$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/t4vV_cGkrftHf6-FUIhxZQTw4sc.roa File: t4vV_cGkrftHf6-FUIhxZQTw4sc.roa (raw, json) Hash identifier: gzOlpDUgx3CAbdmvmj2ZeixVEjWckDZ68shVKUgW1l8= Subject key identifier: B7:8B:D5:FD:C1:A4:AD:FB:47:7F:AF:85:50:88:71:65:04:F0:E2:C7 Certificate issuer: /CN=296966DD720C30575F62D8FD4149458A90AACAA4 Certificate serial: 7F Authority key identifier: 29:69:66:DD:72:0C:30:57:5F:62:D8:FD:41:49:45:8A:90:AA:CA:A4 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KWlm3XIMMFdfYtj9QUlFipCqyqQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/t4vV_cGkrftHf6-FUIhxZQTw4sc.roa Signing time: Tue 01 Jul 2025 01:34:32 +0000 ROA not before: Tue 01 Jul 2025 01:34:32 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 2497 IP address blocks: 157.65.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KWlm3XIMMFdfYtj9QUlFipCqyqQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KWlm3XIMMFdfYtj9QUlFipCqyqQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KWlm3XIMMFdfYtj9QUlFipCqyqQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=296966DD720C30575F62D8FD4149458A90AACAA4 Validity Not Before: Jul 1 01:34:32 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=B78BD5FDC1A4ADFB477FAF855088716504F0E2C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:41:95:dd:2f:e0:08:20:f5:46:06:8e:2e:39: 61:1d:5b:8c:a2:38:d2:0f:db:78:d4:4d:4b:d1:97: b8:2c:01:87:40:b0:71:a3:ed:c8:41:b1:80:89:2c: cd:0c:d2:c3:7c:30:0c:08:20:7d:f7:03:2c:14:21: b6:9b:40:f6:00:54:90:15:71:ec:39:58:9e:54:90: fb:bf:21:8b:57:37:1c:92:cd:3f:cf:c3:a8:15:95: 2f:43:e6:c3:80:0d:2d:3c:ad:7c:6a:85:05:41:41: 5a:1d:c5:0f:89:ef:2e:dc:51:6e:91:89:76:4d:52: 85:cc:21:1d:bf:6c:7c:07:cf:47:54:93:58:c2:26: b1:ec:18:61:45:cb:d8:22:e3:52:c9:9d:45:a7:ef: 05:4d:fe:6a:76:29:3b:6c:2f:29:a2:6b:60:51:b2: 85:d3:a2:c1:f2:34:fe:b8:51:f5:ec:86:7e:80:d5: 34:1e:4d:65:d6:d8:88:ac:fc:8b:fb:61:f4:e8:c3: 72:b4:03:d2:d4:f6:77:da:da:cf:ba:32:9c:30:5f: 75:4f:a7:3e:a0:cb:5f:7f:79:2a:97:9b:6b:f4:37: 7a:0f:64:11:f9:94:d2:0f:a5:d9:ab:ee:0d:4f:f8: f2:bb:20:b1:89:3b:9b:bd:87:4b:29:32:01:a8:76: be:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:8B:D5:FD:C1:A4:AD:FB:47:7F:AF:85:50:88:71:65:04:F0:E2:C7 X509v3 Authority Key Identifier: keyid:29:69:66:DD:72:0C:30:57:5F:62:D8:FD:41:49:45:8A:90:AA:CA:A4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KWlm3XIMMFdfYtj9QUlFipCqyqQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KWlm3XIMMFdfYtj9QUlFipCqyqQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/t4vV_cGkrftHf6-FUIhxZQTw4sc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.65.8.0/21 Signature Algorithm: sha256WithRSAEncryption 