$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/373/_MdmfsxGy7eG7HG3oVO_lPL5FKM.roa File: _MdmfsxGy7eG7HG3oVO_lPL5FKM.roa (raw, json) Hash identifier: jNCScZy0X7RMDVe8IgvFFktOzvFrvrtuJGpkV+m4MRM= Subject key identifier: FC:C7:66:7E:CC:46:CB:B7:86:EC:71:B7:A1:53:BF:94:F2:F9:14:A3 Certificate issuer: /CN=89CF5C2AFA5B576577351C4199018D44CDC2D6DA Certificate serial: 4B Authority key identifier: 89:CF:5C:2A:FA:5B:57:65:77:35:1C:41:99:01:8D:44:CD:C2:D6:DA Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ic9cKvpbV2V3NRxBmQGNRM3C1to.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/373/_MdmfsxGy7eG7HG3oVO_lPL5FKM.roa Signing time: Tue 10 Jun 2025 10:48:35 +0000 ROA not before: Tue 10 Jun 2025 10:48:35 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9615 IP address blocks: 202.129.176.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/373/ic9cKvpbV2V3NRxBmQGNRM3C1to.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/373/ic9cKvpbV2V3NRxBmQGNRM3C1to.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ic9cKvpbV2V3NRxBmQGNRM3C1to.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89CF5C2AFA5B576577351C4199018D44CDC2D6DA Validity Not Before: Jun 10 10:48:35 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=FCC7667ECC46CBB786EC71B7A153BF94F2F914A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c7:52:7a:bd:30:45:c2:d6:e6:e3:83:19:bb: 31:8b:33:48:59:e0:1b:33:40:ba:fa:e1:e5:14:5c: 94:42:1c:d9:7d:9e:0a:65:c5:c2:33:34:45:2a:90: 77:3e:5c:90:5e:d5:e3:94:b0:8f:49:3a:c0:8a:66: 5a:37:bb:f7:2b:cf:2a:d3:15:43:21:66:9b:6f:60: 4f:0b:61:00:2f:68:99:9d:de:d7:09:26:cc:4e:6f: fa:93:19:77:fa:91:46:9c:13:23:d5:59:08:92:ef: ed:3e:0d:00:83:1a:b3:c0:7e:45:8a:92:26:3b:ff: df:b9:01:9d:c5:8e:51:cf:a5:8b:7a:57:4c:f9:37: 4e:2b:dd:c5:8d:a8:b4:60:c0:4d:cd:45:f3:f6:c0: 4f:df:c8:f5:9e:db:65:31:29:b0:43:ea:e8:e5:89: 57:9f:b7:e8:0b:a6:96:91:fd:2d:93:0e:17:f5:82: 8d:00:63:95:3a:fb:ea:0d:1a:68:2b:40:9e:ea:f5: 70:8e:d4:64:c7:61:24:e3:37:b4:6b:3f:24:65:2d: 86:67:e8:ce:5b:bb:97:66:54:e1:f8:93:cc:f4:8c: d4:cf:d5:61:5b:54:52:b8:61:f0:30:c2:aa:22:59: 6b:de:2c:5d:da:ea:25:85:8a:b5:b7:45:10:a2:02: 94:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:C7:66:7E:CC:46:CB:B7:86:EC:71:B7:A1:53:BF:94:F2:F9:14:A3 X509v3 Authority Key Identifier: keyid:89:CF:5C:2A:FA:5B:57:65:77:35:1C:41:99:01:8D:44:CD:C2:D6:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/373/ic9cKvpbV2V3NRxBmQGNRM3C1to.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ic9cKvpbV2V3NRxBmQGNRM3C1to.