$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/oKKPozpk1dHd3xd0P0OSKYeutNs.roa File: oKKPozpk1dHd3xd0P0OSKYeutNs.roa (raw, json) Hash identifier: MKISJibxtNgJ5R4mYUn5dKtJpZj6hs5NRAWwXcVP5Ew= Subject key identifier: A0:A2:8F:A3:3A:64:D5:D1:DD:DF:17:74:3F:43:92:29:87:AE:B4:DB Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 71 Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/oKKPozpk1dHd3xd0P0OSKYeutNs.roa Signing time: Fri 01 Aug 2025 01:29:16 +0000 ROA not before: Fri 01 Aug 2025 01:29:16 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 18144 IP address blocks: 1.0.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Aug 1 01:29:16 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=A0A28FA33A64D5D1DDDF17743F43922987AEB4DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:31:70:65:53:d7:33:0d:94:c1:06:27:2d:fd: db:7a:51:ba:3f:f7:3d:7a:b7:5d:c6:64:de:25:e1: 72:a8:0b:02:f2:16:f2:53:b6:96:4e:fe:f5:9a:ff: 63:96:f6:e0:c2:6a:60:b4:02:5f:24:bc:49:a9:35: 2c:f5:d2:28:6e:e6:f1:98:c3:74:79:14:dc:ed:31: 5e:13:0d:3c:80:ea:89:9e:4b:9b:c0:08:26:91:6c: 6e:02:19:53:0c:86:2c:c0:23:4a:87:ae:c4:98:30: 78:43:4a:83:fe:0f:86:c2:53:41:6b:a6:80:b4:2d: 02:02:61:25:5a:a4:6d:2e:8e:bd:26:61:85:cf:7b: a7:a4:14:b3:a9:5a:c8:b7:f3:ae:19:8d:5a:1a:a3: d4:c6:c2:c4:ad:2e:7a:ad:87:b0:04:00:d1:3b:cc: 79:a0:d7:46:e7:ee:4d:3c:c6:10:f2:45:98:46:43: 57:e8:13:55:10:27:91:2d:dd:3a:0d:18:82:b5:7a: 16:42:b9:1e:72:c9:3e:a8:f1:b5:9e:90:a0:57:f0: fd:99:88:ed:ce:65:4e:cb:80:ca:8d:25:7a:9a:41: 29:80:d7:ea:71:88:37:6a:58:c6:92:3b:d4:5f:3b: ff:df:c8:fd:6e:fb:7b:48:4e:df:91:70:0d:e9:98: 1b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:A2:8F:A3:3A:64:D5:D1:DD:DF:17:74:3F:43:92:29:87:AE:B4:DB X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/oKKPozpk1dHd3xd0P0OSKYeutNs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.0.64.0/18 Signature Algorithm: sha256WithRSAEncryption 42:50:86:8e:ba:21:b6:b3:5a:7b:c0:2d:ae:53:f1:1f:49:81: eb:b0:9c:cb:7f:5a:e1:b7:a2:f3:fc:61:93:14:fc:a7:c8:36: a7:a4:c0:5a:88:be:15:d2:a5:c2:cd:d4:b5:20:a0:8d:95:70: 47:c9:46:34:9f:19:60:26:09:d6:97:0e:1c:7f:3b:16:b3:63: 7f:15:fe:40:a9:9a:f1:29:52:de:92:35:07:7e:25:a3:eb:ff: bf:db:30:44:40:76:a8:14:b0:02:a2:8b:a6:0f:43:79:c0:20: 74:bb:45:d9:48:66:39:7b:36:b3:73:8c:39:d1:8a:92:56:39: a1:49:30:05:eb:f0:b9:ad:0d:8d:e1:15:b5:3a:97:bf:e0:d5: 86:0e:44:96:d5:49:8d:8d:bf:4f:b0:06:c5:c2:56:b9:b9:d6: f9:d8:24:a1:0d:60:a4:51:48:46:14:71:53:c6:01:1d:72:f3: 31:bd:76:0a:6b:22:73:aa:9e:48:2f:5d:ea:5a:3f:1d:0d:84: bd:93:17:10:26:7b:b3:8e:1f:d7:23:d3:17:75:d1:a2:b7:2d: 05:0e:c2:f2:2e:75:e0:b9:06:e7:1a:da:21:aa:7d:26:a0:af: 27:30:f6:07:ad:71:96:37:ec:c1:e3:b4:84:f0:a1:eb:c9:80: a3:e7:8d:99 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBcTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDQjgz MDBCMjA2NTlCQjk1MTA2MEY2MEIxRjRCQzYwOTFBRjI3NjM5MB4XDTI1MDgwMTAx MjkxNloXDTI2MDczMDA2MjkwOFowMzExMC8GA1UEAxMoQTBBMjhGQTMzQTY0RDVE MUREREYxNzc0M0Y0MzkyMjk4N0FFQjREQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMAxcGVT1zMNlMEGJy3923pRuj/3PXq3XcZk3iXhcqgLAvIW8lO2 lk7+9Zr/Y5b24MJqYLQCXyS8Sak1LPXSKG7m8ZjDdHkU3O0xXhMNPIDqiZ5Lm8AI JpFsbgIZUwyGLMAjSoeuxJgweENKg/4PhsJTQWumgLQtAgJhJVqkbS6OvSZhhc97 p6QUs6layLfzrhmNWhqj1MbCxK0ueq2HsAQA0TvMeaDXRufuTTzGEPJFmEZDV+gT VRAnkS3dOg0YgrV6FkK5HnLJPqjxtZ6QoFfw/ZmI7c5lTsuAyo0leppBKYDX6nGI N2pYxpI71F87/9/I/W77e0hO35FwDemYG7ECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSgoo+jOmTV0d3fF3Q/Q5Iph6602zAfBgNVHSMEGDAWgBTLgwCyBlm7lRBg9gsf S8YJGvJ2OTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzgzL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1JyeWRqay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1Jy eWRqay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83ODMvb0tLUG96cGsxZEhkM3hkMFAwT1NLWWV1dE5zLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBgEAQDANBgkqhkiG9w0BAQsFAAOCAQEAQlCGjrohtrNae8AtrlPxH0mB67Cc y39a4bei8/xhkxT8p8g2p6TAWoi+FdKlws3UtSCgjZVwR8lGNJ8ZYCYJ1pcOHH87 FrNjfxX+QKma8SlS3pI1B34lo+v/v9swREB2qBSwAqKLpg9DecAgdLtF2UhmOXs2 s3OMOdGKklY5oUkwBevwua0NjeEVtTqXv+DVhg5EltVJjY2/T7AGxcJWubnW+dgk oQ1gpFFIRhRxU8YBHXLzMb12Cmsic6qeSC9d6lo/HQ2EvZMXECZ7s44f1yPTF3XR orctBQ7C8i514LkG5xraIap9JqCvJzD2B61xljfsweO0hPCh68mAo+eNmQ== -----END CERTIFICATE-----Generated at Mon Aug 11 13:06:20 2025 by rpki-client