$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/8i5CyTAQzP2DA0NrdAeTKXK3PQA.roa File: 8i5CyTAQzP2DA0NrdAeTKXK3PQA.roa (raw, json) Hash identifier: 25gv6tMoIsaaws7CAZHCULJ6mkcNW0vMUy8N8/VIxQw= Subject key identifier: F2:2E:42:C9:30:10:CC:FD:83:03:43:6B:74:07:93:29:72:B7:3D:00 Certificate issuer: /CN=06FA662194FCF1EB983AB44CC913004180770D18 Certificate serial: 8F Authority key identifier: 06:FA:66:21:94:FC:F1:EB:98:3A:B4:4C:C9:13:00:41:80:77:0D:18 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/8i5CyTAQzP2DA0NrdAeTKXK3PQA.roa Signing time: Wed 01 Oct 2025 01:31:11 +0000 ROA not before: Wed 01 Oct 2025 01:31:11 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 2514 IP address blocks: 133.130.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 21:29:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06FA662194FCF1EB983AB44CC913004180770D18 Validity Not Before: Oct 1 01:31:11 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=F22E42C93010CCFD8303436B7407932972B73D00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:98:ae:86:b7:79:79:91:c6:cb:3b:73:b9:a9: 74:62:d5:0d:2b:16:03:38:39:e6:ec:27:95:a9:c1: ec:ad:d4:14:04:c7:02:7f:3b:09:72:3e:90:53:c7: f0:3f:1c:81:03:b1:29:25:d2:75:b0:cb:82:c4:66: ab:34:81:48:4e:51:ea:f8:80:00:44:b8:96:30:16: 55:2d:06:c8:98:13:86:fd:c5:b7:bf:8a:fe:b7:ab: 80:b0:62:1a:45:53:8c:3d:1a:03:a0:5a:38:47:0c: 38:3b:bb:bf:9d:d1:b7:04:fc:ea:bc:43:c5:69:30: 1e:90:78:e9:e8:bc:15:c8:06:76:e2:05:a9:64:a2: dc:57:74:28:40:a7:3b:2b:81:05:d1:f4:ae:f5:da: 9e:62:a3:47:1c:9b:4d:ec:25:b5:e7:35:56:4a:48: 61:51:9b:77:5e:d5:5a:2d:46:8f:8d:90:b9:92:5d: 4b:f0:08:9a:1c:68:e8:66:64:9d:29:f1:ea:cd:e4: 37:28:76:2f:f2:f5:b6:66:84:20:67:fa:b5:b2:53: 85:8d:a4:85:b8:a1:5c:dd:07:13:24:0b:16:c0:40: 7e:78:69:eb:13:a1:8e:4b:80:06:48:c0:36:6d:06: 3a:c4:d2:2f:b6:01:35:87:31:04:3c:cf:f9:e4:57: 9c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:2E:42:C9:30:10:CC:FD:83:03:43:6B:74:07:93:29:72:B7:3D:00 X509v3 Authority Key Identifier: keyid:06:FA:66:21:94:FC:F1:EB:98:3A:B4:4C:C9:13:00:41:80:77:0D:18 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/8i5CyTAQzP2DA0NrdAeTKXK3PQA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.130.128.0/17 Signature Algorithm: sha256WithRSAEncryption 32:bb:3a:1d:c0:55:bb:b2:b6:a4:6e:58:48:0f:b9:5f:fd:62: f5:92:90:7a:94:82:95:2a:93:df:a9:d0:6f:50:3d:6c:96:13: 65:78:24:12:e8:fb:e0:35:d0:b6:a6:e7:b7:5e:23:cd:b2:2f: 3d:6c:29:d5:18:5b:08:14:18:80:10:f8:a1:b9:f8:7f:85:59: e6:0f:a1:01:30:ae:55:db:dd:9f:a5:d5:e3:e5:96:2c:80:eb: f3:a5:e2:79:2c:e7:cd:6d:b0:66:01:d3:1d:44:8f:3c:a8:9f: c0:24:f5:6f:88:51:67:ee:d7:c3:7b:b4:9f:23:9f:2a:fa:85: a1:ae:a7:37:0d:59:e5:85:16:83:a1:87:17:12:d7:f9:ec:82: 4c:70:44:e5:57:dc:d6:5e:0b:c9:dc:ac:5d:4c:e8:34:6b:38: 26:98:82:f6:5b:31:0e:60:34:80:17:c8:bf:df:ef:69:e3:b0: 50:f9:91:75:51:15:e7:d8:ed:38:76:8e:a0:63:c0:6d:08:5c: 6d:f8:ec:8f:8b:61:4c:66:13:56:41:9f:7d:6d:7d:08:9b:2a: 40:f1:9b:d2:1b:98:3f:e3:e7:c0:78:4b:45:da:fb:ec:1a:37: 7b:1b:e3:5f:88:63:a8:8e:20:6c:09:49:3a:2d:03:20:8b:e4: 45:e1:fa:c7 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDZG QTY2MjE5NEZDRjFFQjk4M0FCNDRDQzkxMzAwNDE4MDc3MEQxODAeFw0yNTEwMDEw MTMxMTFaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEYyMkU0MkM5MzAxMEND RkQ4MzAzNDM2Qjc0MDc5MzI5NzJCNzNEMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5mK6Gt3l5kcbLO3O5qXRi1Q0rFgM4OebsJ5Wpweyt1BQExwJ/ OwlyPpBTx/A/HIEDsSkl0nWwy4LEZqs0gUhOUer4gABEuJYwFlUtBsiYE4b9xbe/ iv63q4CwYhpFU4w9GgOgWjhHDDg7u7+d0bcE/Oq8Q8VpMB6QeOnovBXIBnbiBalk otxXdChApzsrgQXR9K712p5io0ccm03sJbXnNVZKSGFRm3de1VotRo+NkLmSXUvw CJocaOhmZJ0p8erN5Dcodi/y9bZmhCBn+rWyU4WNpIW4oVzdBxMkCxbAQH54aesT oY5LgAZIwDZtBjrE0i+2ATWHMQQ8z/nkV5yHAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQU8i5CyTAQzP2DA0NrdAeTKXK3PQAwHwYDVR0jBBgwFoAUBvpmIZT88euYOrRM yRMAQYB3DRgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5L0J2cG1JWlQ4OGV1WU9yUk15Uk1BUVlCM0RSZy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0J2cG1JWlQ4OGV1WU9yUk15Uk1BUVlC M0RSZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS84aTVDeVRBUXpQMkRBME5yZEFlVEtYSzNQUUEucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQHhYKAMA0GCSqGSIb3DQEBCwUAA4IBAQAyuzodwFW7srakblhID7lf/WL1kpB6 lIKVKpPfqdBvUD1slhNleCQS6PvgNdC2pue3XiPNsi89bCnVGFsIFBiAEPihufh/ hVnmD6EBMK5V292fpdXj5ZYsgOvzpeJ5LOfNbbBmAdMdRI88qJ/AJPVviFFn7tfD e7SfI58q+oWhrqc3DVnlhRaDoYcXEtf57IJMcETlV9zWXgvJ3KxdTOg0azgmmIL2 WzEOYDSAF8i/3+9p47BQ+ZF1URXn2O04do6gY8BtCFxt+OyPi2FMZhNWQZ99bX0I mypA8ZvSG5g/4+fAeEtF2vvsGjd7G+NfiGOojiBsCUk6LQMgi+RF4frH -----END CERTIFICATE-----Generated at Mon Oct 20 23:26:35 2025 by rpki-client