$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/793/vNH-pC6vSc0Y8rF91m2V4X4evrY.roa File: vNH-pC6vSc0Y8rF91m2V4X4evrY.roa (raw, json) Hash identifier: 8t7DXcRn7cC92fiK/RuRXZw16Y9dmN37nUBNgUyDZpA= Subject key identifier: BC:D1:FE:A4:2E:AF:49:CD:18:F2:B1:7D:D6:6D:95:E1:7E:1E:BE:B6 Certificate issuer: /CN=8D8D2658815CA3C4EE5A53F91BA61268E3F4C0E1 Certificate serial: 47 Authority key identifier: 8D:8D:26:58:81:5C:A3:C4:EE:5A:53:F9:1B:A6:12:68:E3:F4:C0:E1 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jY0mWIFco8TuWlP5G6YSaOP0wOE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/793/vNH-pC6vSc0Y8rF91m2V4X4evrY.roa Signing time: Fri 01 Aug 2025 01:30:36 +0000 ROA not before: Fri 01 Aug 2025 01:30:36 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 18274 IP address blocks: 202.208.64.0/20 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/793/jY0mWIFco8TuWlP5G6YSaOP0wOE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/793/jY0mWIFco8TuWlP5G6YSaOP0wOE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jY0mWIFco8TuWlP5G6YSaOP0wOE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D8D2658815CA3C4EE5A53F91BA61268E3F4C0E1 Validity Not Before: Aug 1 01:30:36 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=BCD1FEA42EAF49CD18F2B17DD66D95E17E1EBEB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ef:67:cf:50:d8:e8:ca:0e:fa:cd:42:ab:47: 50:75:04:e2:5f:c2:a3:e5:4a:54:eb:08:3b:05:2d: 2e:dd:4d:32:78:fe:41:29:ec:4b:96:25:83:d4:6f: 81:4f:44:97:e4:4f:ca:73:fe:88:c7:c1:07:fd:f6: 25:08:01:f7:01:7d:68:a7:22:ff:d2:1c:6d:6b:4c: ce:fd:bd:dd:3b:77:47:59:36:d3:d8:d4:28:1c:f3: 60:08:11:58:41:f8:2d:1d:53:c3:d7:c8:49:b4:27: e4:f3:5a:a7:fa:3c:3d:94:bb:b5:3f:fc:ad:64:99: 14:af:e3:0f:9d:2f:67:d2:83:5f:e2:d7:32:b0:1e: f2:57:6f:11:2a:13:06:7c:84:eb:8d:ae:95:20:44: ba:fe:cd:93:14:c5:ea:dc:b8:f7:cd:5d:34:84:a6: 49:a9:9d:77:65:9f:35:a9:b8:4a:f9:e7:22:ab:4a: 80:fc:5e:91:16:24:3f:fb:7b:9e:71:b3:f0:1d:b9: 2d:f8:a1:bd:40:82:21:01:b6:53:02:b2:8e:c9:70: 42:06:44:76:8c:c2:d7:84:8b:b7:77:23:55:4b:a5: 22:23:ff:52:63:39:5e:b3:af:50:ab:e9:8b:61:74: 6e:49:48:98:85:bd:29:0e:5c:4f:2a:8d:23:74:33: 18:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:D1:FE:A4:2E:AF:49:CD:18:F2:B1:7D:D6:6D:95:E1:7E:1E:BE:B6 X509v3 Authority Key Identifier: keyid:8D:8D:26:58:81:5C:A3:C4:EE:5A:53:F9:1B:A6:12:68:E3:F4:C0:E1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/793/jY0mWIFco8TuWlP5G6YSaOP0wOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jY0mWIFco8TuWlP5G6YSaOP0wOE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/793/vNH-pC6vSc0Y8rF91m2V4X4evrY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.208.64.0/20 