$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/539/dPR-gza7UXTebypNncWM6VSwcBo.roa File: dPR-gza7UXTebypNncWM6VSwcBo.roa (raw, json) Hash identifier: 0BFvIyCvzkML/0Xz/r7Eb8dA59N/MPZ8e7sUP93x/nU= Subject key identifier: 74:F4:7E:83:36:BB:51:74:DE:6F:2A:4D:9D:C5:8C:E9:54:B0:70:1A Certificate issuer: /CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Certificate serial: 91 Authority key identifier: 5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/dPR-gza7UXTebypNncWM6VSwcBo.roa Signing time: Tue 01 Jul 2025 01:34:54 +0000 ROA not before: Tue 01 Jul 2025 01:34:54 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 55900 IP address blocks: 202.171.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Validity Not Before: Jul 1 01:34:54 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=74F47E8336BB5174DE6F2A4D9DC58CE954B0701A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c3:71:1b:99:ca:4a:99:5c:aa:f0:ca:bd:8d: e1:d3:0d:0a:eb:81:43:92:41:fd:3b:ff:3a:3b:34: c6:87:16:c3:aa:91:f7:2c:7f:b0:ea:81:b9:17:98: 89:c9:78:7c:49:d3:7d:13:6e:bb:07:f7:55:12:4e: b8:18:09:42:ca:e1:78:e7:ad:c0:d0:b7:d0:63:9c: fb:a5:90:91:8c:21:7f:4b:20:1d:26:cd:26:76:0f: 46:fe:57:0c:1c:b6:5e:75:ce:68:82:2a:2a:37:8c: f2:0f:ee:d4:2c:be:24:76:83:ed:e7:05:81:3a:ed: 1b:c2:34:48:07:48:9e:11:f1:c8:92:25:59:95:eb: cf:11:23:e7:e8:c2:a8:6f:2d:b6:c4:e6:5d:1b:46: d2:5d:6a:71:c3:9c:d1:a0:d0:77:b2:da:73:2d:3a: f9:01:6d:2d:2b:ba:77:8d:b8:70:36:d5:04:6b:8c: 8e:f6:59:de:85:ee:51:dd:ce:93:52:a8:f5:f5:1a: 90:bf:69:06:c8:fb:3c:dc:09:2e:55:30:ca:75:25: 6a:37:78:d9:4c:ed:c6:ed:b5:04:f0:49:82:8f:8e: dc:53:34:0c:9c:49:95:47:7f:ad:61:68:e7:fc:ba: c2:bc:f8:bd:87:e1:5e:81:11:3e:22:66:b7:fc:63: c9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:F4:7E:83:36:BB:51:74:DE:6F:2A:4D:9D:C5:8C:E9:54:B0:70:1A X509v3 Authority Key Identifier: keyid:5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/dPR-gza7UXTebypNncWM6VSwcBo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.171.224.0/21 Signature Algorithm: sha256WithRSAEncryption c5:ed:a9:ec:4e:58:9d:bf:c0:26:bf:c0:ff:3c:12:3d:c9:a2: 42:dc:1e:e3:04:da:1b:1d:52:81:d0:5c:85:ac:99:70:78:a6: 36:d8:ef:b2:a3:a4:ec:28:25:e4:df:b4:6d:f1:8a:4f:1f:4c: 80:29:e8:56:15:54:ba:db:a8:e3:08:95:ad:99:04:29:67:91: 8e:91:4b:97:39:52:8a:77:9d:03:a7:08:85:4e:6f:a8:50:3d: c3:75:47:22:b5:83:de:90:9b:d3:78:42:ee:83:23:a5:d7:82: b6:ad:13:2f:ab:b5:5e:6b:dd:de:52:99:65:71:14:38:43:ce: 42:95:ff:2e:35:87:f3:9e:ca:27:58:65:e0:a3:64:7e:2c:88: b4:8f:c5:e6:70:82:63:13:7f:c6:9e:eb:80:7a:e4:bf:b0:fb: ce:c4:1a:90:b3:4e:0a:b3:86:b1:30:03:2d:86:0e:07:f9:ed: 10:50:31:3d:10:16:bf:fe:3e:53:32:bc:4f:af:db:3f:c7:86: ce:13:06:45:41:09:8e:b9:fb:30:8f:84:64:88:9f:c8:2f:7c: 18:de:43:66:81:f6:8d:ff:95:f7:86:70:59:e7:97:e6:d2:1d: 58:1f:7c:74:b0:91:24:1e:3b:78:c1:a6:2c:29:6f:69:ce:7f: 32:3e:e5:9a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUIw RDcyRjlGNDMwQjdENDAwMzM3NUYxMEQ1MDI1QjlFNUMwMDQzNzAeFw0yNTA3MDEw MTM0NTRaFw0yNjA2MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDc0RjQ3RTgzMzZCQjUx NzRERTZGMkE0RDlEQzU4Q0U5NTRCMDcwMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtw3EbmcpKmVyq8Mq9jeHTDQrrgUOSQf07/zo7NMaHFsOqkfcs f7DqgbkXmInJeHxJ030TbrsH91USTrgYCULK4XjnrcDQt9BjnPulkJGMIX9LIB0m zSZ2D0b+Vwwctl51zmiCKio3jPIP7tQsviR2g+3nBYE67RvCNEgHSJ4R8ciSJVmV 688RI+fowqhvLbbE5l0bRtJdanHDnNGg0Hey2nMtOvkBbS0runeNuHA21QRrjI72 Wd6F7lHdzpNSqPX1GpC/aQbI+zzcCS5VMMp1JWo3eNlM7cbttQTwSYKPjtxTNAyc SZVHf61haOf8usK8+L2H4V6BET4iZrf8Y8n/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUdPR+gza7UXTebypNncWM6VSwcBowHwYDVR0jBBgwFoAUWw1y+fQwt9QAM3Xx DVAlueXABDcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzUzOS9XdzF5LWZRd3Q5UUFNM1h4RFZBbHVlWEFCRGMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9XdzF5LWZRd3Q5UUFNM1h4RFZBbHVl WEFCRGMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTM5L2RQUi1nemE3VVhUZWJ5cE5uY1dNNlZTd2NCby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPKq+AwDQYJKoZIhvcNAQELBQADggEBAMXtqexOWJ2/wCa/wP88Ej3JokLc HuME2hsdUoHQXIWsmXB4pjbY77KjpOwoJeTftG3xik8fTIAp6FYVVLrbqOMIla2Z BClnkY6RS5c5Uop3nQOnCIVOb6hQPcN1RyK1g96Qm9N4Qu6DI6XXgratEy+rtV5r 3d5SmWVxFDhDzkKV/y41h/OeyidYZeCjZH4siLSPxeZwgmMTf8ae64B65L+w+87E GpCzTgqzhrEwAy2GDgf57RBQMT0QFr/+PlMyvE+v2z/Hhs4TBkVBCY65+zCPhGSI n8gvfBjeQ2aB9o3/lfeGcFnnl+bSHVgffHSwkSQeO3jBpiwpb2nOfzI+5Zo= -----END CERTIFICATE-----Generated at Sat Jul 5 02:53:09 2025 by rpki-client