$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/hgiWIwOrBu5S_yCTVm7mDzFJ2C8.roa File: hgiWIwOrBu5S_yCTVm7mDzFJ2C8.roa (raw, json) Hash identifier: 7854OOk2Q9HfmKle/IXx/1Ndl9SEenusAd3onBYMoPo= Subject key identifier: 86:08:96:23:03:AB:06:EE:52:FF:20:93:56:6E:E6:0F:31:49:D8:2F Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0493 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/hgiWIwOrBu5S_yCTVm7mDzFJ2C8.roa Signing time: Wed 01 Oct 2025 01:40:04 +0000 ROA not before: Wed 01 Oct 2025 01:40:04 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 10013 IP address blocks: 220.150.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 09:38:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1171 (0x493) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Oct 1 01:40:04 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=8608962303AB06EE52FF2093566EE60F3149D82F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:14:58:51:9d:31:0d:5f:d4:d6:ff:64:cf:b8: f4:7a:78:aa:d1:f0:fa:c9:c0:75:8b:2b:37:82:11: 67:e5:d6:35:e2:26:ed:bf:9f:ef:ce:87:ff:48:d5: 3b:26:d5:6f:db:0b:43:39:26:81:7d:4c:26:2a:d3: 8f:35:09:78:b5:a2:6c:f2:64:4c:42:b8:91:6f:f8: b5:b5:e2:66:c9:ea:06:6f:31:3d:be:2d:d4:a7:4e: 7d:ab:fb:21:f5:af:4b:6f:16:b0:f9:a6:7b:e3:3f: be:7d:0d:01:c0:20:3c:18:45:71:f0:be:c7:55:7a: 64:28:51:14:75:6b:d7:cf:7a:58:73:64:2d:32:d8: f6:8c:9b:fb:8e:82:a5:ef:df:d2:c4:b7:28:25:96: 7f:fb:fd:98:ef:14:5c:bd:88:50:80:04:6c:aa:42: bc:bc:17:83:b0:5a:e1:a0:49:16:56:33:b8:b4:44: 11:5d:6c:01:42:b4:3a:3e:b7:a4:fa:c0:30:f6:54: 64:c1:5a:8f:bb:72:dc:83:bf:38:e7:2a:14:ee:37: 8f:2b:70:87:a5:2f:65:94:ae:b0:af:95:8d:09:35: 0e:c2:7b:07:bb:b5:bb:fb:81:2a:79:06:c0:fc:d7: f5:3b:c7:bd:42:99:ba:ef:46:31:35:db:01:bc:89: 2f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:08:96:23:03:AB:06:EE:52:FF:20:93:56:6E:E6:0F:31:49:D8:2F X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/hgiWIwOrBu5S_yCTVm7mDzFJ2C8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.150.20.0/22 Signature Algorithm: sha256WithRSAEncryption 49:8d:52:83:d8:ab:95:82:83:5d:e4:d9:47:22:40:90:5e:35: 6a:44:38:88:60:78:5a:30:8e:a1:6c:8d:95:fa:d3:9b:1f:0a: 69:cf:c1:27:8d:f8:66:83:cd:f7:0c:71:d3:10:a2:9e:86:aa: 4a:5a:aa:3f:70:41:95:53:e9:82:27:98:d1:0b:8f:10:3e:bb: a3:e3:43:36:95:cb:d1:ab:a6:b0:f0:09:4d:57:5c:c4:24:a6: 54:5b:84:4d:9b:09:2e:0d:7c:aa:13:9c:34:15:f6:d1:63:e3: b4:8e:a3:16:34:de:29:e0:2f:ab:fa:1f:d0:11:e1:4e:4b:a1: 32:1d:3d:35:a9:cc:9b:7c:d5:da:3c:3f:d0:d2:28:b7:94:f5: 5c:ea:55:80:72:eb:46:bf:d1:fa:9c:af:2c:44:d7:89:1a:ca: 2f:4c:f4:69:54:62:01:7a:30:e2:3f:94:fa:3f:61:f4:17:79: b6:41:9f:d8:76:03:7c:d4:66:64:b2:05:db:d6:00:55:28:6b: c7:d9:f3:de:45:14:75:57:c7:ca:44:8c:58:aa:fc:44:7f:18: b1:1a:38:48:a5:b4:15:ca:50:70:3c:59:88:58:14:4e:3d:68: cf:98:ca:2a:f5:f5:72:e7:39:9c:11:5f:6e:9e:be:8e:cc:f8: 91:db:ff:d9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBJMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTEwMDEw MTQwMDRaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg2MDg5NjIzMDNBQjA2 RUU1MkZGMjA5MzU2NkVFNjBGMzE0OUQ4MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkFFhRnTENX9TW/2TPuPR6eKrR8PrJwHWLKzeCEWfl1jXiJu2/ n+/Oh/9I1Tsm1W/bC0M5JoF9TCYq0481CXi1omzyZExCuJFv+LW14mbJ6gZvMT2+ LdSnTn2r+yH1r0tvFrD5pnvjP759DQHAIDwYRXHwvsdVemQoURR1a9fPelhzZC0y 2PaMm/uOgqXv39LEtyglln/7/ZjvFFy9iFCABGyqQry8F4OwWuGgSRZWM7i0RBFd bAFCtDo+t6T6wDD2VGTBWo+7ctyDvzjnKhTuN48rcIelL2WUrrCvlY0JNQ7Cewe7 tbv7gSp5BsD81/U7x71CmbrvRjE12wG8iS8RAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUhgiWIwOrBu5S/yCTVm7mDzFJ2C8wHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L2hnaVdJd09yQnU1U195Q1RWbTdtRHpGSjJDOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALclhQwDQYJKoZIhvcNAQELBQADggEBAEmNUoPYq5WCg13k2UciQJBeNWpE OIhgeFowjqFsjZX605sfCmnPwSeN+GaDzfcMcdMQop6Gqkpaqj9wQZVT6YInmNEL jxA+u6PjQzaVy9GrprDwCU1XXMQkplRbhE2bCS4NfKoTnDQV9tFj47SOoxY03ing L6v6H9AR4U5LoTIdPTWpzJt81do8P9DSKLeU9VzqVYBy60a/0fqcryxE14kayi9M 9GlUYgF6MOI/lPo/YfQXebZBn9h2A3zUZmSyBdvWAFUoa8fZ895FFHVXx8pEjFiq /ER/GLEaOEiltBXKUHA8WYhYFE49aM+Yyir19XLnOZwRX26evo7M+JHb/9k= -----END CERTIFICATE-----Generated at Mon Oct 20 12:10:06 2025 by rpki-client