$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/yKOXk4-ktTpY5lGg0_Y1V_q3ymo.roa File: yKOXk4-ktTpY5lGg0_Y1V_q3ymo.roa (raw, json) Hash identifier: rAhDn2RTkAOoWR/2qRP5a3aA/paxF/l6s9Vvrap0OdU= Subject key identifier: C8:A3:97:93:8F:A4:B5:3A:58:E6:51:A0:D3:F6:35:57:FA:B7:CA:6A Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Certificate serial: 01EC Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/yKOXk4-ktTpY5lGg0_Y1V_q3ymo.roa Signing time: Fri 01 Aug 2025 01:33:46 +0000 ROA not before: Fri 01 Aug 2025 01:33:46 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 2497 IP address blocks: 133.238.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Validity Not Before: Aug 1 01:33:46 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=C8A397938FA4B53A58E651A0D3F63557FAB7CA6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:20:84:07:09:e9:02:41:dc:d0:3f:fb:ce:b0: 0f:f9:f9:69:b4:56:a4:b2:84:1f:c3:73:68:1e:18: 60:87:12:75:89:96:38:6b:ad:16:03:c9:de:b7:37: 7c:1d:d3:8c:ab:22:22:aa:1f:b3:df:09:9a:af:c1: 62:fa:31:d9:fb:4a:bc:bb:75:5b:f9:2b:75:94:d2: 69:86:68:b0:84:33:95:59:82:d6:48:1f:0e:36:98: e5:2a:c2:80:67:2a:fb:b1:b7:20:c4:57:b4:20:53: ad:36:2e:66:33:10:2d:7d:ca:4d:83:39:ce:83:d3: 69:72:51:4b:2e:05:59:1b:ce:df:58:28:02:ec:3b: 72:6a:90:50:aa:bc:64:bf:5d:09:bd:13:e5:bf:a5: cc:b3:da:59:2c:00:03:56:67:1f:d0:85:a3:41:f4: de:ea:1a:64:2d:75:da:c5:da:eb:bf:14:1e:bb:9d: f5:31:1c:49:9f:8d:e5:73:9f:bf:a9:89:9b:cd:d8: 8a:91:c1:ea:55:9c:a6:df:80:eb:37:4d:fb:30:2e: a7:56:20:ee:05:8a:b5:9e:c0:ae:17:02:d5:84:ca: 43:00:ce:41:7d:23:ff:51:12:66:69:93:4c:23:80: 45:3e:e1:17:e9:53:c5:71:3d:22:9b:de:13:ce:29: 7a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:A3:97:93:8F:A4:B5:3A:58:E6:51:A0:D3:F6:35:57:FA:B7:CA:6A X509v3 Authority Key Identifier: keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/yKOXk4-ktTpY5lGg0_Y1V_q3ymo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.238.8.0/21 Signature Algorithm: sha256WithRSAEncryption 7b:3a:50:09:0e:17:21:4a:aa:64:a0:f6:96:6d:1d:1a:33:a9: 36:ba:38:47:b6:8c:9b:53:08:d3:8e:79:d1:04:e7:1e:fa:8e: 1f:04:c6:66:08:7a:f8:ff:45:a6:d8:d9:40:80:f0:9e:fa:bb: 0d:ad:8f:a5:39:9f:da:32:b8:21:d8:e5:0c:91:e8:7c:47:32: 51:28:5c:52:7b:89:70:3c:de:b9:b5:01:42:e3:90:b2:f1:6d: be:d9:94:95:f2:b4:b1:fa:ff:d1:b3:1d:48:bc:28:c6:fb:d7: 32:3b:03:79:fd:9b:b2:9b:c6:1c:94:f0:1e:4c:5b:2d:46:b2: 82:2b:9f:d7:80:a9:0b:dc:a4:12:d4:d1:c5:76:f4:13:64:25: a6:b7:6b:7b:c9:08:e9:b8:26:34:d2:dc:56:74:fa:c4:8e:7c: ba:d9:5c:63:8c:0a:89:a6:7d:c0:52:f8:1f:eb:47:91:70:81: 34:b4:be:c0:1b:e9:22:33:7f:77:79:aa:ca:16:08:b5:b0:86: 2d:ae:cb:87:71:42:50:53:dc:1c:63:00:6d:a1:0f:0e:38:44: 02:ab:48:8f:1e:38:08:5a:e6:e4:1d:56:e7:b9:98:bd:9a:9f: 88:0d:f2:b6:cb:16:6a:02:4c:8e:ef:a8:3a:19:fe:f9:38:0f: 68:3a:b9:99 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgICAewwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4 M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yNTA4MDEw MTMzNDZaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKEM4QTM5NzkzOEZBNEI1 M0E1OEU2NTFBMEQzRjYzNTU3RkFCN0NBNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4IIQHCekCQdzQP/vOsA/5+Wm0VqSyhB/Dc2geGGCHEnWJljhr rRYDyd63N3wd04yrIiKqH7PfCZqvwWL6Mdn7Sry7dVv5K3WU0mmGaLCEM5VZgtZI Hw42mOUqwoBnKvuxtyDEV7QgU602LmYzEC19yk2DOc6D02lyUUsuBVkbzt9YKALs O3JqkFCqvGS/XQm9E+W/pcyz2lksAANWZx/QhaNB9N7qGmQtddrF2uu/FB67nfUx HEmfjeVzn7+piZvN2IqRwepVnKbfgOs3TfswLqdWIO4FirWewK4XAtWEykMAzkF9 I/9REmZpk0wjgEU+4RfpU8VxPSKb3hPOKXoHAgMBAAGjggIgMIICHDAdBgNVHQ4E FgQUyKOXk4+ktTpY5lGg0/Y1V/q3ymowHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwELBIGsMIGpMF8GCCsG AQUFBzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzYveUtPWGs0LWt0VHBZNWxHZzBfWTFWX3EzeW1vLnJvYTBGBggr BgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3JyZHAv YXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME A4XuCDANBgkqhkiG9w0BAQsFAAOCAQEAezpQCQ4XIUqqZKD2lm0dGjOpNro4R7aM m1MI04550QTnHvqOHwTGZgh6+P9FptjZQIDwnvq7Da2PpTmf2jK4IdjlDJHofEcy UShcUnuJcDzeubUBQuOQsvFtvtmUlfK0sfr/0bMdSLwoxvvXMjsDef2bspvGHJTw HkxbLUaygiuf14CpC9ykEtTRxXb0E2Qlprdre8kI6bgmNNLcVnT6xI58utlcY4wK iaZ9wFL4H+tHkXCBNLS+wBvpIjN/d3mqyhYItbCGLa7Lh3FCUFPcHGMAbaEPDjhE AqtIjx44CFrm5B1W57mYvZqfiA3ytssWagJMju+oOhn++TgPaDq5mQ== -----END CERTIFICATE-----Generated at Mon Aug 11 02:04:30 2025 by rpki-client