$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/897/9BN2niA51ihqVhld-znS0ef18Yg.roa File: 9BN2niA51ihqVhld-znS0ef18Yg.roa (raw, json) Hash identifier: ehFDNu/LDodThSr7WjopHh/cBtyfTqDDhEHgesUtRrw= Subject key identifier: F4:13:76:9E:20:39:D6:28:6A:56:19:5D:FB:39:D2:D1:E7:F5:F1:88 Certificate issuer: /CN=D6900F1E3126E609EF4F1A0FB855EB4DE4E3A18A Certificate serial: 5D Authority key identifier: D6:90:0F:1E:31:26:E6:09:EF:4F:1A:0F:B8:55:EB:4D:E4:E3:A1:8A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1pAPHjEm5gnvTxoPuFXrTeTjoYo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/9BN2niA51ihqVhld-znS0ef18Yg.roa Signing time: Tue 01 Jul 2025 01:35:12 +0000 ROA not before: Tue 01 Jul 2025 01:35:12 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 9621 IP address blocks: 157.120.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/1pAPHjEm5gnvTxoPuFXrTeTjoYo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/1pAPHjEm5gnvTxoPuFXrTeTjoYo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1pAPHjEm5gnvTxoPuFXrTeTjoYo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6900F1E3126E609EF4F1A0FB855EB4DE4E3A18A Validity Not Before: Jul 1 01:35:12 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=F413769E2039D6286A56195DFB39D2D1E7F5F188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:50:4f:37:d9:b5:19:96:84:7b:9b:45:1c:ec: bf:92:d9:86:d8:7c:28:5b:96:9b:2f:04:8c:a5:a5: 52:6e:e6:01:da:3b:e8:06:cf:ac:90:65:3c:aa:49: 0b:09:9c:d3:33:a4:41:82:d7:8f:3c:bf:9c:51:27: 7b:0f:8d:9c:9b:0e:c1:a2:5e:46:22:c5:d1:77:6f: a5:47:0b:41:04:8e:23:45:13:c8:20:04:56:38:36: 1a:85:f3:c5:29:8a:5b:cb:de:e3:be:4f:2d:d4:c4: 42:a6:e8:71:a6:e6:5e:5e:3e:51:4c:9a:fd:bb:fc: cc:60:f4:0d:15:1c:35:a3:be:1c:a2:09:a0:9f:63: ea:20:be:c5:e1:ab:d5:f3:0b:ff:42:7d:a3:96:7f: 80:25:ea:54:2d:2c:e1:b0:96:d6:8f:76:60:44:0f: 51:90:75:5d:af:4a:fb:cf:46:ea:86:32:49:d6:d7: 5f:8d:bf:2d:be:6f:05:58:58:52:fa:f8:59:a5:1d: a4:2b:b9:ed:85:ca:54:70:2d:52:0a:a2:4e:a2:1a: e0:dd:f7:b6:ee:32:a1:81:9f:79:c4:f3:f0:88:21: 3e:f2:88:00:d2:14:f5:4f:20:7d:cd:a4:d3:e8:0e: b8:52:39:21:b2:49:76:07:bf:a1:cb:24:3a:e4:99: 41:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:13:76:9E:20:39:D6:28:6A:56:19:5D:FB:39:D2:D1:E7:F5:F1:88 X509v3 Authority Key Identifier: keyid:D6:90:0F:1E:31:26:E6:09:EF:4F:1A:0F:B8:55:EB:4D:E4:E3:A1:8A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/1pAPHjEm5gnvTxoPuFXrTeTjoYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1pAPHjEm5gnvTxoPuFXrTeTjoYo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/9BN2niA51ihqVhld-znS0ef18Yg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.120.64.0/19 