$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/1T8Y18fqO7zYhws6EWwCYAtledQ.roa File: 1T8Y18fqO7zYhws6EWwCYAtledQ.roa (raw, json) Hash identifier: 1mhC4KyPg7rk2mKkOysUUIrN4Ay1q3gmpG04GBL0oZ8= Subject key identifier: D5:3F:18:D7:C7:EA:3B:BC:D8:87:0B:3A:11:6C:02:60:0B:65:79:D4 Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 0142 Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/1T8Y18fqO7zYhws6EWwCYAtledQ.roa Signing time: Tue 10 Jun 2025 10:47:18 +0000 ROA not before: Tue 10 Jun 2025 10:47:18 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 10021 IP address blocks: 202.7.96.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Jun 10 10:47:18 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=D53F18D7C7EA3BBCD8870B3A116C02600B6579D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:81:91:9b:2a:75:02:c9:a8:35:21:3a:1d:f7: aa:b1:1e:51:80:18:c9:99:5e:bb:d6:91:2f:ea:3e: 59:a5:80:42:e9:f5:63:d6:4b:d9:6b:fd:4d:9c:25: 95:30:05:d8:86:87:25:09:22:9a:fc:09:c9:f3:7a: 37:43:56:a3:bb:ab:ef:79:5f:2c:91:07:ba:7f:47: 52:e0:e5:5b:8d:ea:b0:7a:f6:08:23:65:73:81:4a: 0b:17:b7:3d:3e:80:2b:89:e8:fb:15:34:8f:30:1f: ec:b4:ef:48:3d:29:67:b2:2e:33:6e:2f:ed:89:0c: 68:c5:9e:df:dd:44:13:50:8c:f5:50:27:90:9f:71: 40:69:dd:46:37:fb:80:83:84:dc:5e:c1:b2:b9:0e: a5:15:14:a4:ae:c4:07:a7:44:8e:33:4c:69:c3:c5: 72:88:81:5d:3f:c8:f5:bd:7d:8d:98:a9:8f:18:dd: 5d:24:07:9d:4e:22:da:bb:a0:22:58:98:b2:de:4b: 71:44:73:67:de:44:22:1f:86:8b:fe:b6:c5:ed:30: b3:fc:82:0a:41:3a:3a:9f:3e:19:57:26:3c:85:4b: 37:a0:9b:4c:0b:2b:98:27:9e:70:f1:dc:a4:fa:7d: f2:21:cf:1c:17:97:4d:e7:6c:96:6d:69:41:ec:3b: 95:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:3F:18:D7:C7:EA:3B:BC:D8:87:0B:3A:11:6C:02:60:0B:65:79:D4 X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/1T8Y18fqO7zYhws6EWwCYAtledQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.7.96.0/21 Signature Algorithm: sha256WithRSAEncryption 60:2f:58:49:ad:d1:a6:12:f4:66:27:e7:f4:a1:41:c8:d5:48: ae:d7:e2:00:bd:44:c2:95:a8:f8:d7:45:5a:a9:d3:ce:94:6a: 42:d0:93:37:71:85:d9:d9:9b:fe:2a:8f:97:6c:a9:a3:d6:01: 64:23:0c:4e:2a:cf:2e:37:48:0f:c3:7e:0c:f1:44:30:fe:ad: d1:8b:b5:fe:71:3f:cb:d2:f3:8b:d1:77:a9:7d:cd:f5:aa:d7: 66:ca:93:1a:3e:b9:ff:48:da:3c:37:78:63:f7:3b:d6:3c:9e: e8:dc:44:b9:63:e8:f8:0a:27:ed:62:33:ec:dc:3e:10:92:d7: ed:04:08:81:36:30:1f:90:1f:a0:fe:19:97:82:58:8f:b1:19: 1b:73:bd:81:6e:5d:00:ca:0e:dc:0a:53:54:3b:cd:ff:86:45: cc:60:16:fb:5f:66:be:79:51:ed:77:89:87:04:53:44:98:a1: f1:f2:0c:f6:1d:6c:46:5e:c3:c9:c0:5c:39:c5:58:16:49:b2: ca:3c:26:18:82:6c:25:db:51:9f:54:b0:d7:f5:be:3c:03:51: db:fb:a6:30:88:42:1e:e0:10:a9:1c:dc:75:89:6b:55:6f:9b: b8:6a:01:1b:33:90:eb:39:9f:5c:88:62:2c:27:95:13:b1:c0: 67:74:ee:43 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNTA2MTAx MDQ3MThaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEQ1M0YxOEQ3QzdFQTNC QkNEODg3MEIzQTExNkMwMjYwMEI2NTc5RDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/gZGbKnUCyag1ITod96qxHlGAGMmZXrvWkS/qPlmlgELp9WPW S9lr/U2cJZUwBdiGhyUJIpr8CcnzejdDVqO7q+95XyyRB7p/R1Lg5VuN6rB69ggj ZXOBSgsXtz0+gCuJ6PsVNI8wH+y070g9KWeyLjNuL+2JDGjFnt/dRBNQjPVQJ5Cf cUBp3UY3+4CDhNxewbK5DqUVFKSuxAenRI4zTGnDxXKIgV0/yPW9fY2YqY8Y3V0k B51OItq7oCJYmLLeS3FEc2feRCIfhov+tsXtMLP8ggpBOjqfPhlXJjyFSzegm0wL K5gnnnDx3KT6ffIhzxwXl03nbJZtaUHsO5WNAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU1T8Y18fqO7zYhws6EWwCYAtledQwHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5LzFUOFkxOGZxTzd6WWh3czZFV3dDWUF0bGVkUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPKB2AwDQYJKoZIhvcNAQELBQADggEBAGAvWEmt0aYS9GYn5/ShQcjVSK7X 4gC9RMKVqPjXRVqp086UakLQkzdxhdnZm/4qj5dsqaPWAWQjDE4qzy43SA/Dfgzx RDD+rdGLtf5xP8vS84vRd6l9zfWq12bKkxo+uf9I2jw3eGP3O9Y8nujcRLlj6PgK J+1iM+zcPhCS1+0ECIE2MB+QH6D+GZeCWI+xGRtzvYFuXQDKDtwKU1Q7zf+GRcxg FvtfZr55Ue13iYcEU0SYofHyDPYdbEZew8nAXDnFWBZJsso8JhiCbCXbUZ9UsNf1 vjwDUdv7pjCIQh7gEKkc3HWJa1Vvm7hqARszkOs5n1yIYiwnlROxwGd07kM= -----END CERTIFICATE-----Generated at Fri Jul 4 15:19:13 2025 by rpki-client