$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/233/xDwesYop68qPlqymFKn-kMhYBPE.roa File: xDwesYop68qPlqymFKn-kMhYBPE.roa (raw, json) Hash identifier: /fYNRkxtVF/J9E0kot/nUVJqR1CVGNgc3HuadQUymwU= Subject key identifier: C4:3C:1E:B1:8A:29:EB:CA:8F:96:AC:A6:14:A9:FE:90:C8:58:04:F1 Certificate issuer: /CN=D788678E64D29184C23DAAADB594BFD9BAE2405C Certificate serial: 5B Authority key identifier: D7:88:67:8E:64:D2:91:84:C2:3D:AA:AD:B5:94:BF:D9:BA:E2:40:5C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/14hnjmTSkYTCPaqttZS_2briQFw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/xDwesYop68qPlqymFKn-kMhYBPE.roa Signing time: Fri 01 Aug 2025 01:29:08 +0000 ROA not before: Fri 01 Aug 2025 01:29:08 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 7670 IP address blocks: 210.236.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/14hnjmTSkYTCPaqttZS_2briQFw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/14hnjmTSkYTCPaqttZS_2briQFw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/14hnjmTSkYTCPaqttZS_2briQFw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 19:35:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D788678E64D29184C23DAAADB594BFD9BAE2405C Validity Not Before: Aug 1 01:29:08 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=C43C1EB18A29EBCA8F96ACA614A9FE90C85804F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:09:b9:c3:e0:d2:ca:a5:1f:ee:4c:e2:ac:b5: 1a:1c:19:d4:06:66:a7:75:02:31:e7:bc:ef:62:86: 54:10:68:7f:10:99:e2:ee:6a:46:5c:b9:9e:2c:b0: 92:75:39:b3:a1:2f:4e:a4:51:0b:81:ff:eb:05:5f: e7:22:30:c4:d5:01:d0:93:70:d8:5e:c8:fb:36:f0: 59:9d:e6:0f:89:27:f8:e8:53:04:7f:62:9a:7f:5b: 7e:87:ec:e8:64:1b:5c:ae:81:5a:e7:0b:d8:be:56: 84:ff:25:fc:c8:58:f2:1e:15:4c:45:be:0f:fc:47: 82:6b:c8:e2:6b:79:39:a3:7d:2f:44:6f:39:34:49: a8:a8:e9:11:b7:13:9d:39:2a:ad:9b:6b:73:83:dd: 56:ca:a5:d8:fc:64:55:79:10:18:72:4c:6f:09:e3: 81:73:f4:84:5a:e6:83:e7:a5:01:98:85:26:28:e3: e6:69:40:3e:a0:60:77:ec:24:18:87:a8:47:3d:4c: f3:d7:65:25:9b:2d:3e:21:6e:51:fd:02:19:46:7a: c8:d5:d4:cc:42:43:63:be:a4:e2:e4:ab:ee:fd:a5: db:79:a6:15:26:e9:2d:9c:65:12:48:3c:cf:c9:a9: 75:18:35:ea:b3:6c:2f:f0:1b:17:d5:26:a6:5e:2c: d2:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:3C:1E:B1:8A:29:EB:CA:8F:96:AC:A6:14:A9:FE:90:C8:58:04:F1 X509v3 Authority Key Identifier: keyid:D7:88:67:8E:64:D2:91:84:C2:3D:AA:AD:B5:94:BF:D9:BA:E2:40:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/14hnjmTSkYTCPaqttZS_2briQFw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/14hnjmTSkYTCPaqttZS_2briQFw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/xDwesYop68qPlqymFKn-kMhYBPE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.236.0.0/19 