$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30409/osBZLTEpG-uRZLxLI3NtR_bA0bc.roa File: osBZLTEpG-uRZLxLI3NtR_bA0bc.roa (raw, json) Hash identifier: YPHih4vlznYH+NCqBH0B9QaRyK8zacfEJ5I3k1jB7lg= Subject key identifier: A2:C0:59:2D:31:29:1B:EB:91:64:BC:4B:23:73:6D:47:F6:C0:D1:B7 Certificate issuer: /CN=6084C82997BC86365F5318867EFFB82561955474 Certificate serial: 2F Authority key identifier: 60:84:C8:29:97:BC:86:36:5F:53:18:86:7E:FF:B8:25:61:95:54:74 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/YITIKZe8hjZfUxiGfv-4JWGVVHQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30409/osBZLTEpG-uRZLxLI3NtR_bA0bc.roa Signing time: Mon 01 Sep 2025 01:31:17 +0000 ROA not before: Mon 01 Sep 2025 01:31:17 +0000 ROA not after: Sat 15 Aug 2026 01:30:02 +0000 asID: 146984 IP address blocks: 2400:b420::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30409/YITIKZe8hjZfUxiGfv-4JWGVVHQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30409/YITIKZe8hjZfUxiGfv-4JWGVVHQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/YITIKZe8hjZfUxiGfv-4JWGVVHQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Oct 2025 20:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6084C82997BC86365F5318867EFFB82561955474 Validity Not Before: Sep 1 01:31:17 2025 GMT Not After : Aug 15 01:30:02 2026 GMT Subject: CN=A2C0592D31291BEB9164BC4B23736D47F6C0D1B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:0a:59:b4:36:b1:41:38:f8:8e:af:bc:e4:96: cc:02:08:53:6e:56:fa:51:91:cb:e7:cb:4e:81:ce: 2b:83:78:34:bf:4d:2d:4d:0c:d7:5f:39:44:a9:df: 47:db:11:6c:e7:01:26:e9:e9:2e:47:08:ab:64:be: b6:f7:b1:3c:49:7a:e0:37:de:8f:ee:c9:bf:0b:91: 53:18:cb:29:8f:e9:0f:38:dc:d9:a5:ec:2d:63:a6: c9:09:3d:f2:98:5c:e0:36:5f:4a:ca:e2:7e:53:7c: 9f:9b:e0:7e:bf:75:7d:90:85:a8:51:66:82:e2:4b: 5a:08:00:84:5d:31:52:96:1b:83:03:8f:b0:5a:08: 0d:48:c2:13:fe:50:c8:d5:da:bf:fc:9b:ed:74:92: 56:92:5f:b8:25:c9:d9:83:ac:55:b1:05:af:f2:b4: 1f:4f:2d:49:0f:bb:a9:47:f0:87:70:d2:fc:1e:60: 6f:14:43:15:6a:c6:da:e1:98:0c:c3:32:66:20:82: c8:fa:8a:74:b1:c7:ae:e2:f2:f6:38:79:a8:0d:37: c7:d0:2d:63:f7:06:ca:37:70:07:11:a1:12:f0:d3: b9:8f:af:43:89:a6:7d:f6:39:9f:db:9c:2a:c6:73: 38:f9:c2:19:69:7a:a1:55:ab:25:e2:39:ba:73:17: f4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:C0:59:2D:31:29:1B:EB:91:64:BC:4B:23:73:6D:47:F6:C0:D1:B7 X509v3 Authority Key Identifier: keyid:60:84:C8:29:97:BC:86:36:5F:53:18:86:7E:FF:B8:25:61:95:54:74 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30409/YITIKZe8hjZfUxiGfv-4JWGVVHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/YITIKZe8hjZfUxiGfv-4JWGVVHQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30409/osBZLTEpG-uRZLxLI3NtR_bA0bc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:b420::/32 