$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2166/tpcntOr9yTwEWqxxqlsgQzmpgBw.roa File: tpcntOr9yTwEWqxxqlsgQzmpgBw.roa (raw, json) Hash identifier: XX3v11bNcsH3IVG/tm3gGnScJGS7imwHy2v728ZFENo= Subject key identifier: B6:97:27:B4:EA:FD:C9:3C:04:5A:AC:71:AA:5B:20:43:39:A9:80:1C Certificate issuer: /CN=36DA30F686577D6576F647B295455535835130C3 Certificate serial: 21 Authority key identifier: 36:DA:30:F6:86:57:7D:65:76:F6:47:B2:95:45:55:35:83:51:30:C3 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/tpcntOr9yTwEWqxxqlsgQzmpgBw.roa Signing time: Fri 12 Sep 2025 07:31:35 +0000 ROA not before: Fri 12 Sep 2025 07:31:35 +0000 ROA not after: Sat 15 Aug 2026 01:30:02 +0000 asID: 2907 IP address blocks: 192.153.104.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36DA30F686577D6576F647B295455535835130C3 Validity Not Before: Sep 12 07:31:35 2025 GMT Not After : Aug 15 01:30:02 2026 GMT Subject: CN=B69727B4EAFDC93C045AAC71AA5B204339A9801C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d9:d6:6d:14:5f:fc:09:a2:0e:c5:9b:62:20: 00:72:db:af:dd:5f:28:06:90:1f:20:05:18:84:df: 84:54:69:9a:c5:f2:9e:58:16:ab:f0:43:0f:e7:7c: 0f:ca:7f:1d:27:3c:e0:e1:40:11:27:cb:24:98:10: 04:08:5c:01:7a:0b:a5:62:77:45:e6:40:41:53:cf: b4:b9:d5:72:53:24:af:53:d8:3e:67:39:26:3a:91: 71:ea:7a:4e:91:5d:85:a2:bf:36:5e:b2:4b:6f:3c: 22:00:9d:b6:45:1b:9f:ee:3c:2d:34:eb:8d:21:2c: 2f:c8:06:9b:1b:d8:6a:db:18:37:f9:b7:fc:e3:30: fd:86:b6:d1:d1:a9:d0:32:99:44:fb:7a:47:b6:f2: b9:63:5c:96:f8:de:61:3b:00:86:b2:ee:a7:be:0b: 44:b2:9f:7b:dd:b5:88:6d:07:d9:c3:12:3c:08:29: f5:73:15:b5:f4:17:e7:c5:a6:ae:f3:9e:50:23:86: e0:c7:d0:e1:59:6a:23:a6:89:00:38:0b:40:cb:f1: 61:fe:e7:01:af:00:6e:e6:82:1e:0e:6d:36:ce:39: c5:88:58:87:dc:b5:0a:d0:96:56:7b:6d:3b:29:a1: c6:2e:1e:a1:cb:13:95:c5:5a:a4:64:a6:c7:ae:ff: 6c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:97:27:B4:EA:FD:C9:3C:04:5A:AC:71:AA:5B:20:43:39:A9:80:1C X509v3 Authority Key Identifier: keyid:36:DA:30:F6:86:57:7D:65:76:F6:47:B2:95:45:55:35:83:51:30:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/tpcntOr9yTwEWqxxqlsgQzmpgBw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.153.104.0/24 Signature Algorithm: sha256WithRSAEncryption b7:6b:fe:f6:e4:b6:40:6e:8e:24:6c:d2:64:f3:13:3b:f0:f9: 