$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/jKPQSTgUikl42W--9CaobDlgJgo.roa File: jKPQSTgUikl42W--9CaobDlgJgo.roa (raw, json) Hash identifier: rgZW+7FF/RGmbr8VM1VHOMTeU1atuZSZzyVJHnB3U68= Subject key identifier: 8C:A3:D0:49:38:14:8A:49:78:D9:6F:BE:F4:26:A8:6C:39:60:26:0A Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 047F Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/jKPQSTgUikl42W--9CaobDlgJgo.roa Signing time: Wed 01 Oct 2025 01:39:51 +0000 ROA not before: Wed 01 Oct 2025 01:39:51 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 10013 IP address blocks: 124.255.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1151 (0x47f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Oct 1 01:39:51 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=8CA3D04938148A4978D96FBEF426A86C3960260A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:10:52:91:da:27:d7:77:31:dd:b2:2d:a8:b9: 22:3a:36:17:11:ea:9f:83:4d:c9:4a:4d:e8:5f:40: 25:30:03:eb:33:c8:e5:b9:80:93:3d:8e:66:80:6d: 48:29:b8:b9:ce:19:fe:e4:ec:8a:ac:17:cc:d7:f6: 36:15:7a:4c:50:b8:95:bf:b1:04:f3:38:e8:e4:03: de:44:11:e6:22:84:36:8c:7f:dd:e2:bc:a3:f9:17: 42:e8:ec:bf:aa:dd:e4:3e:ec:b8:58:e2:2f:fb:0f: 63:b0:3b:a5:e7:a0:bf:2c:de:63:98:a0:14:d1:0a: 26:ca:da:ef:c4:79:4c:75:b4:e6:5f:e8:f9:51:07: 92:d1:03:18:d9:69:ec:37:dc:ee:72:31:9c:62:c7: e3:29:3a:7e:f7:07:e8:ad:2d:f1:d8:18:8c:22:e6: 46:f5:35:5e:4e:24:11:4e:19:5d:69:5e:5d:33:1e: 3e:2f:a2:58:5a:e3:0f:fa:6b:31:23:32:61:32:3e: 37:75:cd:4c:54:55:e1:8e:32:77:2d:7a:c0:a9:f3: ff:cd:89:67:55:66:aa:57:8c:e5:0b:92:39:42:c1: ff:33:e2:0f:5e:8d:86:33:ea:80:05:fc:96:c8:b0: 9c:c3:cb:bd:90:c1:18:d7:4f:a9:c3:c5:36:77:31: 42:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:A3:D0:49:38:14:8A:49:78:D9:6F:BE:F4:26:A8:6C:39:60:26:0A X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/jKPQSTgUikl42W--9CaobDlgJgo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.255.192.0/20 Signature Algorithm: sha256WithRSAEncryption 49:06:3a:a8:82:09:82:b0:4c:bd:98:c2:96:5c:61:04:46:17: ee:6a:ff:3b:ea:c2:f0:a6:39:f7:12:57:f0:3f:3f:de:27:11: 23:03:2e:09:3d:58:a6:0f:f6:54:be:2d:26:f6:da:44:71:29: 2c:47:7a:0f:5f:94:78:15:f8:9e:09:61:ab:d7:c5:b2:0c:71: 57:8e:c1:3f:08:c5:ed:1e:3e:2b:59:d5:b8:6c:d8:fd:84:93: 43:0d:4b:55:4b:65:1a:1a:b2:56:f8:c3:88:cd:a7:9d:16:82: 93:09:bc:44:dd:b8:16:ad:09:78:6c:e9:d8:ce:03:7c:af:30: a4:08:55:6c:7b:4d:79:4e:df:c9:77:fa:54:8c:86:52:10:2f: 3b:95:c8:6d:bd:e1:24:3e:39:03:27:20:41:8d:b7:69:0d:5e: f8:94:d2:cb:80:a3:76:02:d3:75:ce:2c:41:22:81:dd:51:ab: c3:81:ff:82:fc:db:76:b0:bf:37:1c:9b:8f:7c:9d:99:cc:e8: f1:a4:92:65:ef:22:05:1a:ff:30:2b:eb:28:76:bf:6e:ba:d6: 34:19:6d:05:1c:bd:9d:91:fb:6f:ce:98:43:43:2f:87:5b:ce: 04:21:2f:c0:1f:a6:fc:a1:8e:1d:b8:12:77:67:3c:a5:53:f0: af:f7:c5:54 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBH8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTEwMDEw MTM5NTFaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDhDQTNEMDQ5MzgxNDhB NDk3OEQ5NkZCRUY0MjZBODZDMzk2MDI2MEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrEFKR2ifXdzHdsi2ouSI6NhcR6p+DTclKTehfQCUwA+szyOW5 gJM9jmaAbUgpuLnOGf7k7IqsF8zX9jYVekxQuJW/sQTzOOjkA95EEeYihDaMf93i vKP5F0Lo7L+q3eQ+7LhY4i/7D2OwO6XnoL8s3mOYoBTRCibK2u/EeUx1tOZf6PlR B5LRAxjZaew33O5yMZxix+MpOn73B+itLfHYGIwi5kb1NV5OJBFOGV1pXl0zHj4v olha4w/6azEjMmEyPjd1zUxUVeGOMnctesCp8//NiWdVZqpXjOULkjlCwf8z4g9e jYYz6oAF/JbIsJzDy72QwRjXT6nDxTZ3MULfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUjKPQSTgUikl42W++9CaobDlgJgowHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L2pLUFFTVGdVaWtsNDJXLS05Q2FvYkRsZ0pnby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAR8/8AwDQYJKoZIhvcNAQELBQADggEBAEkGOqiCCYKwTL2YwpZcYQRGF+5q /zvqwvCmOfcSV/A/P94nESMDLgk9WKYP9lS+LSb22kRxKSxHeg9flHgV+J4JYavX xbIMcVeOwT8Ixe0ePitZ1bhs2P2Ek0MNS1VLZRoaslb4w4jNp50WgpMJvETduBat CXhs6djOA3yvMKQIVWx7TXlO38l3+lSMhlIQLzuVyG294SQ+OQMnIEGNt2kNXviU 0suAo3YC03XOLEEigd1Rq8OB/4L823awvzccm498nZnM6PGkkmXvIgUa/zAr6yh2 v2661jQZbQUcvZ2R+2/OmENDL4dbzgQhL8Afpvyhjh24EndnPKVT8K/3xVQ= -----END CERTIFICATE-----Generated at Mon Oct 20 17:20:17 2025 by rpki-client