$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/233/DWN3INbymKSvsZirmb2m6sSXbCk.roa File: DWN3INbymKSvsZirmb2m6sSXbCk.roa (raw, json) Hash identifier: TIKKV7juqXC344xsvXs4QpmI8g8taGEVagkX2wzHNv4= Subject key identifier: 0D:63:77:20:D6:F2:98:A4:AF:B1:98:AB:99:BD:A6:EA:C4:97:6C:29 Certificate issuer: /CN=D788678E64D29184C23DAAADB594BFD9BAE2405C Certificate serial: 5D Authority key identifier: D7:88:67:8E:64:D2:91:84:C2:3D:AA:AD:B5:94:BF:D9:BA:E2:40:5C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/14hnjmTSkYTCPaqttZS_2briQFw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/DWN3INbymKSvsZirmb2m6sSXbCk.roa Signing time: Fri 01 Aug 2025 01:29:09 +0000 ROA not before: Fri 01 Aug 2025 01:29:09 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 7670 IP address blocks: 211.1.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/14hnjmTSkYTCPaqttZS_2briQFw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/14hnjmTSkYTCPaqttZS_2briQFw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/14hnjmTSkYTCPaqttZS_2briQFw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 18:40:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D788678E64D29184C23DAAADB594BFD9BAE2405C Validity Not Before: Aug 1 01:29:09 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=0D637720D6F298A4AFB198AB99BDA6EAC4976C29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:99:df:32:b3:e8:e0:ee:08:dd:40:6a:70:1b: 1e:21:87:cb:a5:ab:6e:b9:ab:7f:30:b6:f0:fb:fa: 87:2b:fd:16:7a:d4:77:26:20:cc:03:3b:8a:f9:b5: e1:47:74:e3:f9:8f:c2:99:a4:51:32:e9:81:43:2b: b5:8d:e5:b5:47:03:00:97:11:b9:ca:cf:36:ba:b7: 4b:d9:63:4b:6f:37:4d:80:3d:ee:60:73:72:76:66: 54:6d:5b:eb:6e:1c:ac:14:cf:cc:73:c3:14:e5:9e: 2b:e1:5e:03:83:ed:de:88:f1:03:25:b0:54:3c:f6: 17:2e:9e:8e:02:73:a0:ec:46:5a:5e:16:fd:04:31: aa:68:fd:54:8b:e7:66:4c:e2:c2:7b:00:89:7e:d7: 28:34:9d:3a:24:e0:ce:2f:f2:31:08:d4:1a:2f:5c: 2a:3c:f5:15:02:64:ea:a7:01:a1:99:0e:d1:cc:4e: d7:59:8d:13:76:16:73:9e:49:cf:67:aa:52:37:f8: f6:0e:7f:5a:92:c3:e5:d7:16:17:39:88:9e:1c:1a: 0b:cd:92:33:fd:1d:0a:48:90:8a:a8:ab:cc:8b:b4: 8f:29:ee:83:5f:13:32:54:f0:3f:ca:49:8c:1e:d7: 88:69:7d:9b:87:f9:02:f8:24:70:a5:0a:64:33:e4: b1:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:63:77:20:D6:F2:98:A4:AF:B1:98:AB:99:BD:A6:EA:C4:97:6C:29 X509v3 Authority Key Identifier: keyid:D7:88:67:8E:64:D2:91:84:C2:3D:AA:AD:B5:94:BF:D9:BA:E2:40:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/14hnjmTSkYTCPaqttZS_2briQFw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/14hnjmTSkYTCPaqttZS_2briQFw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/DWN3INbymKSvsZirmb2m6sSXbCk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.1.128.0/19 