBQZCfv4rafHeI4ItJUj0M.roa Signing time: Fri 01 Aug 2025 01:30:55 +0000 ROA not before: Fri 01 Aug 2025 01:30:55 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 10000 IP address blocks: 203.215.56.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Validity Not Before: Aug 1 01:30:55 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=6CD66220B0506427EFE2B69F1DE23822D2548F43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:13:4f:5e:fa:90:ef:94:10:6a:9e:7a:06:34: 30:4b:ec:8c:9d:03:18:76:54:2d:b9:7e:bd:13:84: 9f:39:69:8b:6b:af:17:ff:f8:f7:2d:0d:c7:da:cc: e3:f3:e8:3b:be:06:25:ea:6c:a5:14:a4:89:55:71: 74:e5:19:a9:bd:c7:27:6d:57:b5:a9:5c:f2:1e:93: 37:10:a8:90:d4:a1:4e:74:59:95:69:57:6b:2c:46: 2c:c0:11:b9:a4:ec:c6:c0:f9:da:b1:25:95:06:67: 5b:de:b2:79:0d:4e:23:f7:c2:37:8e:77:8a:69:ea: 88:27:a0:51:c0:09:a3:94:62:25:36:0d:a9:74:d1: 23:13:38:f1:2d:8c:93:50:9f:17:4f:e8:3f:16:c8: 34:58:06:20:d0:e8:74:bc:fe:54:37:af:d9:3e:c7: 37:76:a4:b1:cf:e9:c8:3a:e6:3a:81:21:87:64:bd: a9:73:7b:0d:6d:9b:15:18:23:7e:5f:b9:ad:17:d4: 51:41:d6:8d:78:f3:1e:d6:1d:e5:9a:3b:7a:0e:56: 9d:c3:52:90:12:2c:52:db:f1:00:50:82:d5:54:dc: be:7a:af:87:f2:00:b4:14:46:66:ce:aa:a7:9e:9b: cf:9c:50:16:f9:6a:ba:fb:c6:e8:3c:d1:0a:cf:e6: 39:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:D6:62:20:B0:50:64:27:EF:E2:B6:9F:1D:E2:38:22:D2:54:8F:43 X509v3 Authority Key Identifier: keyid:AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/bNZiILBQZCfv4rafHeI4ItJUj0M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.215.56.0/22 Signature Algorithm: sha256WithRSAEncryption 71:c8:a8:70:07:43:91:e5:cb:d5:83:db:b3:75:07:ad:6b:86: e0:1f:86:71:9e:74:77:d6:72:41:05:b0:a0:3b:16:58:55:90: 4e:57:a8:ce:d3:15:e5:74:b9:66:3f:f1:75:ce:c9:68:85:49: 07:9d:98:5a:5a:d8:cd:18:c1:e4:e9:24:a4:dd:00:da:d3:97: f6:6a:63:cd:f3:e6:45:40:70:99:3e:d0:b8:fa:26:ab:4a:2f: e8:6b:a4:8d:f5:a8:64:06:f1:81:d4:15:25:38:2b:b5:b1:ec: d1:31:fd:f0:29:e5:cc:35:ef:0a:8d:cd:cd:8e:a9:8f:18:67: 85:1a:47:0b:7a:3c:70:6c:4d:65:24:8d:47:b6:8a:89:cc:0f: cf:ac:78:44:93:8c:b9:39:ee:0c:77:1d:f5:38:c4:d4:9b:15: d2:ea:f4:de:97:a6:fa:f3:08:99:34:9c:f6:da:a0:82:37:c3: 82:3d:13:0b:84:b6:ca:94:f1:13:cf:da:6f:d9:79:a1:47:a6: 40:b1:d8:27:48:80:1f:ca:21:97:67:d5:d2:f6:44:2f:41:46: 8a:ee:b2:73:a0:8e:23:fa:3b:a7:e0:e5:e3:32:39:53:59:18: 7a:2e:eb:d2:9d:a6:15:d5:2e:23:fd:b2:9d:0c:9c:f8:e4:0f: d5:20:7d:b9 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBcDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBRDQ3 NDFGMDM0OUZCQzE1QTcwOEUyOEEyQ0UzMDc5MDZDQUM1REUwMB4XDTI1MDgwMTAx MzA1NVoXDTI2MDczMDA2MjkwOFowMzExMC8GA1UEAxMoNkNENjYyMjBCMDUwNjQy N0VGRTJCNjlGMURFMjM4MjJEMjU0OEY0MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANATT176kO+UEGqeegY0MEvsjJ0DGHZULbl+vROEnzlpi2uvF//4 9y0Nx9rM4/PoO74GJepspRSkiVVxdOUZqb3HJ21Xtalc8h6TNxCokNShTnRZlWlX ayxGLMARuaTsxsD52rEllQZnW96yeQ1OI/fCN453imnqiCegUcAJo5RiJTYNqXTR IxM48S2Mk1CfF0/oPxbINFgGINDodLz+VDev2T7HN3aksc/pyDrmOoEhh2S9qXN7 DW2bFRgjfl+5rRfUUUHWjXjzHtYd5Zo7eg5WncNSkBIsUtvxAFCC1VTcvnqvh/IA tBRGZs6qp56bz5xQFvlquvvG6DzRCs/mOXcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRs1mIgsFBkJ+/itp8d4jgi0lSPQzAfBgNVHSMEGDAWgBStR0HwNJ+8FacI4oos 4weQbKxd4DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDU0L3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5c1hlQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5 c1hlQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NTQvYk5aaUlMQlFaQ2Z2NHJhZkhlSTRJdEpVajBNLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAsvXODANBgkqhkiG9w0BAQsFAAOCAQEAcciocAdDkeXL1YPbs3UHrWuG4B+G cZ50d9ZyQQWwoDsWWFWQTleoztMV5XS5Zj/xdc7JaIVJB52YWlrYzRjB5OkkpN0A 2tOX9mpjzfPmRUBwmT7QuPomq0ov6GukjfWoZAbxgdQVJTgrtbHs0TH98CnlzDXv Co3NzY6pjxhnhRpHC3o8cGxNZSSNR7aKicwPz6x4RJOMuTnuDHcd9TjE1JsV0ur0 3pem+vMImTSc9tqggjfDgj0TC4S2ypTxE8/ab9l5oUemQLHYJ0iAH8ohl2fV0vZE L0FGiu6yc6COI/o7p+Dl4zI5U1kYei7r0p2mFdUuI/2ynQyc+OQP1SB9uQ== -----END CERTIFICATE-----Generated at Mon Aug 11 10:32:01 2025 by rpki-client