$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/YPW2t73rQcqB1XfiPEXzuh9UAlQ.roa File: YPW2t73rQcqB1XfiPEXzuh9UAlQ.roa (raw, json) Hash identifier: IFd3v0RsNV78+VAp3oDKkC4JtoJ0E5k8ZM4wHAfk7Yg= Subject key identifier: 60:F5:B6:B7:BD:EB:41:CA:81:D5:77:E2:3C:45:F3:BA:1F:54:02:54 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: B4 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/YPW2t73rQcqB1XfiPEXzuh9UAlQ.roa Signing time: Wed 01 Oct 2025 01:31:11 +0000 ROA not before: Wed 01 Oct 2025 01:31:11 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 2514 IP address blocks: 128.53.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Oct 1 01:31:11 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=60F5B6B7BDEB41CA81D577E23C45F3BA1F540254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:21:4e:0c:4a:08:2b:64:d7:ec:a5:bb:40:b8: b9:0a:85:64:42:ef:8e:b7:61:1e:8f:d1:f1:fb:8b: 32:cc:dc:a7:6f:6e:ce:d0:87:db:93:af:58:67:60: 28:c0:20:c1:24:ff:df:a7:9a:56:bf:e5:94:fa:f8: 5b:6e:6f:ce:04:e3:7a:94:f6:49:a1:85:46:6b:cb: 14:a5:20:b2:54:1b:6d:94:e7:81:1e:93:da:5d:f7: b7:2c:92:11:5f:9e:91:1b:db:54:22:46:eb:31:ae: 96:36:ad:6a:7c:02:a0:1b:ea:4f:ab:a7:f4:c9:63: fd:66:36:42:56:83:de:9d:59:e7:9b:51:a4:3b:d4: 44:cf:d5:f9:1e:c8:c7:71:4b:99:7e:4b:4c:f0:9e: 60:f9:68:7e:39:ff:c0:db:2d:d2:90:e8:e7:48:43: 6b:7f:40:c8:3b:70:c3:df:64:f5:29:66:bf:7c:18: e3:4e:47:53:29:a0:92:11:57:19:e7:93:ee:2b:05: 1c:0e:28:c4:14:f3:31:d9:13:61:a8:2f:1f:19:71: 89:5e:8c:d6:54:0e:ab:1f:6e:18:8c:96:15:db:67: 83:8e:4e:82:c7:3d:bf:3b:c3:e4:c7:09:d2:f2:70: 18:d1:96:b1:18:13:e9:e2:fe:12:da:0e:31:c6:39: 8a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:F5:B6:B7:BD:EB:41:CA:81:D5:77:E2:3C:45:F3:BA:1F:54:02:54 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/YPW2t73rQcqB1XfiPEXzuh9UAlQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 128.53.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4f:db:0d:2e:77:5f:db:a5:45:29:a3:f8:4c:fb:b2:b6:31:0e: b6:f0:78:de:dc:15:d2:15:a8:23:65:7c:e3:23:60:1d:3c:5a: 03:0c:d2:30:16:57:01:a8:99:4f:91:b4:57:bf:fb:4d:40:2e: 11:6a:57:f2:67:f6:f8:a3:e0:a6:bd:e7:16:3d:02:6c:24:11: 89:d3:cd:e7:5e:82:13:9c:0e:cd:2e:64:49:16:ca:49:8b:97: 41:33:96:e6:a6:ac:ed:eb:05:c2:8d:e1:fc:b5:d4:8a:69:50: b1:e7:33:55:f4:f0:b3:41:74:0a:60:36:fb:c6:63:c4:b8:4d: c3:d5:43:b1:c1:59:6a:7a:4c:df:f8:93:81:de:2f:86:d1:c0: a4:af:9f:24:7b:80:a0:c7:7f:68:a0:6a:7d:a2:e7:04:57:5e: 40:b3:30:18:b5:d1:83:b2:82:21:4c:bf:d1:27:12:bf:1e:d4: 99:fc:5f:24:25:c0:f9:5f:55:b5:b3:79:1e:1e:07:a8:c8:15: 43:6d:59:3d:33:e7:6d:01:ab:40:79:28:47:15:c0:9e:56:6b: 18:d7:e4:77:14:ad:e9:c0:b8:7c:4a:61:f7:06:05:d7:8b:14: 00:b1:d8:15:ba:56:11:3a:4c:2d:ca:14:c4:73:54:0a:86:e6: 95:a9:fd:0d -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgICALQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNTEwMDEw MTMxMTFaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDYwRjVCNkI3QkRFQjQx Q0E4MUQ1NzdFMjNDNDVGM0JBMUY1NDAyNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5IU4MSggrZNfspbtAuLkKhWRC7463YR6P0fH7izLM3Kdvbs7Q h9uTr1hnYCjAIMEk/9+nmla/5ZT6+Ftub84E43qU9kmhhUZryxSlILJUG22U54Ee k9pd97cskhFfnpEb21QiRusxrpY2rWp8AqAb6k+rp/TJY/1mNkJWg96dWeebUaQ7 1ETP1fkeyMdxS5l+S0zwnmD5aH45/8DbLdKQ6OdIQ2t/QMg7cMPfZPUpZr98GONO R1MpoJIRVxnnk+4rBRwOKMQU8zHZE2GoLx8ZcYlejNZUDqsfbhiMlhXbZ4OOToLH Pb87w+THCdLycBjRlrEYE+ni/hLaDjHGOYqVAgMBAAGjggIhMIICHTAdBgNVHQ4E FgQUYPW2t73rQcqB1XfiPEXzuh9UAlQwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS9ZUFcydDczclFjcUIxWGZpUEVYenVoOVVBbFEucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAF AwMAgDUwDQYJKoZIhvcNAQELBQADggEBAE/bDS53X9ulRSmj+Ez7srYxDrbweN7c FdIVqCNlfOMjYB08WgMM0jAWVwGomU+RtFe/+01ALhFqV/Jn9vij4Ka95xY9Amwk EYnTzedeghOcDs0uZEkWykmLl0EzluamrO3rBcKN4fy11IppULHnM1X08LNBdApg NvvGY8S4TcPVQ7HBWWp6TN/4k4HeL4bRwKSvnyR7gKDHf2igan2i5wRXXkCzMBi1 0YOygiFMv9EnEr8e1Jn8XyQlwPlfVbWzeR4eB6jIFUNtWT0z520Bq0B5KEcVwJ5W axjX5HcUrenAuHxKYfcGBdeLFACx2BW6VhE6TC3KFMRzVAqG5pWp/Q0= -----END CERTIFICATE-----Generated at Tue Oct 21 08:04:30 2025 by rpki-client