Signature Algorithm: sha256WithRSAEncryption 29:15:f4:f8:d8:78:4e:52:73:7f:15:d7:1a:28:28:6a:97:f2: 9c:3e:5e:bb:86:6d:4a:2c:0e:33:e5:c6:23:a1:f9:04:d4:16: aa:13:5b:b0:cc:24:d3:c0:a7:34:67:72:3f:51:31:a2:16:bb: bb:99:5c:14:04:0e:e9:9f:ae:26:4b:ec:4e:de:6c:98:e8:98: 0e:57:1e:b0:98:8b:12:72:ba:21:1a:02:d0:3b:84:e5:83:58: f2:2a:e6:62:16:70:9a:c4:c5:a2:15:d7:b4:c7:fb:62:51:93: 2c:41:61:96:b4:8c:53:62:d5:71:a6:43:3a:88:c4:64:62:bd: d0:be:4e:fc:4f:20:af:d2:fa:86:14:3b:87:ce:cd:82:94:a7: 21:d4:78:af:7e:ba:62:e9:4b:c9:2d:c2:1f:44:2a:3a:4f:6f: 96:03:7d:b3:16:1d:22:53:d5:fe:91:83:6a:c3:53:3b:ca:48: 0f:b8:a5:52:4a:2f:22:9c:1a:6f:db:f1:71:6b:bb:ef:2d:87: 43:72:0a:2a:dd:db:81:91:5f:be:db:a3:b1:17:8d:55:6e:99: a9:c2:b4:84:a9:72:3d:e2:6f:5e:34:b3:a0:e5:2d:6c:c8:b6: 7a:2e:77:df:bb:35:0e:63:b6:e1:aa:72:a6:cf:24:14:a7:63: 67:75:e2:9a -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBWzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENzg4 Njc4RTY0RDI5MTg0QzIzREFBQURCNTk0QkZEOUJBRTI0MDVDMB4XDTI1MDgwMTAx MjkwOFoXDTI2MDczMDA2MjkwOFowMzExMC8GA1UEAxMoQzQzQzFFQjE4QTI5RUJD QThGOTZBQ0E2MTRBOUZFOTBDODU4MDRGMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALIJucPg0sqlH+5M4qy1GhwZ1AZmp3UCMee872KGVBBofxCZ4u5q Rly5niywknU5s6EvTqRRC4H/6wVf5yIwxNUB0JNw2F7I+zbwWZ3mD4kn+OhTBH9i mn9bfofs6GQbXK6BWucL2L5WhP8l/MhY8h4VTEW+D/xHgmvI4mt5OaN9L0RvOTRJ qKjpEbcTnTkqrZtrc4PdVsql2PxkVXkQGHJMbwnjgXP0hFrmg+elAZiFJijj5mlA PqBgd+wkGIeoRz1M89dlJZstPiFuUf0CGUZ6yNXUzEJDY76k4uSr7v2l23mmFSbp LZxlEkg8z8mpdRg16rNsL/AbF9Umpl4s0qMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTEPB6xiinryo+WrKYUqf6QyFgE8TAfBgNVHSMEGDAWgBTXiGeOZNKRhMI9qq21 lL/ZuuJAXDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMzLzE0aG5qbVRTa1lUQ1BhcXR0WlNfMmJyaVFGdy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzE0aG5qbVRTa1lUQ1BhcXR0WlNfMmJy aVFGdy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMzMveER3ZXNZb3A2OHFQbHF5bUZLbi1rTWhZQlBFLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBdLsADANBgkqhkiG9w0BAQsFAAOCAQEAKRX0+Nh4TlJzfxXXGigoapfynD5e u4ZtSiwOM+XGI6H5BNQWqhNbsMwk08CnNGdyP1Exoha7u5lcFAQO6Z+uJkvsTt5s mOiYDlcesJiLEnK6IRoC0DuE5YNY8irmYhZwmsTFohXXtMf7YlGTLEFhlrSMU2LV caZDOojEZGK90L5O/E8gr9L6hhQ7h87NgpSnIdR4r366YulLyS3CH0QqOk9vlgN9 sxYdIlPV/pGDasNTO8pID7ilUkovIpwab9vxcWu77y2HQ3IKKt3bgZFfvtujsReN VW6ZqcK0hKlyPeJvXjSzoOUtbMi2ei5337s1DmO24apyps8kFKdjZ3Ximg== -----END CERTIFICATE-----Generated at Sun Aug 24 00:56:42 2025 by rpki-client