Signature Algorithm: sha256WithRSAEncryption 4a:f4:8e:3c:76:9e:43:0d:3e:7d:89:f9:af:96:48:7a:56:63: 71:da:15:bd:81:73:11:10:d2:2c:cd:00:8e:41:59:21:f6:e3: 02:37:e1:73:f8:03:28:ba:30:2e:6d:49:96:e6:54:21:fd:df: ca:4b:f1:6a:5c:23:00:e2:80:d1:26:c1:58:e1:eb:49:d0:48: 00:62:23:8f:dd:2f:f2:71:0a:de:ef:68:f2:48:87:6f:41:6e: f3:7a:61:3f:02:bb:8b:2a:ac:bf:76:8a:f4:86:56:bf:38:3b: e0:90:f2:12:4a:4e:dd:89:73:4f:02:3f:9d:7f:28:e0:d4:89: 1d:4d:ef:79:84:52:bc:64:13:7d:a6:f5:1e:82:31:a9:63:fb: ba:7a:59:94:bb:a6:02:72:b5:81:d2:0c:12:0e:4f:bd:f9:38: b3:7c:6e:68:70:dd:7a:d5:eb:48:e3:f4:9a:94:95:e9:55:d2: e6:29:0a:06:05:c5:01:e0:f9:dd:42:ec:d1:3c:df:e3:4e:f3: 83:0d:9e:78:ff:a9:0c:47:bf:a9:8f:a4:87:c5:77:29:95:58: 86:6f:b6:47:a4:e5:7e:6c:34:01:03:61:00:25:ce:c8:13:1d: 85:e8:c3:b9:79:9a:ad:bf:49:52:3b:67:87:b8:e1:60:9b:cc: 0d:9e:f0:0d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBXTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENjkw MEYxRTMxMjZFNjA5RUY0RjFBMEZCODU1RUI0REU0RTNBMThBMB4XDTI1MDcwMTAx MzUxMloXDTI2MDYxNTAxMzAwMlowMzExMC8GA1UEAxMoRjQxMzc2OUUyMDM5RDYy ODZBNTYxOTVERkIzOUQyRDFFN0Y1RjE4ODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALdQTzfZtRmWhHubRRzsv5LZhth8KFuWmy8EjKWlUm7mAdo76AbP rJBlPKpJCwmc0zOkQYLXjzy/nFEnew+NnJsOwaJeRiLF0XdvpUcLQQSOI0UTyCAE Vjg2GoXzxSmKW8ve475PLdTEQqbocabmXl4+UUya/bv8zGD0DRUcNaO+HKIJoJ9j 6iC+xeGr1fML/0J9o5Z/gCXqVC0s4bCW1o92YEQPUZB1Xa9K+89G6oYySdbXX42/ Lb5vBVhYUvr4WaUdpCu57YXKVHAtUgqiTqIa4N33tu4yoYGfecTz8IghPvKIANIU 9U8gfc2k0+gOuFI5IbJJdge/ocskOuSZQXUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBT0E3aeIDnWKGpWGV37OdLR5/XxiDAfBgNVHSMEGDAWgBTWkA8eMSbmCe9PGg+4 VetN5OOhijAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODk3LzFwQVBIakVtNWdudlR4b1B1RlhyVGVUam9Zby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzFwQVBIakVtNWdudlR4b1B1RlhyVGVU am9Zby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84OTcvOUJOMm5pQTUxaWhxVmhsZC16blMwZWYxOFlnLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBZ14QDANBgkqhkiG9w0BAQsFAAOCAQEASvSOPHaeQw0+fYn5r5ZIelZjcdoV vYFzERDSLM0AjkFZIfbjAjfhc/gDKLowLm1JluZUIf3fykvxalwjAOKA0SbBWOHr SdBIAGIjj90v8nEK3u9o8kiHb0Fu83phPwK7iyqsv3aK9IZWvzg74JDyEkpO3Ylz TwI/nX8o4NSJHU3veYRSvGQTfab1HoIxqWP7unpZlLumAnK1gdIMEg5Pvfk4s3xu aHDdetXrSOP0mpSV6VXS5ikKBgXFAeD53ULs0Tzf407zgw2eeP+pDEe/qY+kh8V3 KZVYhm+2R6Tlfmw0AQNhACXOyBMdhejDuXmarb9JUjtnh7jhYJvMDZ7wDQ== -----END CERTIFICATE-----Generated at Sat Jul 5 16:10:11 2025 by rpki-client