$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/68/C2T3LfEwkZ_AOZ2sbtFUKpo2300.roa File: C2T3LfEwkZ_AOZ2sbtFUKpo2300.roa (raw, json) Hash identifier: 1wRsFZ4Cz8zrOZlIE7Cx+Oq3BUHcCMsYPYkvY7vAPWE= Subject key identifier: 0B:64:F7:2D:F1:30:91:9F:C0:39:9D:AC:6E:D1:54:2A:9A:36:DF:4D Certificate issuer: /CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Certificate serial: 78 Authority key identifier: 65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/C2T3LfEwkZ_AOZ2sbtFUKpo2300.roa Signing time: Fri 01 Aug 2025 01:31:14 +0000 ROA not before: Fri 01 Aug 2025 01:31:14 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 9374 IP address blocks: 180.189.128.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Validity Not Before: Aug 1 01:31:14 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=0B64F72DF130919FC0399DAC6ED1542A9A36DF4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:e4:22:e8:ca:52:9d:25:f1:92:8c:8b:26:95: b1:0a:28:a5:62:dd:17:cd:a0:32:90:ab:15:e2:6f: e5:78:27:e9:5c:f6:1b:c6:36:88:30:fa:4e:28:c9: e0:0c:18:78:2d:b1:49:fa:23:fc:df:e7:f1:dd:24: 01:36:fa:87:0a:da:9f:0c:ae:6e:32:c4:7f:a2:a2: 2f:e3:9e:d0:22:5b:ab:43:b9:f3:52:be:a9:05:df: b3:82:2f:7d:62:16:25:72:86:b6:1b:49:62:8d:bb: ca:18:05:f6:96:34:50:d0:c3:3c:fe:ad:db:29:f5: b7:71:95:a0:e6:e2:f0:ec:f2:02:da:86:b5:0c:f3: f0:d4:f6:55:ab:09:b2:2b:27:19:d2:89:e3:fa:65: 87:8d:a7:09:2b:c0:5a:c6:3f:aa:b2:fb:52:21:8d: e6:ea:f4:02:c0:d5:47:d5:7d:78:d6:54:2d:23:32: 4a:40:36:63:86:42:f5:64:e1:3b:0e:14:7e:e7:de: 5e:47:99:ae:bc:82:b0:95:23:77:15:1c:8d:bb:81: 05:a1:ca:1c:a0:d8:1d:1c:5a:22:76:bd:ea:22:d3: ad:8f:b2:cf:ae:ff:7f:37:4d:b0:cd:67:ec:32:45: 6d:fe:c9:e1:a7:fb:11:5a:cb:0f:5d:a3:78:6a:52: fc:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:64:F7:2D:F1:30:91:9F:C0:39:9D:AC:6E:D1:54:2A:9A:36:DF:4D X509v3 Authority Key Identifier: keyid:65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/C2T3LfEwkZ_AOZ2sbtFUKpo2300.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.189.128.0/21 Signature Algorithm: sha256WithRSAEncryption 15:ff:11:bc:6b:94:8e:b8:e5:a4:71:21:e9:7d:3b:f6:d2:9c: 1f:74:eb:8a:9f:21:ea:41:5c:b2:01:12:ad:09:65:30:b3:96: d5:36:f5:e3:d1:ed:a8:5a:f7:32:a4:a2:4e:11:dd:ab:2a:c3: 7f:d0:1e:ec:73:2e:5d:73:40:1f:c1:7c:76:e0:2a:e9:fc:47: e7:db:bb:fe:47:12:50:bd:05:4d:63:c2:19:ef:bc:73:53:75: f1:3f:eb:26:74:6a:ee:5f:e9:0f:d6:b6:e2:a1:18:d7:05:1e: 9e:02:e9:01:69:c4:48:b8:08:b5:34:d1:d7:83:6f:f0:fd:92: 16:64:af:d0:6b:d5:34:05:97:d3:a3:9a:68:86:2c:63:64:c7: 1c:28:27:d2:cf:92:20:83:60:1d:6e:79:09:4e:9d:3d:a0:6b: af:b0:0a:9d:65:d7:b0:0c:86:85:c5:e6:c3:df:39:0a:fc:f5: 47:a7:8c:38:36:17:87:4e:75:f1:4c:83:c8:4f:1e:0c:0c:b3: aa:3a:01:9e:1e:ee:23:06:fa:31:eb:86:73:02:ee:d1:1b:51: c1:f9:2d:81:44:e8:e2:33:c8:fd:6a:26:dd:45:2a:44:a1:b5: f8:3e:bf:97:97:5d:1e:b2:91:1b:96:e5:0f:9c:84:9f:12:5f: 30:29:89:87 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBeDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2NURF NTJFNjRCRTQzRTMyOEFBNjlGM0FCMkQzNDdGODgzM0VDNjM3MB4XDTI1MDgwMTAx MzExNFoXDTI2MDczMDA2MjkwOFowMzExMC8GA1UEAxMoMEI2NEY3MkRGMTMwOTE5 RkMwMzk5REFDNkVEMTU0MkE5QTM2REY0RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPHkIujKUp0l8ZKMiyaVsQoopWLdF82gMpCrFeJv5Xgn6Vz2G8Y2 iDD6TijJ4AwYeC2xSfoj/N/n8d0kATb6hwranwyubjLEf6KiL+Oe0CJbq0O581K+ qQXfs4IvfWIWJXKGthtJYo27yhgF9pY0UNDDPP6t2yn1t3GVoObi8OzyAtqGtQzz 8NT2VasJsisnGdKJ4/plh42nCSvAWsY/qrL7UiGN5ur0AsDVR9V9eNZULSMySkA2 Y4ZC9WThOw4UfufeXkeZrryCsJUjdxUcjbuBBaHKHKDYHRxaIna96iLTrY+yz67/ fzdNsM1n7DJFbf7J4af7EVrLD12jeGpS/MMCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBQLZPct8TCRn8A5naxu0VQqmjbfTTAfBgNVHSMEGDAWgBRl3lLmS+Q+Moqmnzqy 00f4gz7GNzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjgvWmQ1UzVrdmtQaktLcHA4NnN0TkgtSU0teGpjLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWmQ1UzVrdmtQaktLcHA4NnN0TkgtSU0t eGpjLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzY4L0MyVDNMZkV3a1pfQU9aMnNidEZVS3BvMjMwMC5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAO0vYAwDQYJKoZIhvcNAQELBQADggEBABX/EbxrlI645aRxIel9O/bSnB9064qf IepBXLIBEq0JZTCzltU29ePR7aha9zKkok4R3asqw3/QHuxzLl1zQB/BfHbgKun8 R+fbu/5HElC9BU1jwhnvvHNTdfE/6yZ0au5f6Q/WtuKhGNcFHp4C6QFpxEi4CLU0 0deDb/D9khZkr9Br1TQFl9OjmmiGLGNkxxwoJ9LPkiCDYB1ueQlOnT2ga6+wCp1l 17AMhoXF5sPfOQr89UenjDg2F4dOdfFMg8hPHgwMs6o6AZ4e7iMG+jHrhnMC7tEb UcH5LYFE6OIzyP1qJt1FKkShtfg+v5eXXR6ykRuW5Q+chJ8SXzApiYc= -----END CERTIFICATE-----Generated at Mon Aug 11 15:26:31 2025 by rpki-client