$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20006/XHrGwWxaCJpGy9BmgGQpSfZwZDc.roa File: XHrGwWxaCJpGy9BmgGQpSfZwZDc.roa (raw, json) Hash identifier: A0Vp4/FnKv0KAlqEAGjSUka4Dbrhr3D1/LYrpfi9cgM= Subject key identifier: 5C:7A:C6:C1:6C:5A:08:9A:46:CB:D0:66:80:64:29:49:F6:70:64:37 Certificate issuer: /CN=F5AD1A7FD49951CD1B1D482A82F28A95A7B54E1E Certificate serial: 07 Authority key identifier: F5:AD:1A:7F:D4:99:51:CD:1B:1D:48:2A:82:F2:8A:95:A7:B5:4E:1E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9a0af9SZUc0bHUgqgvKKlae1Th4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20006/XHrGwWxaCJpGy9BmgGQpSfZwZDc.roa Signing time: Fri 03 Oct 2025 01:59:15 +0000 ROA not before: Fri 03 Oct 2025 01:59:15 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 0 IP address blocks: 202.235.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20006/9a0af9SZUc0bHUgqgvKKlae1Th4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20006/9a0af9SZUc0bHUgqgvKKlae1Th4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9a0af9SZUc0bHUgqgvKKlae1Th4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Oct 2025 12:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5AD1A7FD49951CD1B1D482A82F28A95A7B54E1E Validity Not Before: Oct 3 01:59:15 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=5C7AC6C16C5A089A46CBD06680642949F6706437 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:30:a3:0f:81:6e:ba:27:00:41:c0:c5:e7:77: a6:41:0f:48:63:d0:81:6e:b2:b2:c8:7e:9b:e1:99: b3:6d:aa:26:25:6a:5b:d8:89:68:52:fa:e8:10:75: 59:e1:e5:ab:a0:da:70:d6:a6:23:ac:65:38:54:cd: 32:fa:06:58:64:4c:f6:2d:60:d0:fb:3a:0a:1b:ae: 10:b3:68:a8:e5:c8:94:95:d6:6a:ed:6c:e8:34:32: 38:26:c3:ca:bc:7c:4a:8a:55:0b:8b:44:58:25:bb: ee:4c:b9:20:75:79:18:64:dc:4f:f8:3f:4d:cd:69: 74:4a:88:d3:f1:0e:ea:eb:fa:89:39:6b:0e:dd:a1: 5e:e2:87:2b:27:42:d6:30:f0:e5:5e:c8:7f:70:67: c7:03:8b:13:67:a0:55:b4:99:98:08:d5:bd:c9:bf: e3:cf:85:02:f3:4b:3f:c2:fc:79:66:54:dd:79:ea: c5:bb:7e:df:b3:fe:31:e0:8a:f2:8c:61:89:27:fb: fc:23:05:71:73:4e:36:d2:39:bc:f9:a4:36:28:11: 9c:c0:0b:03:eb:c6:0d:bf:a6:5f:3b:8e:9f:48:12: 22:cd:a9:9e:09:7b:70:26:cc:56:e6:9e:de:90:3d: ad:0a:2e:12:38:ad:73:16:26:05:95:ff:47:9e:e6: ee:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:7A:C6:C1:6C:5A:08:9A:46:CB:D0:66:80:64:29:49:F6:70:64:37 X509v3 Authority Key Identifier: keyid:F5:AD:1A:7F:D4:99:51:CD:1B:1D:48:2A:82:F2:8A:95:A7:B5:4E:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20006/9a0af9SZUc0bHUgqgvKKlae1Th4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9a0af9SZUc0bHUgqgvKKlae1Th4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20006/XHrGwWxaCJpGy9BmgGQpSfZwZDc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.235.0.0/21 