$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/50/KlOEm_CPM1hz-LCJyjNXqETDf9g.roa File: KlOEm_CPM1hz-LCJyjNXqETDf9g.roa (raw, json) Hash identifier: 4txYMc0T9HaaBqwybvBJcL41toQTffSDyJrN/aGfJrI= Subject key identifier: 2A:53:84:9B:F0:8F:33:58:73:F8:B0:89:CA:33:57:A8:44:C3:7F:D8 Certificate issuer: /CN=1BE3AB0F8DB265ABB2287E75151E7F5A93B2C736 Certificate serial: CC Authority key identifier: 1B:E3:AB:0F:8D:B2:65:AB:B2:28:7E:75:15:1E:7F:5A:93:B2:C7:36 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G-OrD42yZauyKH51FR5_WpOyxzY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/KlOEm_CPM1hz-LCJyjNXqETDf9g.roa Signing time: Fri 01 Aug 2025 01:37:56 +0000 ROA not before: Fri 01 Aug 2025 01:37:56 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 4685 IP address blocks: 220.157.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/G-OrD42yZauyKH51FR5_WpOyxzY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/G-OrD42yZauyKH51FR5_WpOyxzY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G-OrD42yZauyKH51FR5_WpOyxzY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BE3AB0F8DB265ABB2287E75151E7F5A93B2C736 Validity Not Before: Aug 1 01:37:56 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=2A53849BF08F335873F8B089CA3357A844C37FD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:62:79:57:2b:e1:8a:f7:a8:5d:36:0e:c0:bc: ce:77:87:d5:1e:e0:94:a1:84:c2:da:8e:47:24:63: 80:91:29:a9:b3:78:27:a3:93:1c:ec:c6:e7:68:46: 47:bd:33:ba:9f:85:d1:9d:3f:c2:81:c0:6e:61:27: 52:17:e4:b5:87:6e:e5:73:52:26:50:46:6a:4c:c4: 83:39:2b:09:69:38:56:79:83:ef:64:7f:ce:6b:d7: ae:83:8a:a5:19:b6:dc:09:88:0a:48:6c:22:65:49: 84:d8:9a:bd:66:13:50:52:e1:ca:02:b7:ce:60:3a: 38:b7:a8:45:82:3b:4e:2b:c5:ad:39:34:23:a6:52: b9:76:70:62:cf:50:23:be:2f:70:fe:82:48:88:7f: 91:37:2c:89:c6:a5:d7:cf:84:be:1b:d7:46:04:d8: e7:a7:e0:4c:14:62:2c:bf:c6:77:de:5e:66:97:d0: 91:87:35:d2:47:df:28:0a:d2:df:a5:87:0c:3a:c4: 9f:87:64:50:ed:27:20:ab:3f:4d:56:d0:6e:fd:f5: a8:25:05:ac:60:33:01:c4:b5:3b:ce:ef:4c:46:8d: f9:99:52:23:46:e4:a2:74:80:d3:a9:ed:10:8d:88: cf:48:b8:ac:65:a5:e7:82:87:b2:80:2d:cf:a1:f8: 69:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:53:84:9B:F0:8F:33:58:73:F8:B0:89:CA:33:57:A8:44:C3:7F:D8 X509v3 Authority Key Identifier: keyid:1B:E3:AB:0F:8D:B2:65:AB:B2:28:7E:75:15:1E:7F:5A:93:B2:C7:36 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/G-OrD42yZauyKH51FR5_WpOyxzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G-OrD42yZauyKH51FR5_WpOyxzY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/KlOEm_CPM1hz-LCJyjNXqETDf9g.