$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/50/CMmnN0YI6heVktuF3CQ-66ABqJ4.roa File: CMmnN0YI6heVktuF3CQ-66ABqJ4.roa (raw, json) Hash identifier: 8MJnvf0I16ZTVX2SJ19lGG0tP5UxKgVXrfwSLRjBnPk= Subject key identifier: 08:C9:A7:37:46:08:EA:17:95:92:DB:85:DC:24:3E:EB:A0:01:A8:9E Certificate issuer: /CN=1BE3AB0F8DB265ABB2287E75151E7F5A93B2C736 Certificate serial: A6 Authority key identifier: 1B:E3:AB:0F:8D:B2:65:AB:B2:28:7E:75:15:1E:7F:5A:93:B2:C7:36 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G-OrD42yZauyKH51FR5_WpOyxzY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/CMmnN0YI6heVktuF3CQ-66ABqJ4.roa Signing time: Fri 01 Aug 2025 01:31:34 +0000 ROA not before: Fri 01 Aug 2025 01:31:34 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 4685 IP address blocks: 14.3.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/G-OrD42yZauyKH51FR5_WpOyxzY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/G-OrD42yZauyKH51FR5_WpOyxzY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G-OrD42yZauyKH51FR5_WpOyxzY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BE3AB0F8DB265ABB2287E75151E7F5A93B2C736 Validity Not Before: Aug 1 01:31:34 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=08C9A7374608EA179592DB85DC243EEBA001A89E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:3b:7a:e0:3f:83:f4:65:82:61:35:a4:b9:7a: 87:f5:4f:0e:7e:eb:c7:77:5f:70:94:7e:88:81:fe: 07:56:f5:6a:4d:bc:ad:fc:22:f4:4b:66:69:85:ba: 0c:56:b5:f8:2f:b8:fa:be:25:5b:37:60:c4:20:45: e9:9e:5d:58:0a:45:a9:16:91:00:31:34:b1:e1:99: c8:06:7a:c2:a5:6a:20:29:bf:0f:22:d6:d7:84:7d: 0c:3a:31:20:00:e5:46:dc:27:63:aa:66:f1:c1:e2: 16:95:c5:0e:b9:06:5b:88:5e:ae:94:74:cb:a4:2f: 7d:7b:62:3f:44:be:35:ae:d4:2b:79:68:a1:03:e8: 7f:f7:73:ed:47:54:ba:a0:62:a8:03:64:d7:04:95: 39:c2:fb:54:25:90:a0:3e:04:7b:a3:27:2c:54:18: ee:9a:cb:e0:dc:4f:5f:91:4e:99:f0:75:ba:8f:6b: d6:de:a3:5b:61:e3:f1:a1:dc:e5:92:ee:91:64:f8: 32:de:b2:09:36:25:b6:2d:0a:15:69:60:d1:b2:5d: f2:3d:d6:63:04:8f:27:81:9c:c8:8f:4e:d6:e2:b9: da:fb:4f:4c:5d:25:bd:8d:f1:05:ba:69:b6:5c:ef: b8:88:32:2d:a6:52:3d:3f:89:34:5d:e4:9b:62:b4: 34:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:C9:A7:37:46:08:EA:17:95:92:DB:85:DC:24:3E:EB:A0:01:A8:9E X509v3 Authority Key Identifier: keyid:1B:E3:AB:0F:8D:B2:65:AB:B2:28:7E:75:15:1E:7F:5A:93:B2:C7:36 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/G-OrD42yZauyKH51FR5_WpOyxzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G-OrD42yZauyKH51FR5_WpOyxzY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/CMmnN0YI6heVktuF3CQ-66ABqJ4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.3.0.0/16 