Signature Algorithm: sha256WithRSAEncryption 1b:dd:78:63:86:18:6e:b8:56:d8:ad:c4:fd:34:ee:4a:07:74: 70:a2:2e:fd:3b:fb:2d:f0:a7:5f:3b:93:59:3e:28:9b:53:b3: be:d2:c5:16:a6:e5:11:28:f0:1c:89:a4:41:7c:27:02:06:ce: a4:af:88:23:48:31:35:1e:56:7f:d8:b3:69:c4:2e:87:4d:fb: 91:b1:f0:f4:f4:06:e3:a7:3d:96:f3:0a:44:46:4f:bf:2b:b5: d7:0a:55:59:83:ac:3d:c3:cd:87:01:e5:5c:0b:f2:c8:48:9d: b1:3f:36:ed:54:e0:f1:9c:f9:a3:3b:9c:7c:06:a7:9f:c7:8e: 1d:f1:3e:ee:e9:19:de:46:02:74:ac:6b:f6:80:66:e4:48:9b: 39:1c:02:d0:53:38:a2:ff:0c:28:ed:6d:20:94:81:b4:a9:fe: 48:65:1a:ce:af:31:7f:68:eb:69:6a:6d:be:b9:d0:dc:12:83: 3e:e8:fb:6e:a7:10:5e:72:9f:9d:33:81:dc:a7:da:de:2a:72: ad:b2:40:c3:fe:d6:4d:2b:bc:3e:b6:50:bc:bc:04:08:a1:3a: 19:12:b7:6a:13:ff:9c:ef:5e:d2:82:8c:15:6b:83:15:01:49: 5a:20:58:9a:11:36:ac:90:b7:de:e8:5f:b1:ed:c5:42:20:d9: f3:fb:e9:22 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBBzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGNUFE MUE3RkQ0OTk1MUNEMUIxRDQ4MkE4MkYyOEE5NUE3QjU0RTFFMB4XDTI1MTAwMzAx NTkxNVoXDTI2MDkxNTAxMzAwMlowMzExMC8GA1UEAxMoNUM3QUM2QzE2QzVBMDg5 QTQ2Q0JEMDY2ODA2NDI5NDlGNjcwNjQzNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMswow+BbronAEHAxed3pkEPSGPQgW6yssh+m+GZs22qJiVqW9iJ aFL66BB1WeHlq6DacNamI6xlOFTNMvoGWGRM9i1g0Ps6ChuuELNoqOXIlJXWau1s 6DQyOCbDyrx8SopVC4tEWCW77ky5IHV5GGTcT/g/Tc1pdEqI0/EO6uv6iTlrDt2h XuKHKydC1jDw5V7If3BnxwOLE2egVbSZmAjVvcm/48+FAvNLP8L8eWZU3Xnqxbt+ 37P+MeCK8oxhiSf7/CMFcXNONtI5vPmkNigRnMALA+vGDb+mXzuOn0gSIs2pngl7 cCbMVuae3pA9rQouEjitcxYmBZX/R57m7jMCAwEAAaOCAigwggIkMB0GA1UdDgQW BBRcesbBbFoImkbL0GaAZClJ9nBkNzAfBgNVHSMEGDAWgBT1rRp/1JlRzRsdSCqC 8oqVp7VOHjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwMDYvOWEwYWY5U1pVYzBiSFVncWd2S0tsYWUxVGg0LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvOWEwYWY5U1pVYzBiSFVncWd2S0ts YWUxVGg0LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDA2L1hIckd3V3hhQ0pwR3k5Qm1nR1FwU2Zad1pEYy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAPK6wAwDQYJKoZIhvcNAQELBQADggEBABvdeGOGGG64VtitxP007koH dHCiLv07+y3wp187k1k+KJtTs77SxRam5REo8ByJpEF8JwIGzqSviCNIMTUeVn/Y s2nELodN+5Gx8PT0BuOnPZbzCkRGT78rtdcKVVmDrD3DzYcB5VwL8shInbE/Nu1U 4PGc+aM7nHwGp5/Hjh3xPu7pGd5GAnSsa/aAZuRImzkcAtBTOKL/DCjtbSCUgbSp /khlGs6vMX9o62lqbb650NwSgz7o+26nEF5yn50zgdyn2t4qcq2yQMP+1k0rvD62 ULy8BAihOhkSt2oT/5zvXtKCjBVrgxUBSVogWJoRNqyQt97oX7HtxUIg2fP76SI= -----END CERTIFICATE-----Generated at Wed Oct 8 14:01:44 2025 by rpki-client