$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/881/0UF8pCfz8igeBzunjJD1CWRBreU.roa File: 0UF8pCfz8igeBzunjJD1CWRBreU.roa (raw, json) Hash identifier: EhgMdNhSOUqSa70qoP2qtDxBNZj10YkhdimoZ31tMQk= Subject key identifier: D1:41:7C:A4:27:F3:F2:28:1E:07:3B:A7:8C:90:F5:09:64:41:AD:E5 Certificate issuer: /CN=D00E08393688B04737874ECD63DD8BE78E5EF2D0 Certificate serial: 5A Authority key identifier: D0:0E:08:39:36:88:B0:47:37:87:4E:CD:63:DD:8B:E7:8E:5E:F2:D0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0A4IOTaIsEc3h07NY92L545e8tA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/881/0UF8pCfz8igeBzunjJD1CWRBreU.roa Signing time: Fri 01 Aug 2025 01:29:13 +0000 ROA not before: Fri 01 Aug 2025 01:29:13 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 23805 IP address blocks: 103.42.168.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/881/0A4IOTaIsEc3h07NY92L545e8tA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/881/0A4IOTaIsEc3h07NY92L545e8tA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0A4IOTaIsEc3h07NY92L545e8tA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00E08393688B04737874ECD63DD8BE78E5EF2D0 Validity Not Before: Aug 1 01:29:13 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=D1417CA427F3F2281E073BA78C90F5096441ADE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:90:4e:70:30:4d:0a:f9:83:52:8f:2c:6f:00: 39:f2:d6:78:ad:4b:e4:50:5a:4f:06:23:25:01:0a: 51:e6:1d:25:86:0c:c0:a8:c9:c8:ee:e9:2d:f6:fa: 5f:77:9d:c7:8f:e6:cb:c2:a6:d9:2c:a6:52:bb:a2: 67:64:d6:de:84:42:f2:99:58:87:5e:a9:6f:64:59: 9b:a2:df:96:46:69:6d:91:64:f9:b8:91:ed:11:68: ee:b5:af:5b:5a:aa:36:30:57:69:5f:6c:64:3a:c7: ae:17:0a:05:39:7a:3d:a1:bb:96:7a:5f:53:87:32: bb:bc:18:0e:70:08:dd:55:2b:6b:56:21:24:c8:b0: 41:9b:93:53:2e:9a:1b:5d:9e:90:ea:86:14:74:59: 2e:ab:8f:b3:0a:04:91:13:c4:0c:83:e9:35:ea:df: e3:b8:95:66:ca:51:19:2a:49:60:f3:1e:94:3a:e9: 47:d1:ca:7d:ef:78:db:b7:c5:f6:c9:6e:50:7d:07: 81:22:98:a8:94:59:45:cf:aa:09:65:ba:7a:9a:f4: ce:61:d7:19:c1:2a:c1:51:30:be:91:b3:72:9d:19: e1:02:4a:0c:6b:34:c7:23:87:a2:cb:60:6d:cd:73: 8d:3a:fe:52:a1:91:44:54:9f:1e:81:c3:fa:70:66: 79:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:41:7C:A4:27:F3:F2:28:1E:07:3B:A7:8C:90:F5:09:64:41:AD:E5 X509v3 Authority Key Identifier: keyid:D0:0E:08:39:36:88:B0:47:37:87:4E:CD:63:DD:8B:E7:8E:5E:F2:D0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/881/0A4IOTaIsEc3h07NY92L545e8tA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0A4IOTaIsEc3h07NY92L545e8tA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/881/0UF8pCfz8igeBzunjJD1CWRBreU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.168.