$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20116/6f75YQzmpY7X5UmYM9EY1C-MgxM.roa File: 6f75YQzmpY7X5UmYM9EY1C-MgxM.roa (raw, json) Hash identifier: MqFu+6Z3j00KjsDvFIK6J/lxzHm8cKHLcTj5n9zK3cE= Subject key identifier: E9:FE:F9:61:0C:E6:A5:8E:D7:E5:49:98:33:D1:18:D4:2F:8C:83:13 Certificate issuer: /CN=C49E64FB7C8C7C6B5CD7C7701882E8597C42838E Certificate serial: 8A Authority key identifier: C4:9E:64:FB:7C:8C:7C:6B:5C:D7:C7:70:18:82:E8:59:7C:42:83:8E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/6f75YQzmpY7X5UmYM9EY1C-MgxM.roa Signing time: Tue 10 Jun 2025 10:50:50 +0000 ROA not before: Tue 10 Jun 2025 10:50:50 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 38631 IP address blocks: 203.104.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E64FB7C8C7C6B5CD7C7701882E8597C42838E Validity Not Before: Jun 10 10:50:50 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=E9FEF9610CE6A58ED7E5499833D118D42F8C8313 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:44:b2:0a:3a:45:da:7b:49:25:f4:97:1d:fa: 7c:2b:ad:21:cf:26:17:c5:27:5c:a7:de:b8:b2:ea: ba:8d:5a:41:a8:fc:f0:2b:2c:6d:da:04:0f:e8:eb: 95:1f:25:b4:63:c7:a8:21:d5:5a:3b:25:1f:2d:fc: df:9a:9a:37:42:54:c9:56:39:c7:a8:13:a1:e4:0e: 55:33:cd:8c:0c:0d:d0:ae:17:c0:4f:ee:a9:04:a9: e1:93:2b:26:28:e1:c6:c5:e7:f0:29:3f:c3:a1:7b: 3b:2f:17:2a:62:2b:f6:36:2d:b9:8f:60:9f:2c:16: 7c:0a:d6:fa:6e:6c:a5:06:90:9b:91:28:29:e9:02: 5f:2c:e5:d1:54:7f:61:a1:93:ea:ea:50:64:db:45: cd:79:63:03:5f:e8:ef:f4:b0:0a:59:2d:c6:0e:ac: 99:55:59:36:67:b6:f1:2a:35:61:d4:83:57:de:3e: 6d:2f:71:55:50:8b:dc:8e:47:3b:12:0e:05:b5:96: 64:0f:d7:ee:23:ce:3d:e3:57:cd:1b:d5:30:bb:54: b4:42:f3:01:81:bc:88:66:d8:b3:6f:ba:92:e6:3c: 68:ba:99:19:0c:56:1c:45:57:75:38:f3:c8:95:d1: c6:17:a4:89:9b:f7:c2:59:c8:86:3c:f1:68:bd:05: 65:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:FE:F9:61:0C:E6:A5:8E:D7:E5:49:98:33:D1:18:D4:2F:8C:83:13 X509v3 Authority Key Identifier: keyid:C4:9E:64:FB:7C:8C:7C:6B:5C:D7:C7:70:18:82:E8:59:7C:42:83:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/6f75YQzmpY7X5UmYM9EY1C-MgxM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.104.128.0/20 Signature Algorithm: sha256WithRSAEncryption b0:9d:31:4f:39:b1:86:8d:20:7a:e8:dd:da:b3:bc:4a:89:22: 37:3e:d6:22:eb:d8:e5:82:a8:dc:17:5b:ae:82:6a:e9:5e:ba: 