$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/897/lnrKeqsKIyOTGivbgELUYqOJNy0.roa File: lnrKeqsKIyOTGivbgELUYqOJNy0.roa (raw, json) Hash identifier: p+cw/5btMqGORlUVu+D5rpYoTWjbia2QSzMpdq0tu+A= Subject key identifier: 96:7A:CA:7A:AB:0A:23:23:93:1A:2B:DB:80:42:D4:62:A3:89:37:2D Certificate issuer: /CN=AA08097C6060710280CDAAA4E7E06C1F13CD16F2 Certificate serial: 98 Authority key identifier: AA:08:09:7C:60:60:71:02:80:CD:AA:A4:E7:E0:6C:1F:13:CD:16:F2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/lnrKeqsKIyOTGivbgELUYqOJNy0.roa Signing time: Fri 01 Aug 2025 01:34:17 +0000 ROA not before: Fri 01 Aug 2025 01:34:17 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 9621 IP address blocks: 125.2.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA08097C6060710280CDAAA4E7E06C1F13CD16F2 Validity Not Before: Aug 1 01:34:17 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=967ACA7AAB0A2323931A2BDB8042D462A389372D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f2:df:24:d4:ad:a8:d5:fd:be:63:34:71:14: 6d:4b:39:6b:09:a9:54:91:85:60:0c:c8:f6:da:96: 50:34:0e:9e:ab:54:af:ac:35:e4:73:69:48:3b:cd: 59:c8:d8:51:56:57:50:90:c5:b2:d1:70:f1:40:7c: 89:d0:93:23:77:78:b0:9b:89:57:a8:09:b7:f3:9c: 99:87:b4:bd:d0:4f:c4:c7:ae:79:68:75:70:cd:55: 64:44:a3:28:59:18:b2:8f:84:1a:62:11:6c:2b:f8: 13:5f:90:d0:51:53:2d:e2:a2:f7:25:35:f6:83:2c: 6b:62:d5:94:bb:b6:1b:8a:71:21:b3:17:0f:e0:b8: 0e:23:ca:f8:6f:ae:ee:cd:ed:00:63:df:db:60:c1: 01:b4:fa:1e:0d:9f:46:76:c2:16:76:54:26:19:6e: 21:71:29:9d:bb:ae:36:0c:7b:0d:84:bb:00:cc:c3: e1:f2:02:d4:0f:c6:a3:84:da:f9:1b:ef:9e:02:40: 85:66:74:78:cc:16:06:52:4a:ca:5c:b1:80:86:68: 2f:14:e2:67:26:46:e3:6a:02:c1:9d:e4:8d:15:6e: 1d:1a:19:15:21:e5:d5:0f:54:67:80:3b:f1:de:3e: d3:b3:3b:b7:02:7e:19:6b:37:e3:66:9c:96:2b:52: 3f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:7A:CA:7A:AB:0A:23:23:93:1A:2B:DB:80:42:D4:62:A3:89:37:2D X509v3 Authority Key Identifier: keyid:AA:08:09:7C:60:60:71:02:80:CD:AA:A4:E7:E0:6C:1F:13:CD:16:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/lnrKeqsKIyOTGivbgELUYqOJNy0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.2.0.0/19 Signature Algorithm: sha256WithRSAEncryption 77:9a:89:fa:6e:c7:cf:e6:fc:46:19:e2:9e:0a:03:20:47:81: d4:dc:04:56:ae:26:42:e4:a8:e1:95:c0:e2:3c:16:4f:2f:fa: 49:96:c4:98:e8:a0:5f:31:ae:ef:48:9b:76:62:4a:c7:21:fc: 88:4a:d5:4a:57:97:be:1f:60:aa:fd:42:8c:6e:cd:b0:4f:14: de:7c:18:e3:e4:aa:b5:5a:8c:63:fc:43:1a:67:5d:23:e7:5f: d8:97:aa:ba:68:e9:37:4f:46:00:78:ba:5a:88:32:5c:cd:d3: a7:63:c9:4d:19:46:38:bc:c5:a6:70:85:84:02:8a:2c:bf:27: 7e:4f:d2:8d:20:8f:62:89:32:b7:61:96:19:59:24:a4:7c:23: be:c9:ba:9e:88:8d:68:fa:b0:62:9d:b7:94:81:de:60:fa:93: 11:e6:dc:fd:ce:7a:96:2c:81:93:0c:2e:a1:62:37:c1:a0:e5: 51:a4:64:f3:6f:e3:f1:11:80:d6:3a:0f:16:b6:99:fc:84:95: 37:5f:78:6e:8f:c9:94:a8:d4:06:03:4a:13:65:a5:26:e5:31: bb:95:ea:a5:ae:bf:35:1c:24:77:34:4c:7e:f5:1d:d6:7b:6b: bd:a5:53:8e:d5:76:85:1c:3c:c7:b9:7d:fe:8d:92:b3:1a:ee: 02:bd:56:58 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUEw ODA5N0M2MDYwNzEwMjgwQ0RBQUE0RTdFMDZDMUYxM0NEMTZGMjAeFw0yNTA4MDEw MTM0MTdaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDk2N0FDQTdBQUIwQTIz MjM5MzFBMkJEQjgwNDJENDYyQTM4OTM3MkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDH8t8k1K2o1f2+YzRxFG1LOWsJqVSRhWAMyPballA0Dp6rVK+s NeRzaUg7zVnI2FFWV1CQxbLRcPFAfInQkyN3eLCbiVeoCbfznJmHtL3QT8THrnlo dXDNVWREoyhZGLKPhBpiEWwr+BNfkNBRUy3iovclNfaDLGti1ZS7thuKcSGzFw/g uA4jyvhvru7N7QBj39tgwQG0+h4Nn0Z2whZ2VCYZbiFxKZ27rjYMew2EuwDMw+Hy AtQPxqOE2vkb754CQIVmdHjMFgZSSspcsYCGaC8U4mcmRuNqAsGd5I0Vbh0aGRUh 5dUPVGeAO/HePtOzO7cCfhlrN+NmnJYrUj/NAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUlnrKeqsKIyOTGivbgELUYqOJNy0wHwYDVR0jBBgwFoAUqggJfGBgcQKAzaqk 5+BsHxPNFvIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzg5Ny9xZ2dKZkdCZ2NRS0F6YXFrNS1Cc0h4UE5GdkkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9xZ2dKZkdCZ2NRS0F6YXFrNS1Cc0h4 UE5GdkkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvODk3L2xucktlcXNLSXlPVEdpdmJnRUxVWXFPSk55MC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAV9AgAwDQYJKoZIhvcNAQELBQADggEBAHeaifpux8/m/EYZ4p4KAyBHgdTc BFauJkLkqOGVwOI8Fk8v+kmWxJjooF8xru9Im3ZiSsch/IhK1UpXl74fYKr9Qoxu zbBPFN58GOPkqrVajGP8QxpnXSPnX9iXqrpo6TdPRgB4ulqIMlzN06djyU0ZRji8 xaZwhYQCiiy/J35P0o0gj2KJMrdhlhlZJKR8I77Jup6IjWj6sGKdt5SB3mD6kxHm 3P3OepYsgZMMLqFiN8Gg5VGkZPNv4/ERgNY6Dxa2mfyElTdfeG6PyZSo1AYDShNl pSblMbuV6qWuvzUcJHc0TH71HdZ7a72lU47VdoUcPMe5ff6NkrMa7gK9Vlg= -----END CERTIFICATE-----Generated at Mon Aug 11 13:08:47 2025 by rpki-client