$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/368/MN7sWGHK4y7UUHIvG8TcnKYnTdI.roa File: MN7sWGHK4y7UUHIvG8TcnKYnTdI.roa (raw, json) Hash identifier: bASkT+FD1KRBKdQSnp5A0bqtVlVfJ4Il0SiZd4svqRY= Subject key identifier: 30:DE:EC:58:61:CA:E3:2E:D4:50:72:2F:1B:C4:DC:9C:A6:27:4D:D2 Certificate issuer: /CN=3BD306ECE6043901E52A8E8B6614AAA456ABA756 Certificate serial: 56 Authority key identifier: 3B:D3:06:EC:E6:04:39:01:E5:2A:8E:8B:66:14:AA:A4:56:AB:A7:56 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/O9MG7OYEOQHlKo6LZhSqpFarp1Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/368/MN7sWGHK4y7UUHIvG8TcnKYnTdI.roa Signing time: Thu 25 Sep 2025 04:53:27 +0000 ROA not before: Thu 25 Sep 2025 04:53:27 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 7671 IP address blocks: 203.78.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/368/O9MG7OYEOQHlKo6LZhSqpFarp1Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/368/O9MG7OYEOQHlKo6LZhSqpFarp1Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/O9MG7OYEOQHlKo6LZhSqpFarp1Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Oct 2025 15:51:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BD306ECE6043901E52A8E8B6614AAA456ABA756 Validity Not Before: Sep 25 04:53:27 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=30DEEC5861CAE32ED450722F1BC4DC9CA6274DD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fb:75:43:69:d8:21:b4:0a:02:3f:7d:fa:79: b7:da:98:44:ed:80:7d:ad:ec:3f:f2:43:fa:3a:6c: 95:b8:f6:55:90:0e:e0:58:a5:3d:08:36:80:17:43: 3b:b0:50:c1:22:cf:fd:84:a8:f1:ba:08:ba:32:4f: b4:27:bb:b2:67:42:94:0e:23:e3:c5:36:f8:57:ab: ae:b5:d9:93:c5:da:26:a0:54:d8:f8:c7:38:98:bc: 3b:c9:a4:4d:34:fb:49:da:0a:cd:1a:b3:09:b9:f2: b7:13:f9:94:52:f8:04:91:bc:78:1d:77:bf:3a:03: bc:ad:f0:ea:1f:1c:0f:3e:ed:ab:6d:33:af:f9:5e: e8:d2:e9:aa:65:76:65:a2:0e:ed:72:02:dc:d1:8f: 4c:97:88:d3:77:7f:84:72:56:71:75:3c:18:96:c3: dc:79:b4:af:9d:f5:66:02:b6:81:20:65:4c:1f:c5: ca:c6:93:24:ec:fa:f4:9f:79:7b:74:fc:a9:83:1b: 08:ad:22:ec:78:5f:a9:57:64:31:54:a6:fe:df:d2: 81:22:4e:6f:a9:93:c1:f7:4f:77:b2:0b:1b:e1:fd: e6:0d:74:d6:3b:f8:fa:8a:dc:ff:29:18:b5:b5:01: 5e:37:5e:91:64:b9:8b:f7:5f:cf:25:a6:b8:1d:cd: 54:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:DE:EC:58:61:CA:E3:2E:D4:50:72:2F:1B:C4:DC:9C:A6:27:4D:D2 X509v3 Authority Key Identifier: keyid:3B:D3:06:EC:E6:04:39:01:E5:2A:8E:8B:66:14:AA:A4:56:AB:A7:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/368/O9MG7OYEOQHlKo6LZhSqpFarp1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/O9MG7OYEOQHlKo6LZhSqpFarp1Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/368/MN7sWGHK4y7UUHIvG8TcnKYnTdI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.78.224.0/19 