$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/2lpRQJbchEyZ6ELER22z5kkgaKU.roa File: 2lpRQJbchEyZ6ELER22z5kkgaKU.roa (raw, json) Hash identifier: D9ewiRGxBBFjG0Dody0/yXckkD4TTax3vFZOCQvHOb8= Subject key identifier: DA:5A:51:40:96:DC:84:4C:99:E8:42:C4:47:6D:B3:E6:49:20:68:A5 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 0383 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/2lpRQJbchEyZ6ELER22z5kkgaKU.roa Signing time: Fri 01 Aug 2025 01:50:52 +0000 ROA not before: Fri 01 Aug 2025 01:50:52 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 4721 IP address blocks: 175.41.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 899 (0x383) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 1 01:50:52 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=DA5A514096DC844C99E842C4476DB3E6492068A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1d:7f:77:35:a6:71:cc:4f:50:a8:db:83:0b: 40:84:4c:9c:3d:fc:ea:35:04:de:c5:28:0a:79:59: 30:8d:fc:e1:84:1c:f5:bd:91:db:c1:7b:81:e9:dc: 26:9a:be:1a:81:29:0a:b6:97:b4:6a:cb:bc:58:d8: 18:b3:b2:48:6b:47:b7:8c:24:f9:48:7f:d8:f7:55: a0:04:2b:20:72:bc:24:65:46:b5:a4:01:fc:d3:fd: 30:12:78:aa:4a:8e:29:c9:63:2f:ed:69:c1:63:f2: 6a:83:7a:d4:71:77:a5:cc:7b:43:c5:d0:c0:9c:69: 8e:be:a9:1a:ba:29:7d:cd:59:82:49:c5:35:2a:dd: 36:3a:11:e0:7c:24:c0:47:04:e3:59:44:2e:1e:87: ed:46:08:41:14:f8:23:30:8d:6b:65:71:a1:92:06: 65:8a:c9:e0:a9:61:ce:8f:fb:73:3e:0b:2f:73:7c: 69:8c:a9:59:0e:89:32:3f:b9:26:f3:6e:03:c1:a6: 70:0c:51:40:c1:70:61:d4:8d:d5:88:94:f3:f7:71: 7f:81:50:da:a4:42:b6:97:d6:e6:9f:22:09:33:83: 8f:cf:bf:08:7b:6e:c0:82:f0:40:83:a7:12:98:e0: 06:76:7a:98:93:93:35:19:21:83:9c:9f:64:c0:9e: 13:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:5A:51:40:96:DC:84:4C:99:E8:42:C4:47:6D:B3:E6:49:20:68:A5 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/2lpRQJbchEyZ6ELER22z5kkgaKU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.41.64.0/18 Signature Algorithm: sha256WithRSAEncryption 5b:f4:5b:05:d4:76:90:aa:62:40:1e:f6:34:26:e7:a0:97:2d: d0:5f:dd:57:a7:f0:f7:47:23:d0:6c:a4:9d:6d:b4:ae:11:2c: 3f:f6:1b:9e:35:8b:cc:02:ef:a4:72:c4:c6:17:d8:e7:f0:05: 03:0b:0f:d8:2f:8a:68:c9:38:f8:57:51:10:02:e4:8c:32:11: cc:8c:66:76:9a:50:4d:35:d7:cc:b0:d5:52:e0:8d:1e:4b:f3: cc:3e:9f:1f:4f:2d:bc:86:24:ed:ff:c7:bb:e0:19:63:de:41: 36:5b:d1:55:f9:b0:c6:66:da:24:31:da:1d:ae:8e:f9:92:38: 3f:4a:56:70:1f:af:0d:0a:ad:7b:3a:93:e6:49:fd:9f:9c:2e: b9:93:88:16:4a:b2:5e:e7:01:ef:46:46:8b:e8:96:6b:fc:d0: ae:ea:5f:6f:dd:08:c2:37:a6:3c:b0:4e:27:c3:08:dd:7a:68: 0a:91:49:50:8a:07:27:64:9f:f6:d9:60:51:6d:1c:64:ea:d2: d5:ff:72:a6:8d:66:92:ed:bc:1a:91:42:ea:05:d5:57:38:79: 13:1e:3c:93:26:a3:ff:39:f2:24:82:0a:07:41:a9:96:dd:60: e3:a5:51:83:28:2d:d5:76:78:17:b7:19:ef:40:af:ca:32:10: 4a:f1:22:1c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA4MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNTA4MDEw MTUwNTJaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKERBNUE1MTQwOTZEQzg0 NEM5OUU4NDJDNDQ3NkRCM0U2NDkyMDY4QTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKHX93NaZxzE9QqNuDC0CETJw9/Oo1BN7FKAp5WTCN/OGEHPW9 kdvBe4Hp3CaavhqBKQq2l7Rqy7xY2BizskhrR7eMJPlIf9j3VaAEKyByvCRlRrWk AfzT/TASeKpKjinJYy/tacFj8mqDetRxd6XMe0PF0MCcaY6+qRq6KX3NWYJJxTUq 3TY6EeB8JMBHBONZRC4eh+1GCEEU+CMwjWtlcaGSBmWKyeCpYc6P+3M+Cy9zfGmM qVkOiTI/uSbzbgPBpnAMUUDBcGHUjdWIlPP3cX+BUNqkQraX1uafIgkzg4/Pvwh7 bsCC8ECDpxKY4AZ2epiTkzUZIYOcn2TAnhNxAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU2lpRQJbchEyZ6ELER22z5kkgaKUwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxLzJscFJRSmJjaEV5WjZFTEVSMjJ6NWtrZ2FLVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAavKUAwDQYJKoZIhvcNAQELBQADggEBAFv0WwXUdpCqYkAe9jQm56CXLdBf 3Ven8PdHI9BspJ1ttK4RLD/2G541i8wC76RyxMYX2OfwBQMLD9gvimjJOPhXURAC 5IwyEcyMZnaaUE0118yw1VLgjR5L88w+nx9PLbyGJO3/x7vgGWPeQTZb0VX5sMZm 2iQx2h2ujvmSOD9KVnAfrw0KrXs6k+ZJ/Z+cLrmTiBZKsl7nAe9GRovolmv80K7q X2/dCMI3pjywTifDCN16aAqRSVCKBydkn/bZYFFtHGTq0tX/cqaNZpLtvBqRQuoF 1Vc4eRMePJMmo/858iSCCgdBqZbdYOOlUYMoLdV2eBe3Ge9Ar8oyEErxIhw= -----END CERTIFICATE-----Generated at Mon Aug 11 13:34:39 2025 by rpki-client