$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/393/AHWlZxmXsVpQ2s75VLUO1ks-0ho.roa File: AHWlZxmXsVpQ2s75VLUO1ks-0ho.roa (raw, json) Hash identifier: 6WqXJDHFKT+U0dMvkLSF5AHzyJWFcGQZDBcOuOrl93g= Subject key identifier: 00:75:A5:67:19:97:B1:5A:50:DA:CE:F9:54:B5:0E:D6:4B:3E:D2:1A Certificate issuer: /CN=5D055B2DAAC48878CC9B1127A29CF11666920A23 Certificate serial: 8B Authority key identifier: 5D:05:5B:2D:AA:C4:88:78:CC:9B:11:27:A2:9C:F1:16:66:92:0A:23 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/AHWlZxmXsVpQ2s75VLUO1ks-0ho.roa Signing time: Tue 01 Jul 2025 01:35:29 +0000 ROA not before: Tue 01 Jul 2025 01:35:29 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 9622 IP address blocks: 211.2.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D055B2DAAC48878CC9B1127A29CF11666920A23 Validity Not Before: Jul 1 01:35:29 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=0075A5671997B15A50DACEF954B50ED64B3ED21A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ba:24:f2:db:03:11:8d:a1:85:67:38:7d:f3: 92:0d:6c:58:e7:68:85:01:03:0c:d4:45:a6:ea:c0: 7b:a4:cf:d6:bd:da:4d:5e:7f:6f:21:79:93:f5:86: 85:a1:8c:35:17:30:51:44:84:64:10:49:30:8f:e1: bf:e2:a8:90:88:e1:b9:9d:c3:d1:d3:eb:56:a1:2e: 92:f8:0a:ed:08:1c:1c:6c:fb:f4:ab:ec:56:88:f6: 8f:40:04:c5:0b:e8:c8:17:e9:46:29:d2:0a:1e:c8: a9:c1:5c:ec:9c:62:ea:8f:b0:11:72:0d:cc:01:36: aa:25:3a:ec:e8:ba:0b:89:ac:9e:e8:a3:36:0d:7d: e4:19:d5:de:3b:59:67:f8:c3:b3:3a:1b:9a:b0:ef: 4d:48:87:1c:d9:d1:72:75:6b:67:69:f5:ed:b2:45: 74:05:44:12:d4:da:cb:1b:18:00:8b:9a:e9:7e:32: f7:14:58:44:50:c6:f5:e6:72:84:1a:ba:78:e0:8c: eb:42:07:aa:2f:ea:0e:b2:d4:8b:17:da:79:28:82: ae:34:f1:8b:55:ba:e2:b9:9b:6e:44:cc:c9:4a:00: 5f:cd:e8:78:e3:ad:eb:fb:d9:24:e9:8d:1a:56:cb: b0:51:7b:8f:c7:da:70:0a:01:28:db:a7:ba:66:e5: 36:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:75:A5:67:19:97:B1:5A:50:DA:CE:F9:54:B5:0E:D6:4B:3E:D2:1A X509v3 Authority Key Identifier: keyid:5D:05:5B:2D:AA:C4:88:78:CC:9B:11:27:A2:9C:F1:16:66:92:0A:23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/AHWlZxmXsVpQ2s75VLUO1ks-0ho.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.2.184.0/21 Signature Algorithm: sha256WithRSAEncryption 92:1c:ad:53:e6:6c:62:46:68:fd:3e:86:15:56:96:f6:d7:d6: 95:b4:c4:c6:f7:c2:ad:3f:78:41:65:23:f9:b9:f2:1e:46:b9: 3c:89:c5:28:79:f9:0f:9c:d0:02:2b:89:d4:bc:7b:24:84:01: bc:b4:3f:c4:07:69:32:a0:f2:8b:b8:13:e9:59:ba:36:61:c1: 4c:86:e1:4b:2d:c6:f6:cc:27:e2:6c:49:49:16:fa:94:9a:2f: 2b:7f:16:92:c6:97:d5:2e:40:cc:9a:7b:d3:a8:bd:a8:8f:e0: 82:35:f5:88:c2:e4:c4:9b:58:d7:8a:5a:eb:c1:ca:e9:eb:c0: 69:9f:26:e2:e7:b8:67:b8:ee:0f:cb:b9:40:60:e9:13:88:58: 74:a9:13:4f:1a:c4:be:4a:51:d5:05:2b:1d:93:ef:a9:d4:94: 0f:f5:a7:46:b8:94:25:28:f1:66:3d:f8:f5:7f:35:36:3a:b6: 18:2e:b0:ea:c5:ba:d2:6c:81:4d:39:97:b2:b3:19:e4:99:93: 0c:83:57:87:a0:a1:a3:c3:51:db:8f:4d:86:77:96:65:09:07: 5a:b6:5b:2c:09:7d:d5:27:62:51:df:04:74:4e:61:5b:5a:f8: 67:43:31:94:ec:91:c0:4a:0b:3c:3d:7a:fc:66:bd:52:06:71: 13:cf:ed:17 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAIswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQw NTVCMkRBQUM0ODg3OENDOUIxMTI3QTI5Q0YxMTY2NjkyMEEyMzAeFw0yNTA3MDEw MTM1MjlaFw0yNjA2MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDAwNzVBNTY3MTk5N0Ix NUE1MERBQ0VGOTU0QjUwRUQ2NEIzRUQyMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRuiTy2wMRjaGFZzh985INbFjnaIUBAwzURabqwHukz9a92k1e f28heZP1hoWhjDUXMFFEhGQQSTCP4b/iqJCI4bmdw9HT61ahLpL4Cu0IHBxs+/Sr 7FaI9o9ABMUL6MgX6UYp0goeyKnBXOycYuqPsBFyDcwBNqolOuzouguJrJ7oozYN feQZ1d47WWf4w7M6G5qw701IhxzZ0XJ1a2dp9e2yRXQFRBLU2ssbGACLmul+MvcU WERQxvXmcoQaunjgjOtCB6ov6g6y1IsX2nkogq408YtVuuK5m25EzMlKAF/N6Hjj rev72STpjRpWy7BRe4/H2nAKASjbp7pm5TZzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUAHWlZxmXsVpQ2s75VLUO1ks+0howHwYDVR0jBBgwFoAUXQVbLarEiHjMmxEn opzxFmaSCiMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5My9YUVZiTGFyRWlIak1teEVub3B6eEZtYVNDaU0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9YUVZiTGFyRWlIak1teEVub3B6eEZt YVNDaU0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzkzL0FIV2xaeG1Yc1ZwUTJzNzVWTFVPMWtzLTBoby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPTArgwDQYJKoZIhvcNAQELBQADggEBAJIcrVPmbGJGaP0+hhVWlvbX1pW0 xMb3wq0/eEFlI/m58h5GuTyJxSh5+Q+c0AIridS8eySEAby0P8QHaTKg8ou4E+lZ ujZhwUyG4UstxvbMJ+JsSUkW+pSaLyt/FpLGl9UuQMyae9OovaiP4II19YjC5MSb WNeKWuvByunrwGmfJuLnuGe47g/LuUBg6ROIWHSpE08axL5KUdUFKx2T76nUlA/1 p0a4lCUo8WY9+PV/NTY6thgusOrFutJsgU05l7KzGeSZkwyDV4egoaPDUduPTYZ3 lmUJB1q2WywJfdUnYlHfBHROYVta+GdDMZTskcBKCzw9evxmvVIGcRPP7Rc= -----END CERTIFICATE-----Generated at Sat Jul 5 06:02:57 2025 by rpki-client