$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/440/hFzr3-1M2mSHd4y5AwN-ZE2FucE.roa File: hFzr3-1M2mSHd4y5AwN-ZE2FucE.roa (raw, json) Hash identifier: g8H95y1aDkesPecG3mTmIqBEfkA4keoV6Oc5voV441o= Subject key identifier: 84:5C:EB:DF:ED:4C:DA:64:87:77:8C:B9:03:03:7E:64:4D:85:B9:C1 Certificate issuer: /CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF Certificate serial: 96 Authority key identifier: E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/hFzr3-1M2mSHd4y5AwN-ZE2FucE.roa Signing time: Sat 01 Nov 2025 01:32:07 +0000 ROA not before: Sat 01 Nov 2025 01:32:07 +0000 ROA not after: Thu 15 Oct 2026 01:30:02 +0000 asID: 17676 IP address blocks: 126.249.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 05:13:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF Validity Not Before: Nov 1 01:32:07 2025 GMT Not After : Oct 15 01:30:02 2026 GMT Subject: CN=845CEBDFED4CDA6487778CB903037E644D85B9C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c4:39:8b:50:14:1e:fa:34:6f:84:8b:76:c7: e0:c5:f2:0f:82:18:ad:0d:d0:71:3e:0d:db:f3:b2: de:2d:24:51:bd:83:a2:b2:11:52:fe:8c:90:a3:fb: d9:9c:74:bf:19:4b:45:15:8a:97:df:a6:85:20:e9: a4:a4:c8:4d:d9:79:79:49:0b:8f:a5:54:8d:fb:6c: e8:01:4b:6a:9c:2a:cf:40:d1:9d:8f:be:32:a3:61: a8:7b:47:dc:31:0e:66:27:91:61:d9:67:e9:5f:1d: 7b:e8:8d:53:44:15:7c:e9:d1:8a:79:bc:4b:fc:e4: 5b:92:0d:1a:a0:0f:b5:2e:7d:0c:3a:c2:3d:f8:da: 70:7e:e0:ed:15:fc:82:c7:c2:0b:ee:a7:ff:56:19: f0:60:88:d9:14:c9:a2:bc:b4:2d:84:fc:12:d6:c7: 14:81:c4:4c:da:39:30:34:84:16:14:70:f8:53:e9: 97:8b:eb:ea:42:d3:b9:8c:9b:83:2d:cb:f9:cb:d7: 76:b7:a1:a1:99:31:8b:9b:1f:ce:76:31:3a:c6:f0: c0:58:76:d7:0d:2f:ae:51:b9:0b:cd:da:23:fd:9d: 93:f4:68:34:45:0e:9a:31:2e:99:bf:3e:a5:58:04: 80:2d:43:19:66:f0:f7:8c:5b:1b:61:fb:17:cb:b9: ef:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:5C:EB:DF:ED:4C:DA:64:87:77:8C:B9:03:03:7E:64:4D:85:B9:C1 X509v3 Authority Key Identifier: keyid:E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/hFzr3-1M2mSHd4y5AwN-ZE2FucE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 126.249.0.0/16 Signature Algorithm: sha256WithRSAEncryption 86:da:fe:03:bc:a4:f7:ad:6b:d8:54:0f:02:40:5b:ec:92:7d: 56:ae:a0:a7:1f:c8:87:c7:10:de:38:dc:ed:f5:c2:71:58:d2: d2:a4:4a:6f:e1:06:b9:6c:76:6b:28:96:99:47:26:84:30:2c: a4:83:ec:fd:23:2e:7a:f4:3f:59:08:3d:ac:96:20:89:85:57: ee:11:9c:2a:81:0f:67:4b:41:8b:7c:69:35:0f:28:e9:7f:aa: 24:30:35:41:14:7b:d0:d6:bf:02:81:57:4c:42:f2:f1:38:13: fe:d6:95:f9:34:aa:f1:88:d7:6a:bb:99:f0:60:ad:f4:38:b9: 93:10:c2:72:d5:2e:7c:7b:47:cc:5f:02:b3:46:56:78:b6:b8: 59:45:cc:82:64:1a:20:b9:1a:5f:92:67:a2:8a:a7:25:09:03: df:d2:13:47:e6:be:5f:d8:b7:1b:3e:93:74:90:89:67:0a:cc: 90:31:51:1b:9f:ea:84:83:df:35:f4:6a:25:9d:c2:34:86:29: d4:b3:36:10:0b:98:c2:73:f9:d3:19:3f:1e:c6:2a:12:49:b3: df:fe:ff:9a:ec:e8:a7:27:99:7f:7d:9d:27:69:54:1e:38:c1: 2a:b4:68:e0:d3:04:95:7c:6e:93:55:d5:97:70:44:61:43:74: cc:74:ab:ef -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTYy MzM4REUzMzJDNkY0QjlFMjU5NkVFNURDMzc5QTI1RUZFNThDRjAeFw0yNTExMDEw MTMyMDdaFw0yNjEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg0NUNFQkRGRUQ0Q0RB NjQ4Nzc3OENCOTAzMDM3RTY0NEQ4NUI5QzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClxDmLUBQe+jRvhIt2x+DF8g+CGK0N0HE+Ddvzst4tJFG9g6Ky EVL+jJCj+9mcdL8ZS0UVipffpoUg6aSkyE3ZeXlJC4+lVI37bOgBS2qcKs9A0Z2P vjKjYah7R9wxDmYnkWHZZ+lfHXvojVNEFXzp0Yp5vEv85FuSDRqgD7UufQw6wj34 2nB+4O0V/ILHwgvup/9WGfBgiNkUyaK8tC2E/BLWxxSBxEzaOTA0hBYUcPhT6ZeL 6+pC07mMm4Mty/nL13a3oaGZMYubH852MTrG8MBYdtcNL65RuQvN2iP9nZP0aDRF DpoxLpm/PqVYBIAtQxlm8PeMWxth+xfLue9xAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUhFzr3+1M2mSHd4y5AwN+ZE2FucEwHwYDVR0jBBgwFoAU5iM43jMsb0ueJZbu XcN5ol7+WM8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ0MC81aU00M2pNc2IwdWVKWmJ1WGNONW9sNy1XTTguY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC81aU00M2pNc2IwdWVKWmJ1WGNONW9s Ny1XTTguY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDQwL2hGenIzLTFNMm1TSGQ0eTVBd04tWkUyRnVjRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwB++TANBgkqhkiG9w0BAQsFAAOCAQEAhtr+A7yk961r2FQPAkBb7JJ9Vq6g px/Ih8cQ3jjc7fXCcVjS0qRKb+EGuWx2ayiWmUcmhDAspIPs/SMuevQ/WQg9rJYg iYVX7hGcKoEPZ0tBi3xpNQ8o6X+qJDA1QRR70Na/AoFXTELy8TgT/taV+TSq8YjX aruZ8GCt9Di5kxDCctUufHtHzF8Cs0ZWeLa4WUXMgmQaILkaX5JnooqnJQkD39IT R+a+X9i3Gz6TdJCJZwrMkDFRG5/qhIPfNfRqJZ3CNIYp1LM2EAuYwnP50xk/HsYq Ekmz3/7/muzopyeZf32dJ2lUHjjBKrRo4NMElXxuk1XVl3BEYUN0zHSr7w== -----END CERTIFICATE-----Generated at Sun Nov 2 10:13:15 2025 by rpki-client