$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/512/tPjYG2DjHTPRmCaEKmR01qrC_HY.roa File: tPjYG2DjHTPRmCaEKmR01qrC_HY.roa (raw, json) Hash identifier: 1PTNGOxN8q5M5q7pkkUyE2u7L4fWMvuFu+G/GqGFl8Y= Subject key identifier: B4:F8:D8:1B:60:E3:1D:33:D1:98:26:84:2A:64:74:D6:AA:C2:FC:76 Certificate issuer: /CN=BAED0E35A7B58DAC2159F7F1CD740A54B9E8B407 Certificate serial: 3B Authority key identifier: BA:ED:0E:35:A7:B5:8D:AC:21:59:F7:F1:CD:74:0A:54:B9:E8:B4:07 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uu0ONae1jawhWffxzXQKVLnotAc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/512/tPjYG2DjHTPRmCaEKmR01qrC_HY.roa Signing time: Fri 01 Aug 2025 01:30:45 +0000 ROA not before: Fri 01 Aug 2025 01:30:45 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 55376 IP address blocks: 202.223.24.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/512/uu0ONae1jawhWffxzXQKVLnotAc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/512/uu0ONae1jawhWffxzXQKVLnotAc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uu0ONae1jawhWffxzXQKVLnotAc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAED0E35A7B58DAC2159F7F1CD740A54B9E8B407 Validity Not Before: Aug 1 01:30:45 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=B4F8D81B60E31D33D19826842A6474D6AAC2FC76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:69:8c:ca:b1:46:a8:bf:a7:cc:74:2c:cb:f4: f5:c9:65:cf:f4:1b:3a:ba:34:3f:17:93:63:a4:74: a3:29:ff:aa:99:5f:01:4a:78:5d:0d:ea:12:c2:8e: 05:f3:16:1f:16:99:1f:11:f9:f5:29:b7:ae:3f:3b: 4a:df:33:22:11:9e:de:be:34:29:fc:04:5b:06:3d: 74:70:33:1e:b0:78:4f:c3:88:8b:d4:7a:92:74:c0: d0:79:d4:de:81:2d:3e:36:4e:81:a3:b0:b3:be:e3: e3:8e:da:90:b6:3e:92:a5:67:a6:5f:d6:e9:6c:4d: ea:9d:cc:12:1d:1a:dc:8a:a5:d3:d4:28:b3:9e:61: 3f:8c:b7:e3:18:b6:64:ac:87:b7:65:61:50:88:79: 2c:d0:0b:d9:38:93:db:8d:9c:59:68:2e:10:92:76: a3:f4:1b:1a:73:29:ae:35:e1:09:70:5a:9e:8c:de: 7f:89:aa:ac:05:23:5c:e8:73:c1:3b:99:66:a7:c2: da:cd:0e:38:f9:ad:9a:d2:11:2a:30:ed:89:7e:43: 57:63:18:69:39:c2:93:81:f6:6a:12:8b:5c:5e:b3: 32:11:5d:0d:f9:ad:18:8c:36:d7:a7:9a:2e:03:c8: 2f:f3:0a:d3:0f:c6:e0:32:13:9d:27:36:1f:c1:ce: 9c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:F8:D8:1B:60:E3:1D:33:D1:98:26:84:2A:64:74:D6:AA:C2:FC:76 X509v3 Authority Key Identifier: keyid:BA:ED:0E:35:A7:B5:8D:AC:21:59:F7:F1:CD:74:0A:54:B9:E8:B4:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/512/uu0ONae1jawhWffxzXQKVLnotAc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uu0ONae1jawhWffxzXQKVLnotAc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/512/tPjYG2DjHTPRmCaEKmR01qrC_HY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.223.24.