$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/840/WsWdFuuqkKgEcuGq7LajOdjaofI.roa File: WsWdFuuqkKgEcuGq7LajOdjaofI.roa (raw, json) Hash identifier: 89HyfCFN2Mpz8EGMQkWPu7oaLroAa3MghC8iizMNZGM= Subject key identifier: 5A:C5:9D:16:EB:AA:90:A8:04:72:E1:AA:EC:B6:A3:39:D8:DA:A1:F2 Certificate issuer: /CN=D79B3890C2DA3795148976B954C2024056797554 Certificate serial: 52 Authority key identifier: D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/WsWdFuuqkKgEcuGq7LajOdjaofI.roa Signing time: Tue 10 Jun 2025 10:48:20 +0000 ROA not before: Tue 10 Jun 2025 10:48:20 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 131934 IP address blocks: 219.100.16.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D79B3890C2DA3795148976B954C2024056797554 Validity Not Before: Jun 10 10:48:20 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=5AC59D16EBAA90A80472E1AAECB6A339D8DAA1F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:86:f7:1a:4e:15:00:bb:33:53:fd:cb:e0:07: 78:bd:b6:f1:50:35:30:d8:17:b6:51:06:6b:3b:65: 40:13:72:fb:fe:74:58:05:82:ad:60:b5:3e:9d:e3: 7a:4b:80:b3:05:84:fc:35:5c:eb:ba:26:02:d7:da: 4f:07:b5:79:fe:22:b5:82:06:c2:b4:4a:92:ca:aa: 08:ef:52:67:49:a0:d4:06:4e:fe:cf:4a:02:3b:9f: 58:8b:13:e8:c6:9a:26:ba:23:bc:da:26:26:9c:d2: 3a:1e:67:b7:1e:49:ef:9a:bd:46:22:49:12:b7:27: 8b:ba:17:b3:48:ab:e5:ac:ac:6b:4a:fd:44:63:08: a6:c6:f7:02:eb:38:6c:e9:53:f4:55:d3:d0:a5:ce: 19:e2:53:fa:a6:87:17:fa:54:d1:23:cf:6b:56:01: 30:e2:24:be:68:4a:32:81:3b:46:23:06:54:63:c5: 1f:51:6c:53:7f:2e:11:61:12:2b:25:ec:04:39:a8: 5d:89:fe:d1:33:eb:10:69:a5:bd:eb:8b:2a:38:d8: 31:65:7f:92:a5:9c:07:37:35:45:26:af:15:a9:3d: 1e:7a:76:e3:85:c7:cb:b4:58:0d:e8:28:79:14:55: e2:19:1b:63:09:7b:33:72:1a:e9:c5:66:05:60:16: aa:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:C5:9D:16:EB:AA:90:A8:04:72:E1:AA:EC:B6:A3:39:D8:DA:A1:F2 X509v3 Authority Key Identifier: keyid:D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/WsWdFuuqkKgEcuGq7LajOdjaofI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.100.16.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:e4:2a:e6:3c:bb:57:05:71:aa:ba:72:eb:91:8f:3f:10:9f: 5b:28:c3:e6:5c:d1:a4:a6:83:6a:73:bb:45:75:92:de:c7:72: 55:27:00:42:69:fa:52:df:00:c1:da:3c:28:35:55:d4:9b:e8: 7f:65:86:f7:fc:c5:a9:3e:55:db:39:8c:19:0e:7d:67:9e:7f: 41:c9:10:57:0a:23:39:ec:ef:01:b3:c6:12:87:ea:80:34:ec: 4c:55:ef:71:16:fc:60:4d:9c:a0:d9:2d:39:51:37:97:84:38: 8c:b1:dc:43:f8:2b:e3:c4:57:72:32:3c:e9:25:db:25:8d:10: 89:58:49:a4:a6:2d:58:35:6c:bd:21:25:6a:6e:df:0e:04:17: e4:2b:3c:9e:8d:f1:5b:03:46:00:1c:9b:49:d6:74:4e:68:06: e3:42:5a:4d:b9:54:39:91:31:ff:c2:7f:05:0e:6a:3f:c5:90: f6:dd:19:17:9e:7a:2e:80:3c:48:d2:75:c7:8b:1d:12:11:4f: fb:34:79:51:ea:08:d7:fc:4c:3f:c3:4b:03:b6:9a:5c:19:8d: 89:b0:76:f0:11:66:76:e7:95:50:f7:b6:a3:98:42:ba:af:2c: fc:e3:c1:11:2c:17:6b:f8:71:45:b8:36:92:ca:fe:54:84:12: d6:ec:e6:26 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBUjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENzlC Mzg5MEMyREEzNzk1MTQ4OTc2Qjk1NEMyMDI0MDU2Nzk3NTU0MB4XDTI1MDYxMDEw NDgyMFoXDTI2MDUyMzA5NTEwMFowMzExMC8GA1UEAxMoNUFDNTlEMTZFQkFBOTBB ODA0NzJFMUFBRUNCNkEzMzlEOERBQTFGMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKiG9xpOFQC7M1P9y+AHeL228VA1MNgXtlEGaztlQBNy+/50WAWC rWC1Pp3jekuAswWE/DVc67omAtfaTwe1ef4itYIGwrRKksqqCO9SZ0mg1AZO/s9K AjufWIsT6MaaJrojvNomJpzSOh5ntx5J75q9RiJJErcni7oXs0ir5aysa0r9RGMI psb3Aus4bOlT9FXT0KXOGeJT+qaHF/pU0SPPa1YBMOIkvmhKMoE7RiMGVGPFH1Fs U38uEWESKyXsBDmoXYn+0TPrEGmlveuLKjjYMWV/kqWcBzc1RSavFak9Hnp244XH y7RYDegoeRRV4hkbYwl7M3Ia6cVmBWAWqtUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRaxZ0W66qQqARy4arstqM52Nqh8jAfBgNVHSMEGDAWgBTXmziQwto3lRSJdrlU wgJAVnl1VDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODQwLzE1czRrTUxhTjVVVWlYYTVWTUlDUUZaNWRWUS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzE1czRrTUxhTjVVVWlYYTVWTUlDUUZa NWRWUS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84NDAvV3NXZEZ1dXFrS2dFY3VHcTdMYWpPZGphb2ZJLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAttkEDANBgkqhkiG9w0BAQsFAAOCAQEAWuQq5jy7VwVxqrpy65GPPxCfWyjD 5lzRpKaDanO7RXWS3sdyVScAQmn6Ut8Awdo8KDVV1Jvof2WG9/zFqT5V2zmMGQ59 Z55/QckQVwojOezvAbPGEofqgDTsTFXvcRb8YE2coNktOVE3l4Q4jLHcQ/gr48RX cjI86SXbJY0QiVhJpKYtWDVsvSElam7fDgQX5Cs8no3xWwNGABybSdZ0TmgG40Ja TblUOZEx/8J/BQ5qP8WQ9t0ZF556LoA8SNJ1x4sdEhFP+zR5UeoI1/xMP8NLA7aa XBmNibB28BFmdueVUPe2o5hCuq8s/OPBESwXa/hxRbg2ksr+VIQS1uzmJg== -----END CERTIFICATE-----Generated at Fri Jul 4 23:18:43 2025 by rpki-client