$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/208/7TI7Y8AKbZviXLV7pHHW9W3rRlo.roa File: 7TI7Y8AKbZviXLV7pHHW9W3rRlo.roa (raw, json) Hash identifier: dRnsQqApBOH+oJtoyi8KVdcjkFFxjlHNpFlgfN9GfFg= Subject key identifier: ED:32:3B:63:C0:0A:6D:9B:E2:5C:B5:7B:A4:71:D6:F5:6D:EB:46:5A Certificate issuer: /CN=7A7D206E5113C27285FDAA85362B4F6F9BD8D70D Certificate serial: 2B Authority key identifier: 7A:7D:20:6E:51:13:C2:72:85:FD:AA:85:36:2B:4F:6F:9B:D8:D7:0D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/en0gblETwnKF_aqFNitPb5vY1w0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/208/7TI7Y8AKbZviXLV7pHHW9W3rRlo.roa Signing time: Tue 10 Jun 2025 10:45:36 +0000 ROA not before: Tue 10 Jun 2025 10:45:36 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 7682 IP address blocks: 202.89.112.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/208/en0gblETwnKF_aqFNitPb5vY1w0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/208/en0gblETwnKF_aqFNitPb5vY1w0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/en0gblETwnKF_aqFNitPb5vY1w0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7A7D206E5113C27285FDAA85362B4F6F9BD8D70D Validity Not Before: Jun 10 10:45:36 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=ED323B63C00A6D9BE25CB57BA471D6F56DEB465A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:86:45:6d:24:d3:cc:c9:93:d3:13:ab:73:dc: 75:29:5d:79:2e:5a:aa:bb:74:c8:f1:51:31:7f:4d: 64:4a:2f:ad:10:05:24:5c:33:84:21:e0:00:24:c9: e9:fb:79:91:f0:69:eb:c3:90:b8:5d:2f:29:01:69: 6f:4f:51:46:c4:7c:73:ad:77:a5:0f:10:f3:8e:f9: 15:a9:90:7c:99:8e:16:a8:99:46:7b:8a:d0:3a:67: 01:a3:b7:43:50:3d:ad:e5:d3:9c:58:05:30:f2:be: ed:b8:77:0f:12:4d:9c:70:2d:d8:d1:6e:4e:ac:a4: 33:5b:67:45:7f:d6:b5:6a:b8:1f:88:da:c2:d7:fd: 84:aa:ac:d1:25:e0:52:1e:9c:70:4e:11:31:43:e9: 1c:b1:6f:fb:65:01:5c:a5:e1:59:f8:31:60:e5:a4: 98:3b:09:29:f3:2e:9c:e7:a2:8c:72:e7:83:9e:0e: a4:e4:4f:c7:0f:15:97:72:f9:9f:f9:93:9b:1a:a2: 1f:5b:aa:52:4b:18:09:70:de:78:4e:a6:6a:02:44: 0f:34:8a:b7:4e:a0:1a:2a:29:e5:5a:51:8b:0f:8d: 19:35:54:c4:ce:ac:c8:63:75:05:c2:58:87:f8:d4: 96:53:e3:8b:7a:05:f1:bf:6b:16:d8:be:31:62:d4: 00:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:32:3B:63:C0:0A:6D:9B:E2:5C:B5:7B:A4:71:D6:F5:6D:EB:46:5A X509v3 Authority Key Identifier: keyid:7A:7D:20:6E:51:13:C2:72:85:FD:AA:85:36:2B:4F:6F:9B:D8:D7:0D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/208/en0gblETwnKF_aqFNitPb5vY1w0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/en0gblETwnKF_aqFNitPb5vY1w0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/208/7TI7Y8AKbZviXLV7pHHW9W3rRlo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.89.112.0/22 