Signature Algorithm: sha256WithRSAEncryption 63:f9:37:42:14:10:af:bc:f1:a4:3d:c5:69:46:d0:27:39:28: 0d:c0:b1:56:c3:d5:f6:5a:2c:e6:f4:35:33:f4:28:c0:71:af: 59:43:26:1a:a6:7e:3c:09:9e:b3:b7:3a:fa:7b:95:17:4d:f6: 2b:34:b4:49:55:9d:ad:91:b3:3d:f2:96:5e:52:89:4a:93:73: 35:ec:16:fa:d2:1c:be:6a:a3:2f:a7:5c:88:3f:e4:24:62:66: aa:ea:9c:5b:4b:ce:31:a0:7c:24:33:1b:ed:e6:57:1c:fe:32: ff:96:b6:1e:79:65:34:18:30:c3:38:ac:b3:76:18:5e:69:1a: 20:00:a2:ad:cf:c5:2b:ea:d4:f5:5a:15:8c:04:a7:ec:d0:57: 77:03:29:fe:8e:5e:b9:86:10:20:2a:b5:5b:6e:9c:e4:f4:fe: 03:cc:7d:aa:73:e6:97:f8:77:01:63:59:11:e5:c0:a1:25:e2: 8c:6a:60:4e:9e:0f:b6:ab:dc:9c:8a:0d:59:2b:0c:be:7a:bf: c7:9e:f8:1a:fd:9c:80:99:b2:45:75:27:1a:74:bd:ad:01:db: 59:31:d1:d1:3c:86:bc:44:68:51:74:59:ff:c7:a8:85:9c:47: 86:55:bd:5c:2d:ad:b5:c5:e0:d3:22:89:df:1e:d0:9b:28:30: 76:14:3a:72 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBLzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2MDg0 QzgyOTk3QkM4NjM2NUY1MzE4ODY3RUZGQjgyNTYxOTU1NDc0MB4XDTI1MDkwMTAx MzExN1oXDTI2MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoQTJDMDU5MkQzMTI5MUJF QjkxNjRCQzRCMjM3MzZENDdGNkMwRDFCNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANYKWbQ2sUE4+I6vvOSWzAIIU25W+lGRy+fLToHOK4N4NL9NLU0M 1185RKnfR9sRbOcBJunpLkcIq2S+tvexPEl64Dfej+7JvwuRUxjLKY/pDzjc2aXs LWOmyQk98phc4DZfSsriflN8n5vgfr91fZCFqFFmguJLWggAhF0xUpYbgwOPsFoI DUjCE/5QyNXav/yb7XSSVpJfuCXJ2YOsVbEFr/K0H08tSQ+7qUfwh3DS/B5gbxRD FWrG2uGYDMMyZiCCyPqKdLHHruLy9jh5qA03x9AtY/cGyjdwBxGhEvDTuY+vQ4mm ffY5n9ucKsZzOPnCGWl6oVWrJeI5unMX9GkCAwEAAaOCAikwggIlMB0GA1UdDgQW BBSiwFktMSkb65FkvEsjc21H9sDRtzAfBgNVHSMEGDAWgBRghMgpl7yGNl9TGIZ+ /7glYZVUdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA0MDkvWUlUSUtaZThoalpmVXhpR2Z2LTRKV0dWVkhRLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWUlUSUtaZThoalpmVXhpR2Z2LTRK V0dWVkhRLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwNDA5L29zQlpMVEVwRy11UlpMeExJM050Ul9iQTBiYy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkALQgMA0GCSqGSIb3DQEBCwUAA4IBAQBj+TdCFBCvvPGkPcVpRtAn OSgNwLFWw9X2Wizm9DUz9CjAca9ZQyYapn48CZ6ztzr6e5UXTfYrNLRJVZ2tkbM9 8pZeUolKk3M17Bb60hy+aqMvp1yIP+QkYmaq6pxbS84xoHwkMxvt5lcc/jL/lrYe eWU0GDDDOKyzdhheaRogAKKtz8Ur6tT1WhWMBKfs0Fd3Ayn+jl65hhAgKrVbbpzk 9P4DzH2qc+aX+HcBY1kR5cChJeKMamBOng+2q9ycig1ZKwy+er/Hnvga/ZyAmbJF dScadL2tAdtZMdHRPIa8RGhRdFn/x6iFnEeGVb1cLa21xeDTIonfHtCbKDB2FDpy -----END CERTIFICATE-----Generated at Wed Oct 8 21:28:27 2025 by rpki-client