$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2166/r3Ns7CXsAc97of-LdsqlYSc9ylY.roa File: r3Ns7CXsAc97of-LdsqlYSc9ylY.roa (raw, json) Hash identifier: 8nlAFROKJG6owELPzSlxpaq+DSzgxjc+29ETxRmeQJY= Subject key identifier: AF:73:6C:EC:25:EC:01:CF:7B:A1:FF:8B:76:CA:A5:61:27:3D:CA:56 Certificate issuer: /CN=36DA30F686577D6576F647B295455535835130C3 Certificate serial: 26 Authority key identifier: 36:DA:30:F6:86:57:7D:65:76:F6:47:B2:95:45:55:35:83:51:30:C3 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/r3Ns7CXsAc97of-LdsqlYSc9ylY.roa Signing time: Fri 12 Sep 2025 07:31:38 +0000 ROA not before: Fri 12 Sep 2025 07:31:38 +0000 ROA not after: Sat 15 Aug 2026 01:30:02 +0000 asID: 2907 IP address blocks: 192.58.18.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36DA30F686577D6576F647B295455535835130C3 Validity Not Before: Sep 12 07:31:38 2025 GMT Not After : Aug 15 01:30:02 2026 GMT Subject: CN=AF736CEC25EC01CF7BA1FF8B76CAA561273DCA56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0f:08:50:6e:72:9f:5f:ac:bc:27:d4:9c:76: 61:38:3b:4c:f2:4c:13:67:b2:be:91:4e:67:c8:f4: ae:ea:67:b8:f0:01:b8:89:42:6a:11:e3:01:d6:87: 51:5d:dd:47:4b:eb:06:78:29:7d:67:09:2c:27:5c: 2c:81:28:25:f6:23:d3:3f:c2:d0:98:57:c4:ca:a6: ed:f3:e1:c4:65:16:02:d6:a8:bf:c8:f7:46:16:8d: c1:e9:98:4a:7e:09:4a:38:dc:d3:38:52:5f:0e:50: 60:ac:66:0b:f3:ee:04:52:f1:5c:7f:d6:b7:c8:f7: c9:3b:0a:11:a4:1d:db:58:fa:61:aa:3d:48:ed:24: 15:22:da:b3:fa:83:6e:c0:f4:f1:03:29:08:bc:77: 0b:ac:c5:f8:f8:95:a4:f7:7e:16:eb:29:7c:7d:02: ca:ea:4b:91:69:5f:2f:2d:1b:6a:8f:89:46:cc:e9: 4a:6b:de:b0:1a:08:f8:2c:3d:18:81:4a:c2:c0:a6: 21:7a:be:73:3e:3e:81:11:ec:0c:62:9a:d3:c2:71: 9c:00:cc:67:04:b0:a7:ff:c7:47:7e:07:b0:84:b5: da:af:5c:a9:fb:d0:79:54:ba:ca:a5:17:47:92:84: b7:52:d5:34:e4:55:aa:f0:41:f9:91:b3:97:a9:f4: 7c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:73:6C:EC:25:EC:01:CF:7B:A1:FF:8B:76:CA:A5:61:27:3D:CA:56 X509v3 Authority Key Identifier: keyid:36:DA:30:F6:86:57:7D:65:76:F6:47:B2:95:45:55:35:83:51:30:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/r3Ns7CXsAc97of-LdsqlYSc9ylY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.58.18.0/24 Signature Algorithm: sha256WithRSAEncryption 55:e2:5d:44:d8:90:a4:55:18:5b:f6:44:cb:6d:33:69:8a:dd: 87:b0:ad:b2:7d:10:e1:b7:40:75:bc:2b:bc:2f:2f:12:25:cf: 