$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/xo-EfbT7bD1eli5xXl0DHJ5A9Pg.roa File: xo-EfbT7bD1eli5xXl0DHJ5A9Pg.roa (raw, json) Hash identifier: ICAnloFT8cWf4OAe6XQKPf+jlAN0Gnw0JSUez2YveTw= Subject key identifier: C6:8F:84:7D:B4:FB:6C:3D:5E:96:2E:71:5E:5D:03:1C:9E:40:F4:F8 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 03AD Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/xo-EfbT7bD1eli5xXl0DHJ5A9Pg.roa Signing time: Fri 01 Aug 2025 01:55:00 +0000 ROA not before: Fri 01 Aug 2025 01:55:00 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 4721 IP address blocks: 223.165.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 941 (0x3ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 1 01:55:00 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=C68F847DB4FB6C3D5E962E715E5D031C9E40F4F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:39:b0:c1:4c:26:8d:ff:b0:fa:85:95:4c:bd: 1f:4d:8e:40:22:64:f7:f4:b3:8c:7d:5a:f1:4d:cd: c3:ec:be:9b:a2:9c:47:0d:35:32:34:07:d4:c2:8b: 1b:b6:fb:0d:7b:00:87:3a:67:57:92:c0:15:ce:5c: d7:47:12:05:d2:28:ec:75:c1:3b:42:ca:ad:f9:4a: 27:66:0c:20:2d:19:6e:ae:1b:d4:37:88:a1:6a:7f: fd:19:ec:fb:1e:9c:ab:c5:68:83:99:13:ef:af:ac: da:24:c8:4a:28:a7:b0:51:c4:01:05:62:b8:a6:e0: c0:d6:44:3b:31:61:56:02:c2:71:1d:86:6d:0a:d8: da:ce:f0:22:ad:6d:31:d6:3f:f8:c2:5b:79:9c:04: 8b:2d:3b:0a:36:21:69:4b:c7:09:62:10:0f:4a:6c: 6f:74:6c:f5:93:6b:a3:68:46:89:d6:08:5c:2f:b4: bb:ce:6a:c0:b2:b7:bf:22:d2:0c:a2:1a:d3:b7:08: c4:28:75:0f:a3:42:fb:d9:5c:77:ad:e6:f3:fe:ce: 1c:73:46:b6:82:ce:50:f8:38:6a:75:58:bb:23:da: 6d:d8:e7:9c:b9:7f:40:4f:19:bc:8a:8c:60:14:48: 92:49:83:2f:6c:bf:0f:39:a7:71:66:89:03:7d:11: 32:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:8F:84:7D:B4:FB:6C:3D:5E:96:2E:71:5E:5D:03:1C:9E:40:F4:F8 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/xo-EfbT7bD1eli5xXl0DHJ5A9Pg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.165.32.0/19 Signature Algorithm: sha256WithRSAEncryption 26:a0:c7:25:0e:2d:fa:84:cb:fb:50:c8:d1:8e:d3:45:28:87: de:cc:7b:9a:ef:f8:a0:4f:da:19:11:c7:40:60:4e:73:6c:77: 69:3b:f3:86:fc:f1:68:86:dc:80:c4:a0:fc:23:48:cd:5d:a3: e5:d8:c8:c2:7c:c9:16:5c:b2:0c:ad:fe:98:57:a4:3c:a4:b8: 1b:28:44:6a:bd:ed:03:3f:79:ac:60:a6:22:86:fd:6f:98:83: e2:3b:52:be:28:f7:f9:1d:34:ce:d9:d3:86:d8:b2:4e:af:f3: 0c:c5:02:bb:29:6a:60:4f:bc:4b:00:c1:e8:19:d8:7f:c6:dc: ad:3f:31:92:78:1a:dd:e7:ff:cc:af:e0:2f:6d:35:e3:33:1c: 84:a9:4a:e1:36:48:d0:1d:b8:b6:a5:5d:9d:89:c7:c0:e2:52: 0d:9a:9e:82:f0:07:28:cc:5b:68:39:79:24:d1:48:ef:8e:73: 73:b2:74:98:aa:93:13:94:0f:2e:a9:72:de:64:44:33:3c:e5: 46:91:11:33:24:73:5a:57:51:bd:2c:3e:ad:5f:b2:47:78:ac: 62:26:bb:ab:6e:09:87:21:01:e1:33:10:45:0a:49:16:7b:52: 57:73:78:4b:0e:6c:3f:e7:bb:bb:6c:2d:cf:fd:c6:a3:c7:0b: 30:3c:f5:38 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA60wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNTA4MDEw MTU1MDBaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKEM2OEY4NDdEQjRGQjZD M0Q1RTk2MkU3MTVFNUQwMzFDOUU0MEY0RjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpObDBTCaN/7D6hZVMvR9NjkAiZPf0s4x9WvFNzcPsvpuinEcN NTI0B9TCixu2+w17AIc6Z1eSwBXOXNdHEgXSKOx1wTtCyq35SidmDCAtGW6uG9Q3 iKFqf/0Z7PsenKvFaIOZE++vrNokyEoop7BRxAEFYrim4MDWRDsxYVYCwnEdhm0K 2NrO8CKtbTHWP/jCW3mcBIstOwo2IWlLxwliEA9KbG90bPWTa6NoRonWCFwvtLvO asCyt78i0gyiGtO3CMQodQ+jQvvZXHet5vP+zhxzRraCzlD4OGp1WLsj2m3Y55y5 f0BPGbyKjGAUSJJJgy9svw85p3FmiQN9ETLvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUxo+EfbT7bD1eli5xXl0DHJ5A9PgwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL3hvLUVmYlQ3YkQxZWxpNXhYbDBESEo1QTlQZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXfpSAwDQYJKoZIhvcNAQELBQADggEBACagxyUOLfqEy/tQyNGO00Uoh97M e5rv+KBP2hkRx0BgTnNsd2k784b88WiG3IDEoPwjSM1do+XYyMJ8yRZcsgyt/phX pDykuBsoRGq97QM/eaxgpiKG/W+Yg+I7Ur4o9/kdNM7Z04bYsk6v8wzFArspamBP vEsAwegZ2H/G3K0/MZJ4Gt3n/8yv4C9tNeMzHISpSuE2SNAduLalXZ2Jx8DiUg2a noLwByjMW2g5eSTRSO+Oc3OydJiqkxOUDy6pct5kRDM85UaRETMkc1pXUb0sPq1f skd4rGImu6tuCYchAeEzEEUKSRZ7UldzeEsObD/nu7tsLc/9xqPHCzA89Tg= -----END CERTIFICATE-----Generated at Mon Aug 11 13:19:37 2025 by rpki-client