64:c8:01:ac:b0:ba:0b:5a:00:6e:bd:9e:27:2f:f5:69:ff:cf: b6:51:3e:0e:a1:c7:b7:04:b0:be:1f:3e:cf:51:f2:df:0f:f6: 0f:a0:6a:38:42:3d:9f:78:72:40:65:60:f7:7f:be:9c:77:40: 8d:2a:7f:db:0b:fa:4e:ca:86:27:ea:8c:9d:66:6a:7a:02:67: 9e:94:97:02:51:93:cc:0a:f9:6d:d6:d1:44:d0:fd:6a:b4:c9: 29:02:f8:62:24:59:74:10:7a:6c:3a:06:d9:89:96:b4:f3:97: d0:9a:5e:62:9a:c4:b1:25:cd:fa:26:e9:69:ed:78:25:43:6f: 4a:41:5c:69:57:80:0c:33:75:2d:93:cc:1a:2a:71:cd:50:40: ea:54:91:62:76:65:8e:e6:bc:83:df:41:4d:a8:b0:f2:db:d9: ac:d2:b5:32:5f:12:ac:14:9a:24:60:80:eb:84:65:bf:c4:15: c5:ad:a8:25:48:65:b8:f4:a4:50:11:7d:8b:0c:ee:0a:36:3e: 89:66:7a:b3:2e:89:ff:79:98:0b:92:cf:3e:f7:87:06:86:61: 25:01:67:6e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAIowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTY0RkI3QzhDN0M2QjVDRDdDNzcwMTg4MkU4NTk3QzQyODM4RTAeFw0yNTA2MTAx MDUwNTBaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEU5RkVGOTYxMENFNkE1 OEVEN0U1NDk5ODMzRDExOEQ0MkY4QzgzMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0RLIKOkXae0kl9Jcd+nwrrSHPJhfFJ1yn3riy6rqNWkGo/PAr LG3aBA/o65UfJbRjx6gh1Vo7JR8t/N+amjdCVMlWOceoE6HkDlUzzYwMDdCuF8BP 7qkEqeGTKyYo4cbF5/ApP8OhezsvFypiK/Y2LbmPYJ8sFnwK1vpubKUGkJuRKCnp Al8s5dFUf2Ghk+rqUGTbRc15YwNf6O/0sApZLcYOrJlVWTZntvEqNWHUg1fePm0v cVVQi9yORzsSDgW1lmQP1+4jzj3jV80b1TC7VLRC8wGBvIhm2LNvupLmPGi6mRkM VhxFV3U488iV0cYXpImb98JZyIY88Wi9BWU5AgMBAAGjggIoMIICJDAdBgNVHQ4E FgQU6f75YQzmpY7X5UmYM9EY1C+MgxMwHwYDVR0jBBgwFoAUxJ5k+3yMfGtc18dw GILoWXxCg44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTE2L3hKNWstM3lNZkd0YzE4ZHdHSUxvV1h4Q2c0NC5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3hKNWstM3lNZkd0YzE4ZHdHSUxv V1h4Q2c0NC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDExNi82Zjc1WVF6bXBZN1g1VW1ZTTlFWTFDLU1neE0u cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEy2iAMA0GCSqGSIb3DQEBCwUAA4IBAQCwnTFPObGGjSB66N3as7xK iSI3PtYi69jlgqjcF1uugmrpXrpkyAGssLoLWgBuvZ4nL/Vp/8+2UT4Ooce3BLC+ Hz7PUfLfD/YPoGo4Qj2feHJAZWD3f76cd0CNKn/bC/pOyoYn6oydZmp6AmeelJcC UZPMCvlt1tFE0P1qtMkpAvhiJFl0EHpsOgbZiZa085fQml5imsSxJc36Julp7Xgl Q29KQVxpV4AMM3Utk8waKnHNUEDqVJFidmWO5ryD30FNqLDy29ms0rUyXxKsFJok YIDrhGW/xBXFraglSGW49KRQEX2LDO4KNj6JZnqzLon/eZgLks8+94cGhmElAWdu -----END CERTIFICATE-----Generated at Sat Jul 5 19:12:58 2025 by rpki-client