$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/4098/nBeys0Kf1fTgJu0ZAo6zHO1vNpI.roa File: nBeys0Kf1fTgJu0ZAo6zHO1vNpI.roa (raw, json) Hash identifier: HMwiA1AROARXN7YPnoLzg1G9iZgcE0pvcpf8n4kcETM= Subject key identifier: 9C:17:B2:B3:42:9F:D5:F4:E0:26:ED:19:02:8E:B3:1C:ED:6F:36:92 Certificate issuer: /CN=4867E40A23D097EA0025F6DDEB062F7B53D51B27 Certificate serial: 02 Authority key identifier: 48:67:E4:0A:23:D0:97:EA:00:25:F6:DD:EB:06:2F:7B:53:D5:1B:27 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/SGfkCiPQl-oAJfbd6wYve1PVGyc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/4098/nBeys0Kf1fTgJu0ZAo6zHO1vNpI.roa Signing time: Wed 02 Jul 2025 07:43:36 +0000 ROA not before: Wed 02 Jul 2025 07:43:36 +0000 ROA not after: Thu 02 Jul 2026 07:29:20 +0000 asID: 16509 IP address blocks: 202.244.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/4098/SGfkCiPQl-oAJfbd6wYve1PVGyc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/4098/SGfkCiPQl-oAJfbd6wYve1PVGyc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/SGfkCiPQl-oAJfbd6wYve1PVGyc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4867E40A23D097EA0025F6DDEB062F7B53D51B27 Validity Not Before: Jul 2 07:43:36 2025 GMT Not After : Jul 2 07:29:20 2026 GMT Subject: CN=9C17B2B3429FD5F4E026ED19028EB31CED6F3692 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b3:84:0b:e4:c9:c4:e4:d6:e4:52:98:c6:21: 33:52:b6:75:e7:39:46:d9:91:d2:bb:9d:52:09:ed: 4b:e5:e5:34:41:d4:ea:c7:8a:6e:eb:f9:a0:82:a5: a9:fc:8e:99:17:94:62:b9:ca:8d:ac:c2:47:cd:ae: a5:c4:01:c5:dc:55:69:61:7e:10:d0:11:74:e4:b4: 89:1b:fe:0d:ec:76:57:1e:3e:fc:48:79:76:52:71: 50:bb:54:8a:56:9b:20:58:1b:d7:93:07:89:52:aa: ed:68:22:97:a1:80:f3:65:d8:15:ef:d9:8f:3d:71: 1a:2e:3e:45:37:1b:2f:6d:46:77:f4:08:4b:95:88: 81:2a:5b:90:b3:2d:aa:39:4b:00:e7:61:a2:19:d4: 58:31:54:e2:38:2d:49:0a:e6:d1:33:13:05:01:dc: a4:6c:f1:59:71:95:33:55:ab:9f:26:20:93:74:1e: 99:0b:19:f4:e6:a9:63:e0:50:e1:3f:74:4c:d0:94: 7d:7a:53:40:a2:60:af:7f:68:fa:06:b8:d4:5b:5b: 24:01:f7:6b:41:7e:6d:50:54:e9:4c:6d:85:9a:94: d7:f9:4d:4c:bd:13:ac:f3:69:00:d6:01:21:3f:62: 67:2b:0b:8f:b5:8b:79:fd:24:37:d4:fc:e9:0a:19: 6b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:17:B2:B3:42:9F:D5:F4:E0:26:ED:19:02:8E:B3:1C:ED:6F:36:92 X509v3 Authority Key Identifier: keyid:48:67:E4:0A:23:D0:97:EA:00:25:F6:DD:EB:06:2F:7B:53:D5:1B:27 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/4098/SGfkCiPQl-oAJfbd6wYve1PVGyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/SGfkCiPQl-oAJfbd6wYve1PVGyc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/4098/nBeys0Kf1fTgJu0ZAo6zHO1vNpI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.244.96.0/22 