$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/Ehsd1DZ0RchyHX0U1HXbNU_-DSg.roa File: Ehsd1DZ0RchyHX0U1HXbNU_-DSg.roa (raw, json) Hash identifier: piJkQBaUjK+m/1+cOpjJCGd6neIlZI84VP4sBq/5W3E= Subject key identifier: 12:1B:1D:D4:36:74:45:C8:72:1D:7D:14:D4:75:DB:35:4F:FE:0D:28 Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 72 Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/Ehsd1DZ0RchyHX0U1HXbNU_-DSg.roa Signing time: Fri 01 Aug 2025 01:29:17 +0000 ROA not before: Fri 01 Aug 2025 01:29:17 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 18144 IP address blocks: 27.133.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Aug 1 01:29:17 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=121B1DD4367445C8721D7D14D475DB354FFE0D28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b4:ad:5c:79:03:b6:91:af:ef:33:0f:36:da: 75:bd:4b:3d:12:86:59:9b:70:27:c7:5f:2b:eb:48: c0:1b:23:8c:ca:af:e0:4c:30:bd:67:1a:3a:2e:20: b7:fe:60:2a:b3:43:09:4c:06:10:21:fd:e8:a2:9d: b3:4e:e3:b7:d7:ba:1d:d4:d1:66:51:c0:e3:91:11: 2e:83:c0:18:05:1b:13:43:26:34:17:16:9b:ba:a4: 5c:7f:70:3d:ec:a6:ac:1b:6b:ab:ba:33:f2:06:30: 18:96:88:ad:13:29:37:46:bb:16:7c:28:df:6a:96: 0f:5d:5b:85:c2:6a:a6:d9:3e:54:9d:98:12:9f:db: 81:8d:b6:5b:06:57:16:a1:94:d0:b3:9a:2e:38:f1: 5c:bb:50:61:43:97:81:6b:e1:1d:1a:07:74:b2:89: b6:7b:52:7d:51:a0:fa:6c:78:b9:48:60:72:54:fd: 6d:44:bd:d9:96:13:3e:92:a7:7e:9f:1c:38:01:33: 3e:af:33:82:6c:3a:5c:75:8a:fc:72:d0:58:95:d8: cf:9a:08:5a:2d:8f:c2:f8:c5:c0:5b:b9:34:29:82: 69:24:c7:32:92:f3:16:bd:d5:ed:62:8f:a6:c7:28: b2:80:b4:c5:2d:4e:35:70:ea:ef:bc:e8:6d:e2:2d: 10:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:1B:1D:D4:36:74:45:C8:72:1D:7D:14:D4:75:DB:35:4F:FE:0D:28 X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/Ehsd1DZ0RchyHX0U1HXbNU_-DSg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.133.176.0/21 Signature Algorithm: sha256WithRSAEncryption a3:b2:c4:e6:6b:ab:49:5c:79:43:19:07:b3:d6:e7:1b:2a:9b: 23:ce:14:e9:7e:b8:b6:b8:c7:df:e6:b8:a8:1c:02:1d:f6:d1: a2:35:70:41:30:28:b3:35:2f:8b:73:69:b0:81:f8:f6:f4:6a: 7f:15:ca:c5:96:8e:96:c0:6f:c9:ab:ff:29:3f:2d:a8:ec:44: 65:ae:20:7b:b8:b6:77:a8:74:1c:07:f6:77:ff:22:a1:12:c1: 3b:ba:b7:0a:70:cb:6a:ae:81:55:74:fd:7d:49:8c:47:51:0a: c8:84:f6:21:c5:eb:1c:2e:f8:d1:2c:d3:83:05:17:e5:65:d9: d0:68:12:55:81:c6:db:d6:54:1b:e2:4a:50:4b:55:6a:2b:82: 5d:cc:d0:df:01:94:10:e0:99:7c:ff:24:fe:c4:96:39:dd:8f: 40:10:eb:1c:4a:4c:ed:93:28:09:1f:1e:6c:70:9d:76:14:a8: 9d:c4:44:81:a6:1d:8a:a2:a1:4b:25:46:61:96:b0:36:dc:86: f2:cd:25:0c:f6:72:9a:8d:d3:1f:8f:75:3e:96:c3:8b:0e:5c: 83:71:2f:fa:be:d1:43:53:ad:1f:18:ba:f7:63:9e:69:c4:93: d6:56:37:d8:11:f1:42:42:22:22:b1:f6:b5:fd:7a:c3:07:12: 1d:92:4f:20 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBcjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDQjgz MDBCMjA2NTlCQjk1MTA2MEY2MEIxRjRCQzYwOTFBRjI3NjM5MB4XDTI1MDgwMTAx MjkxN1oXDTI2MDczMDA2MjkwOFowMzExMC8GA1UEAxMoMTIxQjFERDQzNjc0NDVD ODcyMUQ3RDE0RDQ3NURCMzU0RkZFMEQyODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK+0rVx5A7aRr+8zDzbadb1LPRKGWZtwJ8dfK+tIwBsjjMqv4Eww vWcaOi4gt/5gKrNDCUwGECH96KKds07jt9e6HdTRZlHA45ERLoPAGAUbE0MmNBcW m7qkXH9wPeymrBtrq7oz8gYwGJaIrRMpN0a7Fnwo32qWD11bhcJqptk+VJ2YEp/b gY22WwZXFqGU0LOaLjjxXLtQYUOXgWvhHRoHdLKJtntSfVGg+mx4uUhgclT9bUS9 2ZYTPpKnfp8cOAEzPq8zgmw6XHWK/HLQWJXYz5oIWi2PwvjFwFu5NCmCaSTHMpLz Fr3V7WKPpscosoC0xS1ONXDq77zobeItEG8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQSGx3UNnRFyHIdfRTUdds1T/4NKDAfBgNVHSMEGDAWgBTLgwCyBlm7lRBg9gsf S8YJGvJ2OTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzgzL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1JyeWRqay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1Jy eWRqay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83ODMvRWhzZDFEWjBSY2h5SFgwVTFIWGJOVV8tRFNnLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAxuFsDANBgkqhkiG9w0BAQsFAAOCAQEAo7LE5murSVx5QxkHs9bnGyqbI84U 6X64trjH3+a4qBwCHfbRojVwQTAoszUvi3NpsIH49vRqfxXKxZaOlsBvyav/KT8t qOxEZa4ge7i2d6h0HAf2d/8ioRLBO7q3CnDLaq6BVXT9fUmMR1EKyIT2IcXrHC74 0SzTgwUX5WXZ0GgSVYHG29ZUG+JKUEtVaiuCXczQ3wGUEOCZfP8k/sSWOd2PQBDr HEpM7ZMoCR8ebHCddhSoncREgaYdiqKhSyVGYZawNtyG8s0lDPZymo3TH491PpbD iw5cg3Ev+r7RQ1OtHxi692OeacST1lY32BHxQkIiIrH2tf16wwcSHZJPIA== -----END CERTIFICATE-----Generated at Mon Aug 11 13:07:55 2025 by rpki-client