$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/2XAOlbLAsR1VYOrpob2WYPFvmf4.roa File: 2XAOlbLAsR1VYOrpob2WYPFvmf4.roa (raw, json) Hash identifier: cfZcYxWs9apRFBWyMNKDwhhPx2MTn2jSrGZ67OPIWNU= Subject key identifier: D9:70:0E:95:B2:C0:B1:1D:55:60:EA:E9:A1:BD:96:60:F1:6F:99:FE Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0495 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/2XAOlbLAsR1VYOrpob2WYPFvmf4.roa Signing time: Wed 01 Oct 2025 01:40:05 +0000 ROA not before: Wed 01 Oct 2025 01:40:05 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 10013 IP address blocks: 220.150.66.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 12:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1173 (0x495) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Oct 1 01:40:05 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=D9700E95B2C0B11D5560EAE9A1BD9660F16F99FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e2:9a:00:18:6c:57:02:2f:3a:91:51:63:c6: 13:0e:31:b7:41:6f:16:6e:ef:24:31:d8:8b:4b:3e: 40:a6:d7:cd:b2:be:30:81:1b:70:a0:b4:e2:3a:3f: 1e:17:57:40:92:69:8c:d8:d1:84:44:79:b6:04:43: 97:37:f5:11:c1:a0:cc:b0:f8:8d:86:0a:c1:1c:67: 21:d3:18:2f:8e:da:78:7c:2a:19:24:b4:d6:1b:60: ef:34:ea:79:25:e5:09:80:de:98:18:2d:1e:13:55: 88:22:8f:86:cf:87:56:94:ce:c5:d7:4e:3d:b1:9a: 8c:ff:e0:c9:ab:50:b7:11:2d:6b:dc:5f:7b:2c:90: e1:06:6d:5a:80:d9:d7:f5:a9:56:69:04:63:7d:e5: e7:59:d5:1a:7d:c6:42:b0:2b:b5:83:d9:f6:ca:9e: 10:7e:44:ec:ea:e1:fa:7e:2f:9d:f0:71:6d:be:be: 4d:35:15:3d:b2:18:2e:46:28:e3:b7:a7:97:d9:7b: c6:0b:d2:38:ab:51:45:8a:58:1c:d7:c9:22:e7:54: 91:dd:8b:74:07:db:cb:2a:a2:bd:9d:1c:2c:ab:1e: 52:9b:5d:3b:77:0b:69:c9:9a:2a:ee:df:6d:90:d3: b1:1d:4f:f0:fa:bf:1c:07:48:15:ed:76:47:d8:3b: 4d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:70:0E:95:B2:C0:B1:1D:55:60:EA:E9:A1:BD:96:60:F1:6F:99:FE X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/2XAOlbLAsR1VYOrpob2WYPFvmf4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.150.66.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:2b:af:aa:b5:16:88:30:9e:94:45:9b:8b:00:b6:48:e9:f7: 28:85:a7:16:7b:f7:ba:b1:09:b1:fe:b3:18:fe:1f:e8:38:d8: 60:6b:4e:e1:4a:c7:f6:35:75:2b:69:3a:0f:23:9c:e9:6a:51: 50:33:69:26:5d:6f:89:8e:0d:0f:54:43:fa:ae:94:77:31:ae: 41:b0:bb:6d:a4:86:e3:2f:f8:9c:af:b0:81:b0:c0:97:24:8d: ac:11:cc:78:8e:2f:cd:63:73:af:a1:f1:fc:37:5b:92:5e:13: 7c:5f:95:ac:15:6d:81:34:c1:1d:47:76:2b:f4:7f:28:2f:e6: a2:3f:bd:ee:bc:c7:9f:e1:cd:f0:4b:87:b2:22:2b:fe:02:0a: 46:75:24:8f:35:f2:70:71:42:4d:23:42:d9:6f:89:6c:b9:f7: ac:11:4f:63:2c:00:ed:77:fb:21:b6:d4:9a:8d:7c:13:de:52: c9:77:ae:b9:ff:34:b5:d9:84:c8:2b:65:0b:96:be:73:cf:da: e1:92:96:95:62:90:e0:73:fe:c8:52:c5:c0:4c:fc:e1:4b:e8: 09:4d:e5:f4:26:56:d0:f9:da:d7:4e:ef:2f:e4:88:37:42:21: a4:41:8b:19:35:68:57:24:1a:9c:c3:57:1e:ef:4d:86:19:10: f0:7d:1f:ad -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBJUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTEwMDEw MTQwMDVaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEQ5NzAwRTk1QjJDMEIx MUQ1NTYwRUFFOUExQkQ5NjYwRjE2Rjk5RkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDa4poAGGxXAi86kVFjxhMOMbdBbxZu7yQx2ItLPkCm182yvjCB G3CgtOI6Px4XV0CSaYzY0YREebYEQ5c39RHBoMyw+I2GCsEcZyHTGC+O2nh8Khkk tNYbYO806nkl5QmA3pgYLR4TVYgij4bPh1aUzsXXTj2xmoz/4MmrULcRLWvcX3ss kOEGbVqA2df1qVZpBGN95edZ1Rp9xkKwK7WD2fbKnhB+ROzq4fp+L53wcW2+vk01 FT2yGC5GKOO3p5fZe8YL0jirUUWKWBzXySLnVJHdi3QH28sqor2dHCyrHlKbXTt3 C2nJmiru322Q07EdT/D6vxwHSBXtdkfYO033AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU2XAOlbLAsR1VYOrpob2WYPFvmf4wHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0LzJYQU9sYkxBc1IxVllPcnBvYjJXWVBGdm1mNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHclkIwDQYJKoZIhvcNAQELBQADggEBAG4rr6q1FogwnpRFm4sAtkjp9yiF pxZ797qxCbH+sxj+H+g42GBrTuFKx/Y1dStpOg8jnOlqUVAzaSZdb4mODQ9UQ/qu lHcxrkGwu22khuMv+JyvsIGwwJckjawRzHiOL81jc6+h8fw3W5JeE3xflawVbYE0 wR1Hdiv0fygv5qI/ve68x5/hzfBLh7IiK/4CCkZ1JI818nBxQk0jQtlviWy596wR T2MsAO13+yG21JqNfBPeUsl3rrn/NLXZhMgrZQuWvnPP2uGSlpVikOBz/shSxcBM /OFL6AlN5fQmVtD52tdO7y/kiDdCIaRBixk1aFckGpzDVx7vTYYZEPB9H60= -----END CERTIFICATE-----Generated at Mon Oct 20 14:37:59 2025 by rpki-client