$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/68/YdD-Ix8v3_m2ZhW4pT5Pfl0x9T0.roa File: YdD-Ix8v3_m2ZhW4pT5Pfl0x9T0.roa (raw, json) Hash identifier: JDeN9iLsk5Bu3AAR6GwP7pnRlPTepF9ZDekGyVjmnTo= Subject key identifier: 61:D0:FE:23:1F:2F:DF:F9:B6:66:15:B8:A5:3E:4F:7E:5D:31:F5:3D Certificate issuer: /CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Certificate serial: 6E Authority key identifier: 65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/YdD-Ix8v3_m2ZhW4pT5Pfl0x9T0.roa Signing time: Fri 01 Aug 2025 01:31:09 +0000 ROA not before: Fri 01 Aug 2025 01:31:09 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 9374 IP address blocks: 27.122.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Validity Not Before: Aug 1 01:31:09 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=61D0FE231F2FDFF9B66615B8A53E4F7E5D31F53D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f1:08:01:5e:42:0c:88:04:93:83:32:53:fc: d6:bc:bc:d0:35:28:6c:db:ee:d6:bd:09:2a:b1:f0: 65:97:5a:2e:1d:98:39:9b:7b:ae:99:61:d6:8e:11: b3:f7:f3:e9:48:ce:5b:81:e5:d0:5a:c6:21:0b:51: 6c:8d:6a:b2:1d:32:f9:62:ad:6a:6b:7e:dc:6e:58: c6:99:bb:11:bb:99:af:e1:15:1e:44:e7:ae:26:27: a5:1b:22:2e:26:a1:88:0d:14:ec:78:5a:01:e5:34: 7d:98:50:bd:a3:50:ed:7e:5a:62:2b:1b:55:ec:21: d5:02:1a:0c:0f:fa:97:db:8c:01:29:8a:19:ad:c6: cd:13:83:f0:83:c9:c0:c9:a4:7d:6e:4f:60:3d:81: 7e:54:14:50:fc:c1:04:21:70:52:56:76:c1:76:6a: e8:5e:11:08:25:60:d3:9e:9d:41:90:c8:84:4d:13: d2:5d:c4:e0:8a:37:c8:5b:7b:90:bb:b2:8a:ef:f5: 8e:8f:ad:8d:22:50:e2:09:65:b0:ee:8e:50:ab:bd: 54:6c:fc:c3:d0:fb:f7:18:5d:f3:0e:4c:3a:a8:e4: 04:ac:91:f2:95:e4:e6:88:43:af:e0:7f:39:55:5d: 9a:91:bc:3b:eb:dc:1e:ac:b4:34:c0:c1:57:fe:95: 35:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D0:FE:23:1F:2F:DF:F9:B6:66:15:B8:A5:3E:4F:7E:5D:31:F5:3D X509v3 Authority Key Identifier: keyid:65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/YdD-Ix8v3_m2ZhW4pT5Pfl0x9T0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.122.96.0/20 Signature Algorithm: sha256WithRSAEncryption 5f:23:7b:36:73:ac:fb:96:08:c1:49:b6:db:85:e0:ef:c1:05: 20:45:6c:bf:21:67:6f:ad:e5:ed:e3:f9:1e:69:86:df:c8:fe: 0d:98:c7:38:2f:f3:94:b4:e9:52:4b:7e:5e:48:d5:62:23:17: fc:2f:16:dd:af:d7:7c:01:01:45:b8:d4:c8:72:08:ef:97:fb: ed:2c:eb:52:e4:95:96:4a:71:65:4c:6c:f7:3e:fc:d1:4a:a0: 8f:7b:f7:13:6a:13:8f:74:b5:29:b0:d1:f1:d4:48:19:59:a6: b4:af:0c:5e:af:31:1a:33:fb:c6:a0:c1:fa:25:a4:32:84:dd: ec:32:e5:b4:e1:31:e2:d7:65:91:6d:1e:78:bc:7d:0e:7f:ac: 36:6b:09:23:2e:6c:9c:22:aa:b1:4f:8f:a2:65:14:ca:0e:bf: 90:bb:31:14:7e:c3:9c:18:b4:92:96:60:04:c8:09:1b:6a:93: 4e:64:ff:80:f9:14:6e:e4:7a:1a:a7:ea:d2:ad:8d:bd:c5:65: 27:ab:60:c0:ff:ad:2e:82:77:f4:b6:5c:a0:9f:84:5e:39:70: 53:09:4d:b8:03:8c:cd:54:bf:e7:91:b5:e0:59:c1:61:63:1e: 84:9c:6b:93:8a:ec:ee:0b:59:4b:0a:f5:d6:c6:e5:54:6a:64: be:95:da:3a -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBbjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2NURF NTJFNjRCRTQzRTMyOEFBNjlGM0FCMkQzNDdGODgzM0VDNjM3MB4XDTI1MDgwMTAx MzEwOVoXDTI2MDczMDA2MjkwOFowMzExMC8GA1UEAxMoNjFEMEZFMjMxRjJGREZG OUI2NjYxNUI4QTUzRTRGN0U1RDMxRjUzRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJ7xCAFeQgyIBJODMlP81ry80DUobNvu1r0JKrHwZZdaLh2YOZt7 rplh1o4Rs/fz6UjOW4Hl0FrGIQtRbI1qsh0y+WKtamt+3G5Yxpm7EbuZr+EVHkTn riYnpRsiLiahiA0U7HhaAeU0fZhQvaNQ7X5aYisbVewh1QIaDA/6l9uMASmKGa3G zROD8IPJwMmkfW5PYD2BflQUUPzBBCFwUlZ2wXZq6F4RCCVg056dQZDIhE0T0l3E 4Io3yFt7kLuyiu/1jo+tjSJQ4gllsO6OUKu9VGz8w9D79xhd8w5MOqjkBKyR8pXk 5ohDr+B/OVVdmpG8O+vcHqy0NMDBV/6VNeUCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBRh0P4jHy/f+bZmFbilPk9+XTH1PTAfBgNVHSMEGDAWgBRl3lLmS+Q+Moqmnzqy 00f4gz7GNzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjgvWmQ1UzVrdmtQaktLcHA4NnN0TkgtSU0teGpjLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWmQ1UzVrdmtQaktLcHA4NnN0TkgtSU0t eGpjLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzY4L1lkRC1JeDh2M19tMlpoVzRwVDVQZmwweDlUMC5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAQbemAwDQYJKoZIhvcNAQELBQADggEBAF8jezZzrPuWCMFJttuF4O/BBSBFbL8h Z2+t5e3j+R5pht/I/g2Yxzgv85S06VJLfl5I1WIjF/wvFt2v13wBAUW41MhyCO+X ++0s61LklZZKcWVMbPc+/NFKoI979xNqE490tSmw0fHUSBlZprSvDF6vMRoz+8ag wfolpDKE3ewy5bThMeLXZZFtHni8fQ5/rDZrCSMubJwiqrFPj6JlFMoOv5C7MRR+ w5wYtJKWYATICRtqk05k/4D5FG7kehqn6tKtjb3FZSerYMD/rS6Cd/S2XKCfhF45 cFMJTbgDjM1Uv+eRteBZwWFjHoSca5OK7O4LWUsK9dbG5VRqZL6V2jo= -----END CERTIFICATE-----Generated at Mon Aug 11 15:11:57 2025 by rpki-client