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/373/_MdmfsxGy7eG7HG3oVO_lPL5FKM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.129.176.0/21 Signature Algorithm: sha256WithRSAEncryption 07:0f:8a:36:53:53:5e:e5:b7:bd:4d:e0:c3:d3:e0:c8:7c:1f: 30:2f:a4:2d:5c:d3:0e:d6:29:32:53:4a:73:22:ee:c1:03:82: de:e3:a2:c0:88:ac:e0:a3:d9:df:f0:22:d1:a8:7c:c3:20:fa: 23:1b:1e:2d:4d:ae:53:72:39:5e:43:c8:a5:67:a2:9e:01:3d: 0e:81:e7:71:2a:5a:a2:d4:66:75:e0:a1:16:f3:eb:b8:21:aa: ae:7d:2e:de:0a:bc:89:29:e3:b0:07:e3:df:95:3a:10:d5:58: c4:cc:53:1c:68:62:63:c9:1c:f9:66:f1:22:78:ec:da:9b:ee: 27:d4:31:15:08:b9:46:e8:91:2e:02:2f:ad:f3:ad:81:13:7e: 6b:46:fb:73:03:57:4f:fc:8e:99:fc:8f:5c:d4:5a:2d:e9:6c: 23:3e:84:c3:2c:66:7b:32:89:d9:d0:62:65:15:5d:82:28:4e: ef:73:fd:8b:ef:09:d7:e4:15:95:6b:2b:00:8c:cd:42:57:f1: de:d7:84:fe:49:8c:59:4f:b3:55:49:b1:1d:2e:a5:ac:7d:f8: bb:d8:bd:e4:07:4c:af:72:94:0f:b8:c2:14:01:67:de:26:08: 1d:2f:8d:24:43:ae:c1:30:a7:f1:92:d8:27:b7:49:ac:46:13: 24:66:3c:5d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBSzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4OUNG NUMyQUZBNUI1NzY1NzczNTFDNDE5OTAxOEQ0NENEQzJENkRBMB4XDTI1MDYxMDEw NDgzNVoXDTI2MDUyMzA5NTEwMFowMzExMC8GA1UEAxMoRkNDNzY2N0VDQzQ2Q0JC Nzg2RUM3MUI3QTE1M0JGOTRGMkY5MTRBMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKLHUnq9MEXC1ubjgxm7MYszSFngGzNAuvrh5RRclEIc2X2eCmXF wjM0RSqQdz5ckF7V45Swj0k6wIpmWje79yvPKtMVQyFmm29gTwthAC9omZ3e1wkm zE5v+pMZd/qRRpwTI9VZCJLv7T4NAIMas8B+RYqSJjv/37kBncWOUc+li3pXTPk3 TivdxY2otGDATc1F8/bAT9/I9Z7bZTEpsEPq6OWJV5+36AumlpH9LZMOF/WCjQBj lTr76g0aaCtAnur1cI7UZMdhJOM3tGs/JGUthmfozlu7l2ZU4fiTzPSM1M/VYVtU Urhh8DDCqiJZa94sXdrqJYWKtbdFEKIClCECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBT8x2Z+zEbLt4bscbehU7+U8vkUozAfBgNVHSMEGDAWgBSJz1wq+ltXZXc1HEGZ AY1EzcLW2jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzczL2ljOWNLdnBiVjJWM05SeEJtUUdOUk0zQzF0by5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2ljOWNLdnBiVjJWM05SeEJtUUdOUk0z QzF0by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zNzMvX01kbWZzeEd5N2VHN0hHM29WT19sUEw1RktNLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA8qBsDANBgkqhkiG9w0BAQsFAAOCAQEABw+KNlNTXuW3vU3gw9PgyHwfMC+k LVzTDtYpMlNKcyLuwQOC3uOiwIis4KPZ3/Ai0ah8wyD6IxseLU2uU3I5XkPIpWei ngE9DoHncSpaotRmdeChFvPruCGqrn0u3gq8iSnjsAfj35U6ENVYxMxTHGhiY8kc +WbxInjs2pvuJ9QxFQi5RuiRLgIvrfOtgRN+a0b7cwNXT/yOmfyPXNRaLelsIz6E wyxmezKJ2dBiZRVdgihO73P9i+8J1+QVlWsrAIzNQlfx3teE/kmMWU+zVUmxHS6l rH34u9i95AdMr3KUD7jCFAFn3iYIHS+NJEOuwTCn8ZLYJ7dJrEYTJGY8XQ== -----END CERTIFICATE-----Generated at Fri Jul 4 22:52:51 2025 by rpki-client