$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/50/He3UPCmZYdIZ130EFAnB7plURcM.roa File: He3UPCmZYdIZ130EFAnB7plURcM.roa (raw, json) Hash identifier: oPqQEb88SiWtCOUBADTYdyURot+/EEvob1djnCOQYWM= Subject key identifier: 1D:ED:D4:3C:29:99:61:D2:19:D7:7D:04:14:09:C1:EE:99:54:45:C3 Certificate issuer: /CN=1BE3AB0F8DB265ABB2287E75151E7F5A93B2C736 Certificate serial: B4 Authority key identifier: 1B:E3:AB:0F:8D:B2:65:AB:B2:28:7E:75:15:1E:7F:5A:93:B2:C7:36 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G-OrD42yZauyKH51FR5_WpOyxzY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/He3UPCmZYdIZ130EFAnB7plURcM.roa Signing time: Fri 01 Aug 2025 01:31:41 +0000 ROA not before: Fri 01 Aug 2025 01:31:41 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 4685 IP address blocks: 116.70.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/G-OrD42yZauyKH51FR5_WpOyxzY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/G-OrD42yZauyKH51FR5_WpOyxzY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G-OrD42yZauyKH51FR5_WpOyxzY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BE3AB0F8DB265ABB2287E75151E7F5A93B2C736 Validity Not Before: Aug 1 01:31:41 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=1DEDD43C299961D219D77D041409C1EE995445C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:16:2b:21:4b:98:26:44:87:7e:ff:94:7a:23: 77:4c:62:6b:71:44:48:6f:07:67:3f:23:1d:ed:61: 29:88:83:65:3e:aa:06:99:fd:0e:3e:2e:ad:3f:32: ec:8f:68:11:31:ed:ea:47:24:0a:20:7c:ea:02:2a: dc:8f:75:b2:02:58:74:16:b8:6f:bc:da:3a:b9:9a: 6a:5a:1b:56:26:60:fe:8d:7a:83:70:31:c4:72:e7: 4e:e3:17:4a:7e:5f:8a:7b:25:d0:be:c9:1f:ed:ab: b0:0e:c9:40:22:ab:ad:10:2c:e9:e5:2c:2f:28:ed: 36:a2:02:17:5f:e1:30:fa:40:69:9c:5a:c0:ca:21: 24:72:83:c3:f6:64:d2:6c:5e:81:f2:3b:27:a7:da: 56:9e:b1:06:98:44:58:43:20:e4:93:a0:6f:c1:a4: 31:1b:d5:18:66:a2:c4:de:6f:e8:30:57:04:2a:47: ca:68:ec:0b:5b:56:d4:73:10:db:cc:31:6f:8a:dc: 50:1a:2a:36:1e:4c:18:5b:d3:23:be:17:c0:a3:83: 08:f0:61:91:f3:ef:ee:7c:0f:b2:af:3f:47:5e:e2: e4:50:f4:a8:1a:8a:ea:10:66:ae:67:9a:59:f5:ea: be:be:dc:4f:59:69:8d:3c:fc:c3:37:6e:87:1a:1d: c9:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:ED:D4:3C:29:99:61:D2:19:D7:7D:04:14:09:C1:EE:99:54:45:C3 X509v3 Authority Key Identifier: keyid:1B:E3:AB:0F:8D:B2:65:AB:B2:28:7E:75:15:1E:7F:5A:93:B2:C7:36 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/G-OrD42yZauyKH51FR5_WpOyxzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G-OrD42yZauyKH51FR5_WpOyxzY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/He3UPCmZYdIZ130EFAnB7plURcM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.70.192.0/18 