Signature Algorithm: sha256WithRSAEncryption 76:2d:05:f4:f2:9f:fa:0f:c0:0c:a4:81:66:be:bb:48:75:73: 40:bf:50:d3:38:24:0c:29:b7:09:08:e6:eb:29:22:62:ce:cb: e0:5b:f5:e2:04:43:a2:9f:63:36:7f:ad:bb:63:53:50:69:98: 19:1c:69:5f:ac:0d:42:24:25:da:e2:20:f0:23:1c:7e:db:c5: aa:6c:b4:53:6e:05:90:ef:2e:d6:d6:bd:d4:3e:fe:b9:eb:fd: e6:60:75:cd:5a:90:aa:82:94:8b:87:d3:de:80:d9:33:3b:37: 46:d8:17:f5:dd:8a:13:69:2a:c7:30:84:49:d4:4d:69:a7:ad: ae:33:e7:32:fa:49:0f:43:8f:f6:38:73:ab:96:b7:be:e6:7f: f1:15:46:e3:28:7b:c3:8e:15:99:a5:7c:27:17:98:a8:5d:cf: 26:0c:a5:dd:30:3d:a0:83:a5:c6:90:ff:88:fe:c0:a2:f5:f6: 06:e3:98:cb:b6:f9:7d:58:e3:ba:f2:45:dc:84:ef:a6:c4:4d: 49:8c:32:bf:f1:16:83:50:b6:42:74:79:b9:df:4c:69:fd:5e: 68:8c:74:af:fd:fe:1d:78:10:14:0d:ab:59:95:6d:a1:9c:1a: 49:32:9f:d9:2e:eb:bc:0b:ae:30:8f:72:de:c0:19:bf:31:ad: 32:2e:9b:60 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBKzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3QTdE MjA2RTUxMTNDMjcyODVGREFBODUzNjJCNEY2RjlCRDhENzBEMB4XDTI1MDYxMDEw NDUzNloXDTI2MDUyMzA5NTEwMFowMzExMC8GA1UEAxMoRUQzMjNCNjNDMDBBNkQ5 QkUyNUNCNTdCQTQ3MUQ2RjU2REVCNDY1QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAO6GRW0k08zJk9MTq3PcdSldeS5aqrt0yPFRMX9NZEovrRAFJFwz hCHgACTJ6ft5kfBp68OQuF0vKQFpb09RRsR8c613pQ8Q8475FamQfJmOFqiZRnuK 0DpnAaO3Q1A9reXTnFgFMPK+7bh3DxJNnHAt2NFuTqykM1tnRX/WtWq4H4jawtf9 hKqs0SXgUh6ccE4RMUPpHLFv+2UBXKXhWfgxYOWkmDsJKfMunOeijHLng54OpORP xw8Vl3L5n/mTmxqiH1uqUksYCXDeeE6magJEDzSKt06gGiop5VpRiw+NGTVUxM6s yGN1BcJYh/jUllPji3oF8b9rFti+MWLUAFUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTtMjtjwAptm+JctXukcdb1betGWjAfBgNVHSMEGDAWgBR6fSBuURPCcoX9qoU2 K09vm9jXDTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjA4L2VuMGdibEVUd25LRl9hcUZOaXRQYjV2WTF3MC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2VuMGdibEVUd25LRl9hcUZOaXRQYjV2 WTF3MC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMDgvN1RJN1k4QUtiWnZpWExWN3BISFc5VzNyUmxvLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAspZcDANBgkqhkiG9w0BAQsFAAOCAQEAdi0F9PKf+g/ADKSBZr67SHVzQL9Q 0zgkDCm3CQjm6ykiYs7L4Fv14gRDop9jNn+tu2NTUGmYGRxpX6wNQiQl2uIg8CMc ftvFqmy0U24FkO8u1ta91D7+uev95mB1zVqQqoKUi4fT3oDZMzs3RtgX9d2KE2kq xzCESdRNaaetrjPnMvpJD0OP9jhzq5a3vuZ/8RVG4yh7w44VmaV8JxeYqF3PJgyl 3TA9oIOlxpD/iP7AovX2BuOYy7b5fVjjuvJF3ITvpsRNSYwyv/EWg1C2QnR5ud9M af1eaIx0r/3+HXgQFA2rWZVtoZwaSTKf2S7rvAuuMI9y3sAZvzGtMi6bYA== -----END CERTIFICATE-----Generated at Sat Jul 5 07:09:28 2025 by rpki-client