$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/906/ab18vAWCCiRQ0bei0-s0GDomD_I.roa File: ab18vAWCCiRQ0bei0-s0GDomD_I.roa (raw, json) Hash identifier: UhpA28rPMETDzIUktf97td9keRGqG7FXmLLuw7baDN8= Subject key identifier: 69:BD:7C:BC:05:82:0A:24:50:D1:B7:A2:D3:EB:34:18:3A:26:0F:F2 Certificate issuer: /CN=539BDF2FE18FF387FD03842C5081A145EEEB1CF7 Certificate serial: 43 Authority key identifier: 53:9B:DF:2F:E1:8F:F3:87:FD:03:84:2C:50:81:A1:45:EE:EB:1C:F7 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/U5vfL-GP84f9A4QsUIGhRe7rHPc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/906/ab18vAWCCiRQ0bei0-s0GDomD_I.roa Signing time: Tue 01 Jul 2025 01:31:52 +0000 ROA not before: Tue 01 Jul 2025 01:31:52 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 24259 IP address blocks: 203.188.208.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/906/U5vfL-GP84f9A4QsUIGhRe7rHPc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/906/U5vfL-GP84f9A4QsUIGhRe7rHPc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/U5vfL-GP84f9A4QsUIGhRe7rHPc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=539BDF2FE18FF387FD03842C5081A145EEEB1CF7 Validity Not Before: Jul 1 01:31:52 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=69BD7CBC05820A2450D1B7A2D3EB34183A260FF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d8:20:ec:b4:d5:a4:1e:09:6e:f9:3d:58:64: 16:33:b1:83:9b:9a:c5:d3:b3:63:9b:0c:6e:55:f1: ad:49:0d:a8:2c:15:7e:cb:75:d9:9d:a7:2b:58:8b: 2c:26:b3:a2:74:90:37:cb:92:47:20:23:b3:8f:a1: 9f:33:42:02:07:fc:36:79:94:80:6b:10:82:79:0c: 41:ce:2b:05:0a:70:a9:6a:35:a7:10:e2:e7:39:eb: 40:75:c7:d9:0b:e4:f6:66:39:38:84:91:23:4c:73: 07:71:d8:d2:01:58:14:d7:3d:d0:98:40:a3:7e:3e: 4e:a7:c5:35:a9:a1:65:47:bb:19:82:26:d3:16:4f: 4c:2a:83:93:28:1c:7a:b7:ae:ce:27:00:74:e4:95: 28:b4:a0:bf:15:15:65:ff:cb:5f:2c:2b:e3:6f:fc: 13:32:25:83:30:2f:82:ad:94:f9:cb:6e:a0:bd:0f: 0c:b7:7d:e1:bd:b3:fa:db:30:02:52:cd:f7:26:3c: 20:a5:96:c4:83:0e:9b:db:1d:b8:bd:b5:66:32:23: 64:ff:b2:d2:81:27:f6:71:9e:1d:d4:55:2f:d0:2b: 9c:52:18:e6:db:5a:21:3e:ca:a4:9f:09:5b:cc:94: 25:bc:26:92:81:e7:dc:94:dd:67:04:c4:94:ce:10: b7:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:BD:7C:BC:05:82:0A:24:50:D1:B7:A2:D3:EB:34:18:3A:26:0F:F2 X509v3 Authority Key Identifier: keyid:53:9B:DF:2F:E1:8F:F3:87:FD:03:84:2C:50:81:A1:45:EE:EB:1C:F7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/906/U5vfL-GP84f9A4QsUIGhRe7rHPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/U5vfL-GP84f9A4QsUIGhRe7rHPc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/906/ab18vAWCCiRQ0bei0-s0GDomD_I.