4a:7f:c9:ef:00:37:d8:03:9b:57:37:b6:47:d2:f4:5f:50:47: 85:a0:e8:94:b0:45:ce:2c:a5:e3:53:8f:c5:a2:63:0d:20:be: d9:ce:a4:b5:b8:64:04:a7:45:91:fa:ba:b3:7f:5d:51:ae:4b: 9c:51:9b:52:3f:67:28:60:14:8e:55:fd:76:19:03:a1:a3:85: 6f:f2:3d:6d:c6:d3:dd:16:a7:85:67:59:62:7f:ae:53:00:b4: b6:04:83:20:cb:21:62:32:bb:18:98:5b:69:4e:46:1f:d1:1c: 1c:37:f7:26:c0:d3:90:2b:b1:0a:87:57:06:91:60:1e:d4:f6: c1:dd:4c:51:2a:51:61:a5:79:71:fd:08:be:2f:cc:5a:82:68: 91:8d:12:8e:e9:33:e1:88:5c:25:83:d1:a3:1c:40:48:b9:a2: 60:59:93:4d:f3:34:07:45:73:ba:4f:a2:28:01:14:f5:75:6a: 36:75:14:34:cc:83:a2:fc:24:12:f5:24:b6:75:f3:55:1e:72: 6c:bb:04:5c:48:32:c5:43:10:02:6f:cf:21:06:6e:0d:11:ec: 60:51:07:3f:96:90:3d:28:d3:f9:6f:60:f6:b7:81:a4:7f:74: 7b:fe:cf:a9 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNkRB MzBGNjg2NTc3RDY1NzZGNjQ3QjI5NTQ1NTUzNTgzNTEzMEMzMB4XDTI1MDkxMjA3 MzEzNVoXDTI2MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoQjY5NzI3QjRFQUZEQzkz QzA0NUFBQzcxQUE1QjIwNDMzOUE5ODAxQzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMXZ1m0UX/wJog7Fm2IgAHLbr91fKAaQHyAFGITfhFRpmsXynlgW q/BDD+d8D8p/HSc84OFAESfLJJgQBAhcAXoLpWJ3ReZAQVPPtLnVclMkr1PYPmc5 JjqRcep6TpFdhaK/Nl6yS288IgCdtkUbn+48LTTrjSEsL8gGmxvYatsYN/m3/OMw /Ya20dGp0DKZRPt6R7byuWNclvjeYTsAhrLup74LRLKfe921iG0H2cMSPAgp9XMV tfQX58WmrvOeUCOG4MfQ4VlqI6aJADgLQMvxYf7nAa8AbuaCHg5tNs45xYhYh9y1 CtCWVnttOymhxi4eocsTlcVapGSmx67/bNUCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBS2lye06v3JPARarHGqWyBDOamAHDAfBgNVHSMEGDAWgBQ22jD2hld9ZXb2R7KV RVU1g1EwwzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjE2Ni9OdG93OW9aWGZXVjI5a2V5bFVWVk5ZTlJNTU0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9OdG93OW9aWGZXVjI5a2V5bFVWVk5Z TlJNTU0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjE2Ni90cGNudE9yOXlUd0VXcXh4cWxzZ1F6bXBnQncucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAwJloMA0GCSqGSIb3DQEBCwUAA4IBAQC3a/725LZAbo4kbNJk8xM78PlK f8nvADfYA5tXN7ZH0vRfUEeFoOiUsEXOLKXjU4/FomMNIL7ZzqS1uGQEp0WR+rqz f11RrkucUZtSP2coYBSOVf12GQOho4Vv8j1txtPdFqeFZ1lif65TALS2BIMgyyFi MrsYmFtpTkYf0RwcN/cmwNOQK7EKh1cGkWAe1PbB3UxRKlFhpXlx/Qi+L8xagmiR jRKO6TPhiFwlg9GjHEBIuaJgWZNN8zQHRXO6T6IoART1dWo2dRQ0zIOi/CQS9SS2 dfNVHnJsuwRcSDLFQxACb88hBm4NEexgUQc/lpA9KNP5b2D2t4Gkf3R7/s+p -----END CERTIFICATE-----Generated at Tue Oct 21 06:43:56 2025 by rpki-client