$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/882/xG6E0iBSEL6QvKtUgzyb_vGf27o.roa File: xG6E0iBSEL6QvKtUgzyb_vGf27o.roa (raw, json) Hash identifier: fcg4em1P0TSqShr/Q/VwC44ko24q40VfQ5R4LNZ1mPc= Subject key identifier: C4:6E:84:D2:20:52:10:BE:90:BC:AB:54:83:3C:9B:FE:F1:9F:DB:BA Certificate issuer: /CN=4F2A36BE85AB88338854C5A568CCD44E19E654F1 Certificate serial: 29 Authority key identifier: 4F:2A:36:BE:85:AB:88:33:88:54:C5:A5:68:CC:D4:4E:19:E6:54:F1 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tyo2voWriDOIVMWlaMzUThnmVPE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/882/xG6E0iBSEL6QvKtUgzyb_vGf27o.roa Signing time: Fri 01 Aug 2025 01:35:33 +0000 ROA not before: Fri 01 Aug 2025 01:35:33 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 59127 IP address blocks: 216.171.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/882/Tyo2voWriDOIVMWlaMzUThnmVPE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/882/Tyo2voWriDOIVMWlaMzUThnmVPE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tyo2voWriDOIVMWlaMzUThnmVPE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F2A36BE85AB88338854C5A568CCD44E19E654F1 Validity Not Before: Aug 1 01:35:33 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=C46E84D2205210BE90BCAB54833C9BFEF19FDBBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4f:3c:87:54:6a:30:10:13:8f:ff:68:43:25: f2:83:7a:30:e9:bd:64:a4:97:17:89:eb:86:56:bc: 3d:4f:f1:d1:82:f0:1a:81:97:b1:69:e6:4a:9b:11: 84:ce:d8:82:0f:e1:df:84:b1:01:e9:7e:94:bc:88: eb:f5:dc:ce:68:a8:f8:5b:4c:80:b3:99:ab:82:69: d2:1e:45:d8:4f:64:b9:c7:77:c3:28:3d:15:38:da: 98:28:23:dd:0a:c6:1a:3f:fb:2c:8b:1d:db:99:48: d9:62:0f:6d:a9:94:ae:35:8f:65:60:e9:55:33:01: a2:ff:91:a0:88:27:57:39:fd:f2:0c:76:a0:c6:69: 27:cc:e3:8f:db:a9:ea:5e:43:0f:a3:0a:8f:fd:29: 5f:7a:46:87:38:3f:2e:36:0e:65:8b:84:f1:ec:51: 55:89:f0:93:af:8d:94:5d:dd:71:75:a7:76:88:95: dc:63:24:d9:1a:66:df:e2:28:f4:76:24:2a:1b:46: 57:d0:ce:29:f1:f0:0f:c2:0d:17:b3:c1:77:20:d8: b2:7e:50:cf:31:d1:93:2a:1c:6a:6b:34:96:54:e9: 24:03:b5:d8:c4:25:8c:7f:6b:96:66:14:23:e8:15: 09:9a:ef:74:9b:c1:fd:7c:be:c2:f7:2d:3c:4a:ad: a0:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:6E:84:D2:20:52:10:BE:90:BC:AB:54:83:3C:9B:FE:F1:9F:DB:BA X509v3 Authority Key Identifier: keyid:4F:2A:36:BE:85:AB:88:33:88:54:C5:A5:68:CC:D4:4E:19:E6:54:F1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/882/Tyo2voWriDOIVMWlaMzUThnmVPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tyo2voWriDOIVMWlaMzUThnmVPE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/882/xG6E0iBSEL6QvKtUgzyb_vGf27o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 