$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/3oPlxTCJb11CeplkSVADnlAo0jY.roa File: 3oPlxTCJb11CeplkSVADnlAo0jY.roa (raw, json) Hash identifier: 0tXpS5rohT1ouTaI0l5+8egYiHtOlHRcvTbym8oWKas= Subject key identifier: DE:83:E5:C5:30:89:6F:5D:42:7A:99:64:49:50:03:9E:50:28:D2:36 Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 84 Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/3oPlxTCJb11CeplkSVADnlAo0jY.roa Signing time: Fri 01 Aug 2025 01:29:28 +0000 ROA not before: Fri 01 Aug 2025 01:29:28 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 18144 IP address blocks: 220.210.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 19:35:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Aug 1 01:29:28 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=DE83E5C530896F5D427A99644950039E5028D236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c2:45:2d:6d:0d:95:7d:a6:2e:24:6b:a9:08: df:51:67:e8:6e:bb:d6:85:51:a9:ec:8b:8b:46:e9: 39:8e:d3:b3:9a:99:c0:83:63:68:4a:2b:79:eb:02: c3:c7:45:66:c4:26:4f:56:6a:71:24:0b:0c:d1:ad: 56:e7:34:0d:f1:f1:50:62:7d:37:84:ff:3f:3a:67: 14:8b:83:16:b5:f3:92:41:26:29:ea:c0:c1:3f:fe: 23:2b:6f:10:c9:af:0b:38:ba:02:db:a3:d7:13:f9: 7c:75:a3:0c:84:d9:38:32:cf:6e:8d:e0:53:ab:99: f5:e8:cd:67:57:9e:6a:98:98:7d:43:3f:cb:fb:9b: b9:8d:0d:0e:9b:28:61:9f:f0:f9:f3:42:ac:fe:6c: 03:a7:83:c4:6d:31:9c:0e:4e:79:3b:74:08:e9:a7: 75:bb:b5:45:04:ae:a7:94:77:08:c1:37:14:16:f8: 0c:2b:d1:82:0e:1c:55:3b:43:a3:c5:5a:68:c7:3b: 25:17:dc:c8:45:5f:df:7c:09:06:c9:e7:3f:6d:65: 52:72:83:cf:6b:67:36:c0:72:55:4a:c7:19:16:5c: 1b:2f:b2:c1:1f:0b:af:9f:a1:33:c0:78:d3:f6:60: 69:d0:51:0f:9c:db:09:d2:e3:3e:cd:b2:09:79:70: e1:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:83:E5:C5:30:89:6F:5D:42:7A:99:64:49:50:03:9E:50:28:D2:36 X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/3oPlxTCJb11CeplkSVADnlAo0jY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.224.0/19 Signature Algorithm: sha256WithRSAEncryption 3b:97:52:79:82:f7:ed:da:b8:53:19:14:92:b3:01:12:36:0e: 04:08:49:02:14:10:10:6a:e4:d5:46:70:93:fe:44:52:fe:8b: 40:6c:df:69:05:bc:0f:ff:e2:fc:3e:74:18:df:6f:15:83:f1: e2:03:62:2a:0f:7c:fc:c7:da:06:ed:e2:e6:fc:6b:29:23:7e: bb:63:11:6a:fa:e0:3d:4b:a5:5b:c5:7a:2a:1c:86:1a:7c:18: 6e:0b:c0:61:fd:89:58:5d:8d:b2:15:96:e3:5a:29:b9:16:6a: 31:c7:54:dd:75:71:74:60:46:b5:36:bd:55:da:42:1f:ec:45: db:61:1f:cc:8a:68:bc:cb:ab:7a:ba:44:09:1f:e1:cd:c2:7a: 4c:44:fa:b5:cb:58:e3:99:aa:95:04:27:99:45:a2:33:31:52: 18:46:e6:05:37:21:d4:48:09:34:af:74:c3:36:55:62:76:55: e8:08:ab:99:f6:cf:99:a0:99:bb:83:e9:50:be:06:5d:d9:ff: 77:6a:88:2c:86:4d:71:20:35:bc:b8:84:cb:d6:ce:f3:85:ee: 50:7b:f2:df:35:9b:62:7e:a2:00:73:b7:69:46:2a:6f:a0:22: 31:7a:56:fd:c8:79:79:b1:8f:9c:75:16:49:39:76:4d:c1:00: bf:0f:89:a2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0I4 MzAwQjIwNjU5QkI5NTEwNjBGNjBCMUY0QkM2MDkxQUYyNzYzOTAeFw0yNTA4MDEw MTI5MjhaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKERFODNFNUM1MzA4OTZG NUQ0MjdBOTk2NDQ5NTAwMzlFNTAyOEQyMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdwkUtbQ2VfaYuJGupCN9RZ+huu9aFUansi4tG6TmO07OamcCD Y2hKK3nrAsPHRWbEJk9WanEkCwzRrVbnNA3x8VBifTeE/z86ZxSLgxa185JBJinq wME//iMrbxDJrws4ugLbo9cT+Xx1owyE2Tgyz26N4FOrmfXozWdXnmqYmH1DP8v7 m7mNDQ6bKGGf8PnzQqz+bAOng8RtMZwOTnk7dAjpp3W7tUUErqeUdwjBNxQW+Awr 0YIOHFU7Q6PFWmjHOyUX3MhFX998CQbJ5z9tZVJyg89rZzbAclVKxxkWXBsvssEf C6+foTPAeNP2YGnQUQ+c2wnS4z7Nsgl5cOEhAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3oPlxTCJb11CeplkSVADnlAo0jYwHwYDVR0jBBgwFoAUy4MAsgZZu5UQYPYL H0vGCRrydjkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzc4My95NE1Bc2daWnU1VVFZUFlMSDB2R0NScnlkamsuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC95NE1Bc2daWnU1VVFZUFlMSDB2R0NS cnlkamsuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNzgzLzNvUGx4VENKYjExQ2VwbGtTVkFEbmxBbzBqWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXc0uAwDQYJKoZIhvcNAQELBQADggEBADuXUnmC9+3auFMZFJKzARI2DgQI SQIUEBBq5NVGcJP+RFL+i0Bs32kFvA//4vw+dBjfbxWD8eIDYioPfPzH2gbt4ub8 aykjfrtjEWr64D1LpVvFeiochhp8GG4LwGH9iVhdjbIVluNaKbkWajHHVN11cXRg RrU2vVXaQh/sRdthH8yKaLzLq3q6RAkf4c3CekxE+rXLWOOZqpUEJ5lFojMxUhhG 5gU3IdRICTSvdMM2VWJ2VegIq5n2z5mgmbuD6VC+Bl3Z/3dqiCyGTXEgNby4hMvW zvOF7lB78t81m2J+ogBzt2lGKm+gIjF6Vv3IeXmxj5x1Fkk5dk3BAL8PiaI= -----END CERTIFICATE-----Generated at Sun Aug 24 02:48:32 2025 by rpki-client