$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/K3YrxIUVD4U8kxu1xr0P4IbFSoc.roa File: K3YrxIUVD4U8kxu1xr0P4IbFSoc.roa (raw, json) Hash identifier: ZhcsW/vPP8j2Z681hMf3xWZmG2gvjnnhAICAu/rhlpg= Subject key identifier: 2B:76:2B:C4:85:15:0F:85:3C:93:1B:B5:C6:BD:0F:E0:86:C5:4A:87 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 02FF Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/K3YrxIUVD4U8kxu1xr0P4IbFSoc.roa Signing time: Tue 01 Jul 2025 01:39:43 +0000 ROA not before: Tue 01 Jul 2025 01:39:43 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 4721 IP address blocks: 202.43.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 767 (0x2ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Jul 1 01:39:43 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=2B762BC485150F853C931BB5C6BD0FE086C54A87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5e:3d:dc:66:82:2d:97:f8:7d:a2:f6:95:3b: 5c:59:a9:bb:7f:64:b7:7e:03:9b:cd:95:b0:6a:e2: 87:a0:bf:b0:0a:ed:5c:7a:3f:5a:07:6d:ad:11:6e: 5f:6a:48:d8:e6:90:08:bf:a1:b6:f4:86:50:f9:2d: 27:13:04:f7:04:14:0e:9b:39:03:ba:7e:16:db:3e: f5:63:6c:74:5e:56:b9:25:f6:fb:1f:f7:99:d5:b4: e4:a2:0b:6e:53:e7:a8:57:66:b4:f2:5f:bc:01:59: 52:fa:34:ed:ac:b6:28:ce:83:26:09:76:c1:20:45: 63:10:4a:f1:30:41:b9:7c:51:c0:6d:e7:01:b7:df: b5:51:2e:96:56:5b:4d:ce:09:10:2a:91:8f:54:e0: 6c:25:87:52:d9:89:1d:d7:ab:93:d8:d8:cb:c1:70: 6c:68:f6:5c:5e:ed:d8:e5:ca:bd:c0:ec:28:7d:e4: b8:67:2d:2a:41:6b:22:43:05:02:dd:a5:b0:ac:8b: 84:63:0e:e5:47:d3:f4:52:25:32:2f:ec:be:77:de: 56:ae:f8:f6:4a:27:fa:cd:32:9a:27:de:1c:33:11: 0d:ba:42:5a:12:77:14:e3:1b:d4:1e:cb:ba:54:43: ac:3e:b2:86:f5:97:50:d3:73:6c:26:a5:ad:08:2f: 55:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:76:2B:C4:85:15:0F:85:3C:93:1B:B5:C6:BD:0F:E0:86:C5:4A:87 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/K3YrxIUVD4U8kxu1xr0P4IbFSoc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.43.68.0/22 Signature Algorithm: sha256WithRSAEncryption ad:d2:13:59:33:5b:b9:f3:ae:3a:bb:64:27:85:56:70:3c:dd: fe:6f:50:eb:fb:b2:8e:e1:66:2e:a0:b9:76:57:58:99:47:e2: ac:ef:15:49:76:f0:b5:3d:f3:48:e2:7a:1b:f6:47:66:7f:10: e0:df:32:45:62:57:f1:29:fa:f2:bf:08:be:23:c9:43:30:97: 63:9a:e7:9e:37:42:d3:38:04:f3:b8:43:ac:98:72:46:27:38: 86:bc:66:6c:69:a2:db:ea:f4:92:71:03:c1:48:cf:09:a3:ca: 8f:7e:a7:e4:16:73:c9:65:a9:82:fe:94:21:7c:76:2f:2c:d0: a0:8e:fc:2e:c0:96:69:1a:a6:39:3f:f8:53:38:78:26:89:31: 62:39:45:6f:2a:37:26:d8:cf:44:87:11:25:6c:98:ea:39:58: ba:95:06:a6:fe:fa:a4:cf:1c:d8:7e:ea:8d:fd:0b:3d:4b:71: 1f:c5:5c:ef:ef:d6:98:4d:bb:c5:0b:96:db:fe:df:89:b1:86: 29:92:dd:bb:c4:50:43:91:84:55:d6:10:ec:90:ad:a0:ba:6c: 83:74:38:64:1e:88:8b:da:a0:1f:75:98:fa:8e:af:ce:25:81: 43:75:ae:a9:97:e0:a3:21:11:46:dd:c7:37:db:18:fe:59:a6: 32:4e:66:c0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAv8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNTA3MDEw MTM5NDNaFw0yNjA2MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDJCNzYyQkM0ODUxNTBG ODUzQzkzMUJCNUM2QkQwRkUwODZDNTRBODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6Xj3cZoItl/h9ovaVO1xZqbt/ZLd+A5vNlbBq4oegv7AK7Vx6 P1oHba0Rbl9qSNjmkAi/obb0hlD5LScTBPcEFA6bOQO6fhbbPvVjbHReVrkl9vsf 95nVtOSiC25T56hXZrTyX7wBWVL6NO2stijOgyYJdsEgRWMQSvEwQbl8UcBt5wG3 37VRLpZWW03OCRAqkY9U4Gwlh1LZiR3Xq5PY2MvBcGxo9lxe7djlyr3A7Ch95Lhn LSpBayJDBQLdpbCsi4RjDuVH0/RSJTIv7L533lau+PZKJ/rNMpon3hwzEQ26QloS dxTjG9Qey7pUQ6w+sob1l1DTc2wmpa0IL1WvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUK3YrxIUVD4U8kxu1xr0P4IbFSocwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL0szWXJ4SVVWRDRVOGt4dTF4cjBQNEliRlNvYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALKK0QwDQYJKoZIhvcNAQELBQADggEBAK3SE1kzW7nzrjq7ZCeFVnA83f5v UOv7so7hZi6guXZXWJlH4qzvFUl28LU980jiehv2R2Z/EODfMkViV/Ep+vK/CL4j yUMwl2Oa5543QtM4BPO4Q6yYckYnOIa8Zmxpotvq9JJxA8FIzwmjyo9+p+QWc8ll qYL+lCF8di8s0KCO/C7Almkapjk/+FM4eCaJMWI5RW8qNybYz0SHESVsmOo5WLqV Bqb++qTPHNh+6o39Cz1LcR/FXO/v1phNu8ULltv+34mxhimS3bvEUEORhFXWEOyQ raC6bIN0OGQeiIvaoB91mPqOr84lgUN1rqmX4KMhEUbdxzfbGP5ZpjJOZsA= -----END CERTIFICATE-----Generated at Fri Jul 4 23:15:24 2025 by rpki-client