$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20266/zsMJnDkSaMu8wUGnm0uL_5bfZO4.roa File: zsMJnDkSaMu8wUGnm0uL_5bfZO4.roa (raw, json) Hash identifier: kH0TLAKAJF2gC2d9G+M2X5kwtTH9L83eDqW7uV5xGr8= Subject key identifier: CE:C3:09:9C:39:12:68:CB:BC:C1:41:A7:9B:4B:8B:FF:96:DF:64:EE Certificate issuer: /CN=40DACCE2006CE7A6A8C76B5320A0E189845D1560 Certificate serial: 18 Authority key identifier: 40:DA:CC:E2:00:6C:E7:A6:A8:C7:6B:53:20:A0:E1:89:84:5D:15:60 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNrM4gBs56aox2tTIKDhiYRdFWA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20266/zsMJnDkSaMu8wUGnm0uL_5bfZO4.roa Signing time: Sun 05 Oct 2025 00:02:45 +0000 ROA not before: Sun 05 Oct 2025 00:02:45 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 55395 IP address blocks: 160.25.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20266/QNrM4gBs56aox2tTIKDhiYRdFWA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20266/QNrM4gBs56aox2tTIKDhiYRdFWA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNrM4gBs56aox2tTIKDhiYRdFWA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40DACCE2006CE7A6A8C76B5320A0E189845D1560 Validity Not Before: Oct 5 00:02:45 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=CEC3099C391268CBBCC141A79B4B8BFF96DF64EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:30:49:e2:df:f7:8a:d8:f8:8e:f4:f6:ff:9b: 22:50:a1:c4:ba:e2:73:47:95:ff:4e:7e:7b:51:f6: c1:66:5b:e6:a1:46:9c:a5:e1:34:13:2f:96:8b:df: 60:df:06:50:cb:74:98:da:ff:1d:58:97:ec:34:e9: a8:24:1f:3b:64:ae:2a:0d:b1:0b:aa:7c:1c:c1:24: 13:7d:65:6c:7a:41:5f:43:e1:7b:c6:30:d1:8c:82: fb:b0:7f:92:d7:4b:1d:2c:63:1e:99:a0:59:09:39: d5:b7:8a:59:47:7f:34:6a:b3:ed:d7:0c:89:13:b8: 41:a9:a1:40:1f:35:39:9c:ce:fb:c2:d9:63:66:97: bc:ea:b2:82:3f:bd:37:b7:38:7f:43:46:10:93:d3: d1:f9:25:4b:23:e2:4e:c5:dd:85:c0:04:dc:91:86: cf:93:30:96:1b:c9:20:49:8c:93:47:51:b4:50:aa: 61:b9:ca:32:19:88:a1:53:e7:e4:be:33:5d:4a:b2: 00:83:fb:6d:c6:f8:32:f7:7e:b6:ae:d2:9a:71:58: 6b:7d:54:cf:2c:43:9e:dc:05:b4:b3:8e:85:a4:4d: b2:d9:d5:4c:c3:6d:89:7a:b9:4d:cd:b3:5f:cc:b3: 29:df:f5:f8:01:52:04:c4:0e:2f:77:ca:b7:ac:b4: 81:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:C3:09:9C:39:12:68:CB:BC:C1:41:A7:9B:4B:8B:FF:96:DF:64:EE X509v3 Authority Key Identifier: keyid:40:DA:CC:E2:00:6C:E7:A6:A8:C7:6B:53:20:A0:E1:89:84:5D:15:60 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20266/QNrM4gBs56aox2tTIKDhiYRdFWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNrM4gBs56aox2tTIKDhiYRdFWA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20266/zsMJnDkSaMu8wUGnm0uL_5bfZO4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.134.0/23 