$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/rmu9AN6caZSrA78gt2F7iB0IW6E.roa File: rmu9AN6caZSrA78gt2F7iB0IW6E.roa (raw, json) Hash identifier: zuiiFAtIttWa1cW+W+uUUui+p3aZchInzIzGQVT6REY= Subject key identifier: AE:6B:BD:00:DE:9C:69:94:AB:03:BF:20:B7:61:7B:88:1D:08:5B:A1 Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 74 Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/rmu9AN6caZSrA78gt2F7iB0IW6E.roa Signing time: Fri 01 Aug 2025 01:29:18 +0000 ROA not before: Fri 01 Aug 2025 01:29:18 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 18144 IP address blocks: 36.52.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Aug 1 01:29:18 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=AE6BBD00DE9C6994AB03BF20B7617B881D085BA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a1:ea:98:e1:8d:89:2c:fd:c4:79:c4:45:43: 4d:0d:36:36:a5:60:e7:c9:99:b1:bd:cf:9f:13:06: fb:bd:18:d9:fe:5c:83:b1:f4:2b:8f:3b:3e:ef:e6: 33:7a:b2:27:11:1e:0f:a4:c0:e5:6f:a3:05:23:f3: ef:3a:5a:6a:b6:a3:a0:5a:12:91:de:98:67:08:b4: 84:49:d9:f8:0d:ca:28:60:b9:71:ac:4d:01:e1:05: 71:11:97:9a:7e:de:9f:f9:26:b2:49:ad:45:f9:fe: b2:44:d1:fe:be:c4:b9:74:1d:5e:a4:4f:6a:94:c1: 61:46:e2:1f:bc:a1:2a:73:51:5b:df:40:aa:33:c0: 2f:9d:8a:8e:27:5d:69:ca:b0:39:df:1b:1c:7f:e0: 4a:6d:8e:fe:4d:6c:79:22:bc:a2:92:48:e8:f1:48: 59:fd:8c:54:4c:40:34:14:e2:68:87:a0:73:d2:25: c2:61:22:23:c4:6c:cf:d0:93:5a:a9:af:18:b8:08: ea:24:17:33:ce:42:05:22:83:ae:4f:ce:1b:3b:05: 64:a0:45:03:31:70:cd:58:70:6a:bb:0f:ed:cb:de: 5c:9a:a1:67:88:eb:08:c9:43:44:d0:04:85:37:52: 67:a3:4f:60:91:a0:67:cd:7b:bf:7f:6c:07:5c:5c: 41:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:6B:BD:00:DE:9C:69:94:AB:03:BF:20:B7:61:7B:88:1D:08:5B:A1 X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/rmu9AN6caZSrA78gt2F7iB0IW6E.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.52.152.0/21 Signature Algorithm: sha256WithRSAEncryption 2b:f9:6c:53:c9:3d:16:c4:f2:3e:c4:47:8d:ed:8d:e0:69:96: 40:8c:94:0b:7a:5b:2d:26:ea:10:6b:97:6a:c3:57:4c:f7:cf: f3:1b:e3:cf:08:20:21:c9:63:09:e4:66:23:40:b9:73:46:2e: 2b:2d:52:f9:4e:ba:57:54:de:9b:9e:9e:a8:15:98:19:00:5e: 8e:ab:5a:64:f1:7d:aa:54:28:00:39:5c:33:10:8e:67:43:d3: d5:bc:07:19:f6:4d:f1:33:9b:fc:a6:dc:a6:fd:fe:25:4e:05: b2:75:5e:6a:5c:2d:c1:4e:6b:a6:73:12:c1:a3:64:fe:d2:7e: 1e:02:ea:fb:d7:f7:5a:27:f9:e8:15:c8:8d:7a:9e:84:33:99: 7d:1c:47:c1:6d:8b:82:20:4a:42:50:7f:2a:52:a2:97:f9:06: f4:9e:d8:88:c1:95:6a:9b:d2:84:51:4b:81:f0:97:9b:52:95: 6a:d0:64:eb:4f:c0:63:5c:cf:22:d2:fd:37:a2:82:c6:30:70: ab:5e:b9:36:e2:b8:d1:ac:7e:10:77:49:82:88:05:6c:c8:b8: 13:bc:e6:c4:a9:dd:8e:60:62:92:f2:10:22:71:07:47:09:2b: 2f:2d:87:84:e2:73:7a:53:6c:92:dc:0e:e8:aa:b0:b2:bf:b7: de:78:05:0b -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBdDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDQjgz MDBCMjA2NTlCQjk1MTA2MEY2MEIxRjRCQzYwOTFBRjI3NjM5MB4XDTI1MDgwMTAx MjkxOFoXDTI2MDczMDA2MjkwOFowMzExMC8GA1UEAxMoQUU2QkJEMDBERTlDNjk5 NEFCMDNCRjIwQjc2MTdCODgxRDA4NUJBMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALqh6pjhjYks/cR5xEVDTQ02NqVg58mZsb3PnxMG+70Y2f5cg7H0 K487Pu/mM3qyJxEeD6TA5W+jBSPz7zpaarajoFoSkd6YZwi0hEnZ+A3KKGC5caxN AeEFcRGXmn7en/kmskmtRfn+skTR/r7EuXQdXqRPapTBYUbiH7yhKnNRW99AqjPA L52KjiddacqwOd8bHH/gSm2O/k1seSK8opJI6PFIWf2MVExANBTiaIegc9IlwmEi I8Rsz9CTWqmvGLgI6iQXM85CBSKDrk/OGzsFZKBFAzFwzVhwarsP7cveXJqhZ4jr CMlDRNAEhTdSZ6NPYJGgZ817v39sB1xcQV8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSua70A3pxplKsDvyC3YXuIHQhboTAfBgNVHSMEGDAWgBTLgwCyBlm7lRBg9gsf S8YJGvJ2OTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzgzL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1JyeWRqay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1Jy eWRqay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83ODMvcm11OUFONmNhWlNyQTc4Z3QyRjdpQjBJVzZFLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAyQ0mDANBgkqhkiG9w0BAQsFAAOCAQEAK/lsU8k9FsTyPsRHje2N4GmWQIyU C3pbLSbqEGuXasNXTPfP8xvjzwggIcljCeRmI0C5c0YuKy1S+U66V1Tem56eqBWY GQBejqtaZPF9qlQoADlcMxCOZ0PT1bwHGfZN8TOb/Kbcpv3+JU4FsnVealwtwU5r pnMSwaNk/tJ+HgLq+9f3Wif56BXIjXqehDOZfRxHwW2LgiBKQlB/KlKil/kG9J7Y iMGVapvShFFLgfCXm1KVatBk60/AY1zPItL9N6KCxjBwq165NuK40ax+EHdJgogF bMi4E7zmxKndjmBikvIQInEHRwkrLy2HhOJzelNsktwO6Kqwsr+33ngFCw== -----END CERTIFICATE-----Generated at Mon Aug 11 13:05:50 2025 by rpki-client