Signature Algorithm: sha256WithRSAEncryption d0:34:a7:f3:f7:56:35:f8:12:1b:e6:c1:48:ad:da:94:dc:49: fb:9c:fe:ab:24:2d:11:8c:e9:70:04:c0:ad:4f:59:28:db:8d: d6:fb:4e:59:10:b4:7f:d0:09:9c:25:1b:25:f8:6a:94:54:aa: 75:40:05:92:75:50:5a:68:a2:f5:83:ba:3a:49:51:e6:db:30: 68:1c:57:b5:a6:37:c5:b7:77:d4:3a:b0:c3:63:26:6c:6b:cc: 39:64:0b:c5:16:c1:d3:d1:47:ed:0a:e2:0e:da:76:23:af:31: 57:8b:80:10:e9:0d:0b:20:1c:f4:03:6b:86:1b:9c:6d:4f:86: e7:90:f7:1b:99:38:ae:2c:b6:90:71:97:66:14:aa:7b:bf:88: 09:42:31:25:bd:22:86:70:56:25:22:e3:cd:4c:71:15:8a:86: 0a:2a:b7:61:05:af:65:1c:ee:d6:46:46:27:19:a6:de:e1:f1: d9:04:e4:a3:08:d9:52:92:ff:63:c5:51:fa:f3:a8:6a:ec:c5: a5:a5:c6:8f:26:90:57:3c:fd:2a:2b:1f:e0:31:85:dc:3c:e6: 1e:34:2d:cb:b3:7f:cb:91:ab:c8:17:c3:28:89:01:26:7f:ac: ff:24:bc:67:b9:16:dc:8f:e9:b1:70:dc:16:59:a2:03:44:41: ae:f5:53:49 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUJF M0FCMEY4REIyNjVBQkIyMjg3RTc1MTUxRTdGNUE5M0IyQzczNjAeFw0yNTA4MDEw MTMxMzRaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDA4QzlBNzM3NDYwOEVB MTc5NTkyREI4NURDMjQzRUVCQTAwMUE4OUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD0O3rgP4P0ZYJhNaS5eof1Tw5+68d3X3CUfoiB/gdW9WpNvK38 IvRLZmmFugxWtfgvuPq+JVs3YMQgRemeXVgKRakWkQAxNLHhmcgGesKlaiApvw8i 1teEfQw6MSAA5UbcJ2OqZvHB4haVxQ65BluIXq6UdMukL317Yj9EvjWu1Ct5aKED 6H/3c+1HVLqgYqgDZNcElTnC+1QlkKA+BHujJyxUGO6ay+DcT1+RTpnwdbqPa9be o1th4/Gh3OWS7pFk+DLesgk2JbYtChVpYNGyXfI91mMEjyeBnMiPTtbiudr7T0xd Jb2N8QW6abZc77iIMi2mUj0/iTRd5JtitDSxAgMBAAGjggIhMIICHTAdBgNVHQ4E FgQUCMmnN0YI6heVktuF3CQ+66ABqJ4wHwYDVR0jBBgwFoAUG+OrD42yZauyKH51 FR5/WpOyxzYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzUwL0ctT3JENDJ5WmF1eUtINTFGUjVfV3BPeXh6WS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0ctT3JENDJ5WmF1eUtINTFGUjVfV3BP eXh6WS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MC9DTW1uTjBZSTZoZVZrdHVGM0NRLTY2QUJxSjQucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAF AwMADgMwDQYJKoZIhvcNAQELBQADggEBANA0p/P3VjX4EhvmwUit2pTcSfuc/qsk LRGM6XAEwK1PWSjbjdb7TlkQtH/QCZwlGyX4apRUqnVABZJ1UFpoovWDujpJUebb MGgcV7WmN8W3d9Q6sMNjJmxrzDlkC8UWwdPRR+0K4g7adiOvMVeLgBDpDQsgHPQD a4YbnG1PhueQ9xuZOK4stpBxl2YUqnu/iAlCMSW9IoZwViUi481McRWKhgoqt2EF r2Uc7tZGRicZpt7h8dkE5KMI2VKS/2PFUfrzqGrsxaWlxo8mkFc8/SorH+Axhdw8 5h40Lcuzf8uRq8gXwyiJASZ/rP8kvGe5FtyP6bFw3BZZogNEQa71U0k= -----END CERTIFICATE-----Generated at Mon Aug 11 13:21:22 2025 by rpki-client