Signature Algorithm: sha256WithRSAEncryption 2d:84:21:df:70:bd:dd:73:f5:b4:14:5d:41:ba:35:7c:03:54: f5:83:26:53:3b:b9:97:03:ba:bb:96:7b:78:99:d4:92:a2:3b: 4b:c8:ab:fd:4e:28:1c:61:b7:27:24:86:ff:bd:37:f2:0a:3e: de:50:85:d5:d2:c9:66:d7:1a:b0:50:81:65:cf:f2:f4:52:a6: 70:38:4a:c8:09:54:7b:9c:1d:47:1a:70:df:49:46:5b:cd:ad: 0f:5b:b9:48:7c:7c:10:46:0d:e4:23:b6:8e:1c:17:72:14:fc: 88:c1:23:35:65:f2:37:35:4a:eb:f1:c9:93:79:3a:7a:da:ce: 3d:63:14:84:c5:ed:a4:d0:6f:1b:93:a2:47:8b:d4:ca:a9:ca: b1:2e:e6:46:24:70:cd:05:31:b3:b0:b7:02:d9:9a:00:2f:92: d4:5a:d1:09:08:f7:c6:a3:4b:5a:ee:4c:27:1b:e7:84:37:02: 21:23:96:f0:70:37:28:bc:80:ff:9e:9a:04:b7:33:98:77:d6: c3:3a:de:bf:f6:f0:da:2d:81:12:f5:e1:de:d2:c9:34:79:ef: da:ff:d7:d5:d0:a0:b5:d5:3d:59:8d:fc:47:b0:87:41:f8:51: a3:55:62:1c:52:81:f7:64:18:b8:0c:fa:d3:33:b1:d8:b5:96: e2:23:81:c2 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0ODY3 RTQwQTIzRDA5N0VBMDAyNUY2RERFQjA2MkY3QjUzRDUxQjI3MB4XDTI1MDcwMjA3 NDMzNloXDTI2MDcwMjA3MjkyMFowMzExMC8GA1UEAxMoOUMxN0IyQjM0MjlGRDVG NEUwMjZFRDE5MDI4RUIzMUNFRDZGMzY5MjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMGzhAvkycTk1uRSmMYhM1K2dec5RtmR0rudUgntS+XlNEHU6seK buv5oIKlqfyOmReUYrnKjazCR82upcQBxdxVaWF+ENARdOS0iRv+Dex2Vx4+/Eh5 dlJxULtUilabIFgb15MHiVKq7Wgil6GA82XYFe/Zjz1xGi4+RTcbL21Gd/QIS5WI gSpbkLMtqjlLAOdhohnUWDFU4jgtSQrm0TMTBQHcpGzxWXGVM1WrnyYgk3QemQsZ 9OapY+BQ4T90TNCUfXpTQKJgr39o+ga41FtbJAH3a0F+bVBU6UxthZqU1/lNTL0T rPNpANYBIT9iZysLj7WLef0kN9T86QoZa+ECAwEAAaOCAiYwggIiMB0GA1UdDgQW BBScF7KzQp/V9OAm7RkCjrMc7W82kjAfBgNVHSMEGDAWgBRIZ+QKI9CX6gAl9t3r Bi97U9UbJzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDA5OC9TR2ZrQ2lQUWwtb0FKZmJkNndZdmUxUFZHeWMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9TR2ZrQ2lQUWwtb0FKZmJkNndZdmUx UFZHeWMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDA5OC9uQmV5czBLZjFmVGdKdTBaQW82ekhPMXZOcEkucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQCyvRgMA0GCSqGSIb3DQEBCwUAA4IBAQAthCHfcL3dc/W0FF1BujV8A1T1 gyZTO7mXA7q7lnt4mdSSojtLyKv9TigcYbcnJIb/vTfyCj7eUIXV0slm1xqwUIFl z/L0UqZwOErICVR7nB1HGnDfSUZbza0PW7lIfHwQRg3kI7aOHBdyFPyIwSM1ZfI3 NUrr8cmTeTp62s49YxSExe2k0G8bk6JHi9TKqcqxLuZGJHDNBTGzsLcC2ZoAL5LU WtEJCPfGo0ta7kwnG+eENwIhI5bwcDcovID/npoEtzOYd9bDOt6/9vDaLYES9eHe 0sk0ee/a/9fV0KC11T1ZjfxHsIdB+FGjVWIcUoH3ZBi4DPrTM7HYtZbiI4HC -----END CERTIFICATE-----Generated at Fri Jul 4 22:27:14 2025 by rpki-client