$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30175/nufsSH2JBiHyBtP2pk8sFt2KfdU.roa File: nufsSH2JBiHyBtP2pk8sFt2KfdU.roa (raw, json) Hash identifier: Gl3NsjSbbw80Ln/4CatqdRh5GB5X+Rxu23U/v3gPz3o= Subject key identifier: 9E:E7:EC:48:7D:89:06:21:F2:06:D3:F6:A6:4F:2C:16:DD:8A:7D:D5 Certificate issuer: /CN=DFBCD3F8BCA91915C4533A2C0A69C3D35B2E688D Certificate serial: 45 Authority key identifier: DF:BC:D3:F8:BC:A9:19:15:C4:53:3A:2C:0A:69:C3:D3:5B:2E:68:8D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/nufsSH2JBiHyBtP2pk8sFt2KfdU.roa Signing time: Wed 01 Oct 2025 01:35:17 +0000 ROA not before: Wed 01 Oct 2025 01:35:17 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 37899 IP address blocks: 240b:250::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 08:16:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFBCD3F8BCA91915C4533A2C0A69C3D35B2E688D Validity Not Before: Oct 1 01:35:17 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=9EE7EC487D890621F206D3F6A64F2C16DD8A7DD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:05:89:7b:4a:58:2e:d8:50:ef:26:10:e0:65: 72:fa:e9:2a:ad:9d:e7:8d:35:cc:09:09:d7:a1:74: 6f:29:ce:33:be:74:d4:b4:29:18:01:71:e4:f8:ed: ae:32:aa:4e:2d:5b:81:22:b9:9a:0b:4b:a2:df:3e: 67:22:38:da:d3:ee:81:1c:f6:0b:f8:b7:7f:07:f8: 2d:20:57:bd:d3:66:cb:73:ca:01:c0:43:66:1e:87: 0f:7b:68:59:ae:8b:56:d1:ca:a6:4b:13:c4:34:25: 8f:ca:1a:b6:5d:e0:bc:77:71:ab:c9:53:c5:9f:d1: 86:43:3c:c1:30:ac:d8:17:0c:77:32:0e:a8:0a:7d: 24:47:2f:a0:cf:f4:ef:27:16:c2:36:a8:33:90:d8: 52:aa:48:f1:1f:fd:18:17:d2:63:52:41:57:6e:f5: c9:86:f5:aa:ce:d8:77:f4:cb:e3:a9:24:7e:6f:c6: 60:4d:5b:79:b9:cd:f8:6c:73:26:1e:51:34:ea:b1: d6:8c:a7:9e:c8:5f:9b:b3:fb:7f:e7:92:9f:2b:78: 87:00:68:41:d8:5b:5b:78:3a:74:b9:c0:30:14:eb: f3:7e:7d:f9:79:10:f3:c2:d0:95:52:03:48:f1:6e: 6d:c7:6e:29:69:ca:93:65:c0:86:11:a5:9c:1b:72: b9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:E7:EC:48:7D:89:06:21:F2:06:D3:F6:A6:4F:2C:16:DD:8A:7D:D5 X509v3 Authority Key Identifier: keyid:DF:BC:D3:F8:BC:A9:19:15:C4:53:3A:2C:0A:69:C3:D3:5B:2E:68:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/nufsSH2JBiHyBtP2pk8sFt2KfdU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240b:250::/32 Signature Algorithm: sha256WithRSAEncryption 62:a4:a5:9a:2d:b1:14:56:0d:8c:f8:d4:bd:e3:9c:eb:d2:22: 