$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/onGapDxQXYBzDAAMUcLXlg3RKBg.roa File: onGapDxQXYBzDAAMUcLXlg3RKBg.roa (raw, json) Hash identifier: nzJoWslDrqgL5q9dK2mcRQddgqiz53EC5Wjn47zwMnw= Subject key identifier: A2:71:9A:A4:3C:50:5D:80:73:0C:00:0C:51:C2:D7:96:0D:D1:28:18 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 0324 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/onGapDxQXYBzDAAMUcLXlg3RKBg.roa Signing time: Fri 01 Aug 2025 01:34:49 +0000 ROA not before: Fri 01 Aug 2025 01:34:49 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 9824 IP address blocks: 210.228.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 804 (0x324) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 1 01:34:49 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=A2719AA43C505D80730C000C51C2D7960DD12818 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:2d:00:a3:2d:6f:0c:ab:23:35:9e:a2:59:50: 25:d5:a6:c6:26:9f:56:29:16:3d:db:00:a3:c5:56: 9e:f5:91:eb:97:78:d5:27:a8:8e:f1:70:5d:d8:7b: 30:f8:9e:eb:7b:52:cc:bc:53:69:25:be:e3:4c:55: ff:1d:33:81:af:26:1e:a5:b1:c4:cf:24:b1:e4:92: 7a:16:42:10:08:28:2a:4e:98:c2:95:bb:22:03:70: f9:51:ab:5a:b3:46:14:dc:b5:07:70:c6:63:60:ee: 96:68:0b:31:90:57:4b:ea:4b:2a:f8:d8:4d:44:a1: a1:fa:1d:fe:9b:03:b0:3f:d4:8c:f5:38:51:e0:a8: 0b:86:d6:b4:13:37:b0:d0:2c:ad:d0:5a:56:1b:e3: ce:5a:4d:d2:8f:a2:73:f2:66:45:1f:74:05:35:76: 91:84:17:9b:30:00:c9:38:48:a2:ae:42:8f:f9:e4: 8f:e9:2d:e2:18:39:e1:c6:a6:82:b1:7a:1a:3c:d7: 20:b1:b0:0f:72:cf:bf:b6:49:44:ac:59:eb:07:9a: f1:05:ca:e1:61:16:9c:b2:78:50:fb:f3:e9:36:93: 90:e2:7f:29:de:f4:96:8b:04:2f:2f:bc:86:c7:ea: 96:e5:21:64:39:e8:40:a6:b5:9a:51:3b:5e:ba:7d: 09:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:71:9A:A4:3C:50:5D:80:73:0C:00:0C:51:C2:D7:96:0D:D1:28:18 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/onGapDxQXYBzDAAMUcLXlg3RKBg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.228.0.0/20 Signature Algorithm: sha256WithRSAEncryption a7:2c:dd:6e:bd:ef:ce:9f:3e:0a:78:24:2d:c3:6a:25:98:44: f0:c2:23:31:99:a6:9e:7a:2c:2d:01:d1:14:bc:50:5d:a2:19: 54:98:1e:f2:77:cc:ae:f5:3e:fe:75:d3:7f:94:de:25:28:db: 9e:2e:44:6f:ff:f5:1a:84:d8:f7:cf:9f:4f:35:23:7a:d2:20: d6:d1:11:fb:58:32:c3:06:83:4d:9b:c9:32:e4:09:d6:09:57: 0b:f1:a4:0e:0f:b0:9a:4d:3b:a3:9f:64:3b:b2:f9:f1:15:f0: 0c:2a:e2:d5:16:25:2e:ca:02:6d:9b:2b:fc:d0:65:42:0b:fa: 91:da:5a:98:fd:29:92:ed:61:19:e4:ae:49:48:73:6d:32:9e: f0:f8:77:18:99:48:09:9c:c0:ba:4a:e7:0b:e5:fe:2c:bc:92: 29:b6:6c:8f:b9:d5:63:bd:6b:d7:a8:23:82:83:e8:e4:ba:49: 69:af:48:f1:79:15:2b:37:91:d1:0f:12:68:15:c1:8c:6c:54: 9e:b8:ea:99:9d:9c:ec:79:a0:9a:1b:c0:c7:3e:2b:29:70:ac: 8d:ed:ea:16:74:b8:b4:70:2b:75:fe:ed:a6:26:75:87:1f:c8: c2:d3:74:ed:34:ab:d9:79:45:14:e5:7a:d4:44:be:83:32:aa: 86:e8:ce:e8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAyQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNTA4MDEw MTM0NDlaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKEEyNzE5QUE0M0M1MDVE ODA3MzBDMDAwQzUxQzJENzk2MEREMTI4MTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWLQCjLW8MqyM1nqJZUCXVpsYmn1YpFj3bAKPFVp71keuXeNUn qI7xcF3YezD4nut7Usy8U2klvuNMVf8dM4GvJh6lscTPJLHkknoWQhAIKCpOmMKV uyIDcPlRq1qzRhTctQdwxmNg7pZoCzGQV0vqSyr42E1EoaH6Hf6bA7A/1Iz1OFHg qAuG1rQTN7DQLK3QWlYb485aTdKPonPyZkUfdAU1dpGEF5swAMk4SKKuQo/55I/p LeIYOeHGpoKxeho81yCxsA9yz7+2SUSsWesHmvEFyuFhFpyyeFD78+k2k5Difyne 9JaLBC8vvIbH6pblIWQ56ECmtZpRO166fQkNAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUonGapDxQXYBzDAAMUcLXlg3RKBgwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL29uR2FwRHhRWFlCekRBQU1VY0xYbGczUktCZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATS5AAwDQYJKoZIhvcNAQELBQADggEBAKcs3W69786fPgp4JC3DaiWYRPDC IzGZpp56LC0B0RS8UF2iGVSYHvJ3zK71Pv5103+U3iUo254uRG//9RqE2PfPn081 I3rSINbREftYMsMGg02byTLkCdYJVwvxpA4PsJpNO6OfZDuy+fEV8Awq4tUWJS7K Am2bK/zQZUIL+pHaWpj9KZLtYRnkrklIc20ynvD4dxiZSAmcwLpK5wvl/iy8kim2 bI+51WO9a9eoI4KD6OS6SWmvSPF5FSs3kdEPEmgVwYxsVJ646pmdnOx5oJobwMc+ KylwrI3t6hZ0uLRwK3X+7aYmdYcfyMLTdO00q9l5RRTletREvoMyqobozug= -----END CERTIFICATE-----Generated at Mon Aug 11 13:14:12 2025 by rpki-client