$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/tUJ7RSR24gOuEGaYxyFbkwwzqB0.roa File: tUJ7RSR24gOuEGaYxyFbkwwzqB0.roa (raw, json) Hash identifier: Ht6wyAWHJuyKgK+JoB9ENTJdWMBtPBy5vDl4yg/r2/s= Subject key identifier: B5:42:7B:45:24:76:E2:03:AE:10:66:98:C7:21:5B:93:0C:33:A8:1D Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 0151 Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/tUJ7RSR24gOuEGaYxyFbkwwzqB0.roa Signing time: Fri 01 Aug 2025 01:34:07 +0000 ROA not before: Fri 01 Aug 2025 01:34:07 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 10021 IP address blocks: 202.95.216.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Aug 1 01:34:07 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=B5427B452476E203AE106698C7215B930C33A81D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c4:b9:b2:fa:bd:4a:2e:a8:b9:d4:f7:a4:16: 31:72:a8:d0:7f:ac:73:3e:6d:81:e1:6d:9e:bf:98: 2e:1a:3e:a3:bc:e0:8a:3f:82:0c:d3:ba:f4:d9:80: 9a:b2:21:46:ab:ff:e5:7a:bf:44:5e:ff:92:c4:5d: 00:ef:5b:27:78:e1:5c:15:ba:73:05:87:72:90:42: a0:8d:72:b7:48:5d:28:6b:b7:8e:69:66:d5:8f:da: c2:92:b7:a9:c1:8b:1f:02:6c:9a:1b:71:35:52:2a: e8:30:4c:c2:ea:60:1f:1c:fd:4c:11:6c:15:d9:da: 2a:a3:00:37:33:94:36:37:d3:87:8b:70:5e:e9:6b: 0d:b0:99:ce:aa:03:3a:3c:36:9f:c6:b3:d3:b6:e6: 0c:1c:7a:32:71:2f:37:c3:ed:09:3e:22:d4:d8:ef: 30:42:eb:e1:bf:b5:1d:07:39:56:fb:13:7f:b3:52: 1f:48:e8:50:d6:f5:d7:8d:b3:8c:65:5c:b3:7f:54: a0:39:1d:35:09:d3:d6:18:ac:0b:27:b5:c1:55:1c: 70:51:4d:2a:9d:3b:46:8d:ba:62:92:cc:2e:8a:ec: be:44:0f:bc:10:2d:30:2f:e3:16:b1:05:d2:88:4a: 35:04:f3:51:46:13:d3:a6:a3:ed:6a:9d:df:e8:af: 85:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:42:7B:45:24:76:E2:03:AE:10:66:98:C7:21:5B:93:0C:33:A8:1D X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/tUJ7RSR24gOuEGaYxyFbkwwzqB0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.95.216.0/23 Signature Algorithm: sha256WithRSAEncryption 79:6c:a8:e5:1f:d4:37:0b:fa:4c:a5:00:df:28:3c:c9:5f:52: f8:aa:a9:e7:65:98:73:3c:0d:88:ab:b9:6b:4e:3d:b5:73:80: 95:62:db:92:3e:fd:94:48:e0:4c:02:dd:8d:10:72:30:ef:c2: da:bb:71:0e:e6:0b:27:a6:02:01:f0:80:1f:b2:0a:4d:70:b4: 8a:45:16:c1:ae:09:2f:e4:d8:e1:2c:20:fb:97:e6:95:3c:43: 75:0e:54:d2:a9:63:28:dc:96:e0:a0:3e:b7:6f:00:0c:94:cb: 39:b8:65:2a:10:42:77:95:a6:c0:c1:0d:b6:67:90:e8:9d:2b: 45:bf:af:e3:18:03:a4:4c:19:45:97:21:f2:11:d4:5e:e3:79: b8:24:9e:7b:60:be:62:9a:3b:61:fd:3f:d6:f9:0b:96:96:45: da:d1:2e:b0:d4:5d:b1:23:fa:a1:3b:c6:af:83:b6:5c:57:26: 63:b4:9f:0a:4b:74:10:24:ea:2f:41:26:d2:a4:db:45:ff:c9: ca:e3:ad:03:d2:a9:7c:ab:40:3d:06:da:41:5c:26:bd:17:00: 0d:54:6c:be:c8:cd:8a:15:f0:f9:62:0d:26:e8:96:ed:ca:b1: 3d:f6:c4:09:53:23:b0:fd:4d:a5:69:bb:71:e5:99:cd:4c:6d: 87:1f:29:66 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNTA4MDEw MTM0MDdaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKEI1NDI3QjQ1MjQ3NkUy MDNBRTEwNjY5OEM3MjE1QjkzMEMzM0E4MUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4xLmy+r1KLqi51PekFjFyqNB/rHM+bYHhbZ6/mC4aPqO84Io/ ggzTuvTZgJqyIUar/+V6v0Re/5LEXQDvWyd44VwVunMFh3KQQqCNcrdIXShrt45p ZtWP2sKSt6nBix8CbJobcTVSKugwTMLqYB8c/UwRbBXZ2iqjADczlDY304eLcF7p aw2wmc6qAzo8Np/Gs9O25gwcejJxLzfD7Qk+ItTY7zBC6+G/tR0HOVb7E3+zUh9I 6FDW9deNs4xlXLN/VKA5HTUJ09YYrAsntcFVHHBRTSqdO0aNumKSzC6K7L5ED7wQ LTAv4xaxBdKISjUE81FGE9Omo+1qnd/or4WvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUtUJ7RSR24gOuEGaYxyFbkwwzqB0wHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5L3RVSjdSU1IyNGdPdUVHYVl4eUZia3d3enFCMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHKX9gwDQYJKoZIhvcNAQELBQADggEBAHlsqOUf1DcL+kylAN8oPMlfUviq qedlmHM8DYiruWtOPbVzgJVi25I+/ZRI4EwC3Y0QcjDvwtq7cQ7mCyemAgHwgB+y Ck1wtIpFFsGuCS/k2OEsIPuX5pU8Q3UOVNKpYyjcluCgPrdvAAyUyzm4ZSoQQneV psDBDbZnkOidK0W/r+MYA6RMGUWXIfIR1F7jebgknntgvmKaO2H9P9b5C5aWRdrR LrDUXbEj+qE7xq+DtlxXJmO0nwpLdBAk6i9BJtKk20X/ycrjrQPSqXyrQD0G2kFc Jr0XAA1UbL7IzYoV8PliDSbolu3KsT32xAlTI7D9TaVpu3Hlmc1MbYcfKWY= -----END CERTIFICATE-----Generated at Mon Aug 11 07:34:36 2025 by rpki-client