7a:8b:f5:21:1a:a0:80:c6:b7:5e:fe:81:80:3a:ae:d2:c6:51: a2:d1:9a:86:15:a7:cc:28:fb:a0:43:78:e3:e9:83:f3:79:a3: 55:b1:32:ec:66:6e:99:35:e3:c3:6e:24:d9:f7:82:bb:84:c7: 68:e4:d6:d5:2d:39:a8:61:7c:1c:58:c6:23:71:59:dd:b2:0d: 82:24:3c:5c:2e:38:a8:33:d9:0a:f5:59:56:f5:33:ed:e1:5b: 27:02:eb:86:b4:93:20:80:05:39:c0:f5:20:10:89:45:9e:2b: 3f:3c:19:2e:15:78:d0:3c:f9:73:94:09:78:fb:93:5e:9c:b2: a7:5c:57:c7:73:b8:b1:98:46:77:5e:4c:7f:4d:fa:8c:3b:26: 7c:18:10:1d:2f:95:6a:f1:fe:ef:12:5b:52:67:1f:8e:5b:e5: 24:fd:d7:6e:1d:0f:7a:f0:34:de:8e:f3:0c:9d:79:b2:49:0d: 5b:9d:9b:38:2b:0d:c6:16:60:a4:98:ed:33:ac:51:e0:87:75: 45:e1:bd:be:f4:6c:4d:a0:87:e8:d6:be:eb:c3:3b:d2:4d:1e: 8e:87:0f:72:05:1a:ed:92:71:57:38:a6:c9:5a:10:db:7e:7e: de:5e:ab:03 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBRTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhERkJD RDNGOEJDQTkxOTE1QzQ1MzNBMkMwQTY5QzNEMzVCMkU2ODhEMB4XDTI1MTAwMTAx MzUxN1oXDTI2MDkxNTAxMzAwMlowMzExMC8GA1UEAxMoOUVFN0VDNDg3RDg5MDYy MUYyMDZEM0Y2QTY0RjJDMTZERDhBN0RENTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMgFiXtKWC7YUO8mEOBlcvrpKq2d5401zAkJ16F0bynOM7501LQp GAFx5PjtrjKqTi1bgSK5mgtLot8+ZyI42tPugRz2C/i3fwf4LSBXvdNmy3PKAcBD Zh6HD3toWa6LVtHKpksTxDQlj8oatl3gvHdxq8lTxZ/RhkM8wTCs2BcMdzIOqAp9 JEcvoM/07ycWwjaoM5DYUqpI8R/9GBfSY1JBV271yYb1qs7Yd/TL46kkfm/GYE1b ebnN+GxzJh5RNOqx1oynnshfm7P7f+eSnyt4hwBoQdhbW3g6dLnAMBTr8359+XkQ 88LQlVIDSPFubcduKWnKk2XAhhGlnBtyudMCAwEAAaOCAikwggIlMB0GA1UdDgQW BBSe5+xIfYkGIfIG0/amTywW3Yp91TAfBgNVHSMEGDAWgBTfvNP4vKkZFcRTOiwK acPTWy5ojTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAxNzUvMzd6VC1MeXBHUlhFVXpvc0NtbkQwMXN1YUkwLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMzd6VC1MeXBHUlhFVXpvc0NtbkQw MXN1YUkwLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMTc1L251ZnNTSDJKQmlIeUJ0UDJwazhzRnQyS2ZkVS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkCwJQMA0GCSqGSIb3DQEBCwUAA4IBAQBipKWaLbEUVg2M+NS945zr 0iJ6i/UhGqCAxrde/oGAOq7SxlGi0ZqGFafMKPugQ3jj6YPzeaNVsTLsZm6ZNePD biTZ94K7hMdo5NbVLTmoYXwcWMYjcVndsg2CJDxcLjioM9kK9VlW9TPt4VsnAuuG tJMggAU5wPUgEIlFnis/PBkuFXjQPPlzlAl4+5NenLKnXFfHc7ixmEZ3Xkx/TfqM OyZ8GBAdL5Vq8f7vEltSZx+OW+Uk/dduHQ968DTejvMMnXmySQ1bnZs4Kw3GFmCk mO0zrFHgh3VF4b2+9GxNoIfo1r7rwzvSTR6Ohw9yBRrtknFXOKbJWhDbfn7eXqsD -----END CERTIFICATE-----Generated at Tue Oct 21 10:23:45 2025 by rpki-client