$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/AFiJiS0s81zZWvSYtTomCIFPoCk.roa File: AFiJiS0s81zZWvSYtTomCIFPoCk.roa (raw, json) Hash identifier: sERlT8pBOuAzcbrbhmAVrcg3UlcHDfdPnONz5TjboaA= Subject key identifier: 00:58:89:89:2D:2C:F3:5C:D9:5A:F4:98:B5:3A:26:08:81:4F:A0:29 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 03B4 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/AFiJiS0s81zZWvSYtTomCIFPoCk.roa Signing time: Fri 01 Aug 2025 01:58:48 +0000 ROA not before: Fri 01 Aug 2025 01:58:48 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 9824 IP address blocks: 58.85.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 948 (0x3b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 1 01:58:48 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=005889892D2CF35CD95AF498B53A2608814FA029 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:05:ff:d0:73:d2:3e:81:4e:ee:85:21:b6:79: a0:88:f8:0e:98:d7:43:09:9d:e2:97:8d:34:0d:e5: b5:65:bf:9d:e4:61:b6:31:8d:6c:19:f9:2e:de:a8: 15:3e:02:7d:3b:b0:14:96:a6:32:48:10:2a:a8:ad: 93:62:d9:40:82:6a:87:a0:b1:34:7b:be:ea:e8:b0: e0:e9:16:b3:8a:23:f2:e2:fe:37:5d:aa:00:70:f9: 0b:81:3f:cd:1e:75:c4:1c:c6:34:c6:e2:7c:ae:10: cc:d1:0e:85:06:c1:28:92:04:75:6e:65:0c:3d:86: 37:98:b1:70:a7:7f:06:9c:83:2c:e4:18:6c:a6:a4: 91:99:44:8d:a1:c5:e7:9c:d1:bc:bf:a3:e2:6d:9a: ef:a5:09:d6:5f:2c:a0:db:b7:51:c2:d2:a2:b8:3d: c3:36:95:f5:9d:aa:5c:0b:96:bf:0d:d1:a7:bc:0e: af:a5:45:72:ed:9a:d0:87:4d:94:69:58:65:27:2d: de:76:60:68:58:b8:c0:ab:a7:f4:19:f6:12:b9:70: 90:64:6f:1d:42:75:23:f5:c2:12:43:5f:a0:0e:9b: da:d9:8f:5e:5d:ab:ae:28:0a:56:6e:2c:1a:eb:27: 1d:c6:40:6a:3d:be:c5:08:14:8e:02:4a:03:a8:ea: 0a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:58:89:89:2D:2C:F3:5C:D9:5A:F4:98:B5:3A:26:08:81:4F:A0:29 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/AFiJiS0s81zZWvSYtTomCIFPoCk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.85.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3e:42:5b:71:7a:93:5c:e0:fd:28:ed:fb:d6:25:68:98:85:b2: 40:77:57:a8:02:65:2f:07:e6:b8:1e:c9:0c:54:a5:fa:4f:45: 6b:22:08:f4:d2:94:bd:71:74:d0:37:01:f8:81:3e:5f:e6:61: 0d:b3:48:6a:ba:97:fa:36:04:9c:68:84:0f:1b:04:40:65:db: e1:4f:59:30:d7:17:e1:09:21:15:b4:b3:70:2f:a0:b4:59:a9: 9e:b3:ee:13:47:49:b1:81:f7:ce:f8:31:c5:ec:4f:cf:30:e4: 69:c3:bd:e9:1a:74:be:32:2e:9e:a3:79:c1:ac:79:03:09:18: 78:9e:21:11:8f:f0:b5:6e:35:7d:ba:3f:da:9b:57:fe:08:c9: fc:65:28:f4:33:6c:d5:ea:a7:35:12:a3:9f:7e:70:a0:a7:e5: a9:0b:8f:73:57:15:19:67:68:05:20:8a:52:ad:5a:10:1d:e5: 16:cb:3d:62:f8:be:d6:34:95:01:15:11:fa:0c:11:7a:0b:1c: 58:3d:95:52:8e:74:22:de:b8:b0:43:f2:2f:aa:f7:31:7d:2e: 35:1e:b4:4a:65:9f:0f:82:32:1a:33:5c:21:a2:99:8a:23:62: a2:51:cb:fe:06:22:7b:d5:1e:03:79:de:8a:d6:a7:ff:92:93: 9f:3f:50:74 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICA7QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNTA4MDEw MTU4NDhaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDAwNTg4OTg5MkQyQ0Yz NUNEOTVBRjQ5OEI1M0EyNjA4ODE0RkEwMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbBf/Qc9I+gU7uhSG2eaCI+A6Y10MJneKXjTQN5bVlv53kYbYx jWwZ+S7eqBU+An07sBSWpjJIECqorZNi2UCCaoegsTR7vurosODpFrOKI/Li/jdd qgBw+QuBP80edcQcxjTG4nyuEMzRDoUGwSiSBHVuZQw9hjeYsXCnfwacgyzkGGym pJGZRI2hxeec0by/o+Jtmu+lCdZfLKDbt1HC0qK4PcM2lfWdqlwLlr8N0ae8Dq+l RXLtmtCHTZRpWGUnLd52YGhYuMCrp/QZ9hK5cJBkbx1CdSP1whJDX6AOm9rZj15d q64oClZuLBrrJx3GQGo9vsUIFI4CSgOo6govAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUAFiJiS0s81zZWvSYtTomCIFPoCkwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL0FGaUppUzBzODF6Wld2U1l0VG9tQ0lGUG9Day5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA6VTANBgkqhkiG9w0BAQsFAAOCAQEAPkJbcXqTXOD9KO371iVomIWyQHdX qAJlLwfmuB7JDFSl+k9FayII9NKUvXF00DcB+IE+X+ZhDbNIarqX+jYEnGiEDxsE QGXb4U9ZMNcX4QkhFbSzcC+gtFmpnrPuE0dJsYH3zvgxxexPzzDkacO96Rp0vjIu nqN5wax5AwkYeJ4hEY/wtW41fbo/2ptX/gjJ/GUo9DNs1eqnNRKjn35woKflqQuP c1cVGWdoBSCKUq1aEB3lFss9Yvi+1jSVARUR+gwRegscWD2VUo50It64sEPyL6r3 MX0uNR60SmWfD4IyGjNcIaKZiiNiolHL/gYie9UeA3neitan/5KTnz9QdA== -----END CERTIFICATE-----Generated at Mon Aug 11 13:16:02 2025 by rpki-client