Signature Algorithm: sha256WithRSAEncryption 69:b8:16:8b:13:23:9b:ac:e6:ea:b7:84:2b:e8:4a:a2:2e:b9: e9:ec:90:97:e7:74:fc:fa:b0:a5:9d:e1:de:41:0d:5c:11:7b: 4f:a4:3d:67:8e:92:b7:d7:42:7e:1d:f2:94:d6:24:ca:f7:8a: 6a:c8:9d:1b:88:9a:f7:e6:41:f4:cd:35:b2:d7:42:0b:b7:11: 78:a6:57:77:ce:09:ce:eb:51:c9:a3:6b:81:89:1c:f0:db:7a: a4:1a:ea:5e:e7:81:53:a3:a7:4c:91:1c:1c:b6:87:3d:2c:e1: b1:35:a9:a5:73:4c:88:2a:79:b5:27:93:24:7c:01:1a:63:57: 07:d6:4a:83:1d:b2:ce:16:36:9f:97:f4:28:59:af:bb:38:af: 8c:6f:c9:1b:b4:21:22:70:79:67:d9:d4:47:81:a8:6e:ee:d1: 14:80:83:d4:10:dc:bd:de:32:6a:fe:39:30:c5:dc:8d:ab:e3: 11:e0:b6:29:47:99:2f:7c:29:3d:af:9e:2f:bb:0d:84:57:c1: 85:87:00:b1:22:47:aa:e6:e6:d0:1c:97:b3:b2:2e:97:85:71: 8d:06:a0:6a:d6:ae:9a:17:62:f9:57:d8:73:b1:9c:46:0e:88: f5:a3:3c:46:56:45:fa:c0:59:45:dd:47:65:e7:50:4a:a2:cf: a4:53:af:d1 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBVjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzQkQz MDZFQ0U2MDQzOTAxRTUyQThFOEI2NjE0QUFBNDU2QUJBNzU2MB4XDTI1MDkyNTA0 NTMyN1oXDTI2MDkxNTAxMzAwMlowMzExMC8GA1UEAxMoMzBERUVDNTg2MUNBRTMy RUQ0NTA3MjJGMUJDNERDOUNBNjI3NEREMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMj7dUNp2CG0CgI/ffp5t9qYRO2Afa3sP/JD+jpslbj2VZAO4Fil PQg2gBdDO7BQwSLP/YSo8boIujJPtCe7smdClA4j48U2+FerrrXZk8XaJqBU2PjH OJi8O8mkTTT7SdoKzRqzCbnytxP5lFL4BJG8eB13vzoDvK3w6h8cDz7tq20zr/le 6NLpqmV2ZaIO7XIC3NGPTJeI03d/hHJWcXU8GJbD3Hm0r531ZgK2gSBlTB/FysaT JOz69J95e3T8qYMbCK0i7HhfqVdkMVSm/t/SgSJOb6mTwfdPd7ILG+H95g101jv4 +orc/ykYtbUBXjdekWS5i/dfzyWmuB3NVGcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQw3uxYYcrjLtRQci8bxNycpidN0jAfBgNVHSMEGDAWgBQ70wbs5gQ5AeUqjotm FKqkVqunVjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzY4L085TUc3T1lFT1FIbEtvNkxaaFNxcEZhcnAxWS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL085TUc3T1lFT1FIbEtvNkxaaFNxcEZh cnAxWS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zNjgvTU43c1dHSEs0eTdVVUhJdkc4VGNuS1luVGRJLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBctO4DANBgkqhkiG9w0BAQsFAAOCAQEAabgWixMjm6zm6reEK+hKoi656eyQ l+d0/PqwpZ3h3kENXBF7T6Q9Z46St9dCfh3ylNYkyveKasidG4ia9+ZB9M01stdC C7cReKZXd84JzutRyaNrgYkc8Nt6pBrqXueBU6OnTJEcHLaHPSzhsTWppXNMiCp5 tSeTJHwBGmNXB9ZKgx2yzhY2n5f0KFmvuzivjG/JG7QhInB5Z9nUR4Gobu7RFICD 1BDcvd4yav45MMXcjavjEeC2KUeZL3wpPa+eL7sNhFfBhYcAsSJHqubm0ByXs7Iu l4VxjQagataumhdi+VfYc7GcRg6I9aM8RlZF+sBZRd1HZedQSqLPpFOv0Q== -----END CERTIFICATE-----Generated at Wed Oct 8 17:33:37 2025 by rpki-client