$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2251/WmjgITjrgRtPPJPMK0vWX46cdjY.roa File: WmjgITjrgRtPPJPMK0vWX46cdjY.roa (raw, json) Hash identifier: Zggmy185hqqdwYxWMCmWcXteOZIku+6RGBCxgZraOCc= Subject key identifier: 5A:68:E0:21:38:EB:81:1B:4F:3C:93:CC:2B:4B:D6:5F:8E:9C:76:36 Certificate issuer: /CN=85FE0FA704460AA4FAEF8FA8CA609F00C4CDE008 Certificate serial: 30 Authority key identifier: 85:FE:0F:A7:04:46:0A:A4:FA:EF:8F:A8:CA:60:9F:00:C4:CD:E0:08 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hf4PpwRGCqT674-oymCfAMTN4Ag.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2251/WmjgITjrgRtPPJPMK0vWX46cdjY.roa Signing time: Fri 01 Aug 2025 01:34:20 +0000 ROA not before: Fri 01 Aug 2025 01:34:20 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 2518 IP address blocks: 133.208.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2251/hf4PpwRGCqT674-oymCfAMTN4Ag.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2251/hf4PpwRGCqT674-oymCfAMTN4Ag.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hf4PpwRGCqT674-oymCfAMTN4Ag.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 03:49:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85FE0FA704460AA4FAEF8FA8CA609F00C4CDE008 Validity Not Before: Aug 1 01:34:20 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=5A68E02138EB811B4F3C93CC2B4BD65F8E9C7636 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3c:b5:3a:eb:7e:f3:5a:24:e0:d1:37:2c:10: 27:53:8b:c5:0b:84:e3:d1:ac:f5:ca:7f:71:82:f3: a7:0a:f3:8f:2e:78:98:b5:58:ca:bc:d1:de:ea:ff: f9:f6:16:2a:6f:ee:14:c4:e9:07:52:cf:db:d1:03: 15:e1:d8:0c:f2:93:d8:c1:2f:63:6f:52:1d:81:ce: ec:6c:d3:64:9f:5e:1a:21:00:57:1d:23:3f:b4:ee: 8a:52:ed:8e:9e:33:cd:fd:7f:3c:86:d8:ae:79:5d: 1d:19:41:6b:c2:ad:95:b1:3b:aa:a9:69:78:f4:08: a6:62:a6:33:de:82:1d:c4:f6:77:58:2b:0c:e5:b2: f4:73:0d:87:c5:7c:dd:57:d3:98:7e:a2:33:8a:f1: 95:6f:d2:bd:4f:b0:63:14:1d:b8:fb:29:c7:67:af: 7c:0e:25:10:2c:cc:33:1c:c7:6c:36:49:6f:d2:d8: 21:9a:62:58:b3:74:82:57:ba:2b:e9:80:37:f0:1f: fc:b2:67:a1:01:6e:cc:60:c0:c8:e6:66:3f:0d:d1: f9:eb:8d:17:2b:43:35:a2:7e:4a:9b:21:a5:db:8f: dc:1c:d3:9e:5a:2f:2f:1b:6b:78:d8:60:1e:cc:14: f4:b1:70:7c:ed:be:08:31:32:c9:75:e3:55:aa:6c: 91:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:68:E0:21:38:EB:81:1B:4F:3C:93:CC:2B:4B:D6:5F:8E:9C:76:36 X509v3 Authority Key Identifier: keyid:85:FE:0F:A7:04:46:0A:A4:FA:EF:8F:A8:CA:60:9F:00:C4:CD:E0:08 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2251/hf4PpwRGCqT674-oymCfAMTN4Ag.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hf4PpwRGCqT674-oymCfAMTN4Ag.