Signature Algorithm: sha256WithRSAEncryption 54:d9:90:38:07:a9:42:fd:12:d7:ac:43:e0:a8:1b:f4:00:a1: a7:ed:aa:e5:20:21:f0:e8:c2:f6:5b:65:1a:88:51:05:7c:13: 2b:c6:7c:b5:c3:57:8e:55:46:41:78:40:aa:e4:50:fb:88:cf: 06:6a:97:48:4e:b6:29:cb:ab:c6:ec:ef:29:1e:2c:95:db:3b: fb:16:30:13:a9:1c:da:56:4e:ae:33:a2:90:0a:d5:23:04:bb: fd:b6:15:62:63:00:87:e3:ee:4d:02:b0:81:24:c1:d5:4b:39: 06:48:81:74:a9:c9:e0:fa:d5:f7:3c:4d:b7:37:35:32:99:9d: 66:95:79:c1:45:12:35:4e:17:40:9c:f3:e6:f8:59:35:b4:30: 66:60:98:d9:ab:a9:7c:ac:9f:1e:35:3a:db:22:0b:85:fa:7a: 4a:76:cf:69:5b:7b:02:2b:7a:d7:a8:07:76:4b:e0:34:b8:cd: 8c:36:f6:2e:37:e8:40:46:de:0c:2b:69:a3:b7:3c:38:27:44: e1:89:99:86:d2:92:40:d4:c6:a6:cc:0c:64:f3:30:bf:b0:40: c9:89:8f:3a:ce:ea:77:cc:2b:82:44:ab:ee:7a:61:e0:56:f9: 61:b0:4d:74:7c:6a:f5:27:4c:cf:50:10:f4:c2:3d:cb:74:d3: 9e:0b:a3:0c -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICALQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUJF M0FCMEY4REIyNjVBQkIyMjg3RTc1MTUxRTdGNUE5M0IyQzczNjAeFw0yNTA4MDEw MTMxNDFaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDFERURENDNDMjk5OTYx RDIxOUQ3N0QwNDE0MDlDMUVFOTk1NDQ1QzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXFishS5gmRId+/5R6I3dMYmtxREhvB2c/Ix3tYSmIg2U+qgaZ /Q4+Lq0/MuyPaBEx7epHJAogfOoCKtyPdbICWHQWuG+82jq5mmpaG1YmYP6NeoNw McRy507jF0p+X4p7JdC+yR/tq7AOyUAiq60QLOnlLC8o7TaiAhdf4TD6QGmcWsDK ISRyg8P2ZNJsXoHyOyen2laesQaYRFhDIOSToG/BpDEb1RhmosTeb+gwVwQqR8po 7AtbVtRzENvMMW+K3FAaKjYeTBhb0yO+F8CjgwjwYZHz7+58D7KvP0de4uRQ9Kga iuoQZq5nmln16r6+3E9ZaY08/MM3bocaHcmnAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUHe3UPCmZYdIZ130EFAnB7plURcMwHwYDVR0jBBgwFoAUG+OrD42yZauyKH51 FR5/WpOyxzYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzUwL0ctT3JENDJ5WmF1eUtINTFGUjVfV3BPeXh6WS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0ctT3JENDJ5WmF1eUtINTFGUjVfV3BP eXh6WS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MC9IZTNVUENtWllkSVoxMzBFRkFuQjdwbFVSY00ucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQGdEbAMA0GCSqGSIb3DQEBCwUAA4IBAQBU2ZA4B6lC/RLXrEPgqBv0AKGn7arl ICHw6ML2W2UaiFEFfBMrxny1w1eOVUZBeECq5FD7iM8GapdITrYpy6vG7O8pHiyV 2zv7FjATqRzaVk6uM6KQCtUjBLv9thViYwCH4+5NArCBJMHVSzkGSIF0qcng+tX3 PE23NzUymZ1mlXnBRRI1ThdAnPPm+Fk1tDBmYJjZq6l8rJ8eNTrbIguF+npKds9p W3sCK3rXqAd2S+A0uM2MNvYuN+hARt4MK2mjtzw4J0ThiZmG0pJA1MamzAxk8zC/ sEDJiY86zup3zCuCRKvuemHgVvlhsE10fGr1J0zPUBD0wj3LdNOeC6MM -----END CERTIFICATE-----Generated at Mon Aug 11 13:36:18 2025 by rpki-client