$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/BkBdk4QuTyH1pKkbmsCNb7X_mi8.roa File: BkBdk4QuTyH1pKkbmsCNb7X_mi8.roa (raw, json) Hash identifier: b3X7PwxPJGZHmkO7tSwdno+91XcxmmzrMnkjdAzGFLM= Subject key identifier: 06:40:5D:93:84:2E:4F:21:F5:A4:A9:1B:9A:C0:8D:6F:B5:FF:9A:2F Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 038F Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/BkBdk4QuTyH1pKkbmsCNb7X_mi8.roa Signing time: Fri 01 Aug 2025 01:50:59 +0000 ROA not before: Fri 01 Aug 2025 01:50:59 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 4721 IP address blocks: 202.72.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 18:40:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 911 (0x38f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 1 01:50:59 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=06405D93842E4F21F5A4A91B9AC08D6FB5FF9A2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:53:bf:1c:32:b0:ca:56:df:12:29:5e:52:59: ca:93:1e:e4:79:f0:cc:0c:71:d0:59:1b:a4:74:10: 47:90:5a:94:01:16:99:0c:53:79:5e:3e:b6:87:fb: 7f:07:06:c8:a5:52:70:6f:93:a0:45:32:57:40:be: 3f:f8:be:a9:f5:99:d1:f9:37:a0:20:7e:d8:87:eb: b3:4b:5f:db:49:bb:94:c1:87:09:a4:d1:db:15:4e: d0:82:97:b8:48:2b:3f:1b:fe:75:50:8d:f9:25:61: 10:5c:99:66:10:35:af:cf:6c:6f:0c:7c:42:f0:ac: f1:46:ae:21:21:5d:ce:94:76:9e:3e:e6:a1:b9:c4: 7a:d9:30:da:47:74:6a:1c:17:ac:27:81:29:32:16: b4:15:75:14:87:57:ce:a8:11:5a:57:8b:64:aa:1b: e5:32:ac:e9:a1:28:5f:f3:2e:d1:4b:53:59:79:f1: a9:22:5f:ef:58:03:a8:43:78:7b:2c:64:e5:38:52: 56:39:31:91:7f:14:26:52:89:ee:a3:26:a2:1a:08: 17:0d:be:15:cf:81:72:38:df:55:96:bb:a9:bd:db: b2:ee:c1:b5:69:aa:77:28:72:bd:74:32:a2:7d:c4: ea:59:57:51:60:c2:e0:9e:e1:96:e9:9b:81:35:56: 22:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:40:5D:93:84:2E:4F:21:F5:A4:A9:1B:9A:C0:8D:6F:B5:FF:9A:2F X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/BkBdk4QuTyH1pKkbmsCNb7X_mi8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.72.64.0/20 Signature Algorithm: sha256WithRSAEncryption 3a:c3:4e:10:d6:f3:87:39:d2:a5:9e:fb:6f:19:f2:f0:ad:34: ea:86:35:ea:ca:7b:3c:cf:b7:14:02:19:f5:0b:21:c5:e3:23: 0c:35:61:63:7a:81:77:dc:3d:21:40:50:0a:c9:5b:8b:a3:7a: 6b:8a:02:94:14:19:7a:af:13:c3:bd:a9:d8:1e:da:35:70:36: 1d:7a:25:b1:58:23:c5:66:84:94:cb:e7:73:21:e9:95:cf:32: bf:6f:ad:64:fe:3f:f2:c4:65:72:57:bb:3a:0b:36:d7:49:e9: b8:bc:9d:6e:1b:63:14:ef:08:58:43:74:3e:12:4d:4c:d0:46: 7c:9e:5c:0d:be:cd:0a:12:4c:a9:65:f0:6a:24:b9:e0:59:d3: 73:19:3e:38:f8:49:cd:04:59:0d:16:12:3b:8c:62:2d:cd:ad: 7b:f2:85:69:8e:9b:aa:ac:04:3f:87:73:30:4b:30:ea:25:81: 09:e9:1d:15:97:c7:76:1a:3a:49:ba:c9:10:83:68:20:46:dc: c5:02:19:d4:e6:e5:89:19:3a:e8:bf:50:11:ec:a5:90:b2:e3: c2:fd:d8:2b:31:0b:b1:3f:15:81:af:c0:30:c4:d2:6d:88:c3: e4:fe:47:1b:fa:d6:f6:1b:29:a4:09:a6:05:2d:1a:8f:32:e7: 36:ac:4e:78 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA48wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNTA4MDEw MTUwNTlaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDA2NDA1RDkzODQyRTRG MjFGNUE0QTkxQjlBQzA4RDZGQjVGRjlBMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3U78cMrDKVt8SKV5SWcqTHuR58MwMcdBZG6R0EEeQWpQBFpkM U3lePraH+38HBsilUnBvk6BFMldAvj/4vqn1mdH5N6AgftiH67NLX9tJu5TBhwmk 0dsVTtCCl7hIKz8b/nVQjfklYRBcmWYQNa/PbG8MfELwrPFGriEhXc6Udp4+5qG5 xHrZMNpHdGocF6wngSkyFrQVdRSHV86oEVpXi2SqG+UyrOmhKF/zLtFLU1l58aki X+9YA6hDeHssZOU4UlY5MZF/FCZSie6jJqIaCBcNvhXPgXI431WWu6m927LuwbVp qncocr10MqJ9xOpZV1FgwuCe4Zbpm4E1ViIZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUBkBdk4QuTyH1pKkbmsCNb7X/mi8wHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL0JrQmRrNFF1VHlIMXBLa2Jtc0NOYjdYX21pOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATKSEAwDQYJKoZIhvcNAQELBQADggEBADrDThDW84c50qWe+28Z8vCtNOqG NerKezzPtxQCGfULIcXjIww1YWN6gXfcPSFAUArJW4ujemuKApQUGXqvE8O9qdge 2jVwNh16JbFYI8VmhJTL53Mh6ZXPMr9vrWT+P/LEZXJXuzoLNtdJ6bi8nW4bYxTv CFhDdD4STUzQRnyeXA2+zQoSTKll8GokueBZ03MZPjj4Sc0EWQ0WEjuMYi3NrXvy hWmOm6qsBD+HczBLMOolgQnpHRWXx3YaOkm6yRCDaCBG3MUCGdTm5YkZOui/UBHs pZCy48L92CsxC7E/FYGvwDDE0m2Iw+T+Rxv61vYbKaQJpgUtGo8y5zasTng= -----END CERTIFICATE-----Generated at Sat Aug 23 20:41:24 2025 by rpki-client