$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/440/2kwCa8yjtVYmk13iYm3KDjptl9M.roa File: 2kwCa8yjtVYmk13iYm3KDjptl9M.roa (raw, json) Hash identifier: FxTK9bZLrWdaUK2jIb32heBhjrQvSdsz4f+DdDfRgY0= Subject key identifier: DA:4C:02:6B:CC:A3:B5:56:26:93:5D:E2:62:6D:CA:0E:3A:6D:97:D3 Certificate issuer: /CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF Certificate serial: 8B Authority key identifier: E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/2kwCa8yjtVYmk13iYm3KDjptl9M.roa Signing time: Sat 01 Nov 2025 01:32:01 +0000 ROA not before: Sat 01 Nov 2025 01:32:01 +0000 ROA not after: Thu 15 Oct 2026 01:30:02 +0000 asID: 17676 IP address blocks: 61.206.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 05:13:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF Validity Not Before: Nov 1 01:32:01 2025 GMT Not After : Oct 15 01:30:02 2026 GMT Subject: CN=DA4C026BCCA3B55626935DE2626DCA0E3A6D97D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bc:38:9f:d5:62:0b:fc:bd:2d:26:60:bd:45: dd:a9:92:88:1e:f4:d0:38:48:67:57:f8:68:d2:82: 2b:bc:5b:a6:60:ba:38:37:03:90:35:fd:34:b6:04: 3c:97:78:e1:87:6c:28:1b:d4:42:7e:56:12:5d:e0: 52:43:61:a3:3f:b7:fd:78:08:a5:8e:1e:a6:8a:31: ef:37:b3:85:2f:9d:31:4f:c0:8a:79:6f:10:8e:5a: a4:19:ae:1a:1f:a0:fd:d1:43:59:37:c2:ba:b4:3a: df:98:11:28:bb:4d:dc:89:60:cc:58:10:3c:bc:a9: ee:a2:9c:78:76:2e:fe:23:19:17:de:bc:4a:7e:61: b4:d4:bd:97:54:b7:dd:fe:2b:53:53:dc:38:53:fb: b6:78:ee:18:b2:49:3d:86:33:43:ba:be:c8:af:68: fd:1c:82:8e:da:ca:05:3b:1d:8b:52:c5:e5:eb:b0: 3b:15:fc:a8:18:9a:47:5a:48:63:28:22:d6:ee:73: ff:0e:30:4d:fc:91:94:d7:bd:41:20:01:4b:16:63: cd:32:86:f6:0e:3e:95:56:bf:f8:52:de:3c:70:d4: a1:4b:f2:85:53:8a:49:85:c8:95:61:fb:63:ad:be: bf:13:f4:2e:b1:dc:cb:95:e9:27:96:6a:9a:22:8b: e6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:4C:02:6B:CC:A3:B5:56:26:93:5D:E2:62:6D:CA:0E:3A:6D:97:D3 X509v3 Authority Key Identifier: keyid:E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/2kwCa8yjtVYmk13iYm3KDjptl9M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.206.16.0/20 Signature Algorithm: sha256WithRSAEncryption b9:c9:a2:41:ae:95:9b:4a:24:ef:64:53:50:83:50:54:37:0e: 1d:ea:af:28:f7:79:1a:27:98:30:6a:7d:99:88:ab:97:25:29: 00:fb:f4:73:9e:1c:75:61:43:64:d8:b2:bc:c9:e4:4b:3c:d2: 66:08:d7:27:b2:a0:eb:97:79:5c:b1:fa:ac:2f:52:3d:12:e2: 11:0f:78:4a:d4:e4:aa:26:43:c5:3b:9c:8f:25:2f:2b:a0:d2: b5:ba:33:71:0f:48:12:eb:bc:2a:60:07:b1:e7:88:11:18:3d: 00:b9:7a:10:7a:bf:d6:27:18:a5:bf:2a:40:01:c1:f4:62:36: 21:28:12:81:60:9d:26:13:50:41:95:06:d9:33:e1:45:5e:79: 33:1f:f4:04:2c:7c:25:53:3a:be:d5:c8:4b:d3:d3:c7:1f:74: f3:43:36:77:0f:7f:dc:ed:bc:ce:fc:ef:c5:50:e4:4d:c2:4d: fc:b0:5f:20:2f:b9:b1:54:43:b0:80:98:d4:bc:d6:5f:fb:58: 14:9a:f7:c3:a4:1d:d0:6a:63:b0:af:cd:e3:54:7f:61:4e:5a: f7:97:9b:19:83:e5:4d:02:5c:5f:13:c2:75:b4:f3:6b:13:82: 26:43:be:29:ce:05:2f:06:c3:8e:14:32:d3:79:71:4c:14:af: bc:16:be:2f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAIswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTYy MzM4REUzMzJDNkY0QjlFMjU5NkVFNURDMzc5QTI1RUZFNThDRjAeFw0yNTExMDEw MTMyMDFaFw0yNjEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKERBNEMwMjZCQ0NBM0I1 NTYyNjkzNURFMjYyNkRDQTBFM0E2RDk3RDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7vDif1WIL/L0tJmC9Rd2pkoge9NA4SGdX+GjSgiu8W6Zgujg3 A5A1/TS2BDyXeOGHbCgb1EJ+VhJd4FJDYaM/t/14CKWOHqaKMe83s4UvnTFPwIp5 bxCOWqQZrhofoP3RQ1k3wrq0Ot+YESi7TdyJYMxYEDy8qe6inHh2Lv4jGRfevEp+ YbTUvZdUt93+K1NT3DhT+7Z47hiyST2GM0O6vsivaP0cgo7aygU7HYtSxeXrsDsV /KgYmkdaSGMoItbuc/8OME38kZTXvUEgAUsWY80yhvYOPpVWv/hS3jxw1KFL8oVT ikmFyJVh+2Otvr8T9C6x3MuV6SeWapoii+bdAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU2kwCa8yjtVYmk13iYm3KDjptl9MwHwYDVR0jBBgwFoAU5iM43jMsb0ueJZbu XcN5ol7+WM8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ0MC81aU00M2pNc2IwdWVKWmJ1WGNONW9sNy1XTTguY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC81aU00M2pNc2IwdWVKWmJ1WGNONW9s Ny1XTTguY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDQwLzJrd0NhOHlqdFZZbWsxM2lZbTNLRGpwdGw5TS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ9zhAwDQYJKoZIhvcNAQELBQADggEBALnJokGulZtKJO9kU1CDUFQ3Dh3q ryj3eRonmDBqfZmIq5clKQD79HOeHHVhQ2TYsrzJ5Es80mYI1yeyoOuXeVyx+qwv Uj0S4hEPeErU5KomQ8U7nI8lLyug0rW6M3EPSBLrvCpgB7HniBEYPQC5ehB6v9Yn GKW/KkABwfRiNiEoEoFgnSYTUEGVBtkz4UVeeTMf9AQsfCVTOr7VyEvT08cfdPND NncPf9ztvM7878VQ5E3CTfywXyAvubFUQ7CAmNS81l/7WBSa98OkHdBqY7CvzeNU f2FOWveXmxmD5U0CXF8TwnW082sTgiZDvinOBS8Gw44UMtN5cUwUr7wWvi8= -----END CERTIFICATE-----Generated at Sun Nov 2 10:16:18 2025 by rpki-client