216.171.112.0/20 Signature Algorithm: sha256WithRSAEncryption 81:93:1b:ff:44:94:15:a4:f4:8e:42:cd:fc:86:67:08:0c:4b: d1:e9:6c:4f:1c:a1:4a:c8:c3:64:6a:47:0e:87:bb:96:6e:f1: 9f:8d:78:2b:a0:a2:21:71:1d:0b:19:c7:45:66:ed:45:99:60: 4d:ba:cd:4d:aa:cb:7e:55:c7:b5:7f:08:97:39:f6:5e:17:ad: c3:e6:bc:0a:40:1f:a5:b4:c9:0d:22:ed:af:bb:11:70:77:46: 17:27:ab:ae:df:d3:33:0b:e9:34:e7:eb:f7:43:d7:ef:70:ee: 8e:88:36:0d:eb:97:b4:ea:50:d7:7a:61:56:96:cd:94:8e:6c: 74:bd:19:12:65:89:d0:32:c0:9e:8a:39:aa:3e:e4:84:2e:24: d1:14:4a:4f:0e:e1:2f:9b:7c:49:c2:1c:e1:cb:79:c0:58:0a: 9f:d9:ff:85:85:59:cc:2c:12:06:95:da:df:b0:e5:2a:5d:63: 7d:41:d6:f7:66:28:aa:a1:3c:79:a9:78:f1:5e:5c:56:84:5f: fd:0d:fb:58:73:5e:ac:1c:a5:a9:9f:a3:86:ba:fd:11:ba:d7: 4a:28:69:c0:74:51:bf:b6:5b:7a:c7:f7:c5:50:f4:ef:bf:14: fa:f8:29:7a:fd:5f:7e:96:9d:de:eb:5f:06:6c:4f:6d:47:e3: 07:88:cc:22 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBKTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0RjJB MzZCRTg1QUI4ODMzODg1NEM1QTU2OENDRDQ0RTE5RTY1NEYxMB4XDTI1MDgwMTAx MzUzM1oXDTI2MDczMDA2MjkwOFowMzExMC8GA1UEAxMoQzQ2RTg0RDIyMDUyMTBC RTkwQkNBQjU0ODMzQzlCRkVGMTlGREJCQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANJPPIdUajAQE4//aEMl8oN6MOm9ZKSXF4nrhla8PU/x0YLwGoGX sWnmSpsRhM7Ygg/h34SxAel+lLyI6/Xczmio+FtMgLOZq4Jp0h5F2E9kucd3wyg9 FTjamCgj3QrGGj/7LIsd25lI2WIPbamUrjWPZWDpVTMBov+RoIgnVzn98gx2oMZp J8zjj9up6l5DD6MKj/0pX3pGhzg/LjYOZYuE8exRVYnwk6+NlF3dcXWndoiV3GMk 2Rpm3+Io9HYkKhtGV9DOKfHwD8INF7PBdyDYsn5QzzHRkyocams0llTpJAO12MQl jH9rlmYUI+gVCZrvdJvB/Xy+wvctPEqtoNsCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTEboTSIFIQvpC8q1SDPJv+8Z/bujAfBgNVHSMEGDAWgBRPKja+hauIM4hUxaVo zNROGeZU8TAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODgyL1R5bzJ2b1dyaURPSVZNV2xhTXpVVGhubVZQRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1R5bzJ2b1dyaURPSVZNV2xhTXpVVGhu bVZQRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84ODIveEc2RTBpQlNFTDZRdkt0VWd6eWJfdkdmMjdvLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNircDANBgkqhkiG9w0BAQsFAAOCAQEAgZMb/0SUFaT0jkLN/IZnCAxL0els TxyhSsjDZGpHDoe7lm7xn414K6CiIXEdCxnHRWbtRZlgTbrNTarLflXHtX8Ilzn2 Xhetw+a8CkAfpbTJDSLtr7sRcHdGFyerrt/TMwvpNOfr90PX73Dujog2DeuXtOpQ 13phVpbNlI5sdL0ZEmWJ0DLAnoo5qj7khC4k0RRKTw7hL5t8ScIc4ct5wFgKn9n/ hYVZzCwSBpXa37DlKl1jfUHW92YoqqE8eal48V5cVoRf/Q37WHNerBylqZ+jhrr9 EbrXSihpwHRRv7Zbesf3xVD0778U+vgpev1ffpad3utfBmxPbUfjB4jMIg== -----END CERTIFICATE-----Generated at Wed Aug 13 11:15:45 2025 by rpki-client