$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10694/BSItnOcOFxgFz9_ElfPTW1Q57xk.roa File: BSItnOcOFxgFz9_ElfPTW1Q57xk.roa (raw, json) Hash identifier: A5Ky17luzG41+h+93RKR8G1m08ItjYWbSYTpluGlThI= Subject key identifier: 05:22:2D:9C:E7:0E:17:18:05:CF:DF:C4:95:F3:D3:5B:54:39:EF:19 Certificate issuer: /CN=713193D702C3122114F7CDE81FD5A58672720F84 Certificate serial: 28 Authority key identifier: 71:31:93:D7:02:C3:12:21:14:F7:CD:E8:1F:D5:A5:86:72:72:0F:84 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cTGT1wLDEiEU983oH9WlhnJyD4Q.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10694/BSItnOcOFxgFz9_ElfPTW1Q57xk.roa Signing time: Wed 01 Oct 2025 01:32:27 +0000 ROA not before: Wed 01 Oct 2025 01:32:27 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 7511 IP address blocks: 103.208.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10694/cTGT1wLDEiEU983oH9WlhnJyD4Q.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10694/cTGT1wLDEiEU983oH9WlhnJyD4Q.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cTGT1wLDEiEU983oH9WlhnJyD4Q.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Oct 2025 20:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=713193D702C3122114F7CDE81FD5A58672720F84 Validity Not Before: Oct 1 01:32:27 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=05222D9CE70E171805CFDFC495F3D35B5439EF19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:60:5e:81:47:47:c6:dc:3d:68:da:c9:9c:d9: d9:07:57:16:f9:13:9e:54:d1:94:0b:6e:73:f8:e3: d9:8f:a8:ec:7e:b5:32:07:b3:b3:21:a7:16:38:67: 8e:81:85:c7:4e:67:f2:d5:7b:54:f0:5d:de:5f:47: 22:e0:64:8e:16:60:88:9f:61:4a:39:64:80:d1:64: 7c:b0:30:5c:35:ee:60:55:f1:17:a6:36:dd:db:2f: 38:ca:2b:54:43:b9:bd:4a:ff:d6:f9:83:0d:22:9b: 03:11:39:dc:c7:10:da:d9:08:80:1f:fb:26:54:0a: 01:c0:ae:44:64:30:cf:82:b8:5a:c0:74:df:62:de: 4a:1b:14:88:39:65:5f:c5:7d:65:63:97:60:6f:7c: 13:c1:a6:a3:bf:1f:86:b9:e1:12:08:32:ae:dc:2e: e7:02:b2:5f:f3:c1:a7:0b:09:2e:96:d3:72:1b:1f: 53:71:76:54:a4:8f:1f:44:b0:00:6f:41:1d:16:3a: 93:88:b7:e7:d2:4e:7b:be:9f:ac:9f:f4:c8:9e:3a: af:98:9a:39:fa:c0:cb:7b:08:c7:2e:70:3b:8a:c5: dd:1e:64:81:17:b5:f5:d6:ac:1b:47:d4:74:f5:4f: 65:22:69:24:8c:5c:42:b7:8e:86:eb:61:52:f7:a3: be:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:22:2D:9C:E7:0E:17:18:05:CF:DF:C4:95:F3:D3:5B:54:39:EF:19 X509v3 Authority Key Identifier: keyid:71:31:93:D7:02:C3:12:21:14:F7:CD:E8:1F:D5:A5:86:72:72:0F:84 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10694/cTGT1wLDEiEU983oH9WlhnJyD4Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cTGT1wLDEiEU983oH9WlhnJyD4Q.