Signature Algorithm: sha256WithRSAEncryption c9:8c:58:db:9b:09:b2:c9:a8:07:04:3a:eb:cc:f1:30:51:df: 60:f5:ce:ef:ee:ee:83:f3:eb:37:3e:d1:5b:f7:89:55:c2:28: 6c:60:6e:f7:37:25:a3:4f:cc:0c:69:08:67:d6:32:8a:91:db: b3:1d:f5:45:17:6c:43:42:b0:d1:8b:8b:29:06:be:37:40:9d: 1e:0f:24:6b:f8:c0:ca:5b:d6:94:f7:b9:5d:28:b1:00:12:2c: 4b:88:02:b8:19:04:22:03:1b:30:31:c7:86:5d:98:93:43:af: 37:23:e6:e4:46:69:65:48:e1:87:8f:c8:b1:a4:97:ba:55:92: 38:7d:c4:86:d5:42:99:09:8b:b5:f8:d4:f8:45:f8:bb:3e:84: 0c:b2:6b:a5:34:f0:ab:16:2f:a0:60:4b:e6:dd:09:70:15:9b: 61:14:7f:1a:18:a4:a5:51:f5:62:0f:1a:69:25:1e:eb:dd:72: 6e:79:83:22:99:a1:81:fd:e1:bf:4b:64:18:0e:e1:d5:51:d0: f8:ca:b1:34:c1:1d:bd:3d:36:02:8f:17:ce:b3:96:61:b0:af: cc:d6:50:d2:83:81:d9:84:bc:e0:92:5e:0f:ab:21:13:42:3a: dc:15:7b:0a:1e:86:01:67:6b:c5:7a:06:f9:d3:38:03:c4:e6: 7f:2f:44:b2 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBGDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0MERB Q0NFMjAwNkNFN0E2QThDNzZCNTMyMEEwRTE4OTg0NUQxNTYwMB4XDTI1MTAwNTAw MDI0NVoXDTI2MDkxNTAxMzAwMlowMzExMC8GA1UEAxMoQ0VDMzA5OUMzOTEyNjhD QkJDQzE0MUE3OUI0QjhCRkY5NkRGNjRFRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMQwSeLf94rY+I709v+bIlChxLric0eV/05+e1H2wWZb5qFGnKXh NBMvlovfYN8GUMt0mNr/HViX7DTpqCQfO2SuKg2xC6p8HMEkE31lbHpBX0Phe8Yw 0YyC+7B/ktdLHSxjHpmgWQk51beKWUd/NGqz7dcMiRO4QamhQB81OZzO+8LZY2aX vOqygj+9N7c4f0NGEJPT0fklSyPiTsXdhcAE3JGGz5MwlhvJIEmMk0dRtFCqYbnK MhmIoVPn5L4zXUqyAIP7bcb4Mvd+tq7SmnFYa31UzyxDntwFtLOOhaRNstnVTMNt iXq5Tc2zX8yzKd/1+AFSBMQOL3fKt6y0gUsCAwEAAaOCAigwggIkMB0GA1UdDgQW BBTOwwmcORJoy7zBQaebS4v/lt9k7jAfBgNVHSMEGDAWgBRA2sziAGznpqjHa1Mg oOGJhF0VYDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAyNjYvUU5yTTRnQnM1NmFveDJ0VElLRGhpWVJkRldBLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvUU5yTTRnQnM1NmFveDJ0VElLRGhp WVJkRldBLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMjY2L3pzTUpuRGtTYU11OHdVR25tMHVMXzViZlpPNC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGgGYYwDQYJKoZIhvcNAQELBQADggEBAMmMWNubCbLJqAcEOuvM8TBR 32D1zu/u7oPz6zc+0Vv3iVXCKGxgbvc3JaNPzAxpCGfWMoqR27Md9UUXbENCsNGL iykGvjdAnR4PJGv4wMpb1pT3uV0osQASLEuIArgZBCIDGzAxx4ZdmJNDrzcj5uRG aWVI4YePyLGkl7pVkjh9xIbVQpkJi7X41PhF+Ls+hAyya6U08KsWL6BgS+bdCXAV m2EUfxoYpKVR9WIPGmklHuvdcm55gyKZoYH94b9LZBgO4dVR0PjKsTTBHb09NgKP F86zlmGwr8zWUNKDgdmEvOCSXg+rIRNCOtwVewoehgFna8V6BvnTOAPE5n8vRLI= -----END CERTIFICATE-----Generated at Mon Oct 20 17:43:10 2025 by rpki-client