$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/5736/KAkvCm1Si0s6WCgmUX5TVBI3Z-8.roa File: KAkvCm1Si0s6WCgmUX5TVBI3Z-8.roa (raw, json) Hash identifier: KHep59T5CVdF5TU0IYl97FEIx0T9mytxg55/06uDWGc= Subject key identifier: 28:09:2F:0A:6D:52:8B:4B:3A:58:28:26:51:7E:53:54:12:37:67:EF Certificate issuer: /CN=D5390A2C230A5B612A293FEFE7DA8F020C28F4D3 Certificate serial: 02 Authority key identifier: D5:39:0A:2C:23:0A:5B:61:2A:29:3F:EF:E7:DA:8F:02:0C:28:F4:D3 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1TkKLCMKW2EqKT_v59qPAgwo9NM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5736/KAkvCm1Si0s6WCgmUX5TVBI3Z-8.roa Signing time: Thu 07 Aug 2025 08:48:02 +0000 ROA not before: Thu 07 Aug 2025 08:48:02 +0000 ROA not after: Fri 07 Aug 2026 05:59:43 +0000 asID: 152870 IP address blocks: 165.101.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5736/1TkKLCMKW2EqKT_v59qPAgwo9NM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5736/1TkKLCMKW2EqKT_v59qPAgwo9NM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1TkKLCMKW2EqKT_v59qPAgwo9NM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 21 Aug 2025 22:10:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D5390A2C230A5B612A293FEFE7DA8F020C28F4D3 Validity Not Before: Aug 7 08:48:02 2025 GMT Not After : Aug 7 05:59:43 2026 GMT Subject: CN=28092F0A6D528B4B3A582826517E5354123767EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:f3:f5:8c:9f:0e:2e:a0:78:82:e2:6b:b7:8d: 36:7c:c2:67:6b:41:6a:d4:60:3c:eb:ec:22:b2:03: 0e:05:fe:45:d1:c0:3d:e5:5e:b8:ff:42:08:e8:8d: 21:8c:79:5b:64:80:d2:8e:35:66:fb:f2:e1:e3:0a: 99:54:fe:69:a6:08:6b:1d:40:0c:53:16:7b:e6:2a: 0c:68:2c:d4:e1:d5:e8:7b:ca:30:fa:57:85:dc:83: 86:e8:f3:a1:9f:30:83:2c:76:12:9a:a7:46:d8:62: d5:52:0d:f3:08:4c:1c:67:10:9e:06:aa:84:6a:f7: 48:c8:ee:66:d6:a5:b6:90:e3:e4:b5:b6:b4:61:e9: fb:28:e7:c2:49:8b:c8:a8:98:d5:17:89:88:bc:c2: 0d:d5:24:4a:cb:1f:97:e4:5f:41:cd:74:b8:12:fc: 7c:ba:d9:a9:32:8c:52:8d:7a:ba:7f:ca:ba:93:a3: 3c:65:57:7d:4b:79:61:08:58:bc:ac:fa:6e:8b:cd: 10:d8:5b:76:96:ed:b8:10:08:c7:1f:fe:e6:01:56: 63:06:f5:1a:c8:95:44:51:dc:a6:24:0d:04:71:1b: 64:1b:ca:09:60:07:a6:44:fa:f2:ff:e6:5a:92:24: fd:dc:65:6c:34:9c:1c:2a:7f:a4:3e:6c:92:1b:c4: 47:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:09:2F:0A:6D:52:8B:4B:3A:58:28:26:51:7E:53:54:12:37:67:EF X509v3 Authority Key Identifier: keyid:D5:39:0A:2C:23:0A:5B:61:2A:29:3F:EF:E7:DA:8F:02:0C:28:F4:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5736/1TkKLCMKW2EqKT_v59qPAgwo9NM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1TkKLCMKW2EqKT_v59qPAgwo9NM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5736/KAkvCm1Si0s6WCgmUX5TVBI3Z-8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.8.0/24 