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.157.128.0/17 Signature Algorithm: sha256WithRSAEncryption b2:a9:a7:93:da:b1:5e:01:a0:99:2f:0f:90:19:5b:a5:52:b3: 72:c7:d6:97:8c:2f:13:48:93:4e:66:9d:88:01:13:b9:9a:22: 44:d9:27:7d:4a:65:b5:d4:2c:82:0e:f8:37:4a:17:7a:19:1f: 4a:e3:23:f9:fd:ee:87:59:de:0c:4e:35:f6:28:3f:a9:29:9b: 0c:df:ee:e3:03:43:92:bf:63:b9:d8:f6:de:dd:ed:41:ff:7f: 7c:cd:da:21:8c:03:b9:30:5b:ab:02:b4:09:80:77:34:a9:37: a2:4a:a6:01:1c:ca:39:27:48:25:2e:ee:e3:5b:fe:05:57:63: e3:61:57:6c:12:1e:de:1b:5c:26:e9:e3:93:6c:4c:4a:24:47: 72:6a:3f:64:cc:0d:c4:96:b0:b4:83:46:cd:03:c6:37:71:0b: 39:4b:ee:e6:0e:ca:88:cc:7c:8f:00:67:da:29:c1:41:ae:f6: e2:60:9a:94:7d:df:db:ce:1d:ae:b6:93:cc:b1:41:0c:c0:9d: d8:fb:2c:2d:34:ee:be:e0:28:e4:d9:4c:b6:ed:e9:59:6f:46: 1c:4c:81:42:0a:5a:2b:d3:6d:5e:56:3c:fb:e5:7c:c0:ae:28: 57:3a:5d:b7:9d:02:c4:41:7a:68:6c:d6:c1:ca:fe:16:41:b9: c1:14:bb:bf -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUJF M0FCMEY4REIyNjVBQkIyMjg3RTc1MTUxRTdGNUE5M0IyQzczNjAeFw0yNTA4MDEw MTM3NTZaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDJBNTM4NDlCRjA4RjMz NTg3M0Y4QjA4OUNBMzM1N0E4NDRDMzdGRDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2YnlXK+GK96hdNg7AvM53h9Ue4JShhMLajkckY4CRKamzeCej kxzsxudoRke9M7qfhdGdP8KBwG5hJ1IX5LWHbuVzUiZQRmpMxIM5KwlpOFZ5g+9k f85r166DiqUZttwJiApIbCJlSYTYmr1mE1BS4coCt85gOji3qEWCO04rxa05NCOm Url2cGLPUCO+L3D+gkiIf5E3LInGpdfPhL4b10YE2Oen4EwUYiy/xnfeXmaX0JGH NdJH3ygK0t+lhww6xJ+HZFDtJyCrP01W0G799aglBaxgMwHEtTvO70xGjfmZUiNG 5KJ0gNOp7RCNiM9IuKxlpeeCh7KALc+h+GmXAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUKlOEm/CPM1hz+LCJyjNXqETDf9gwHwYDVR0jBBgwFoAUG+OrD42yZauyKH51 FR5/WpOyxzYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzUwL0ctT3JENDJ5WmF1eUtINTFGUjVfV3BPeXh6WS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0ctT3JENDJ5WmF1eUtINTFGUjVfV3BP eXh6WS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MC9LbE9FbV9DUE0xaHotTENKeWpOWHFFVERmOWcucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQH3J2AMA0GCSqGSIb3DQEBCwUAA4IBAQCyqaeT2rFeAaCZLw+QGVulUrNyx9aX jC8TSJNOZp2IARO5miJE2Sd9SmW11CyCDvg3Shd6GR9K4yP5/e6HWd4MTjX2KD+p KZsM3+7jA0OSv2O52Pbe3e1B/398zdohjAO5MFurArQJgHc0qTeiSqYBHMo5J0gl Lu7jW/4FV2PjYVdsEh7eG1wm6eOTbExKJEdyaj9kzA3ElrC0g0bNA8Y3cQs5S+7m DsqIzHyPAGfaKcFBrvbiYJqUfd/bzh2utpPMsUEMwJ3Y+ywtNO6+4Cjk2Uy27elZ b0YcTIFCClor021eVjz75XzArihXOl23nQLEQXpobNbByv4WQbnBFLu/ -----END CERTIFICATE-----Generated at Mon Aug 11 13:37:44 2025 by rpki-client