$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/HFVYfpiVjriXGpy30QeRSRkk1tY.roa File: HFVYfpiVjriXGpy30QeRSRkk1tY.roa (raw, json) Hash identifier: lbnfHxO9mJ3p1a9fgLtZGRKOSSPOJfNs84G2OBLRqMo= Subject key identifier: 1C:55:58:7E:98:95:8E:B8:97:1A:9C:B7:D1:07:91:49:19:24:D6:D6 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 0347 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/HFVYfpiVjriXGpy30QeRSRkk1tY.roa Signing time: Fri 01 Aug 2025 01:40:06 +0000 ROA not before: Fri 01 Aug 2025 01:40:06 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 18136 IP address blocks: 117.53.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 839 (0x347) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 1 01:40:06 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=1C55587E98958EB8971A9CB7D10791491924D6D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:79:05:58:6c:a4:91:f7:66:b5:fe:ac:c8:e6: 19:19:c5:2d:93:c7:1d:16:a3:66:36:be:72:9c:4f: 3d:f2:2d:ce:fc:6c:c8:ea:0f:07:7b:f8:a8:d5:52: 64:58:bc:2d:b5:eb:8e:c4:fa:66:6e:8d:e6:13:61: b0:72:3b:11:76:cb:48:41:70:08:97:89:e0:26:8d: c5:81:64:c6:d0:79:76:fc:34:c3:37:fc:ca:88:ed: 41:89:9b:64:46:c6:da:8f:fe:9e:21:8f:eb:5a:9f: f5:f0:80:6d:0a:09:16:b0:57:39:9e:87:ed:af:76: 96:aa:2c:89:c3:c2:96:00:d1:da:1e:a9:a8:5d:6a: 0f:81:63:23:f9:e9:31:58:0f:2c:23:7b:b1:31:ca: d2:67:46:e1:87:20:d1:4d:dc:b8:bb:ec:31:45:3e: 3d:e9:64:1b:bc:04:e4:0c:87:73:91:9e:51:5f:96: 92:31:3b:12:f2:d4:e2:f8:c2:2a:c4:a5:2f:b8:59: 76:9e:f3:4f:9e:09:fa:bf:7a:e7:d1:07:bf:b4:e1: ae:90:95:4e:41:39:5f:58:73:d4:0a:cd:82:d1:b3: 49:3b:e1:11:96:75:e3:c4:e0:56:cc:6c:c7:ab:46: ac:71:49:8c:df:09:4e:82:98:ca:ca:43:1f:c2:e6: b0:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:55:58:7E:98:95:8E:B8:97:1A:9C:B7:D1:07:91:49:19:24:D6:D6 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/HFVYfpiVjriXGpy30QeRSRkk1tY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.53.0.0/19 Signature Algorithm: sha256WithRSAEncryption 1e:91:e4:10:e7:6d:f8:76:45:56:67:e3:97:07:05:67:ae:3c: 7c:bb:3a:fd:ed:e5:60:76:4b:08:22:d3:cb:08:cb:a3:af:88: e1:63:cd:98:c2:6c:c4:74:5d:e3:62:e3:3b:ad:41:30:58:16: 43:a2:40:f3:db:36:db:f8:69:61:12:5d:24:9b:72:98:fc:ec: 8e:fc:92:d2:75:07:8f:28:77:07:c0:b7:7a:a0:d8:64:c4:54: 52:cb:7d:64:51:aa:8d:62:71:1b:95:50:01:30:ab:cf:85:7e: 98:8e:37:df:27:4b:61:5b:04:d0:c0:a4:39:a5:45:6b:f2:f2: a5:df:da:1b:8c:5c:71:5d:37:a4:9c:73:4c:c8:1c:b9:eb:eb: 74:a1:42:80:a4:51:6a:5f:15:79:15:ce:0f:25:b9:b8:b4:65: 85:68:ee:0d:86:c1:f7:0e:61:2d:c3:83:b1:3f:9a:55:fc:35: 75:05:cb:a8:1c:9f:9a:02:a4:02:76:f6:4c:af:5e:67:2b:da: 22:8f:b7:b8:02:f9:d8:88:f8:53:d7:08:b0:bd:08:60:93:43: f6:3e:01:8f:60:39:62:c9:2b:a9:41:c9:c0:24:23:70:b2:9d: 60:ef:e1:37:fa:7a:49:f5:9a:f9:80:37:5d:e1:fb:8c:77:8d: 3b:00:8a:e8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA0cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNTA4MDEw MTQwMDZaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDFDNTU1ODdFOTg5NThF Qjg5NzFBOUNCN0QxMDc5MTQ5MTkyNEQ2RDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxeQVYbKSR92a1/qzI5hkZxS2Txx0Wo2Y2vnKcTz3yLc78bMjq Dwd7+KjVUmRYvC21647E+mZujeYTYbByOxF2y0hBcAiXieAmjcWBZMbQeXb8NMM3 /MqI7UGJm2RGxtqP/p4hj+tan/XwgG0KCRawVzmeh+2vdpaqLInDwpYA0doeqahd ag+BYyP56TFYDywje7ExytJnRuGHINFN3Li77DFFPj3pZBu8BOQMh3ORnlFflpIx OxLy1OL4wirEpS+4WXae80+eCfq/eufRB7+04a6QlU5BOV9Yc9QKzYLRs0k74RGW dePE4FbMbMerRqxxSYzfCU6CmMrKQx/C5rDfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUHFVYfpiVjriXGpy30QeRSRkk1tYwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL0hGVllmcGlWanJpWEdweTMwUWVSU1JrazF0WS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAV1NQAwDQYJKoZIhvcNAQELBQADggEBAB6R5BDnbfh2RVZn45cHBWeuPHy7 Ov3t5WB2Swgi08sIy6OviOFjzZjCbMR0XeNi4zutQTBYFkOiQPPbNtv4aWESXSSb cpj87I78ktJ1B48odwfAt3qg2GTEVFLLfWRRqo1icRuVUAEwq8+FfpiON98nS2Fb BNDApDmlRWvy8qXf2huMXHFdN6Scc0zIHLnr63ShQoCkUWpfFXkVzg8lubi0ZYVo 7g2GwfcOYS3Dg7E/mlX8NXUFy6gcn5oCpAJ29kyvXmcr2iKPt7gC+diI+FPXCLC9 CGCTQ/Y+AY9gOWLJK6lBycAkI3CynWDv4Tf6ekn1mvmAN13h+4x3jTsAiug= -----END CERTIFICATE-----Generated at Mon Aug 11 13:28:43 2025 by rpki-client