$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/68/lDfWMLl839knPfmilgok6hWHTfM.roa File: lDfWMLl839knPfmilgok6hWHTfM.roa (raw, json) Hash identifier: DkctMEueF2LXR6CHZEk9/TAc9YhFhzoYxlRHWDsKB48= Subject key identifier: 94:37:D6:30:B9:7C:DF:D9:27:3D:F9:A2:96:0A:24:EA:15:87:4D:F3 Certificate issuer: /CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Certificate serial: 82 Authority key identifier: 65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/lDfWMLl839knPfmilgok6hWHTfM.roa Signing time: Fri 01 Aug 2025 01:31:19 +0000 ROA not before: Fri 01 Aug 2025 01:31:19 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 9374 IP address blocks: 218.223.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Validity Not Before: Aug 1 01:31:19 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=9437D630B97CDFD9273DF9A2960A24EA15874DF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:da:3a:d7:f4:ce:89:7c:56:a3:38:cc:ae:98: 90:6e:54:c2:c6:a3:1f:20:ff:d0:9a:7d:c7:1c:96: 13:5a:5f:5d:00:27:f8:75:b2:1e:cc:56:e1:26:c7: ec:27:03:7a:30:cc:1d:45:bb:fb:c6:88:f0:16:ce: a3:02:a3:80:c2:8f:c7:21:7e:fc:2d:7e:9b:ad:c8: 24:f9:13:8e:87:49:85:2c:10:e9:d8:1c:01:67:45: 1f:57:81:4f:8a:7c:f2:fc:5c:fb:75:03:cc:a5:dc: 21:bb:e1:0c:97:fe:01:e0:f3:5b:f4:1f:74:9b:ba: 1e:cc:a6:88:bf:12:9e:d2:80:32:c3:33:ed:6c:c2: 40:ec:46:e9:29:c5:e5:f5:3f:79:d0:1e:cb:b9:cd: eb:80:3e:72:be:bb:31:84:5b:6b:42:35:ef:36:17: 66:b3:92:47:42:6e:41:02:2d:8d:84:d7:bf:e1:f6: af:b5:50:7c:06:b3:43:b6:aa:69:9f:a0:f7:b6:e3: 32:b6:63:b2:23:7f:90:c6:eb:e0:12:52:ff:17:17: 60:f9:18:6e:d7:fc:c0:73:c1:b4:99:50:9e:93:88: aa:99:af:88:bf:2d:83:c6:0b:d2:f2:e4:aa:62:58: b6:3c:c5:f0:37:75:0f:5d:7e:85:45:21:7d:b0:46: 47:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:37:D6:30:B9:7C:DF:D9:27:3D:F9:A2:96:0A:24:EA:15:87:4D:F3 X509v3 Authority Key Identifier: keyid:65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/lDfWMLl839knPfmilgok6hWHTfM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.223.96.0/19 Signature Algorithm: sha256WithRSAEncryption 1c:42:f2:71:16:a9:a1:bb:45:3c:c2:18:a3:52:a3:bd:0f:f7: 81:71:0b:80:2c:10:31:bf:92:b2:f6:24:47:9b:50:ee:39:9c: 16:db:65:44:b6:d2:b1:e3:30:03:ac:83:dd:49:8a:c6:83:94: bc:ff:bf:c9:4f:0c:8a:42:92:7e:8a:1c:b5:68:5b:c6:94:e1: 3e:a3:4b:51:12:00:70:02:80:53:4d:4f:08:2f:9a:c9:7d:aa: 19:63:8f:d0:d4:05:03:70:ff:6d:c8:6a:d6:9c:95:e5:fe:11: 2c:c4:49:e7:e5:1d:ec:60:ab:c4:4c:af:4d:b4:13:ce:30:db: 91:7b:a4:86:70:7d:df:f7:3e:ec:a8:33:03:33:dd:79:f5:ff: 72:bd:1c:d1:85:25:fe:90:5b:28:40:53:16:d0:7f:d8:99:4f: 3a:ef:9e:38:ae:80:46:65:75:fa:28:17:e1:1c:36:80:88:fb: 4f:c1:08:82:59:95:4f:ca:ee:a4:0d:b7:9d:2f:57:5d:dd:1d: 05:41:64:f2:27:b5:5c:8b:f4:4e:0a:c6:1b:55:06:3a:63:bf: 46:f6:30:7c:e8:13:ca:57:71:a3:4b:2e:db:4f:77:c7:d1:a4: a1:16:62:32:1a:99:d2:41:c6:ca:3a:c3:7b:4a:a7:76:35:0d: 65:00:93:8f -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjVE RTUyRTY0QkU0M0UzMjhBQTY5RjNBQjJEMzQ3Rjg4MzNFQzYzNzAeFw0yNTA4MDEw MTMxMTlaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDk0MzdENjMwQjk3Q0RG RDkyNzNERjlBMjk2MEEyNEVBMTU4NzRERjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC2jrX9M6JfFajOMyumJBuVMLGox8g/9CafccclhNaX10AJ/h1 sh7MVuEmx+wnA3owzB1Fu/vGiPAWzqMCo4DCj8chfvwtfputyCT5E46HSYUsEOnY HAFnRR9XgU+KfPL8XPt1A8yl3CG74QyX/gHg81v0H3Sbuh7Mpoi/Ep7SgDLDM+1s wkDsRukpxeX1P3nQHsu5zeuAPnK+uzGEW2tCNe82F2azkkdCbkECLY2E17/h9q+1 UHwGs0O2qmmfoPe24zK2Y7Ijf5DG6+ASUv8XF2D5GG7X/MBzwbSZUJ6TiKqZr4i/ LYPGC9Ly5KpiWLY8xfA3dQ9dfoVFIX2wRkdlAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUlDfWMLl839knPfmilgok6hWHTfMwHwYDVR0jBBgwFoAUZd5S5kvkPjKKpp86 stNH+IM+xjcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY4L1pkNVM1a3ZrUGpLS3BwODZzdE5ILUlNLXhqYy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1pkNVM1a3ZrUGpLS3BwODZzdE5ILUlN LXhqYy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC82OC9sRGZXTUxsODM5a25QZm1pbGdvazZoV0hUZk0ucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQF2t9gMA0GCSqGSIb3DQEBCwUAA4IBAQAcQvJxFqmhu0U8whijUqO9D/eBcQuA LBAxv5Ky9iRHm1DuOZwW22VEttKx4zADrIPdSYrGg5S8/7/JTwyKQpJ+ihy1aFvG lOE+o0tREgBwAoBTTU8IL5rJfaoZY4/Q1AUDcP9tyGrWnJXl/hEsxEnn5R3sYKvE TK9NtBPOMNuRe6SGcH3f9z7sqDMDM9159f9yvRzRhSX+kFsoQFMW0H/YmU867544 roBGZXX6KBfhHDaAiPtPwQiCWZVPyu6kDbedL1dd3R0FQWTyJ7Vci/ROCsYbVQY6 Y79G9jB86BPKV3GjSy7bT3fH0aShFmIyGpnSQcbKOsN7Sqd2NQ1lAJOP -----END CERTIFICATE-----Generated at Mon Aug 11 15:17:07 2025 by rpki-client