Signature Algorithm: sha256WithRSAEncryption a6:03:d1:5e:a9:ff:99:2d:38:90:31:88:97:c1:da:c8:04:d4: 25:b3:4f:60:7d:d8:06:1a:52:44:bd:4d:c6:d2:54:64:2a:2b: a3:0c:0b:34:d7:f6:5f:f5:19:0c:a3:1e:d6:43:6b:ca:1d:ef: a1:14:b6:41:3f:2d:7e:a7:a8:c1:b5:c1:b3:09:12:e0:b0:d8: f3:47:e4:9c:df:02:ae:1f:07:8a:7f:39:86:d9:61:3f:dd:4e: 51:b9:46:d1:cf:31:61:30:b5:7c:4a:0b:a2:b3:a4:55:d9:97: 9f:d6:42:41:16:42:06:48:ae:1f:cf:1a:53:95:23:12:4a:77: 91:b4:16:a9:da:dc:e3:78:c0:e7:53:a7:89:cf:a8:6c:df:1f: 76:1f:a8:55:37:47:6b:ce:e3:25:34:b0:ab:9a:cd:45:e4:99: d3:4f:11:8f:f7:bf:79:52:12:8f:e7:8c:4b:e8:bb:cd:93:ee: 84:26:9c:92:36:f5:54:19:4d:aa:07:14:e0:05:25:14:ae:c9: a7:25:83:d2:ba:3c:5f:90:3b:39:a1:2e:6e:36:45:92:2c:17: ad:52:64:1f:48:14:db:bc:eb:47:36:31:e2:21:02:3a:b8:1c: 53:cc:1c:3d:3b:72:dc:8e:48:b6:ae:68:ae:69:2d:06:76:9c: 18:c8:f7:8d -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENTM5 MEEyQzIzMEE1QjYxMkEyOTNGRUZFN0RBOEYwMjBDMjhGNEQzMB4XDTI1MDgwNzA4 NDgwMloXDTI2MDgwNzA1NTk0M1owMzExMC8GA1UEAxMoMjgwOTJGMEE2RDUyOEI0 QjNBNTgyODI2NTE3RTUzNTQxMjM3NjdFRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOvz9YyfDi6geILia7eNNnzCZ2tBatRgPOvsIrIDDgX+RdHAPeVe uP9CCOiNIYx5W2SA0o41Zvvy4eMKmVT+aaYIax1ADFMWe+YqDGgs1OHV6HvKMPpX hdyDhujzoZ8wgyx2EpqnRthi1VIN8whMHGcQngaqhGr3SMjuZtaltpDj5LW2tGHp +yjnwkmLyKiY1ReJiLzCDdUkSssfl+RfQc10uBL8fLrZqTKMUo16un/KupOjPGVX fUt5YQhYvKz6bovNENhbdpbtuBAIxx/+5gFWYwb1GsiVRFHcpiQNBHEbZBvKCWAH pkT68v/mWpIk/dxlbDScHCp/pD5skhvERycCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBQoCS8KbVKLSzpYKCZRflNUEjdn7zAfBgNVHSMEGDAWgBTVOQosIwpbYSopP+/n 2o8CDCj00zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTczNi8xVGtLTENNS1cyRXFLVF92NTlxUEFnd285Tk0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8xVGtLTENNS1cyRXFLVF92NTlxUEFn d285Tk0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTczNi9LQWt2Q20xU2kwczZXQ2dtVVg1VFZCSTNaLTgucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQApWUIMA0GCSqGSIb3DQEBCwUAA4IBAQCmA9Feqf+ZLTiQMYiXwdrIBNQl s09gfdgGGlJEvU3G0lRkKiujDAs01/Zf9RkMox7WQ2vKHe+hFLZBPy1+p6jBtcGz CRLgsNjzR+Sc3wKuHweKfzmG2WE/3U5RuUbRzzFhMLV8Sguis6RV2Zef1kJBFkIG SK4fzxpTlSMSSneRtBap2tzjeMDnU6eJz6hs3x92H6hVN0drzuMlNLCrms1F5JnT TxGP9795UhKP54xL6LvNk+6EJpySNvVUGU2qBxTgBSUUrsmnJYPSujxfkDs5oS5u NkWSLBetUmQfSBTbvOtHNjHiIQI6uBxTzBw9O3Lcjki2rmiuaS0GdpwYyPeN -----END CERTIFICATE-----Generated at Fri Aug 15 00:20:34 2025 by rpki-client