$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20116/iTXrMF-0oOgiXP1I7ktcUgHt_R4.roa File: iTXrMF-0oOgiXP1I7ktcUgHt_R4.roa (raw, json) Hash identifier: kVtti/kyjLMTpAQGcMn0Ue+7t3g0doTwNKmONAH4SaU= Subject key identifier: 89:35:EB:30:5F:B4:A0:E8:22:5C:FD:48:EE:4B:5C:52:01:ED:FD:1E Certificate issuer: /CN=C49E64FB7C8C7C6B5CD7C7701882E8597C42838E Certificate serial: 90 Authority key identifier: C4:9E:64:FB:7C:8C:7C:6B:5C:D7:C7:70:18:82:E8:59:7C:42:83:8E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/iTXrMF-0oOgiXP1I7ktcUgHt_R4.roa Signing time: Tue 01 Jul 2025 01:35:39 +0000 ROA not before: Tue 01 Jul 2025 01:35:39 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 23816 IP address blocks: 203.141.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E64FB7C8C7C6B5CD7C7701882E8597C42838E Validity Not Before: Jul 1 01:35:39 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=8935EB305FB4A0E8225CFD48EE4B5C5201EDFD1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d2:a0:d9:df:b6:76:0c:fb:86:6b:51:fc:cf: fc:f3:08:4c:54:a4:7b:a8:ca:8e:3d:ee:62:1a:d8: 95:62:24:c5:c5:c7:f7:bd:a1:f7:b6:7d:42:63:02: 5c:8a:5d:21:83:63:1f:6f:f1:7e:3c:52:1c:37:87: 97:b5:69:b7:29:73:39:e2:6b:bc:67:d1:3b:b2:05: ef:28:ed:26:22:f5:f1:ac:77:c5:0f:b0:16:90:d1: 08:40:61:56:6f:8a:99:35:d5:3e:78:73:ac:47:e4: 78:53:64:2d:fe:b5:06:cd:86:cc:e4:4d:95:f4:2d: 93:dd:ef:ae:96:b7:74:0d:8b:43:aa:3d:a9:61:33: a7:49:d5:f2:7d:ac:ef:13:0b:30:e3:62:42:77:5e: 60:ed:5d:09:cc:10:eb:9b:c9:fc:6f:7c:0f:16:97: e6:67:bf:01:b4:5b:55:05:27:5f:7c:91:6a:7a:3d: a0:58:7d:ab:11:a3:5f:37:65:38:36:90:17:67:e6: 39:72:b8:df:0c:af:dd:12:bb:91:f3:45:b7:26:b1: 8a:c8:f5:bb:68:6a:81:8b:f4:37:b2:de:73:29:8e: af:2b:72:5a:71:8f:b3:b4:bf:00:d1:2b:5e:63:83: 6a:37:27:30:ff:6a:8a:9f:91:5e:46:a0:a5:81:f3: 72:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:35:EB:30:5F:B4:A0:E8:22:5C:FD:48:EE:4B:5C:52:01:ED:FD:1E X509v3 Authority Key Identifier: keyid:C4:9E:64:FB:7C:8C:7C:6B:5C:D7:C7:70:18:82:E8:59:7C:42:83:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/iTXrMF-0oOgiXP1I7ktcUgHt_R4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.141.32.0/20 Signature Algorithm: sha256WithRSAEncryption b0:17:e9:56:08:34:ab:9e:3c:b8:17:6d:9f:26:d7:4c:5a:c7: 2e:3c:d1:e6:b3:85:c5:7d:ba:57:f2:75:de:1b:c7:76:d4:f4: 3d:da:13:72:1b:eb:2d:5a:63:bd:27:12:24:8f:d0:23:3f:c8: 9b:78:39:a3:34:8e:19:e2:7f:a6:b4:85:ad:bf:5d:bd:a3:e1: 1f:45:ad:49:cc:5a:97:e9:e4:b4:49:f3:81:8c:f7:24:1b:41: 5a:29:8a:2f:f7:7f:05:2e:9e:ba:d4:b1:d4:5b:88:f5:68:fb: 0c:64:d6:36:49:32:44:f6:d7:41:72:e5:45:01:97:72:cf:d9: a9:31:5b:a2:40:d2:a2:d8:e1:02:89:ed:02:ec:5a:79:52:7b: fd:fc:f3:80:f2:33:95:5f:a9:76:bf:fb:cc:52:e3:0d:1d:a6: db:64:cc:64:f9:d6:17:93:40:1f:8e:c5:38:38:8f:43:55:c9: 43:d7:75:f6:31:a5:1e:55:5e:91:93:c9:36:ad:79:95:23:a2: 7b:5c:fb:e3:26:70:ee:e3:5f:5d:b0:3a:73:4a:de:c8:15:72: e1:e3:f2:4d:8b:82:f8:54:9a:81:ab:57:ad:52:1b:d5:61:bd: f6:0b:0f:c8:7c:36:29:a4:36:2a:a6:ce:d8:8c:68:f7:40:1a: 97:48:39:aa -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTY0RkI3QzhDN0M2QjVDRDdDNzcwMTg4MkU4NTk3QzQyODM4RTAeFw0yNTA3MDEw MTM1MzlaFw0yNjA2MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg5MzVFQjMwNUZCNEEw RTgyMjVDRkQ0OEVFNEI1QzUyMDFFREZEMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDF0qDZ37Z2DPuGa1H8z/zzCExUpHuoyo497mIa2JViJMXFx/e9 ofe2fUJjAlyKXSGDYx9v8X48Uhw3h5e1abcpcznia7xn0TuyBe8o7SYi9fGsd8UP sBaQ0QhAYVZvipk11T54c6xH5HhTZC3+tQbNhszkTZX0LZPd766Wt3QNi0OqPalh M6dJ1fJ9rO8TCzDjYkJ3XmDtXQnMEOubyfxvfA8Wl+ZnvwG0W1UFJ198kWp6PaBY fasRo183ZTg2kBdn5jlyuN8Mr90Su5HzRbcmsYrI9btoaoGL9Dey3nMpjq8rclpx j7O0vwDRK15jg2o3JzD/aoqfkV5GoKWB83IZAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUiTXrMF+0oOgiXP1I7ktcUgHt/R4wHwYDVR0jBBgwFoAUxJ5k+3yMfGtc18dw GILoWXxCg44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTE2L3hKNWstM3lNZkd0YzE4ZHdHSUxvV1h4Q2c0NC5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3hKNWstM3lNZkd0YzE4ZHdHSUxv V1h4Q2c0NC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDExNi9pVFhyTUYtMG9PZ2lYUDFJN2t0Y1VnSHRfUjQu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEy40gMA0GCSqGSIb3DQEBCwUAA4IBAQCwF+lWCDSrnjy4F22fJtdM WscuPNHms4XFfbpX8nXeG8d21PQ92hNyG+stWmO9JxIkj9AjP8ibeDmjNI4Z4n+m tIWtv129o+EfRa1JzFqX6eS0SfOBjPckG0FaKYov938FLp661LHUW4j1aPsMZNY2 STJE9tdBcuVFAZdyz9mpMVuiQNKi2OECie0C7Fp5Unv9/POA8jOVX6l2v/vMUuMN HabbZMxk+dYXk0AfjsU4OI9DVclD13X2MaUeVV6Rk8k2rXmVI6J7XPvjJnDu419d sDpzSt7IFXLh4/JNi4L4VJqBq1etUhvVYb32Cw/IfDYppDYqps7YjGj3QBqXSDmq -----END CERTIFICATE-----Generated at Sat Jul 5 15:07:57 2025 by rpki-client