$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/YjEX5D_6RxQo_LwWAoPH1E1eRSc.roa File: YjEX5D_6RxQo_LwWAoPH1E1eRSc.roa (raw, json) Hash identifier: woJ12dWDRPC64yrUe66Nd4BseJ8GZqs8oHNSg4IBOkQ= Subject key identifier: 62:31:17:E4:3F:FA:47:14:28:FC:BC:16:02:83:C7:D4:4D:5E:45:27 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 035B Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/YjEX5D_6RxQo_LwWAoPH1E1eRSc.roa Signing time: Fri 01 Aug 2025 01:43:45 +0000 ROA not before: Fri 01 Aug 2025 01:43:45 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 23790 IP address blocks: 202.157.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 859 (0x35b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 1 01:43:45 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=623117E43FFA471428FCBC160283C7D44D5E4527 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:89:93:15:2f:d5:4b:85:64:cf:61:59:5a:ee: 10:56:a4:8c:23:7d:12:44:ba:ad:41:3a:e4:df:f7: d5:68:67:07:40:73:98:b4:45:5b:a1:42:49:53:06: 80:f3:0f:3e:ea:67:2e:99:76:c6:64:e7:35:d5:cd: fa:3b:a1:6c:cc:8a:4d:b5:a8:a9:6f:15:a7:04:1d: 18:d9:49:ee:64:68:36:cc:74:c6:14:df:72:55:e2: 2e:b4:97:67:fa:2a:4c:10:1c:1d:e5:b1:38:6a:dc: 1e:f2:75:bd:a9:33:fb:e4:cb:e3:95:ea:30:06:b6: 0b:c0:ad:0d:bf:c4:6f:58:0f:43:0e:e5:8d:6d:d5: b3:3e:f9:aa:67:25:22:24:24:02:55:85:48:41:ee: 2e:e3:9b:7f:f4:fe:48:c8:54:57:c8:eb:e6:e6:22: 55:72:d1:fc:b3:39:3b:d0:b1:0f:9d:da:ef:21:bf: 4a:2a:53:d0:23:40:0b:1c:ef:30:84:dc:6b:19:48: ab:d3:a6:0e:87:22:08:bc:fb:4e:b1:f3:64:7c:4a: 80:67:d7:0f:ae:21:b6:d4:8d:b5:49:f7:62:a6:6c: 64:06:a4:4e:02:39:42:4f:de:bc:6c:fb:bb:53:5e: 3c:8a:de:d8:3b:52:1b:75:79:10:74:aa:91:bc:ce: 31:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:31:17:E4:3F:FA:47:14:28:FC:BC:16:02:83:C7:D4:4D:5E:45:27 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/YjEX5D_6RxQo_LwWAoPH1E1eRSc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.157.0.0/18 Signature Algorithm: sha256WithRSAEncryption 66:45:64:e8:94:06:9e:d4:fe:53:e3:58:0c:6e:8c:07:89:06: a0:50:26:1c:c7:ad:df:30:06:06:be:ce:22:90:c7:ab:d9:be: a9:b5:a6:c4:0b:3b:c9:5a:99:b0:96:ee:4d:e3:8e:b8:ab:bf: c2:b5:f3:1e:3a:f3:55:57:26:c7:0d:f9:59:03:6e:bf:c8:27: bf:d7:a8:00:b3:2e:04:cd:ce:16:44:24:a0:d8:9d:77:78:02: f1:68:e3:5d:84:50:8a:a4:c8:a1:1b:ff:38:cb:f6:c1:8a:85: 48:c9:83:10:16:7d:30:11:fc:f9:82:1f:bf:4a:22:cb:09:33: 92:69:af:e2:8f:0c:0a:7b:1a:7f:6e:f9:55:5a:81:ca:71:59: 60:df:c9:f1:2d:22:87:82:0f:98:6b:dc:9b:e6:ac:1e:df:86: 61:f0:7c:9e:f2:85:e4:dd:26:0a:f0:a3:33:5d:56:38:99:34: 62:c4:7b:e2:2b:be:95:01:c9:5f:15:f0:d6:97:76:93:91:8a: 78:32:b3:82:eb:db:0e:85:4f:23:82:39:9c:a8:d0:7e:07:4b: 23:12:44:3a:ce:8e:13:3f:eb:30:df:47:5e:b0:56:ab:1c:3a: a7:79:74:33:d6:5d:2c:0d:e4:32:bb:43:d0:bd:39:5a:a0:fb: 29:76:c6:d4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA1swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNTA4MDEw MTQzNDVaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDYyMzExN0U0M0ZGQTQ3 MTQyOEZDQkMxNjAyODNDN0Q0NEQ1RTQ1MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQiZMVL9VLhWTPYVla7hBWpIwjfRJEuq1BOuTf99VoZwdAc5i0 RVuhQklTBoDzDz7qZy6ZdsZk5zXVzfo7oWzMik21qKlvFacEHRjZSe5kaDbMdMYU 33JV4i60l2f6KkwQHB3lsThq3B7ydb2pM/vky+OV6jAGtgvArQ2/xG9YD0MO5Y1t 1bM++apnJSIkJAJVhUhB7i7jm3/0/kjIVFfI6+bmIlVy0fyzOTvQsQ+d2u8hv0oq U9AjQAsc7zCE3GsZSKvTpg6HIgi8+06x82R8SoBn1w+uIbbUjbVJ92KmbGQGpE4C OUJP3rxs+7tTXjyK3tg7Uht1eRB0qpG8zjHJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYjEX5D/6RxQo/LwWAoPH1E1eRScwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL1lqRVg1RF82UnhRb19Md1dBb1BIMUUxZVJTYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbKnQAwDQYJKoZIhvcNAQELBQADggEBAGZFZOiUBp7U/lPjWAxujAeJBqBQ JhzHrd8wBga+ziKQx6vZvqm1psQLO8lambCW7k3jjrirv8K18x4681VXJscN+VkD br/IJ7/XqACzLgTNzhZEJKDYnXd4AvFo412EUIqkyKEb/zjL9sGKhUjJgxAWfTAR /PmCH79KIssJM5Jpr+KPDAp7Gn9u+VVagcpxWWDfyfEtIoeCD5hr3JvmrB7fhmHw fJ7yheTdJgrwozNdVjiZNGLEe+IrvpUByV8V8NaXdpORingys4Lr2w6FTyOCOZyo 0H4HSyMSRDrOjhM/6zDfR16wVqscOqd5dDPWXSwN5DK7Q9C9OVqg+yl2xtQ= -----END CERTIFICATE-----Generated at Mon Aug 11 13:21:21 2025 by rpki-client