$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/307/1U0pCYy0fkcc1Je2jjYQ1y1R-zo.roa File: 1U0pCYy0fkcc1Je2jjYQ1y1R-zo.roa (raw, json) Hash identifier: 6fTXh8zWBnC+fcCrLG+JnkGT+bZZ7MDZl4sTYPmcGFw= Subject key identifier: D5:4D:29:09:8C:B4:7E:47:1C:D4:97:B6:8E:36:10:D7:2D:51:FB:3A Certificate issuer: /CN=6D1ED16D8C6D3BA40BF42CB3A29652ADAB76D061 Certificate serial: 4D Authority key identifier: 6D:1E:D1:6D:8C:6D:3B:A4:0B:F4:2C:B3:A2:96:52:AD:AB:76:D0:61 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/1U0pCYy0fkcc1Je2jjYQ1y1R-zo.roa Signing time: Wed 01 Oct 2025 01:32:11 +0000 ROA not before: Wed 01 Oct 2025 01:32:11 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 18266 IP address blocks: 210.143.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Oct 2025 20:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D1ED16D8C6D3BA40BF42CB3A29652ADAB76D061 Validity Not Before: Oct 1 01:32:11 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=D54D29098CB47E471CD497B68E3610D72D51FB3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:23:ac:1c:e2:ce:79:0e:c0:1d:39:f5:9a:4b: 71:7f:6e:dc:92:6e:6d:01:95:0c:b2:2b:7e:79:46: 74:f2:ca:04:d6:e1:53:0b:8a:4f:9c:aa:6a:31:98: 43:c0:b2:0d:09:fe:b5:21:44:be:a5:3e:f7:75:52: b9:9f:be:53:02:f9:a8:cd:86:c6:6e:8e:1f:b0:2b: 46:05:fa:e4:c5:12:97:22:9b:98:63:92:23:70:f6: 3d:87:0c:8c:8b:9f:6b:2c:e6:41:36:ee:9a:db:f2: a1:92:a6:5e:c7:bb:56:2d:c5:11:4b:02:d7:46:19: ba:aa:1f:b1:45:dc:2a:18:4b:4f:98:64:6a:99:b0: 71:eb:88:5e:45:b8:22:c1:4e:1b:da:5f:3f:c5:e3: 8b:3f:5e:39:24:55:b6:60:e8:3f:c1:48:70:fb:3e: 77:a9:b1:60:09:8e:a6:29:4f:d1:92:00:89:79:1d: 09:ca:ca:c8:aa:41:9f:dc:7a:47:46:56:93:25:62: 3e:a5:96:22:7c:85:e7:f9:26:96:67:3f:0a:c0:57: 33:94:22:5a:6c:86:1c:39:83:41:50:98:e3:dc:9d: 78:e8:57:24:65:33:24:59:77:d5:57:3d:7b:8f:e6: 63:6d:47:43:4e:c9:8b:64:d6:b8:90:7c:fa:35:c7: c1:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:4D:29:09:8C:B4:7E:47:1C:D4:97:B6:8E:36:10:D7:2D:51:FB:3A X509v3 Authority Key Identifier: keyid:6D:1E:D1:6D:8C:6D:3B:A4:0B:F4:2C:B3:A2:96:52:AD:AB:76:D0:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/1U0pCYy0fkcc1Je2jjYQ1y1R-zo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.143.112.0/20 Signature Algorithm: sha256WithRSAEncryption 8d:75:dd:55:6a:18:59:56:44:7b:06:52:59:26:7e:2d:56:83: 