56:86:1e:e2:7e:4e:e1:41:87:12:9d:fa:5d:e4:6d:74:86:8c: 24:a7:cd:9b:0e:1a:3b:8e:e3:8f:d8:5e:37:ce:3b:d8:9e:60: 00:a4:98:7b:c6:45:8f:f4:60:c8:a7:cb:16:9c:03:35:36:ae: d1:1d:45:ea:19:42:aa:cf:f4:1a:b2:4a:7b:cc:62:d3:4d:34: 47:aa:2f:c4:14:2d:55:3d:3d:40:ee:e2:da:1e:12:39:1f:26: 2b:98:49:29:85:d7:d1:1e:a1:ed:f6:c5:2a:6a:b9:99:32:86: cf:1a:d1:30:7f:a6:d6:be:10:af:05:51:3c:79:fd:63:c5:3d: 09:d6:cd:ee:39:4c:de:f5:92:80:12:96:f9:03:ee:99:09:87: 78:a1:f1:0d:91:56:a2:db:0c:01:ab:fc:30:c5:8b:88:dd:34: e6:4d:30:a4:a0:dd:d6:49:a5:81:18:ea:c6:8c:54:2e:df:ca: 69:d4:d2:40:de:ff:8f:e2:96:07:d9:09:c0:1a:cc:a8:dc:6d: 2f:28:fc:57:67:50:35:ca:c5:04:e6:df:5c:24:89:0d:12:cb: 67:ab:aa:0c -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBJjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNkRB MzBGNjg2NTc3RDY1NzZGNjQ3QjI5NTQ1NTUzNTgzNTEzMEMzMB4XDTI1MDkxMjA3 MzEzOFoXDTI2MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoQUY3MzZDRUMyNUVDMDFD RjdCQTFGRjhCNzZDQUE1NjEyNzNEQ0E1NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMsPCFBucp9frLwn1Jx2YTg7TPJME2eyvpFOZ8j0rupnuPABuIlC ahHjAdaHUV3dR0vrBngpfWcJLCdcLIEoJfYj0z/C0JhXxMqm7fPhxGUWAtaov8j3 RhaNwemYSn4JSjjc0zhSXw5QYKxmC/PuBFLxXH/Wt8j3yTsKEaQd21j6Yao9SO0k FSLas/qDbsD08QMpCLx3C6zF+PiVpPd+FuspfH0CyupLkWlfLy0bao+JRszpSmve sBoI+Cw9GIFKwsCmIXq+cz4+gRHsDGKa08JxnADMZwSwp//HR34HsIS12q9cqfvQ eVS6yqUXR5KEt1LVNORVqvBB+ZGzl6n0fOUCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBSvc2zsJewBz3uh/4t2yqVhJz3KVjAfBgNVHSMEGDAWgBQ22jD2hld9ZXb2R7KV RVU1g1EwwzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjE2Ni9OdG93OW9aWGZXVjI5a2V5bFVWVk5ZTlJNTU0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9OdG93OW9aWGZXVjI5a2V5bFVWVk5Z TlJNTU0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjE2Ni9yM05zN0NYc0FjOTdvZi1MZHNxbFlTYzl5bFkucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAwDoSMA0GCSqGSIb3DQEBCwUAA4IBAQBV4l1E2JCkVRhb9kTLbTNpit2H sK2yfRDht0B1vCu8Ly8SJc9Whh7ifk7hQYcSnfpd5G10howkp82bDho7juOP2F43 zjvYnmAApJh7xkWP9GDIp8sWnAM1Nq7RHUXqGUKqz/Qaskp7zGLTTTRHqi/EFC1V PT1A7uLaHhI5HyYrmEkphdfRHqHt9sUqarmZMobPGtEwf6bWvhCvBVE8ef1jxT0J 1s3uOUze9ZKAEpb5A+6ZCYd4ofENkVai2wwBq/wwxYuI3TTmTTCkoN3WSaWBGOrG jFQu38pp1NJA3v+P4pYH2QnAGsyo3G0vKPxXZ1A1ysUE5t9cJIkNEstnq6oM -----END CERTIFICATE-----Generated at Tue Oct 21 06:43:55 2025 by rpki-client