$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/955/3ZG2I_w8KD8dqqw-s1CLwxI8HGE.roa File: 3ZG2I_w8KD8dqqw-s1CLwxI8HGE.roa (raw, json) Hash identifier: lhWsidPxmS1ec8jeT8SECSLuwTwiTGP3euuzyoWInW0= Subject key identifier: DD:91:B6:23:FC:3C:28:3F:1D:AA:AC:3E:B3:50:8B:C3:12:3C:1C:61 Certificate issuer: /CN=0BBCA90DCB80D622B18884EA1E0B3B7D40C61C52 Certificate serial: 46 Authority key identifier: 0B:BC:A9:0D:CB:80:D6:22:B1:88:84:EA:1E:0B:3B:7D:40:C6:1C:52 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/C7ypDcuA1iKxiITqHgs7fUDGHFI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/3ZG2I_w8KD8dqqw-s1CLwxI8HGE.roa Signing time: Wed 01 Oct 2025 01:28:22 +0000 ROA not before: Wed 01 Oct 2025 01:28:22 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 55385 IP address blocks: 202.213.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/C7ypDcuA1iKxiITqHgs7fUDGHFI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/C7ypDcuA1iKxiITqHgs7fUDGHFI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/C7ypDcuA1iKxiITqHgs7fUDGHFI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Oct 2025 20:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BBCA90DCB80D622B18884EA1E0B3B7D40C61C52 Validity Not Before: Oct 1 01:28:22 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=DD91B623FC3C283F1DAAAC3EB3508BC3123C1C61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:aa:0c:24:8d:20:72:a3:27:d8:97:50:04:32: 88:9f:5d:3c:45:56:c7:aa:2c:80:0f:b9:d4:ad:2d: 90:77:b3:5a:dc:81:01:94:3c:d0:20:bc:52:2a:07: 10:3c:9c:fb:e7:d6:5b:a6:e8:1d:de:03:6a:c2:f0: 81:e2:ea:aa:2f:14:8c:7e:79:81:f9:0d:f1:83:88: 8a:1f:b8:4c:73:f8:8b:52:1a:d3:54:31:5f:f0:27: 1c:be:31:29:71:4f:ad:3f:a2:6c:d6:8f:98:30:3f: 6f:7e:a1:6c:85:ae:5a:8c:58:be:5e:e4:bd:94:44: 28:8f:1f:5e:b3:a2:e5:19:c2:cb:7b:91:92:6c:b0: ce:f3:46:db:1c:b5:b7:f3:e5:77:c0:18:7a:a8:16: 1d:9c:64:fb:85:e0:d6:64:52:c6:72:c6:20:3e:ea: a3:d8:42:f3:31:e2:fc:d5:39:9b:c4:b5:08:7a:e2: 8c:20:83:dd:73:c0:e9:95:5c:7c:89:d0:88:fb:d7: 71:12:8c:30:5a:d3:49:3c:12:21:d2:77:dd:02:07: cd:f4:02:33:91:73:95:69:6e:5e:3b:ed:ad:a1:88: 34:4d:a4:89:a2:c4:af:87:4e:af:b0:51:0e:6b:1a: a3:44:3c:36:84:ca:05:f0:c7:9c:07:47:32:12:0f: ac:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:91:B6:23:FC:3C:28:3F:1D:AA:AC:3E:B3:50:8B:C3:12:3C:1C:61 X509v3 Authority Key Identifier: keyid:0B:BC:A9:0D:CB:80:D6:22:B1:88:84:EA:1E:0B:3B:7D:40:C6:1C:52 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/C7ypDcuA1iKxiITqHgs7fUDGHFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/C7ypDcuA1iKxiITqHgs7fUDGHFI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/3ZG2I_w8KD8dqqw-s1CLwxI8HGE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.213.64.0/21 