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:97:53:bf:1a:2f:99:33:58:6b:c3:90:1f:74:22:5b:be:7a: 5f:53:88:43:1a:7d:d1:bf:2e:e0:33:31:49:b3:e6:d0:86:9c: cb:01:02:83:e3:f5:40:87:35:a4:a5:d7:d2:e7:7c:bc:47:ee: c0:89:e1:16:80:e7:91:cd:9a:2f:01:f3:7a:ad:67:5e:e4:2b: 4d:06:08:d4:82:b6:22:a5:b4:2b:2e:93:67:54:68:bf:b9:b6: 2b:17:4b:dc:9a:68:bc:4a:f9:1e:39:5d:2b:40:4f:3f:e0:41: cd:cc:91:77:a9:65:fa:cc:43:10:0f:01:0a:59:9f:cb:8b:45: 76:bf:6d:4e:2e:91:f2:7c:f5:62:38:cb:2d:ac:9b:28:c8:38: 3c:23:af:f8:3e:1a:49:86:0b:f0:68:b4:04:aa:3a:df:3d:46: ef:37:1f:62:97:79:a9:ff:2b:b6:82:4a:8d:ce:f8:06:7a:3c: 90:bf:82:c0:a2:6d:8f:9b:39:6e:4c:1f:fa:67:61:ea:ab:42: 23:df:bc:ac:f0:6b:77:ad:07:5a:05:c8:6f:5a:a8:92:19:4a: 22:1a:31:8e:43:dd:6e:ed:3f:3d:5d:66:cc:65:d3:34:20:db: ca:64:52:0d:09:8a:6d:68:53:92:4f:02:37:49:05:3b:9d:b4: dd:e0:7e:cf -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBWjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMDBF MDgzOTM2ODhCMDQ3Mzc4NzRFQ0Q2M0REOEJFNzhFNUVGMkQwMB4XDTI1MDgwMTAx MjkxM1oXDTI2MDczMDA2MjkwOFowMzExMC8GA1UEAxMoRDE0MTdDQTQyN0YzRjIy ODFFMDczQkE3OEM5MEY1MDk2NDQxQURFNTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK+QTnAwTQr5g1KPLG8AOfLWeK1L5FBaTwYjJQEKUeYdJYYMwKjJ yO7pLfb6X3edx4/my8Km2SymUruiZ2TW3oRC8plYh16pb2RZm6LflkZpbZFk+biR 7RFo7rWvW1qqNjBXaV9sZDrHrhcKBTl6PaG7lnpfU4cyu7wYDnAI3VUra1YhJMiw QZuTUy6aG12ekOqGFHRZLquPswoEkRPEDIPpNerf47iVZspRGSpJYPMelDrpR9HK fe9427fF9sluUH0HgSKYqJRZRc+qCWW6epr0zmHXGcEqwVEwvpGzcp0Z4QJKDGs0 xyOHostgbc1zjTr+UqGRRFSfHoHD+nBmeXsCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTRQXykJ/PyKB4HO6eMkPUJZEGt5TAfBgNVHSMEGDAWgBTQDgg5NoiwRzeHTs1j 3Yvnjl7y0DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODgxLzBBNElPVGFJc0VjM2gwN05ZOTJMNTQ1ZTh0QS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBBNElPVGFJc0VjM2gwN05ZOTJMNTQ1 ZTh0QS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84ODEvMFVGOHBDZno4aWdlQnp1bmpKRDFDV1JCcmVVLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmcqqDANBgkqhkiG9w0BAQsFAAOCAQEATZdTvxovmTNYa8OQH3QiW756X1OI Qxp90b8u4DMxSbPm0IacywECg+P1QIc1pKXX0ud8vEfuwInhFoDnkc2aLwHzeq1n XuQrTQYI1IK2IqW0Ky6TZ1Rov7m2KxdL3JpovEr5HjldK0BPP+BBzcyRd6ll+sxD EA8BClmfy4tFdr9tTi6R8nz1YjjLLaybKMg4PCOv+D4aSYYL8Gi0BKo63z1G7zcf Ypd5qf8rtoJKjc74Bno8kL+CwKJtj5s5bkwf+mdh6qtCI9+8rPBrd60HWgXIb1qo khlKIhoxjkPdbu0/PV1mzGXTNCDbymRSDQmKbWhTkk8CN0kFO5203eB+zw== -----END CERTIFICATE-----Generated at Mon Aug 11 13:26:13 2025 by rpki-client