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.188.208.0/21 Signature Algorithm: sha256WithRSAEncryption c5:6c:1d:01:72:6c:11:23:66:65:d7:64:40:cd:c0:29:5a:ee: e7:46:8f:a6:08:21:bc:85:d1:26:ba:71:26:ef:5c:5b:79:3d: 86:7f:ee:24:05:be:5f:00:b7:0f:65:8a:43:33:85:ca:cd:c1: c6:15:f7:4f:d3:2c:1a:5d:42:12:98:08:99:a6:f5:e5:e1:e4: bf:1d:d5:b7:a3:ce:15:fd:a8:dc:5b:c3:ef:68:dd:52:b9:1f: 57:dc:78:77:a8:38:1d:3b:c8:e2:16:eb:3c:2b:5c:3a:92:9d: 65:33:f8:f9:53:cd:63:6c:3d:52:a5:01:2c:7e:f9:3f:46:c5: 99:10:49:9b:5c:fc:43:b6:2c:de:d4:da:52:df:92:63:36:ae: b4:7b:7e:d8:79:f0:33:e3:ba:01:a0:0b:73:73:6f:54:10:67: 14:33:86:a9:e3:0b:e9:78:15:20:85:b7:14:8e:8b:f0:78:54: d3:c3:7f:fe:93:47:12:f4:28:a4:07:3b:20:12:51:b6:47:58: 70:4e:81:63:fc:44:1c:bb:cd:7c:04:c4:82:0a:35:ad:b3:04: 39:c2:96:55:01:e6:56:64:c1:c3:a1:22:78:c5:84:79:86:98: 6e:07:40:11:9a:86:dd:9c:db:55:da:9a:60:c0:3a:da:b7:cf: 90:df:56:cc -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBQzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1MzlC REYyRkUxOEZGMzg3RkQwMzg0MkM1MDgxQTE0NUVFRUIxQ0Y3MB4XDTI1MDcwMTAx MzE1MloXDTI2MDYxNTAxMzAwMlowMzExMC8GA1UEAxMoNjlCRDdDQkMwNTgyMEEy NDUwRDFCN0EyRDNFQjM0MTgzQTI2MEZGMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALvYIOy01aQeCW75PVhkFjOxg5uaxdOzY5sMblXxrUkNqCwVfst1 2Z2nK1iLLCazonSQN8uSRyAjs4+hnzNCAgf8NnmUgGsQgnkMQc4rBQpwqWo1pxDi 5znrQHXH2Qvk9mY5OISRI0xzB3HY0gFYFNc90JhAo34+TqfFNamhZUe7GYIm0xZP TCqDkygcereuzicAdOSVKLSgvxUVZf/LXywr42/8EzIlgzAvgq2U+ctuoL0PDLd9 4b2z+tswAlLN9yY8IKWWxIMOm9sduL21ZjIjZP+y0oEn9nGeHdRVL9ArnFIY5tta IT7KpJ8JW8yUJbwmkoHn3JTdZwTElM4Qt90CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRpvXy8BYIKJFDRt6LT6zQYOiYP8jAfBgNVHSMEGDAWgBRTm98v4Y/zh/0DhCxQ gaFF7usc9zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTA2L1U1dmZMLUdQODRmOUE0UXNVSUdoUmU3ckhQYy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1U1dmZMLUdQODRmOUE0UXNVSUdoUmU3 ckhQYy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85MDYvYWIxOHZBV0NDaVJRMGJlaTAtczBHRG9tRF9JLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA8u80DANBgkqhkiG9w0BAQsFAAOCAQEAxWwdAXJsESNmZddkQM3AKVru50aP pgghvIXRJrpxJu9cW3k9hn/uJAW+XwC3D2WKQzOFys3BxhX3T9MsGl1CEpgImab1 5eHkvx3Vt6POFf2o3FvD72jdUrkfV9x4d6g4HTvI4hbrPCtcOpKdZTP4+VPNY2w9 UqUBLH75P0bFmRBJm1z8Q7Ys3tTaUt+SYzautHt+2HnwM+O6AaALc3NvVBBnFDOG qeML6XgVIIW3FI6L8HhU08N//pNHEvQopAc7IBJRtkdYcE6BY/xEHLvNfATEggo1 rbMEOcKWVQHmVmTBw6EieMWEeYaYbgdAEZqG3ZzbVdqaYMA62rfPkN9WzA== -----END CERTIFICATE-----Generated at Sat Jul 5 03:40:13 2025 by rpki-client