$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/IQOceJnaneno2duj7mud7tCmhtE.roa File: IQOceJnaneno2duj7mud7tCmhtE.roa (raw, json) Hash identifier: fXcZH2uJnraedj+nis+2N6l+hJZmlxBBWbrVXESNvG0= Subject key identifier: 21:03:9C:78:99:DA:9D:E9:E8:D9:DB:A3:EE:6B:9D:EE:D0:A6:86:D1 Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Certificate serial: A5 Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/IQOceJnaneno2duj7mud7tCmhtE.roa Signing time: Mon 01 Sep 2025 01:29:48 +0000 ROA not before: Mon 01 Sep 2025 01:29:48 +0000 ROA not after: Sat 15 Aug 2026 01:30:02 +0000 asID: 2527 IP address blocks: 66.11.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 09:39:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Validity Not Before: Sep 1 01:29:48 2025 GMT Not After : Aug 15 01:30:02 2026 GMT Subject: CN=21039C7899DA9DE9E8D9DBA3EE6B9DEED0A686D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9a:e8:39:ad:16:8e:dc:3a:82:16:10:f9:eb: 38:9a:2f:2d:85:e9:e4:37:8e:30:d1:b1:3e:86:b7: 50:bd:11:8b:c0:dd:26:10:6a:7c:69:f2:b6:58:15: 0a:6e:eb:be:4f:cd:6f:13:b0:1c:d6:da:4d:18:1c: 9b:5f:78:fb:ef:3b:1a:09:8f:a7:26:a0:8f:af:55: 53:33:83:53:45:a9:a7:6f:f2:dc:0c:60:77:4c:8c: 8d:b8:f9:0b:a8:aa:67:cb:33:46:b5:26:cc:de:17: 0d:f5:bc:33:cd:93:30:68:01:3b:74:cb:68:b3:d5: 9b:6d:ce:f5:55:ab:18:4e:f4:7a:6e:44:02:68:b0: 96:af:ff:2c:f5:2b:f5:f4:20:2c:72:4a:ed:59:7f: e5:56:4a:0c:fe:6d:1f:bd:a4:d8:f7:6f:06:90:bd: b5:a4:9b:c5:24:22:7b:5b:c3:be:4a:81:af:c1:54: b8:96:c5:1a:9c:19:f2:6e:50:f3:80:d3:78:a1:df: 50:89:1a:ec:77:8a:45:7c:61:58:17:70:ce:58:35: 0d:b5:47:f4:5b:17:16:e0:ed:3d:b9:12:dd:c5:4e: af:69:5d:33:4c:f9:a7:04:81:6d:72:21:8d:53:f1: bb:c6:74:0d:bb:b8:93:a6:14:18:ca:27:e2:71:45: 9b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:03:9C:78:99:DA:9D:E9:E8:D9:DB:A3:EE:6B:9D:EE:D0:A6:86:D1 X509v3 Authority Key Identifier: keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/IQOceJnaneno2duj7mud7tCmhtE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 66.11.48.0/20 Signature Algorithm: sha256WithRSAEncryption 62:7b:99:38:ff:ff:81:12:cb:45:0f:76:e1:8a:a0:8d:a4:22: 77:c6:a1:b5:ee:34:cb:84:4a:28:e7:de:7e:c1:be:58:4b:a1: b8:be:7e:7b:6e:1a:e3:ce:e7:cb:c6:0f:ef:cc:ce:58:00:a8: f2:cf:ec:4d:32:7d:58:31:72:0d:8c:1b:2e:fb:ed:82:e3:93: 3e:74:b4:40:71:5b:a9:da:ab:de:b5:46:c6:d6:35:4b:34:a2: db:b6:84:2e:5a:5c:de:ae:f4:c0:88:7a:a0:44:6f:f0:4b:b8: d4:2b:2c:b1:9e:03:e7:51:7b:80:08:f3:32:8f:cc:5c:31:24: 48:1f:87:d7:4a:58:ed:68:39:75:5c:4b:85:dd:70:35:5c:c7: c1:3b:96:e9:ea:25:4e:ec:a5:d4:7c:ae:29:da:48:1e:cc:12: b8:08:8d:bc:51:02:aa:25:57:87:bb:e3:5d:48:71:23:92:b2: 4c:12:32:e4:e5:c2:17:76:44:da:39:0b:e9:3e:2c:ec:26:c6: e3:0d:5e:e2:d9:c0:8d:b7:75:20:41:c3:14:c0:48:42:9f:1e: 4f:c4:f6:25:a8:90:5d:21:8b:19:29:be:6e:f5:23:1e:b4:a2: 83:f0:af:f0:fc:b3:f3:f9:ab:30:ff:42:01:fc:08:40:b4:97: 5f:b9:4a:bf -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDRD QTdGMzVBRjFBOEY1MjU3NUE5RkVGRkYyMUM0QTQ3MDgwRERGQTAeFw0yNTA5MDEw MTI5NDhaFw0yNjA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDIxMDM5Qzc4OTlEQTlE RTlFOEQ5REJBM0VFNkI5REVFRDBBNjg2RDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQmug5rRaO3DqCFhD56ziaLy2F6eQ3jjDRsT6Gt1C9EYvA3SYQ anxp8rZYFQpu675PzW8TsBzW2k0YHJtfePvvOxoJj6cmoI+vVVMzg1NFqadv8twM YHdMjI24+QuoqmfLM0a1JszeFw31vDPNkzBoATt0y2iz1ZttzvVVqxhO9HpuRAJo sJav/yz1K/X0ICxySu1Zf+VWSgz+bR+9pNj3bwaQvbWkm8UkIntbw75Kga/BVLiW xRqcGfJuUPOA03ih31CJGux3ikV8YVgXcM5YNQ21R/RbFxbg7T25Et3FTq9pXTNM +acEgW1yIY1T8bvGdA27uJOmFBjKJ+JxRZvfAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUIQOceJnaneno2duj7mud7tCmhtEwHwYDVR0jBBgwFoAUBMp/Na8aj1JXWp/v /yHEpHCA3fowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhDQTNmby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhD QTNmby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My9JUU9jZUpuYW5lbm8yZHVqN211ZDd0Q21odEUucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQEQgswMA0GCSqGSIb3DQEBCwUAA4IBAQBie5k4//+BEstFD3bhiqCNpCJ3xqG1 7jTLhEoo595+wb5YS6G4vn57bhrjzufLxg/vzM5YAKjyz+xNMn1YMXINjBsu++2C 45M+dLRAcVup2qvetUbG1jVLNKLbtoQuWlzervTAiHqgRG/wS7jUKyyxngPnUXuA CPMyj8xcMSRIH4fXSljtaDl1XEuF3XA1XMfBO5bp6iVO7KXUfK4p2kgezBK4CI28 UQKqJVeHu+NdSHEjkrJMEjLk5cIXdkTaOQvpPizsJsbjDV7i2cCNt3UgQcMUwEhC nx5PxPYlqJBdIYsZKb5u9SMetKKD8K/w/LPz+asw/0IB/AhAtJdfuUq/ -----END CERTIFICATE-----Generated at Mon Sep 8 13:22:41 2025 by rpki-client