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10694/BSItnOcOFxgFz9_ElfPTW1Q57xk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.208.96.0/22 Signature Algorithm: sha256WithRSAEncryption 49:5e:87:c4:45:29:1c:9a:24:29:06:42:28:ef:10:02:a2:e0: d3:e5:b1:b7:9f:1e:ac:b5:36:a6:1a:10:18:99:bf:22:8a:e0: 2a:05:30:30:43:d8:b3:88:f4:0f:78:b4:56:cc:84:68:ad:40: 10:4b:f4:32:ad:f5:35:d3:b4:9e:29:a9:2d:f0:81:89:8d:f7: 9d:57:18:10:f4:39:a8:17:25:4b:7c:be:e3:59:c1:e1:97:f8: 46:a5:f9:38:81:52:ac:b1:ee:3a:d1:97:2b:b2:db:69:b7:a5: fd:b1:79:46:9e:40:a2:ec:35:9f:ee:3e:b3:e2:30:d9:e2:02: 31:c8:f2:c5:43:5b:33:6d:ef:a4:75:61:70:dd:4e:4a:ea:a7: 4e:d3:17:d8:86:3a:a4:7d:48:dd:5f:31:86:82:eb:e9:05:2e: 30:4b:00:c2:d9:9e:8c:7f:0e:d4:01:84:e4:99:bb:31:ef:23: d7:b5:5b:87:c3:7b:8f:f1:e9:e0:96:22:cc:bc:a5:8a:6c:c0: 81:5e:09:a9:fe:6c:fb:c9:04:92:c4:e7:6d:e5:4b:48:c6:bd: d0:cb:92:c8:af:9e:02:c6:92:ba:ee:c8:84:74:b4:4d:c0:13: 7a:07:2c:fd:b2:fb:a4:24:84:c4:e6:63:ef:93:e9:25:f2:3b: 3b:33:b6:94 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBKDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MTMx OTNENzAyQzMxMjIxMTRGN0NERTgxRkQ1QTU4NjcyNzIwRjg0MB4XDTI1MTAwMTAx MzIyN1oXDTI2MDkxNTAxMzAwMlowMzExMC8GA1UEAxMoMDUyMjJEOUNFNzBFMTcx ODA1Q0ZERkM0OTVGM0QzNUI1NDM5RUYxOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAN1gXoFHR8bcPWjayZzZ2QdXFvkTnlTRlAtuc/jj2Y+o7H61Mgez syGnFjhnjoGFx05n8tV7VPBd3l9HIuBkjhZgiJ9hSjlkgNFkfLAwXDXuYFXxF6Y2 3dsvOMorVEO5vUr/1vmDDSKbAxE53McQ2tkIgB/7JlQKAcCuRGQwz4K4WsB032Le ShsUiDllX8V9ZWOXYG98E8Gmo78fhrnhEggyrtwu5wKyX/PBpwsJLpbTchsfU3F2 VKSPH0SwAG9BHRY6k4i359JOe76frJ/0yJ46r5iaOfrAy3sIxy5wO4rF3R5kgRe1 9dasG0fUdPVPZSJpJIxcQreOhuthUvejvi8CAwEAAaOCAigwggIkMB0GA1UdDgQW BBQFIi2c5w4XGAXP38SV89NbVDnvGTAfBgNVHSMEGDAWgBRxMZPXAsMSIRT3zegf 1aWGcnIPhDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA2OTQvY1RHVDF3TERFaUVVOTgzb0g5V2xobkp5RDRRLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvY1RHVDF3TERFaUVVOTgzb0g5V2xo bkp5RDRRLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEwNjk0L0JTSXRuT2NPRnhnRno5X0VsZlBUVzFRNTd4ay5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAJn0GAwDQYJKoZIhvcNAQELBQADggEBAEleh8RFKRyaJCkGQijvEAKi 4NPlsbefHqy1NqYaEBiZvyKK4CoFMDBD2LOI9A94tFbMhGitQBBL9DKt9TXTtJ4p qS3wgYmN951XGBD0OagXJUt8vuNZweGX+Eal+TiBUqyx7jrRlyuy22m3pf2xeUae QKLsNZ/uPrPiMNniAjHI8sVDWzNt76R1YXDdTkrqp07TF9iGOqR9SN1fMYaC6+kF LjBLAMLZnox/DtQBhOSZuzHvI9e1W4fDe4/x6eCWIsy8pYpswIFeCan+bPvJBJLE 523lS0jGvdDLksivngLGkrruyIR0tE3AE3oHLP2y+6QkhMTmY++T6SXyOzsztpQ= -----END CERTIFICATE-----Generated at Wed Oct 8 21:29:32 2025 by rpki-client