Signature Algorithm: sha256WithRSAEncryption bd:b8:6a:d9:f9:e4:11:71:49:52:0c:6c:b1:5f:da:55:67:a6: 0b:1f:fe:c6:5d:55:d5:13:73:49:69:4d:79:22:34:86:8c:a4: 7a:0b:06:5d:10:99:8e:fc:06:d7:87:10:fc:a1:33:32:90:3e: 04:5c:56:cc:4d:d9:13:af:6c:fd:8a:36:83:77:a3:ff:18:b9: 0e:71:b7:a3:06:99:c5:2f:07:e8:60:7d:37:16:c1:37:94:6b: 94:a1:72:d8:ea:c9:fc:14:24:72:bd:9a:b4:02:e8:b3:d5:8a: 7a:ba:b7:a8:24:5d:dc:79:3d:8e:5c:ba:d0:a6:b2:a1:0f:e3: 2e:91:3b:2e:2f:7e:8b:d9:03:93:86:b7:ed:b3:24:cf:aa:75: f0:f7:00:e7:e0:f8:3c:0a:16:82:69:2b:36:b4:27:f1:5f:6e: d5:a8:cc:e0:11:f1:6e:9b:3f:9f:f6:5a:25:27:16:84:38:cf: 70:ec:00:35:32:12:71:65:e6:72:0a:52:b6:60:3d:b9:e3:b0: e3:21:82:88:85:0a:43:42:81:4a:49:50:6e:c7:d4:10:b6:5e: 1c:d0:80:92:bd:9c:17:19:7a:92:70:f5:cb:0a:28:3b:90:0f: 8b:32:f7:fe:d8:da:60:df:85:fd:05:a8:9c:b4:59:0c:61:5e: cd:65:1c:7d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBRzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4RDhE MjY1ODgxNUNBM0M0RUU1QTUzRjkxQkE2MTI2OEUzRjRDMEUxMB4XDTI1MDgwMTAx MzAzNloXDTI2MDczMDA2MjkwOFowMzExMC8GA1UEAxMoQkNEMUZFQTQyRUFGNDlD RDE4RjJCMTdERDY2RDk1RTE3RTFFQkVCNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJnvZ89Q2OjKDvrNQqtHUHUE4l/Co+VKVOsIOwUtLt1NMnj+QSns S5Ylg9RvgU9El+RPynP+iMfBB/32JQgB9wF9aKci/9IcbWtMzv293Tt3R1k209jU KBzzYAgRWEH4LR1Tw9fISbQn5PNap/o8PZS7tT/8rWSZFK/jD50vZ9KDX+LXMrAe 8ldvESoTBnyE642ulSBEuv7NkxTF6ty4981dNISmSamdd2WfNam4SvnnIqtKgPxe kRYkP/t7nnGz8B25LfihvUCCIQG2UwKyjslwQgZEdozC14SLt3cjVUulIiP/UmM5 XrOvUKvpi2F0bklImIW9KQ5cTyqNI3QzGAECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBS80f6kLq9JzRjysX3WbZXhfh6+tjAfBgNVHSMEGDAWgBSNjSZYgVyjxO5aU/kb phJo4/TA4TAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzkzL2pZMG1XSUZjbzhUdVdsUDVHNllTYU9QMHdPRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pZMG1XSUZjbzhUdVdsUDVHNllTYU9Q MHdPRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83OTMvdk5ILXBDNnZTYzBZOHJGOTFtMlY0WDRldnJZLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBMrQQDANBgkqhkiG9w0BAQsFAAOCAQEAvbhq2fnkEXFJUgxssV/aVWemCx/+ xl1V1RNzSWlNeSI0hoykegsGXRCZjvwG14cQ/KEzMpA+BFxWzE3ZE69s/Yo2g3ej /xi5DnG3owaZxS8H6GB9NxbBN5RrlKFy2OrJ/BQkcr2atALos9WKerq3qCRd3Hk9 jly60KayoQ/jLpE7Li9+i9kDk4a37bMkz6p18PcA5+D4PAoWgmkrNrQn8V9u1ajM 4BHxbps/n/ZaJScWhDjPcOwANTIScWXmcgpStmA9ueOw4yGCiIUKQ0KBSklQbsfU ELZeHNCAkr2cFxl6knD1ywooO5APizL3/tjaYN+F/QWonLRZDGFezWUcfQ== -----END CERTIFICATE-----Generated at Mon Aug 11 13:26:29 2025 by rpki-client