55:f1:dc:88:5b:df:d4:01:a7:96:3d:6e:e8:51:6f:86:53:88: 0d:cc:01:e0:33:61:80:8f:8c:03:73:4e:79:64:9f:8d:d7:dc: 85:aa:e7:73:9d:78:6d:06:06:b4:02:f6:7c:d5:94:51:ac:60: db:50:c3:a6:c7:ad:78:ed:c3:28:6f:c7:e7:3d:90:1f:bd:9a: 97:05:ad:d8:39:b4:15:f3:a4:8b:ef:1a:fd:d9:ca:8a:39:14: 1d:44:a5:70:75:0c:66:a3:25:45:26:18:39:81:18:14:92:14: cc:09:88:f4:b0:f3:1b:09:94:7f:ce:93:05:d8:9f:d1:10:6e: 1c:b2:4b:e5:35:7a:c1:a7:be:b6:b8:18:1a:d8:f1:2c:e2:8a: 81:43:f3:e0:44:03:db:68:66:5a:91:15:75:4b:2d:79:12:d0: 95:ab:e7:82:dd:7c:4d:85:c6:d4:58:56:89:fd:40:a0:0f:e3: 95:1f:09:ef:8f:ce:6c:a9:73:94:4b:80:ff:e2:ca:82:69:2d: 9f:23:cd:c7:a6:d3:b3:ce:50:bd:af:ba:55:63:32:50:c4:42: 4f:83:00:93:1e:d0:92:c6:6c:43:76:bf:2c:bd:92:65:b6:ea: 57:b0:b5:b1:9a:4d:2c:32:b7:f7:ad:5c:e5:6d:77:76:fe:c7: 0f:dd:67:93 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIBfzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyOTY5 NjZERDcyMEMzMDU3NUY2MkQ4RkQ0MTQ5NDU4QTkwQUFDQUE0MB4XDTI1MDcwMTAx MzQzMloXDTI2MDYxNTAxMzAwMlowMzExMC8GA1UEAxMoQjc4QkQ1RkRDMUE0QURG QjQ3N0ZBRjg1NTA4ODcxNjUwNEYwRTJDNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALVBld0v4Agg9UYGji45YR1bjKI40g/beNRNS9GXuCwBh0CwcaPt yEGxgIkszQzSw3wwDAggffcDLBQhtptA9gBUkBVx7DlYnlSQ+78hi1c3HJLNP8/D qBWVL0Pmw4ANLTytfGqFBUFBWh3FD4nvLtxRbpGJdk1ShcwhHb9sfAfPR1STWMIm sewYYUXL2CLjUsmdRafvBU3+anYpO2wvKaJrYFGyhdOiwfI0/rhR9eyGfoDVNB5N ZdbYiKz8i/th9OjDcrQD0tT2d9raz7oynDBfdU+nPqDLX395Kpeba/Q3eg9kEfmU 0g+l2avuDU/48rsgsYk7m72HSykyAah2vh0CAwEAAaOCAiAwggIcMB0GA1UdDgQW BBS3i9X9waSt+0d/r4VQiHFlBPDixzAfBgNVHSMEGDAWgBQpaWbdcgwwV19i2P1B SUWKkKrKpDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGQGA1UdHwRdMFswWaBX oFWGU3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNi9LV2xtM1hJTU1GZGZZdGo5UVVsRmlwQ3F5cVEuY3JsMG0GCCsGAQUF BwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmlj LmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9LV2xtM1hJTU1GZGZZdGo5UVVsRmlwQ3F5 cVEuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuQYIKwYBBQUHAQsEgawwgakwXwYIKwYB BQUHMAuGU3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNi90NHZWX2NHa3JmdEhmNi1GVUloeFpRVHc0c2Mucm9hMEYGCCsG AQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJkcC9h cC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD nUEIMA0GCSqGSIb3DQEBCwUAA4IBAQBV8dyIW9/UAaeWPW7oUW+GU4gNzAHgM2GA j4wDc055ZJ+N19yFqudznXhtBga0AvZ81ZRRrGDbUMOmx6147cMob8fnPZAfvZqX Ba3YObQV86SL7xr92cqKORQdRKVwdQxmoyVFJhg5gRgUkhTMCYj0sPMbCZR/zpMF 2J/REG4cskvlNXrBp762uBga2PEs4oqBQ/PgRAPbaGZakRV1Sy15EtCVq+eC3XxN hcbUWFaJ/UCgD+OVHwnvj85sqXOUS4D/4sqCaS2fI83HptOzzlC9r7pVYzJQxEJP gwCTHtCSxmxDdr8svZJltupXsLWxmk0sMrf3rVzlbXd2/scP3WeT -----END CERTIFICATE-----Generated at Thu Jul 3 12:14:25 2025 by rpki-client