Signature Algorithm: sha256WithRSAEncryption 84:11:0a:a3:44:d3:24:01:56:22:23:4d:40:0e:91:51:18:37: 4b:2a:87:04:8b:74:76:50:81:8b:6e:ae:94:6b:8b:f6:80:67: e6:ce:fb:32:33:c5:81:40:d2:25:85:67:79:52:ba:43:60:3c: 45:69:e7:d0:74:5e:93:50:4b:c8:05:8f:df:21:e6:2e:1b:ee: b1:c5:3c:71:f1:62:60:3b:bc:cd:9f:69:5f:50:ac:c9:bc:6e: a5:f4:e2:be:8b:d0:a7:09:cf:0b:c2:cd:fa:ef:95:21:5b:56: e1:d3:56:fe:90:ad:23:8f:21:8f:b9:2c:a6:e9:6f:89:6f:6b: ce:85:04:74:b8:75:bd:45:09:0b:ce:61:9f:d6:ee:95:31:4d: fd:fb:f5:4c:01:7b:5f:31:70:19:e5:ee:13:60:6b:51:74:c9: 95:be:3f:87:33:80:8e:61:95:f4:b4:dd:54:95:ea:0f:dd:17: 26:42:5f:5d:12:ae:73:cb:a0:c3:6b:be:f8:22:ee:b8:99:ff: 3d:6d:cd:23:18:60:20:09:52:1f:e8:2f:0b:54:b8:ae:13:b8: e3:f6:08:54:d2:91:3e:2c:50:0d:e8:aa:99:80:a7:e2:4d:cc: 78:a2:04:dc:b2:55:a1:e5:42:11:f0:1c:ad:82:3b:c8:3c:fb: 1c:fc:b4:2a -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBRjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwQkJD QTkwRENCODBENjIyQjE4ODg0RUExRTBCM0I3RDQwQzYxQzUyMB4XDTI1MTAwMTAx MjgyMloXDTI2MDkxNTAxMzAwMlowMzExMC8GA1UEAxMoREQ5MUI2MjNGQzNDMjgz RjFEQUFBQzNFQjM1MDhCQzMxMjNDMUM2MTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALWqDCSNIHKjJ9iXUAQyiJ9dPEVWx6osgA+51K0tkHezWtyBAZQ8 0CC8UioHEDyc++fWW6boHd4DasLwgeLqqi8UjH55gfkN8YOIih+4THP4i1Ia01Qx X/AnHL4xKXFPrT+ibNaPmDA/b36hbIWuWoxYvl7kvZREKI8fXrOi5RnCy3uRkmyw zvNG2xy1t/Pld8AYeqgWHZxk+4Xg1mRSxnLGID7qo9hC8zHi/NU5m8S1CHrijCCD 3XPA6ZVcfInQiPvXcRKMMFrTSTwSIdJ33QIHzfQCM5FzlWluXjvtraGINE2kiaLE r4dOr7BRDmsao0Q8NoTKBfDHnAdHMhIPrOMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTdkbYj/DwoPx2qrD6zUIvDEjwcYTAfBgNVHSMEGDAWgBQLvKkNy4DWIrGIhOoe Czt9QMYcUjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTU1L0M3eXBEY3VBMWlLeGlJVHFIZ3M3ZlVER0hGSS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0M3eXBEY3VBMWlLeGlJVHFIZ3M3ZlVE R0hGSS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85NTUvM1pHMklfdzhLRDhkcXF3LXMxQ0x3eEk4SEdFLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA8rVQDANBgkqhkiG9w0BAQsFAAOCAQEAhBEKo0TTJAFWIiNNQA6RURg3SyqH BIt0dlCBi26ulGuL9oBn5s77MjPFgUDSJYVneVK6Q2A8RWnn0HRek1BLyAWP3yHm LhvuscU8cfFiYDu8zZ9pX1CsybxupfTivovQpwnPC8LN+u+VIVtW4dNW/pCtI48h j7kspulviW9rzoUEdLh1vUUJC85hn9bulTFN/fv1TAF7XzFwGeXuE2BrUXTJlb4/ hzOAjmGV9LTdVJXqD90XJkJfXRKuc8ugw2u++CLuuJn/PW3NIxhgIAlSH+gvC1S4 rhO44/YIVNKRPixQDeiqmYCn4k3MeKIE3LJVoeVCEfAcrYI7yDz7HPy0Kg== -----END CERTIFICATE-----Generated at Wed Oct 8 21:28:23 2025 by rpki-client