0e:99:66:e2:f8:ba:7b:63:99:c2:00:60:07:c7:7e:ac:b6:7f: 4c:67:c1:4f:d5:7a:76:e0:99:10:6e:c9:3f:8a:c2:77:bf:39: 28:f6:d0:00:2d:55:fe:e5:79:80:51:50:7d:0a:ca:ac:fa:3b: b6:19:26:6d:56:54:01:f4:a6:05:2b:a7:5b:75:81:34:b9:e6: 01:08:56:36:62:7c:39:d4:c5:ee:03:6e:49:b5:99:10:af:03: 8c:87:b5:4a:e4:4d:7c:f3:46:54:ce:af:1a:04:86:d7:6b:45: 5d:56:b0:59:c9:09:fa:6c:5b:3e:1e:e4:00:aa:1d:05:df:bc: ac:d8:93:2b:cb:3f:04:e5:fd:b4:c2:65:67:68:cb:42:ec:f6: 78:dd:6c:9f:2d:f5:c8:c9:83:09:cb:80:8e:57:ea:dc:5e:49: 37:31:46:d9:69:d1:8e:fe:7e:e8:a1:e6:1c:e0:d7:57:bf:c0: d9:cb:46:ae:59:df:86:61:cb:e9:f3:b2:96:c4:ca:75:2b:80: 7d:2a:cd:7f:45:4c:98:dc:72:74:97:bd:9e:7e:d0:e3:c2:5e: ca:eb:8b:27:71:6f:7b:58:a1:62:b5:da:f5:48:2c:a8:5c:a6: 31:8c:0c:fa -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBTTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2RDFF RDE2RDhDNkQzQkE0MEJGNDJDQjNBMjk2NTJBREFCNzZEMDYxMB4XDTI1MTAwMTAx MzIxMVoXDTI2MDkxNTAxMzAwMlowMzExMC8GA1UEAxMoRDU0RDI5MDk4Q0I0N0U0 NzFDRDQ5N0I2OEUzNjEwRDcyRDUxRkIzQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALQjrBziznkOwB059ZpLcX9u3JJubQGVDLIrfnlGdPLKBNbhUwuK T5yqajGYQ8CyDQn+tSFEvqU+93VSuZ++UwL5qM2Gxm6OH7ArRgX65MUSlyKbmGOS I3D2PYcMjIufayzmQTbumtvyoZKmXse7Vi3FEUsC10YZuqofsUXcKhhLT5hkapmw ceuIXkW4IsFOG9pfP8Xjiz9eOSRVtmDoP8FIcPs+d6mxYAmOpilP0ZIAiXkdCcrK yKpBn9x6R0ZWkyViPqWWInyF5/kmlmc/CsBXM5QiWmyGHDmDQVCY49ydeOhXJGUz JFl31Vc9e4/mY21HQ07Ji2TWuJB8+jXHwdMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTVTSkJjLR+RxzUl7aONhDXLVH7OjAfBgNVHSMEGDAWgBRtHtFtjG07pAv0LLOi llKtq3bQYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA3L2JSN1JiWXh0TzZRTDlDeXpvcFpTcmF0MjBHRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2JSN1JiWXh0TzZRTDlDeXpvcFpTcmF0 MjBHRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDcvMVUwcENZeTBma2NjMUplMmpqWVExeTFSLXpvLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNKPcDANBgkqhkiG9w0BAQsFAAOCAQEAjXXdVWoYWVZEewZSWSZ+LVaDDplm 4vi6e2OZwgBgB8d+rLZ/TGfBT9V6duCZEG7JP4rCd785KPbQAC1V/uV5gFFQfQrK rPo7thkmbVZUAfSmBSunW3WBNLnmAQhWNmJ8OdTF7gNuSbWZEK8DjIe1SuRNfPNG VM6vGgSG12tFXVawWckJ+mxbPh7kAKodBd+8rNiTK8s/BOX9tMJlZ2jLQuz2eN1s ny31yMmDCcuAjlfq3F5JNzFG2WnRjv5+6KHmHODXV7/A2ctGrlnfhmHL6fOylsTK dSuAfSrNf0VMmNxydJe9nn7Q48JeyuuLJ3Fve1ihYrXa9UgsqFymMYwM+g== -----END CERTIFICATE-----Generated at Wed Oct 8 21:29:30 2025 by rpki-client