$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/4NzdufqZUdqPArA-gllTwcRkXWA.roa File: 4NzdufqZUdqPArA-gllTwcRkXWA.roa (raw, json) Hash identifier: H6ZoNAtGuwyX1IyoKH9B9BSwg9g5CBEba7lEQGcu79o= Subject key identifier: E0:DC:DD:B9:FA:99:51:DA:8F:02:B0:3E:82:59:53:C1:C4:64:5D:60 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 0381 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/4NzdufqZUdqPArA-gllTwcRkXWA.roa Signing time: Fri 01 Aug 2025 01:47:23 +0000 ROA not before: Fri 01 Aug 2025 01:47:23 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 4721 IP address blocks: 123.98.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 897 (0x381) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 1 01:47:23 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=E0DCDDB9FA9951DA8F02B03E825953C1C4645D60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:43:80:e4:3e:3d:8d:74:89:f2:fc:47:a4:d9: 24:ed:03:ec:a3:93:af:31:51:ea:f5:4e:20:8c:2a: 9c:72:c4:db:c7:95:69:22:b7:f1:5f:2f:3b:f2:0b: ee:77:1b:bf:a0:34:bb:aa:17:7e:8e:20:28:26:ec: 6b:14:a8:eb:2c:0c:ff:5b:0e:30:02:a2:72:a4:e3: 34:a3:78:6a:b1:36:f0:b5:6a:80:eb:26:49:8e:17: 3d:2c:81:b7:50:e3:d1:3b:df:55:13:c3:b3:e4:c9: 56:17:cd:81:e0:9c:c9:b0:3c:9c:ce:64:b1:5c:bd: 5f:31:40:2a:7f:49:f0:42:db:17:87:cc:bb:de:04: 2e:8b:b5:00:e2:c6:e3:7c:92:9e:5a:c5:0c:0e:82: 48:26:d3:a1:96:6d:a2:a3:b2:40:4e:13:79:37:54: a4:04:27:a0:d9:17:1a:2e:2c:1c:3b:cf:a9:52:f7: 3f:ad:14:cb:2f:02:c0:c1:5d:db:6f:6f:3b:19:03: 23:d4:3e:e0:21:19:f3:f7:ae:bb:26:3e:5a:59:56: 61:05:4a:24:f2:5d:79:61:89:77:0b:87:85:d2:11: 0d:42:07:dc:11:c7:8f:09:0c:78:fb:a0:85:d8:fb: d6:59:4b:80:5b:11:4a:9c:c8:b4:0f:38:e5:96:37: 65:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:DC:DD:B9:FA:99:51:DA:8F:02:B0:3E:82:59:53:C1:C4:64:5D:60 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/4NzdufqZUdqPArA-gllTwcRkXWA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.98.224.0/19 Signature Algorithm: sha256WithRSAEncryption 48:dd:d1:39:b5:68:d4:c8:ca:1b:de:67:f8:ef:8f:71:cd:a9: 27:70:86:30:f0:a9:d4:3b:05:0c:92:78:93:e4:ec:af:96:35: 9d:3c:c6:94:e6:bc:0d:27:41:a4:08:ae:19:a4:e8:4a:7b:81: 84:c7:f6:bd:d4:63:36:f5:65:3b:ba:15:e9:06:1e:f3:a0:30: e6:71:06:2a:bb:79:cd:dd:4a:9c:6f:eb:55:92:0c:9f:ee:f4: 07:c2:a4:ec:e4:f6:6f:ad:84:42:a5:a8:39:21:69:52:a2:23: 26:01:22:1a:0c:ed:72:b2:66:4a:d6:e2:fc:4c:0e:13:8e:48: ae:e9:1b:7b:c8:27:f5:be:ee:fb:9f:43:01:08:c1:dc:2f:4d: 1d:cc:58:c7:52:b2:73:6e:33:26:d7:36:5e:e9:52:e7:ec:23: 04:27:9c:ee:57:9e:b2:7e:41:4f:9a:74:9f:92:9e:92:25:36: 93:c4:ab:9e:ca:c8:3a:2d:5d:1b:9f:db:c2:87:8d:82:b5:f8: 11:00:77:4e:63:c9:61:f6:11:61:f0:04:77:a4:b4:81:19:56: c7:ea:35:24:31:8a:73:fc:16:a1:ad:64:9a:9f:65:dd:a4:b6: ba:ef:b7:81:6c:b9:f5:8c:2c:50:95:37:48:55:2e:81:db:40: bd:13:b9:ab -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA4EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNTA4MDEw MTQ3MjNaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKEUwRENEREI5RkE5OTUx REE4RjAyQjAzRTgyNTk1M0MxQzQ2NDVENjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKQ4DkPj2NdIny/Eek2STtA+yjk68xUer1TiCMKpxyxNvHlWki t/FfLzvyC+53G7+gNLuqF36OICgm7GsUqOssDP9bDjAConKk4zSjeGqxNvC1aoDr JkmOFz0sgbdQ49E731UTw7PkyVYXzYHgnMmwPJzOZLFcvV8xQCp/SfBC2xeHzLve BC6LtQDixuN8kp5axQwOgkgm06GWbaKjskBOE3k3VKQEJ6DZFxouLBw7z6lS9z+t FMsvAsDBXdtvbzsZAyPUPuAhGfP3rrsmPlpZVmEFSiTyXXlhiXcLh4XSEQ1CB9wR x48JDHj7oIXY+9ZZS4BbEUqcyLQPOOWWN2XHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU4NzdufqZUdqPArA+gllTwcRkXWAwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxLzROemR1ZnFaVWRxUEFyQS1nbGxUd2NSa1hXQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAV7YuAwDQYJKoZIhvcNAQELBQADggEBAEjd0Tm1aNTIyhveZ/jvj3HNqSdw hjDwqdQ7BQySeJPk7K+WNZ08xpTmvA0nQaQIrhmk6Ep7gYTH9r3UYzb1ZTu6FekG HvOgMOZxBiq7ec3dSpxv61WSDJ/u9AfCpOzk9m+thEKlqDkhaVKiIyYBIhoM7XKy ZkrW4vxMDhOOSK7pG3vIJ/W+7vufQwEIwdwvTR3MWMdSsnNuMybXNl7pUufsIwQn nO5XnrJ+QU+adJ+SnpIlNpPEq57KyDotXRuf28KHjYK1+BEAd05jyWH2EWHwBHek tIEZVsfqNSQxinP8FqGtZJqfZd2ktrrvt4FsufWMLFCVN0hVLoHbQL0Tuas= -----END CERTIFICATE-----Generated at Mon Aug 11 13:32:26 2025 by rpki-client