$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/OCDZqAFn1m0aYXg7hjm-_ObNZQM.roa File: OCDZqAFn1m0aYXg7hjm-_ObNZQM.roa (raw, json) Hash identifier: 6khon9u1uzNBpj17JZBzfVBa2A9uMmSdh9U6s6uaUqM= Subject key identifier: 38:20:D9:A8:01:67:D6:6D:1A:61:78:3B:86:39:BE:FC:E6:CD:65:03 Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 0150 Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/OCDZqAFn1m0aYXg7hjm-_ObNZQM.roa Signing time: Fri 01 Aug 2025 01:34:06 +0000 ROA not before: Fri 01 Aug 2025 01:34:06 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 10021 IP address blocks: 202.7.108.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Aug 1 01:34:06 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=3820D9A80167D66D1A61783B8639BEFCE6CD6503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ea:7a:fe:47:49:38:92:70:ba:18:65:0d:1f: fc:57:62:26:ac:ed:00:65:57:40:a2:7c:88:60:b7: 94:16:f1:d9:95:ad:1e:74:75:8f:51:e0:e9:12:1e: 8d:69:0b:4d:eb:1b:5e:8e:00:49:a1:4b:21:a9:d5: 38:25:3a:fe:fb:8a:18:0f:ee:2f:84:03:98:31:9e: 41:41:c7:0b:7e:bd:7f:72:16:53:07:30:8c:32:91: a1:8e:80:17:ae:dd:a2:61:05:13:a3:0e:ec:09:01: 9b:a0:2e:00:05:00:51:b6:bb:95:e7:93:1a:44:f3: 15:2f:b4:fe:54:35:3a:8d:a5:cd:8a:4c:21:62:df: c4:fb:1d:fc:d3:94:d4:ba:1e:bc:3e:82:0c:01:40: a2:fd:dc:cc:b3:fd:51:0d:19:dd:b5:7e:c9:a9:9c: 47:fd:1a:ce:54:ca:04:f7:4f:e6:74:4f:10:e5:b2: 05:49:1a:c9:d9:7b:20:33:7b:59:5a:cf:86:37:ba: d0:4e:df:6d:63:46:e2:b4:cc:0a:5b:e3:63:62:d4: ea:d4:20:5d:7c:7e:a6:81:68:1f:be:1a:45:5f:89: fc:fd:04:8d:7a:67:69:bc:42:2a:c0:c5:12:33:6d: 7f:59:0a:ff:ae:7a:c0:6b:99:95:c3:af:c3:cb:96: a5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:20:D9:A8:01:67:D6:6D:1A:61:78:3B:86:39:BE:FC:E6:CD:65:03 X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/OCDZqAFn1m0aYXg7hjm-_ObNZQM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.7.108.0/22 Signature Algorithm: sha256WithRSAEncryption 80:c8:7f:ab:5b:3b:79:b9:52:39:1a:e0:e0:7b:78:0f:e3:7e: f6:da:16:b5:95:ba:e2:d8:24:f4:74:71:3e:a9:33:55:1a:9b: af:64:ab:ee:d5:7a:a5:fd:3d:31:91:84:bd:fe:1c:f6:d2:b9: 7e:83:e6:8c:4f:15:85:bd:e4:c0:ed:bc:eb:ba:36:fe:5d:22: d1:17:e5:31:01:21:18:86:59:2c:ab:70:d3:28:d7:b0:b7:ce: de:b4:0d:cd:6b:56:e3:9a:ba:f0:23:ce:97:58:bb:96:00:ae: 1f:a9:9a:77:3b:72:5b:d3:bf:4a:fd:60:c5:a7:b3:a9:04:57: 2d:ba:9a:7b:4d:e3:8a:4d:fa:84:01:6d:b7:f8:61:31:a8:c9: 75:a5:67:35:5e:99:23:e6:bd:f5:f3:01:82:3b:69:d7:82:cc: 3f:e3:fd:e8:83:0b:36:63:ab:a7:46:be:e6:28:a6:dd:7d:3f: 49:96:28:f1:6a:8c:db:f0:68:fc:30:d6:58:1e:34:71:0b:5b: b4:94:58:ba:96:47:56:2c:0b:90:c7:06:f2:30:2e:00:11:f3: fb:7d:a1:5d:78:64:9f:53:82:77:ad:a6:88:bd:08:a1:5e:37: 14:e5:ad:1e:70:65:f8:67:31:3a:bd:c2:b5:5a:49:cb:af:a8: 26:60:7f:e0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNTA4MDEw MTM0MDZaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDM4MjBEOUE4MDE2N0Q2 NkQxQTYxNzgzQjg2MzlCRUZDRTZDRDY1MDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDN6nr+R0k4knC6GGUNH/xXYias7QBlV0CifIhgt5QW8dmVrR50 dY9R4OkSHo1pC03rG16OAEmhSyGp1TglOv77ihgP7i+EA5gxnkFBxwt+vX9yFlMH MIwykaGOgBeu3aJhBROjDuwJAZugLgAFAFG2u5XnkxpE8xUvtP5UNTqNpc2KTCFi 38T7HfzTlNS6Hrw+ggwBQKL93Myz/VENGd21fsmpnEf9Gs5UygT3T+Z0TxDlsgVJ GsnZeyAze1laz4Y3utBO321jRuK0zApb42Ni1OrUIF18fqaBaB++GkVfifz9BI16 Z2m8QirAxRIzbX9ZCv+uesBrmZXDr8PLlqVpAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUOCDZqAFn1m0aYXg7hjm+/ObNZQMwHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5L09DRFpxQUZuMW0wYVlYZzdoam0tX09iTlpRTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALKB2wwDQYJKoZIhvcNAQELBQADggEBAIDIf6tbO3m5Ujka4OB7eA/jfvba FrWVuuLYJPR0cT6pM1Uam69kq+7VeqX9PTGRhL3+HPbSuX6D5oxPFYW95MDtvOu6 Nv5dItEX5TEBIRiGWSyrcNMo17C3zt60Dc1rVuOauvAjzpdYu5YArh+pmnc7clvT v0r9YMWns6kEVy26mntN44pN+oQBbbf4YTGoyXWlZzVemSPmvfXzAYI7adeCzD/j /eiDCzZjq6dGvuYopt19P0mWKPFqjNvwaPww1lgeNHELW7SUWLqWR1YsC5DHBvIw LgAR8/t9oV14ZJ9Tgnetpoi9CKFeNxTlrR5wZfhnMTq9wrVaScuvqCZgf+A= -----END CERTIFICATE-----Generated at Mon Aug 11 07:43:44 2025 by rpki-client