$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/knequYv3w4Db_7VEIAVDEjd0GEU.roa File: knequYv3w4Db_7VEIAVDEjd0GEU.roa (raw, json) Hash identifier: KIU9eUBSpnbhkY4i4rUaqsKVertipG+CufRs2sDsXyI= Subject key identifier: 92:77:AA:B9:8B:F7:C3:80:DB:FF:B5:44:20:05:43:12:37:74:18:45 Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 85 Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/knequYv3w4Db_7VEIAVDEjd0GEU.roa Signing time: Fri 01 Aug 2025 01:29:29 +0000 ROA not before: Fri 01 Aug 2025 01:29:29 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 18144 IP address blocks: 221.12.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 19:35:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Aug 1 01:29:29 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=9277AAB98BF7C380DBFFB5442005431237741845 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:9b:98:68:5a:6e:c0:66:e0:96:c1:27:f1:d9: b9:81:9a:3c:13:80:ae:ba:a9:94:98:5b:c7:9a:db: b1:1f:05:2a:24:e1:32:89:9c:73:27:65:9d:8f:64: 01:e6:d6:6a:f3:cb:60:d9:e2:53:8a:64:d6:4f:78: f3:d9:29:5c:12:ce:0f:55:2a:66:a7:44:f9:c8:e2: ab:16:88:98:c0:49:56:d7:b5:b8:8f:e0:8b:96:a1: 4b:9f:aa:00:37:e6:76:54:a1:5e:91:ee:76:32:84: 49:94:12:7a:47:81:4b:22:bd:5b:b2:42:df:2e:d9: 43:44:94:e2:2e:18:9d:a1:0b:7a:c0:2d:df:cd:ac: 72:1a:c3:d3:8a:0e:30:62:30:43:c0:fa:94:4b:f8: c3:f1:dc:5e:f8:f9:fe:f5:be:76:d4:6d:97:cf:ff: df:2a:a8:95:fd:85:97:e6:bf:ef:d3:69:c1:89:40: 1b:e4:a3:30:45:1c:52:f9:46:3d:d4:15:5d:37:a4: f8:95:27:1c:42:c0:e4:22:24:6d:c2:b5:f6:2c:ac: 55:b2:5f:4c:9e:d3:cc:e7:c8:64:31:12:76:86:d2: ac:87:2c:ec:50:11:2f:64:af:09:2f:24:03:f4:1a: f5:6b:b0:68:a9:cf:64:75:29:ad:4d:49:9e:b2:01: 07:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:77:AA:B9:8B:F7:C3:80:DB:FF:B5:44:20:05:43:12:37:74:18:45 X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/knequYv3w4Db_7VEIAVDEjd0GEU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 221.12.192.0/18 Signature Algorithm: sha256WithRSAEncryption 55:6e:c7:06:3d:d5:eb:27:b7:10:8e:e8:59:7d:4f:23:b8:fb: c1:15:38:96:8e:51:1e:97:ba:b5:29:72:d8:ca:4a:c7:71:aa: c1:88:9e:b3:2b:cb:f1:64:44:2d:76:6c:56:6d:38:1f:33:60: 53:85:fd:b0:e6:f0:e7:56:b7:a2:32:12:67:c4:95:d3:bb:82: 07:85:92:aa:e9:17:4c:69:17:d8:13:26:a4:0e:07:cc:ee:c8: 8b:ca:c6:6e:fe:21:5b:7d:df:9c:1b:5a:c7:1d:05:61:7f:3b: 89:43:fa:b8:0b:44:02:b7:59:30:51:02:2b:85:08:c9:6b:bb: af:30:08:65:d1:3c:b8:8e:56:10:60:43:c7:31:4c:dc:e0:6d: 78:8d:1d:a5:1e:26:7c:54:84:1d:6d:d0:17:99:2a:e8:eb:44: af:5f:25:56:f1:3a:d3:20:28:33:bd:75:1d:38:c4:25:1c:18: 06:e7:54:2e:b4:5b:7a:70:87:dd:eb:33:e1:a6:43:06:22:28: ad:ec:6a:31:c9:00:cb:bd:8b:0e:c6:c1:47:14:16:49:a4:02: e1:8f:2b:ad:22:2f:32:05:a0:bb:96:f2:ee:01:d3:b1:bd:ff: 1d:67:09:c2:62:c0:80:c4:fd:ea:01:81:2d:f2:62:d1:2d:63: f0:49:c3:96 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0I4 MzAwQjIwNjU5QkI5NTEwNjBGNjBCMUY0QkM2MDkxQUYyNzYzOTAeFw0yNTA4MDEw MTI5MjlaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDkyNzdBQUI5OEJGN0Mz ODBEQkZGQjU0NDIwMDU0MzEyMzc3NDE4NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXm5hoWm7AZuCWwSfx2bmBmjwTgK66qZSYW8ea27EfBSok4TKJ nHMnZZ2PZAHm1mrzy2DZ4lOKZNZPePPZKVwSzg9VKmanRPnI4qsWiJjASVbXtbiP 4IuWoUufqgA35nZUoV6R7nYyhEmUEnpHgUsivVuyQt8u2UNElOIuGJ2hC3rALd/N rHIaw9OKDjBiMEPA+pRL+MPx3F74+f71vnbUbZfP/98qqJX9hZfmv+/TacGJQBvk ozBFHFL5Rj3UFV03pPiVJxxCwOQiJG3CtfYsrFWyX0ye08znyGQxEnaG0qyHLOxQ ES9krwkvJAP0GvVrsGipz2R1Ka1NSZ6yAQefAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUknequYv3w4Db/7VEIAVDEjd0GEUwHwYDVR0jBBgwFoAUy4MAsgZZu5UQYPYL H0vGCRrydjkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzc4My95NE1Bc2daWnU1VVFZUFlMSDB2R0NScnlkamsuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC95NE1Bc2daWnU1VVFZUFlMSDB2R0NS cnlkamsuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNzgzL2tuZXF1WXYzdzREYl83VkVJQVZERWpkMEdFVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbdDMAwDQYJKoZIhvcNAQELBQADggEBAFVuxwY91esntxCO6Fl9TyO4+8EV OJaOUR6XurUpctjKSsdxqsGInrMry/FkRC12bFZtOB8zYFOF/bDm8OdWt6IyEmfE ldO7ggeFkqrpF0xpF9gTJqQOB8zuyIvKxm7+IVt935wbWscdBWF/O4lD+rgLRAK3 WTBRAiuFCMlru68wCGXRPLiOVhBgQ8cxTNzgbXiNHaUeJnxUhB1t0BeZKujrRK9f JVbxOtMgKDO9dR04xCUcGAbnVC60W3pwh93rM+GmQwYiKK3sajHJAMu9iw7GwUcU FkmkAuGPK60iLzIFoLuW8u4B07G9/x1nCcJiwIDE/eoBgS3yYtEtY/BJw5Y= -----END CERTIFICATE-----Generated at Sat Aug 23 22:29:57 2025 by rpki-client