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2251/WmjgITjrgRtPPJPMK0vWX46cdjY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.208.0.0/15 Signature Algorithm: sha256WithRSAEncryption 56:90:6c:f4:38:7f:47:22:0d:1f:06:a3:38:c9:7b:dd:84:02: 99:a3:57:7f:b8:e3:86:24:e2:51:b2:2d:f0:9e:d0:64:f9:b6: a7:71:b8:ff:06:e7:a7:95:b2:7e:be:e7:88:9b:ac:0d:29:3e: 7d:79:0b:b9:6c:00:e7:b2:be:33:02:c8:81:c4:be:49:e2:54: 4a:f5:6c:75:a2:b5:a9:dc:66:88:72:89:04:83:ff:7e:45:1c: 39:35:89:b5:d2:54:77:35:3d:a9:48:63:ae:12:d4:83:7d:04: e5:51:aa:7a:48:31:f7:e2:76:32:78:c9:45:89:0f:4f:b8:40: 8e:aa:ad:cd:23:ef:ee:db:11:82:b8:0a:6c:d6:89:a7:ae:9d: ca:1d:e7:46:5d:33:11:d3:e8:b6:47:db:f1:62:8b:06:98:49: 44:ab:68:80:88:39:26:9d:8a:4a:52:06:b9:ab:69:d0:71:b3: 42:57:52:b1:7a:5a:62:3c:9a:35:33:14:0e:47:37:95:c6:6e: ca:74:f1:0e:38:ba:b9:60:7a:7a:f2:b3:2a:9c:7f:96:2c:00: dd:ac:2b:c1:a5:2d:c8:64:8a:20:ba:9a:4c:97:68:87:db:3c: d7:2a:b0:db:60:25:49:f4:06:d4:5e:73:8e:18:f1:4d:cb:00: 97:19:c5:c8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIBMDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4NUZF MEZBNzA0NDYwQUE0RkFFRjhGQThDQTYwOUYwMEM0Q0RFMDA4MB4XDTI1MDgwMTAx MzQyMFoXDTI2MDczMDA2MjkwOFowMzExMC8GA1UEAxMoNUE2OEUwMjEzOEVCODEx QjRGM0M5M0NDMkI0QkQ2NUY4RTlDNzYzNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKI8tTrrfvNaJODRNywQJ1OLxQuE49Gs9cp/cYLzpwrzjy54mLVY yrzR3ur/+fYWKm/uFMTpB1LP29EDFeHYDPKT2MEvY29SHYHO7GzTZJ9eGiEAVx0j P7TuilLtjp4zzf1/PIbYrnldHRlBa8KtlbE7qqlpePQIpmKmM96CHcT2d1grDOWy 9HMNh8V83VfTmH6iM4rxlW/SvU+wYxQduPspx2evfA4lECzMMxzHbDZJb9LYIZpi WLN0gle6K+mAN/Af/LJnoQFuzGDAyOZmPw3R+euNFytDNaJ+SpshpduP3BzTnlov LxtreNhgHswU9LFwfO2+CDEyyXXjVapskSkCAwEAAaOCAiUwggIhMB0GA1UdDgQW BBRaaOAhOOuBG088k8wrS9Zfjpx2NjAfBgNVHSMEGDAWgBSF/g+nBEYKpPrvj6jK YJ8AxM3gCDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjI1MS9oZjRQcHdSR0NxVDY3NC1veW1DZkFNVE40QWcuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9oZjRQcHdSR0NxVDY3NC1veW1DZkFN VE40QWcuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjI1MS9XbWpnSVRqcmdSdFBQSlBNSzB2V1g0NmNkalkucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIA ATAFAwMBhdAwDQYJKoZIhvcNAQELBQADggEBAFaQbPQ4f0ciDR8GozjJe92EApmj V3+444Yk4lGyLfCe0GT5tqdxuP8G56eVsn6+54ibrA0pPn15C7lsAOeyvjMCyIHE vkniVEr1bHWitancZohyiQSD/35FHDk1ibXSVHc1PalIY64S1IN9BOVRqnpIMffi djJ4yUWJD0+4QI6qrc0j7+7bEYK4CmzWiaeuncod50ZdMxHT6LZH2/FiiwaYSUSr aICIOSadikpSBrmradBxs0JXUrF6WmI8mjUzFA5HN5XGbsp08Q44urlgenrysyqc f5YsAN2sK8GlLchkiiC6mkyXaIfbPNcqsNtgJUn0BtRec44Y8U3LAJcZxcg= -----END CERTIFICATE-----Generated at Sun Aug 24 07:16:21 2025 by rpki-client