$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/jhRwabQOnJdNHuXoFYby-dqD5zE.roa File: jhRwabQOnJdNHuXoFYby-dqD5zE.roa (raw, json) Hash identifier: Zr8Z/gDRd8fK80YxAvoDBb6D4uVwLH9MpRKA4pve3gI= Subject key identifier: 8E:14:70:69:B4:0E:9C:97:4D:1E:E5:E8:15:86:F2:F9:DA:83:E7:31 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: B3 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/jhRwabQOnJdNHuXoFYby-dqD5zE.roa Signing time: Wed 01 Oct 2025 01:31:10 +0000 ROA not before: Wed 01 Oct 2025 01:31:10 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 2514 IP address blocks: 128.28.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Oct 1 01:31:10 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=8E147069B40E9C974D1EE5E81586F2F9DA83E731 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:43:95:dd:7f:e9:14:6b:c2:b7:ec:6f:1f:10: 08:82:f5:76:72:cf:79:c8:6a:93:32:50:cd:a7:9e: 64:0b:66:2b:14:e9:dc:5e:dc:f4:ff:00:1b:45:cf: 1c:56:b0:b4:d6:34:6d:51:05:78:ea:8a:e0:48:72: 08:e4:63:c4:8d:ec:c7:23:11:fd:1a:1a:e8:82:01: c3:92:e4:69:f9:ef:c5:e0:18:40:9c:f6:b1:7f:79: ef:6c:b9:c0:b6:9c:7b:fe:8c:d3:d6:1e:59:62:53: 7e:48:3d:16:84:31:64:dd:90:5d:09:9f:88:90:06: 24:53:58:6a:e1:c4:31:4d:56:b4:73:6b:fb:25:56: ac:bb:8a:90:05:15:eb:c9:29:5d:bc:e8:df:7e:54: b4:ba:da:70:d3:f6:97:f0:4b:f6:f0:28:b8:35:9d: ee:e5:ab:da:30:86:89:78:34:f1:3a:8b:d8:e8:7c: 3b:3c:90:30:59:cd:b6:5a:93:7e:73:83:00:98:b8: 2c:53:21:9d:bd:f2:35:87:7c:de:0c:3f:6e:cc:dd: d7:a7:7b:b1:c7:60:17:f2:71:ae:ad:07:a3:60:0a: 97:f2:39:0c:3b:84:dc:97:19:46:d9:38:91:61:f6: 8d:c7:b9:df:8b:ec:29:b0:61:86:7b:46:52:b7:10: 83:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:14:70:69:B4:0E:9C:97:4D:1E:E5:E8:15:86:F2:F9:DA:83:E7:31 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/jhRwabQOnJdNHuXoFYby-dqD5zE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 128.28.0.0/16 Signature Algorithm: sha256WithRSAEncryption 42:75:03:52:3a:84:17:44:c5:40:4b:24:6c:8c:48:5b:b8:21: 69:1b:aa:ab:95:4f:2e:79:5a:f7:e6:d8:84:df:2b:46:74:e6: cf:a5:14:93:47:dc:8e:1c:10:07:bd:06:05:e5:93:0f:88:fe: da:ac:71:45:e5:8d:48:26:e0:83:e0:72:3a:07:62:c0:65:9d: 66:eb:20:8b:49:9e:28:e1:3d:53:34:a8:83:97:d6:78:1a:0d: d1:4e:22:85:30:d6:ad:d1:6f:f8:64:da:db:dc:56:2b:f4:26: d6:03:a2:bc:19:59:3e:e7:42:fd:54:fe:76:db:d5:a3:39:ba: 77:3a:1d:c4:a3:97:ea:5c:c3:43:21:c4:c3:88:2d:37:ca:9a: 63:72:32:5d:cd:1d:f5:64:7f:e5:5e:84:cb:f0:69:3c:a0:9a: 0a:90:d3:e3:df:41:c4:b3:6d:d7:2f:f4:e2:d7:66:21:49:d8: 17:c8:2d:d3:60:54:a6:11:67:f7:8a:cc:f1:12:36:aa:92:13: 53:45:f4:4e:e5:8b:73:f7:5f:da:13:70:1a:91:3b:5a:54:cc: 06:a3:c9:f1:c9:b4:e3:5e:55:a9:7f:78:4d:2a:80:87:04:27: 39:0b:c9:eb:25:ca:e1:24:44:6e:c8:c3:a2:8b:38:63:ef:5c: aa:19:c8:34 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgICALMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNTEwMDEw MTMxMTBaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDhFMTQ3MDY5QjQwRTlD OTc0RDFFRTVFODE1ODZGMkY5REE4M0U3MzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfQ5Xdf+kUa8K37G8fEAiC9XZyz3nIapMyUM2nnmQLZisU6dxe 3PT/ABtFzxxWsLTWNG1RBXjqiuBIcgjkY8SN7McjEf0aGuiCAcOS5Gn578XgGECc 9rF/ee9sucC2nHv+jNPWHlliU35IPRaEMWTdkF0Jn4iQBiRTWGrhxDFNVrRza/sl Vqy7ipAFFevJKV286N9+VLS62nDT9pfwS/bwKLg1ne7lq9owhol4NPE6i9jofDs8 kDBZzbZak35zgwCYuCxTIZ298jWHfN4MP27M3dene7HHYBfyca6tB6NgCpfyOQw7 hNyXGUbZOJFh9o3Hud+L7CmwYYZ7RlK3EIP7AgMBAAGjggIhMIICHTAdBgNVHQ4E FgQUjhRwabQOnJdNHuXoFYby+dqD5zEwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS9qaFJ3YWJRT25KZE5IdVhvRllieS1kcUQ1ekUucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAF AwMAgBwwDQYJKoZIhvcNAQELBQADggEBAEJ1A1I6hBdExUBLJGyMSFu4IWkbqquV Ty55Wvfm2ITfK0Z05s+lFJNH3I4cEAe9BgXlkw+I/tqscUXljUgm4IPgcjoHYsBl nWbrIItJnijhPVM0qIOX1ngaDdFOIoUw1q3Rb/hk2tvcViv0JtYDorwZWT7nQv1U /nbb1aM5unc6HcSjl+pcw0MhxMOILTfKmmNyMl3NHfVkf+VehMvwaTygmgqQ0+Pf QcSzbdcv9OLXZiFJ2BfILdNgVKYRZ/eKzPESNqqSE1NF9E7li3P3X9oTcBqRO1pU zAajyfHJtONeVal/eE0qgIcEJzkLyeslyuEkRG7Iw6KLOGPvXKoZyDQ= -----END CERTIFICATE-----Generated at Tue Oct 21 08:04:29 2025 by rpki-client