$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/Nlh-hbifXJdZpk-lO8y1VfE6314.roa File: Nlh-hbifXJdZpk-lO8y1VfE6314.roa (raw, json) Hash identifier: iQusLXuiWkePkXTQN5/lqK1cvTT9yyhx+zRKwQ0QXN4= Subject key identifier: 36:58:7E:85:B8:9F:5C:97:59:A6:4F:A5:3B:CC:B5:55:F1:3A:DF:5E Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Certificate serial: 01E7 Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/Nlh-hbifXJdZpk-lO8y1VfE6314.roa Signing time: Fri 01 Aug 2025 01:33:42 +0000 ROA not before: Fri 01 Aug 2025 01:33:42 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 2497 IP address blocks: 133.137.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 487 (0x1e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Validity Not Before: Aug 1 01:33:42 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=36587E85B89F5C9759A64FA53BCCB555F13ADF5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2b:2c:df:c0:13:d7:17:88:81:a6:c8:e1:90: 32:dc:d3:48:92:40:3b:21:f7:62:98:d9:bc:e2:f0: 2f:5e:89:8b:a7:45:a2:73:a9:e7:11:f7:4f:28:fc: 45:e4:a5:16:ed:95:73:eb:8d:64:d2:84:27:39:a5: 95:0d:0f:e5:7f:a5:83:f7:81:29:a7:d7:49:77:63: d7:d8:61:a9:aa:43:46:65:c2:9d:d1:67:c2:cd:82: 2e:f7:8d:0b:ce:19:41:ae:64:f0:84:f0:7a:e9:11: 2d:ae:d7:4b:f1:cf:9d:ca:f3:9e:fd:a6:fc:5e:54: b0:2e:84:1c:8d:e6:23:c4:be:06:69:5c:9b:5c:03: 61:eb:82:32:dc:40:e0:a0:ab:93:d1:ba:da:e8:34: 1f:bd:0e:a5:c4:92:3e:6e:ae:60:9a:48:b6:51:d5: fc:c0:1f:09:52:43:1f:ec:67:6f:e5:27:49:2e:3f: 2e:c1:46:38:55:e0:f9:6f:3e:70:23:aa:f1:97:ae: 11:d8:53:96:15:09:66:15:51:9f:bd:ab:e0:3c:c9: e9:5b:92:7d:2f:11:28:ee:8b:2d:c7:16:9b:9d:fa: ad:c4:ec:4e:10:76:f4:f2:48:fb:ea:a5:e2:c0:8a: c4:88:fa:c8:24:c2:80:f2:25:ba:f4:67:a5:a2:bf: 80:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:58:7E:85:B8:9F:5C:97:59:A6:4F:A5:3B:CC:B5:55:F1:3A:DF:5E X509v3 Authority Key Identifier: keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/Nlh-hbifXJdZpk-lO8y1VfE6314.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.137.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0a:f1:9a:27:53:86:b5:7a:85:8c:dd:16:a7:3f:4e:2f:44:e9: 22:03:aa:75:85:bf:99:30:a9:e6:43:bf:58:83:e4:79:7c:8f: e1:a7:ac:96:5a:93:83:3e:fd:3e:50:23:b7:0b:4b:6a:a8:37: b3:af:e2:db:14:d4:9f:a8:80:fc:74:db:d1:5c:4e:ab:23:f3: 1f:71:e7:37:e4:20:c2:c0:23:26:30:e7:6c:b8:65:6f:25:e9: ad:45:0c:66:40:b8:08:9a:5b:67:aa:8a:be:bb:ea:a4:d1:d5: a4:89:0f:b2:ef:28:38:ae:6c:fe:56:5a:8e:ca:7b:58:ba:ee: 39:7c:77:97:4f:7d:9d:fa:ea:d0:9b:87:c7:61:1f:20:4d:e7: 34:c4:a2:a4:eb:4c:6c:6a:79:bd:10:f5:04:68:42:99:7b:f9: 18:74:5f:a7:c8:b2:ff:58:56:cf:68:87:41:69:82:95:28:ad: d1:7f:93:d1:0d:ef:61:dc:f8:9c:22:b7:47:90:42:f8:93:53: f5:7d:59:be:da:ce:cd:89:ac:06:f3:bd:98:1d:c6:7f:ca:ef: c0:09:55:27:be:54:7c:43:45:cf:3c:dc:c2:7a:b5:70:28:c5: 7c:fc:1f:5a:3d:ad:c4:8a:28:99:b8:34:35:5d:56:20:76:bf: ed:80:28:c1 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgICAecwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4 M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yNTA4MDEw MTMzNDJaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDM2NTg3RTg1Qjg5RjVD OTc1OUE2NEZBNTNCQ0NCNTU1RjEzQURGNUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNKyzfwBPXF4iBpsjhkDLc00iSQDsh92KY2bzi8C9eiYunRaJz qecR908o/EXkpRbtlXPrjWTShCc5pZUND+V/pYP3gSmn10l3Y9fYYamqQ0Zlwp3R Z8LNgi73jQvOGUGuZPCE8HrpES2u10vxz53K8579pvxeVLAuhByN5iPEvgZpXJtc A2HrgjLcQOCgq5PRutroNB+9DqXEkj5urmCaSLZR1fzAHwlSQx/sZ2/lJ0kuPy7B RjhV4PlvPnAjqvGXrhHYU5YVCWYVUZ+9q+A8yelbkn0vESjuiy3HFpud+q3E7E4Q dvTySPvqpeLAisSI+sgkwoDyJbr0Z6Wiv4CnAgMBAAGjggIfMIICGzAdBgNVHQ4E FgQUNlh+hbifXJdZpk+lO8y1VfE6314wHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwELBIGsMIGpMF8GCCsG AQUFBzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzYvTmxoLWhiaWZYSmRacGstbE84eTFWZkU2MzE0LnJvYTBGBggr BgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3JyZHAv YXAvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD AIWJMA0GCSqGSIb3DQEBCwUAA4IBAQAK8ZonU4a1eoWM3RanP04vROkiA6p1hb+Z MKnmQ79Yg+R5fI/hp6yWWpODPv0+UCO3C0tqqDezr+LbFNSfqID8dNvRXE6rI/Mf cec35CDCwCMmMOdsuGVvJemtRQxmQLgImltnqoq+u+qk0dWkiQ+y7yg4rmz+VlqO yntYuu45fHeXT32d+urQm4fHYR8gTec0xKKk60xsanm9EPUEaEKZe/kYdF+nyLL/ WFbPaIdBaYKVKK3Rf5PRDe9h3PicIrdHkEL4k1P1fVm+2s7NiawG872YHcZ/yu/A CVUnvlR8Q0XPPNzCerVwKMV8/B9aPa3EiiiZuDQ1XVYgdr/tgCjB -----END CERTIFICATE-----Generated at Mon Aug 11 04:43:37 2025 by rpki-client