$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/rANbjgtaEJC6083bsuW3qmWMvds.roa File: rANbjgtaEJC6083bsuW3qmWMvds.roa (raw, json) Hash identifier: xLro2hxryCM0zLBjMFgwiyGMOQA0h5+rJd1+Oe+tHeo= Subject key identifier: AC:03:5B:8E:0B:5A:10:90:BA:D3:CD:DB:B2:E5:B7:AA:65:8C:BD:DB Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Certificate serial: 01EF Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/rANbjgtaEJC6083bsuW3qmWMvds.roa Signing time: Fri 01 Aug 2025 01:33:47 +0000 ROA not before: Fri 01 Aug 2025 01:33:47 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 2497 IP address blocks: 133.238.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Validity Not Before: Aug 1 01:33:47 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=AC035B8E0B5A1090BAD3CDDBB2E5B7AA658CBDDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:23:3b:7b:a5:30:71:77:b3:c5:17:99:6a:be: f2:6d:d4:64:e0:28:9a:c3:7f:ea:65:f8:57:f2:3d: f9:65:97:41:36:66:9a:ee:2e:d0:17:22:f3:d5:2f: 40:4f:59:70:13:30:e8:9e:b3:8e:b6:ea:a8:1f:b2: 69:c9:8c:64:fb:72:cc:85:c8:22:09:b1:03:8c:cd: 90:3e:38:14:db:b3:c6:07:1f:07:34:bf:6f:75:d3: 58:78:ca:76:70:14:7b:20:c5:2e:8d:3f:84:ff:59: a8:ee:20:c6:b1:1f:4b:4e:ef:49:4e:27:2f:82:ea: f5:c3:68:73:02:9b:76:a4:00:25:5d:b1:50:ef:f5: 97:bd:40:53:f7:2f:96:ad:60:39:ef:60:36:ea:84: 75:eb:a3:05:fb:b0:84:f6:57:78:32:e0:2e:0e:52: 5d:b9:56:f6:e1:74:77:49:ca:03:49:5d:7f:c6:0b: 85:81:98:aa:c8:bd:3b:bd:63:16:16:e6:d4:b8:86: 12:99:7b:c4:4d:4c:85:e1:61:00:96:df:c1:ab:a9: d8:41:67:08:51:5a:3d:85:b0:54:ee:bb:c8:f6:19: 56:b5:55:12:f1:3b:ac:d2:4e:b3:76:d7:6b:e3:c3: b3:cf:6d:00:48:e0:08:2e:9b:13:9d:13:4e:39:24: 10:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:03:5B:8E:0B:5A:10:90:BA:D3:CD:DB:B2:E5:B7:AA:65:8C:BD:DB X509v3 Authority Key Identifier: keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/rANbjgtaEJC6083bsuW3qmWMvds.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.238.128.0/17 Signature Algorithm: sha256WithRSAEncryption 63:e5:61:09:89:6c:f4:9a:70:3b:e6:cd:b9:17:86:8a:51:2a: 14:db:e5:78:33:82:6c:88:1c:64:6d:9b:09:d3:9e:b1:cb:54: 17:44:29:3f:c1:a4:53:74:37:85:a8:2d:96:3d:e2:56:72:0b: f4:6b:95:de:97:f4:3e:e0:08:79:47:ff:18:b8:87:0c:5b:95: ed:60:fa:37:4f:9f:cd:ef:b5:18:79:ad:7c:67:c8:25:f0:a6: 08:ff:00:75:4d:d7:2e:43:f9:a2:57:06:65:45:df:7a:90:64: f9:3c:53:51:8b:84:10:64:c1:d8:44:1a:76:99:d0:de:b4:c6: f6:31:02:c5:aa:46:23:6d:00:06:9e:9c:29:16:06:42:66:db: 01:8f:c4:b3:4d:31:db:25:40:d1:4a:e1:54:98:e8:20:85:1b: 91:d2:49:d5:66:2b:a6:3d:fe:10:ec:46:b3:2f:0c:3c:ba:c1: 8d:b0:54:bb:b7:48:4d:d3:e3:3e:cb:ed:b8:37:5f:dc:8f:bb: 47:e0:93:a6:e5:ca:03:5a:0f:e7:85:a6:c6:b3:23:40:fa:e4: 86:3b:af:c3:9e:70:07:26:10:25:81:b3:21:5d:4f:4b:ac:71: d7:58:0b:2d:e2:0f:34:ac:30:28:43:0c:3d:21:98:8e:09:80: f2:05:cc:41 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4 M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yNTA4MDEw MTMzNDdaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKEFDMDM1QjhFMEI1QTEw OTBCQUQzQ0REQkIyRTVCN0FBNjU4Q0JEREIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqIzt7pTBxd7PFF5lqvvJt1GTgKJrDf+pl+FfyPflll0E2Zpru LtAXIvPVL0BPWXATMOies4626qgfsmnJjGT7csyFyCIJsQOMzZA+OBTbs8YHHwc0 v29101h4ynZwFHsgxS6NP4T/WajuIMaxH0tO70lOJy+C6vXDaHMCm3akACVdsVDv 9Ze9QFP3L5atYDnvYDbqhHXrowX7sIT2V3gy4C4OUl25VvbhdHdJygNJXX/GC4WB mKrIvTu9YxYW5tS4hhKZe8RNTIXhYQCW38GrqdhBZwhRWj2FsFTuu8j2GVa1VRLx O6zSTrN212vjw7PPbQBI4AgumxOdE045JBBlAgMBAAGjggIgMIICHDAdBgNVHQ4E FgQUrANbjgtaEJC6083bsuW3qmWMvdswHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwELBIGsMIGpMF8GCCsG AQUFBzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzYvckFOYmpndGFFSkM2MDgzYnN1VzNxbVdNdmRzLnJvYTBGBggr BgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3JyZHAv YXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME B4XugDANBgkqhkiG9w0BAQsFAAOCAQEAY+VhCYls9JpwO+bNuReGilEqFNvleDOC bIgcZG2bCdOesctUF0QpP8GkU3Q3hagtlj3iVnIL9GuV3pf0PuAIeUf/GLiHDFuV 7WD6N0+fze+1GHmtfGfIJfCmCP8AdU3XLkP5olcGZUXfepBk+TxTUYuEEGTB2EQa dpnQ3rTG9jECxapGI20ABp6cKRYGQmbbAY/Es00x2yVA0UrhVJjoIIUbkdJJ1WYr pj3+EOxGsy8MPLrBjbBUu7dITdPjPsvtuDdf3I+7R+CTpuXKA1oP54WmxrMjQPrk hjuvw55wByYQJYGzIV1PS6xx11gLLeIPNKwwKEMMPSGYjgmA8gXMQQ== -----END CERTIFICATE-----Generated at Sun Aug 10 19:56:53 2025 by rpki-client