$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/68/3ksAHPoDjefjvicslFyhiBiHQ8g.roa File: 3ksAHPoDjefjvicslFyhiBiHQ8g.roa (raw, json) Hash identifier: 0UDpWJ873lKTvPTw+IInMbidvG1P+X9r7XDglV9u028= Subject key identifier: DE:4B:00:1C:FA:03:8D:E7:E3:BE:27:2C:94:5C:A1:88:18:87:43:C8 Certificate issuer: /CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Certificate serial: 77 Authority key identifier: 65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/3ksAHPoDjefjvicslFyhiBiHQ8g.roa Signing time: Fri 01 Aug 2025 01:31:14 +0000 ROA not before: Fri 01 Aug 2025 01:31:14 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 9374 IP address blocks: 180.188.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Validity Not Before: Aug 1 01:31:14 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=DE4B001CFA038DE7E3BE272C945CA188188743C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:18:2c:44:55:8b:eb:89:4c:74:cb:17:c7:b1: 7f:ba:f1:d7:aa:f6:a9:b0:c8:30:2b:ef:34:6c:7c: cf:55:24:85:12:de:d1:ce:0b:01:b1:5d:c4:06:21: d0:1c:e1:ac:85:1b:c4:69:98:ae:ae:a9:23:dd:03: 9d:42:53:a3:62:c4:20:53:14:67:b6:4e:78:b0:20: eb:a8:8b:dc:89:43:3f:52:aa:91:a1:ea:c9:98:f3: 13:c7:02:18:e1:f9:ab:d3:9c:e2:b0:fd:e0:60:a2: 5c:d1:34:bf:67:0b:b0:75:e7:08:8c:29:16:ce:11: 45:54:2f:e5:8c:91:65:35:5c:83:d6:15:59:4b:bd: f3:7a:2a:b5:40:c1:59:50:0e:53:9b:ef:f1:14:b8: 85:01:df:d7:24:63:e2:68:10:5c:54:cc:60:51:e6: 1a:92:0c:ae:e6:18:41:66:00:6d:05:37:af:29:aa: 8b:72:15:fd:dc:48:71:31:70:46:0a:de:ed:83:7b: d6:b2:be:21:72:9a:fb:56:db:3d:c4:aa:5b:8f:a8: f9:15:d5:58:06:74:1d:bb:fc:ef:46:12:20:1a:2f: 18:90:d4:5d:11:64:bb:ab:dc:2a:61:63:7c:5f:28: c0:e5:31:a4:f4:2e:e3:7e:df:3c:54:fa:8c:bb:ec: 2c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:4B:00:1C:FA:03:8D:E7:E3:BE:27:2C:94:5C:A1:88:18:87:43:C8 X509v3 Authority Key Identifier: keyid:65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/3ksAHPoDjefjvicslFyhiBiHQ8g.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.188.208.0/20 Signature Algorithm: sha256WithRSAEncryption 1d:89:e9:5e:72:ef:45:e0:89:9a:a7:83:fa:5c:0a:c6:2e:4b: a7:cf:4f:bf:af:75:2d:43:ab:45:99:ab:d9:c6:7b:0e:5b:b0: 1d:98:ae:8f:4d:4e:af:c9:33:4e:bf:82:18:fd:99:0f:b0:7e: f2:7d:49:e9:73:e2:bb:c8:50:68:00:5a:fc:a7:9b:3a:ea:0e: bf:df:c6:f4:c7:71:f5:50:59:8c:9f:fb:33:51:13:36:59:bc: c7:bf:8d:d3:97:e1:06:ad:28:86:6c:9a:b5:cc:6b:11:98:c5: 40:c8:0d:0c:50:3d:c9:b1:aa:47:62:46:7f:2c:e1:c2:8e:24: 14:1f:8b:20:6f:56:6f:88:2e:e3:46:67:1e:6d:96:2c:23:27: c2:1e:39:f4:4c:45:ae:78:2e:9f:43:7a:f6:09:54:58:7b:19: 00:08:69:97:4b:aa:21:37:1f:9d:21:6b:5f:db:c3:b5:a9:94: ca:35:fa:34:8e:7e:ee:85:0a:2b:90:70:44:30:e8:1d:1d:c2: fa:13:ef:2f:d8:6a:70:30:34:f6:b1:aa:1d:d1:f7:f3:f7:d2: bd:3c:2f:23:39:50:46:64:ed:1e:c1:21:19:b1:4a:71:b9:5a: 41:e4:4e:db:7f:05:7e:1d:f9:bc:ba:7d:a5:28:c2:bf:3c:d7: b2:7f:48:46 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBdzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2NURF NTJFNjRCRTQzRTMyOEFBNjlGM0FCMkQzNDdGODgzM0VDNjM3MB4XDTI1MDgwMTAx MzExNFoXDTI2MDczMDA2MjkwOFowMzExMC8GA1UEAxMoREU0QjAwMUNGQTAzOERF N0UzQkUyNzJDOTQ1Q0ExODgxODg3NDNDODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALgYLERVi+uJTHTLF8exf7rx16r2qbDIMCvvNGx8z1UkhRLe0c4L AbFdxAYh0BzhrIUbxGmYrq6pI90DnUJTo2LEIFMUZ7ZOeLAg66iL3IlDP1KqkaHq yZjzE8cCGOH5q9Oc4rD94GCiXNE0v2cLsHXnCIwpFs4RRVQv5YyRZTVcg9YVWUu9 83oqtUDBWVAOU5vv8RS4hQHf1yRj4mgQXFTMYFHmGpIMruYYQWYAbQU3rymqi3IV /dxIcTFwRgre7YN71rK+IXKa+1bbPcSqW4+o+RXVWAZ0Hbv870YSIBovGJDUXRFk u6vcKmFjfF8owOUxpPQu437fPFT6jLvsLM8CAwEAAaOCAiIwggIeMB0GA1UdDgQW BBTeSwAc+gON5+O+JyyUXKGIGIdDyDAfBgNVHSMEGDAWgBRl3lLmS+Q+Moqmnzqy 00f4gz7GNzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjgvWmQ1UzVrdmtQaktLcHA4NnN0TkgtSU0teGpjLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWmQ1UzVrdmtQaktLcHA4NnN0TkgtSU0t eGpjLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzY4LzNrc0FIUG9EamVmanZpY3NsRnloaUJpSFE4Zy5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAS0vNAwDQYJKoZIhvcNAQELBQADggEBAB2J6V5y70XgiZqng/pcCsYuS6fPT7+v dS1Dq0WZq9nGew5bsB2Yro9NTq/JM06/ghj9mQ+wfvJ9Selz4rvIUGgAWvynmzrq Dr/fxvTHcfVQWYyf+zNREzZZvMe/jdOX4QatKIZsmrXMaxGYxUDIDQxQPcmxqkdi Rn8s4cKOJBQfiyBvVm+ILuNGZx5tliwjJ8IeOfRMRa54Lp9DevYJVFh7GQAIaZdL qiE3H50ha1/bw7WplMo1+jSOfu6FCiuQcEQw6B0dwvoT7y/YanAwNPaxqh3R9/P3 0r08LyM5UEZk7R7BIRmxSnG5WkHkTtt/BX4d+by6faUowr8817J/SEY= -----END CERTIFICATE-----Generated at Mon Aug 11 15:18:35 2025 by rpki-client