$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/GLQlTOyFOOLGJWg-5CeaVa6zni8.roa File: GLQlTOyFOOLGJWg-5CeaVa6zni8.roa (raw, json) Hash identifier: xZobF54kXQBipleir7Kg4tPZPGdIryopliky/f2Ywk0= Subject key identifier: 18:B4:25:4C:EC:85:38:E2:C6:25:68:3E:E4:27:9A:55:AE:B3:9E:2F Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 87 Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/GLQlTOyFOOLGJWg-5CeaVa6zni8.roa Signing time: Fri 01 Aug 2025 01:29:29 +0000 ROA not before: Fri 01 Aug 2025 01:29:29 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 18144 IP address blocks: 223.223.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Aug 1 01:29:29 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=18B4254CEC8538E2C625683EE4279A55AEB39E2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:72:3b:2b:68:89:85:0f:a9:94:14:f5:6f:94: a4:ed:48:39:a2:a8:b9:76:10:a0:00:e8:bb:28:87: d6:d5:01:bd:75:1a:41:1f:6f:27:82:56:51:96:87: 12:e4:57:32:6f:0b:e4:20:80:55:49:17:ad:56:00: 6d:c5:5d:8a:13:d1:82:20:3c:c7:fd:60:ce:16:58: 5f:0a:64:61:b3:8c:33:51:bc:7f:03:66:61:64:33: c9:e8:79:c1:7d:89:91:a0:69:c5:f3:35:27:41:91: 6f:fd:7a:7c:f2:53:08:f5:2c:b0:60:5a:7a:f5:33: ae:95:a5:31:ad:c6:76:47:11:e4:fd:a5:69:bf:fc: c1:01:a3:c3:eb:36:df:05:26:fd:85:06:4c:13:e4: 42:68:50:0e:bf:de:94:b1:42:f0:b7:b3:28:15:96: c3:69:1b:60:73:20:21:3a:c0:8c:11:6a:7f:39:d5: 11:84:bb:07:c0:f5:92:87:8d:89:70:71:f8:ff:cd: 6e:d1:d6:3a:ab:70:73:19:8a:aa:30:21:58:4b:ee: 0d:1c:31:1f:54:17:96:14:84:39:1d:fc:bb:a2:42: 71:31:ed:cd:31:26:13:3f:99:58:bc:49:98:69:93: b9:99:a9:30:2c:9c:b4:f0:e9:8e:42:bf:16:e6:22: 6e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:B4:25:4C:EC:85:38:E2:C6:25:68:3E:E4:27:9A:55:AE:B3:9E:2F X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/GLQlTOyFOOLGJWg-5CeaVa6zni8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.223.0.0/17 Signature Algorithm: sha256WithRSAEncryption 5f:d6:9b:7a:f6:c3:d3:de:ab:15:b4:e1:49:0e:8e:0f:78:69: e4:ff:f4:24:07:80:9d:83:34:c6:3d:13:1b:e1:2d:5d:46:38: 27:a8:f0:96:04:30:5c:af:05:2a:4f:47:84:75:5e:72:e8:07: 19:2e:2d:88:e2:be:fd:65:48:60:bf:0e:99:2d:05:d6:5c:17: 31:9a:fa:2b:69:1a:1e:8f:f1:c1:ae:83:e3:2a:ba:bf:0a:21: d9:9a:47:39:82:56:d6:5b:e3:a8:57:03:7a:9d:2f:6d:09:6f: 72:49:c4:ad:a1:6d:60:cb:5d:3a:28:6a:a6:ae:89:79:de:b4: 37:32:81:67:1e:fb:b6:21:78:c3:30:e5:67:cf:ab:3e:c4:35: b3:4e:19:db:6f:7d:cf:01:14:c0:29:40:50:b3:79:7b:ea:e5: 2a:82:11:e2:a3:09:0a:cf:1f:34:c9:7a:d6:fb:83:42:e9:af: ba:8a:c4:5c:86:3d:f2:65:21:7f:60:4a:5f:30:bc:64:26:09: b7:63:03:49:3f:d1:ff:ec:e8:1e:b0:80:fe:32:ae:12:c2:1f: a9:02:f9:90:66:c5:4a:3f:3e:e4:ed:0b:35:85:a0:3c:b0:e2: 6d:ab:72:6e:f2:33:05:52:73:50:65:ba:d8:a6:b3:d2:fe:ca: 52:f3:9d:17 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0I4 MzAwQjIwNjU5QkI5NTEwNjBGNjBCMUY0QkM2MDkxQUYyNzYzOTAeFw0yNTA4MDEw MTI5MjlaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDE4QjQyNTRDRUM4NTM4 RTJDNjI1NjgzRUU0Mjc5QTU1QUVCMzlFMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDcjsraImFD6mUFPVvlKTtSDmiqLl2EKAA6Lsoh9bVAb11GkEf byeCVlGWhxLkVzJvC+QggFVJF61WAG3FXYoT0YIgPMf9YM4WWF8KZGGzjDNRvH8D ZmFkM8noecF9iZGgacXzNSdBkW/9enzyUwj1LLBgWnr1M66VpTGtxnZHEeT9pWm/ /MEBo8PrNt8FJv2FBkwT5EJoUA6/3pSxQvC3sygVlsNpG2BzICE6wIwRan851RGE uwfA9ZKHjYlwcfj/zW7R1jqrcHMZiqowIVhL7g0cMR9UF5YUhDkd/LuiQnEx7c0x JhM/mVi8SZhpk7mZqTAsnLTw6Y5CvxbmIm55AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUGLQlTOyFOOLGJWg+5CeaVa6zni8wHwYDVR0jBBgwFoAUy4MAsgZZu5UQYPYL H0vGCRrydjkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzc4My95NE1Bc2daWnU1VVFZUFlMSDB2R0NScnlkamsuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC95NE1Bc2daWnU1VVFZUFlMSDB2R0NS cnlkamsuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNzgzL0dMUWxUT3lGT09MR0pXZy01Q2VhVmE2em5pOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAff3wAwDQYJKoZIhvcNAQELBQADggEBAF/Wm3r2w9PeqxW04UkOjg94aeT/ 9CQHgJ2DNMY9ExvhLV1GOCeo8JYEMFyvBSpPR4R1XnLoBxkuLYjivv1lSGC/Dpkt BdZcFzGa+itpGh6P8cGug+Mqur8KIdmaRzmCVtZb46hXA3qdL20Jb3JJxK2hbWDL XTooaqauiXnetDcygWce+7YheMMw5WfPqz7ENbNOGdtvfc8BFMApQFCzeXvq5SqC EeKjCQrPHzTJetb7g0Lpr7qKxFyGPfJlIX9gSl8wvGQmCbdjA0k/0f/s6B6wgP4y rhLCH6kC+ZBmxUo/PuTtCzWFoDyw4m2rcm7yMwVSc1Blutims9L+ylLznRc= -----END CERTIFICATE-----Generated at Mon Aug 11 13:05:48 2025 by rpki-client