Signature Algorithm: sha256WithRSAEncryption 76:dc:e3:9b:77:a6:6d:34:20:87:b5:00:e3:28:61:c8:5b:1c: 87:21:16:bf:27:68:91:71:aa:a5:8e:64:08:97:a8:33:a2:61: e7:17:3d:0a:92:ae:f2:65:2d:05:5f:e2:d7:ab:6f:2d:ab:02: af:6d:6d:31:8c:c9:af:79:e3:4f:7b:05:c9:1f:22:f2:25:a4: 7a:26:24:7b:2b:5c:4b:b9:b2:f0:05:2f:04:6a:bb:cb:ef:5a: 0d:0e:ae:70:a6:76:cf:c8:93:86:82:67:17:7c:bf:ac:41:62: 40:cb:6d:f9:9f:03:62:4d:8c:f0:62:80:00:73:36:8b:95:e3: d9:fe:fe:ed:e2:3a:e7:94:68:b8:db:1f:82:c3:d5:f6:22:fe: 5e:b4:98:51:85:74:fd:44:8b:d7:9c:8d:56:99:ea:2c:77:ec: df:f6:f1:04:08:b2:64:31:98:f3:0d:10:58:cf:12:ab:4d:61: e1:b6:4c:56:58:87:f1:25:02:f9:f1:be:7c:b8:44:3e:2d:1e: 14:1d:02:bd:f7:15:54:b8:14:66:d4:ba:e7:fb:30:68:01:3d: df:c9:73:6b:35:54:28:9d:be:52:2e:b9:d5:33:36:c0:98:7c: 87:d1:48:e9:34:42:c0:88:19:fe:a7:2e:f5:0d:86:cd:6d:80: a0:2f:a8:22 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBXTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENzg4 Njc4RTY0RDI5MTg0QzIzREFBQURCNTk0QkZEOUJBRTI0MDVDMB4XDTI1MDgwMTAx MjkwOVoXDTI2MDczMDA2MjkwOFowMzExMC8GA1UEAxMoMEQ2Mzc3MjBENkYyOThB NEFGQjE5OEFCOTlCREE2RUFDNDk3NkMyOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMiZ3zKz6ODuCN1AanAbHiGHy6WrbrmrfzC28Pv6hyv9FnrUdyYg zAM7ivm14Ud04/mPwpmkUTLpgUMrtY3ltUcDAJcRucrPNrq3S9ljS283TYA97mBz cnZmVG1b624crBTPzHPDFOWeK+FeA4Pt3ojxAyWwVDz2Fy6ejgJzoOxGWl4W/QQx qmj9VIvnZkziwnsAiX7XKDSdOiTgzi/yMQjUGi9cKjz1FQJk6qcBoZkO0cxO11mN E3YWc55Jz2eqUjf49g5/WpLD5dcWFzmInhwaC82SM/0dCkiQiqirzIu0jynug18T MlTwP8pJjB7XiGl9m4f5AvgkcKUKZDPkscMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQNY3cg1vKYpK+xmKuZvabqxJdsKTAfBgNVHSMEGDAWgBTXiGeOZNKRhMI9qq21 lL/ZuuJAXDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMzLzE0aG5qbVRTa1lUQ1BhcXR0WlNfMmJyaVFGdy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzE0aG5qbVRTa1lUQ1BhcXR0WlNfMmJy aVFGdy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMzMvRFdOM0lOYnltS1N2c1ppcm1iMm02c1NYYkNrLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBdMBgDANBgkqhkiG9w0BAQsFAAOCAQEAdtzjm3embTQgh7UA4yhhyFschyEW vydokXGqpY5kCJeoM6Jh5xc9CpKu8mUtBV/i16tvLasCr21tMYzJr3njT3sFyR8i 8iWkeiYkeytcS7my8AUvBGq7y+9aDQ6ucKZ2z8iThoJnF3y/rEFiQMtt+Z8DYk2M 8GKAAHM2i5Xj2f7+7eI655RouNsfgsPV9iL+XrSYUYV0/USL15yNVpnqLHfs3/bx BAiyZDGY8w0QWM8Sq01h4bZMVliH8SUC+fG+fLhEPi0eFB0CvfcVVLgUZtS65/sw aAE938lzazVUKJ2+Ui651TM2wJh8h9FI6TRCwIgZ/qcu9Q2GzW2AoC+oIg== -----END CERTIFICATE-----Generated at Sat Aug 23 20:32:45 2025 by rpki-client