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:eb:7c:e3:15:e1:be:52:fe:5e:69:da:3d:3d:c1:a7:38:e5: 79:a6:1a:56:0b:a0:b4:e1:5c:bb:aa:9e:29:d7:62:c3:9b:11: b4:56:38:ae:2e:9c:6e:a7:28:c0:69:9c:a7:75:22:ca:21:11: e4:45:6c:5e:3d:fd:68:d5:5b:57:a4:b8:c2:aa:17:8f:34:e1: d3:37:fd:8c:8f:7a:e4:85:c1:c8:5d:2b:92:e4:28:d3:34:d1: 20:ba:74:3d:e9:d1:c6:7f:40:48:40:ce:1a:b2:56:4c:30:2f: 40:61:7f:3f:0f:4b:26:87:7d:ff:60:0c:73:ec:6a:ba:db:d6: f5:66:a9:61:27:0e:78:0d:ba:8c:ee:88:87:b9:64:43:a3:3c: 23:c6:97:24:27:a5:d2:17:c1:a4:e0:d1:e0:ea:67:17:18:71: 26:c2:b4:fc:3d:a4:79:a5:db:4f:f5:d9:8c:34:14:1b:79:76: 8c:0d:e9:95:55:d9:53:4a:1a:c2:fe:3b:6b:fc:04:cf:d4:6d: 63:3c:d8:82:c2:c9:83:d5:e7:07:76:19:a7:ac:b0:16:10:fd: 56:d3:8b:0f:bb:18:ec:82:ba:a0:8b:a2:32:a6:8c:f2:e1:de: 0c:b1:4a:27:66:ac:f5:8d:d0:e6:d1:c9:78:9e:71:8c:02:bd: 09:d7:3f:2b -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBOzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCQUVE MEUzNUE3QjU4REFDMjE1OUY3RjFDRDc0MEE1NEI5RThCNDA3MB4XDTI1MDgwMTAx MzA0NVoXDTI2MDczMDA2MjkwOFowMzExMC8GA1UEAxMoQjRGOEQ4MUI2MEUzMUQz M0QxOTgyNjg0MkE2NDc0RDZBQUMyRkM3NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANJpjMqxRqi/p8x0LMv09cllz/QbOro0PxeTY6R0oyn/qplfAUp4 XQ3qEsKOBfMWHxaZHxH59Sm3rj87St8zIhGe3r40KfwEWwY9dHAzHrB4T8OIi9R6 knTA0HnU3oEtPjZOgaOws77j447akLY+kqVnpl/W6WxN6p3MEh0a3Iql09Qos55h P4y34xi2ZKyHt2VhUIh5LNAL2TiT242cWWguEJJ2o/QbGnMprjXhCXBanozef4mq rAUjXOhzwTuZZqfC2s0OOPmtmtIRKjDtiX5DV2MYaTnCk4H2ahKLXF6zMhFdDfmt GIw216eaLgPIL/MK0w/G4DITnSc2H8HOnGcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBS0+NgbYOMdM9GYJoQqZHTWqsL8djAfBgNVHSMEGDAWgBS67Q41p7WNrCFZ9/HN dApUuei0BzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTEyL3V1ME9OYWUxamF3aFdmZnh6WFFLVkxub3RBYy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3V1ME9OYWUxamF3aFdmZnh6WFFLVkxu b3RBYy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MTIvdFBqWUcyRGpIVFBSbUNhRUttUjAxcXJDX0hZLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAsrfGDANBgkqhkiG9w0BAQsFAAOCAQEAGut84xXhvlL+XmnaPT3BpzjleaYa VgugtOFcu6qeKddiw5sRtFY4ri6cbqcowGmcp3UiyiER5EVsXj39aNVbV6S4wqoX jzTh0zf9jI965IXByF0rkuQo0zTRILp0PenRxn9ASEDOGrJWTDAvQGF/Pw9LJod9 /2AMc+xqutvW9WapYScOeA26jO6Ih7lkQ6M8I8aXJCel0hfBpODR4OpnFxhxJsK0 /D2keaXbT/XZjDQUG3l2jA3plVXZU0oawv47a/wEz9RtYzzYgsLJg9XnB3YZp6yw FhD9VtOLD7sY7IK6oIuiMqaM8uHeDLFKJ2as9Y3Q5tHJeJ5xjAK9Cdc/Kw== -----END CERTIFICATE-----Generated at Mon Aug 11 13:14:14 2025 by rpki-client