$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/pNzG7itwQkAvEtJZztNBxHoCWyE.roa File: pNzG7itwQkAvEtJZztNBxHoCWyE.roa (raw, json) Hash identifier: 96DZZMJhndRZhu+K2LZ5WqY8C6ZfJLf39Plh4khjTCk= Subject key identifier: A4:DC:C6:EE:2B:70:42:40:2F:12:D2:59:CE:D3:41:C4:7A:02:5B:21 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 046D Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/pNzG7itwQkAvEtJZztNBxHoCWyE.roa Signing time: Wed 01 Oct 2025 01:34:47 +0000 ROA not before: Wed 01 Oct 2025 01:34:47 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 10013 IP address blocks: 111.234.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 09:38:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1133 (0x46d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Oct 1 01:34:47 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=A4DCC6EE2B7042402F12D259CED341C47A025B21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:60:5a:46:f5:40:d6:5c:84:7e:ab:41:94:3e: e3:32:ad:de:80:2f:6e:2c:7d:dd:a6:26:e2:7b:95: b2:57:cb:24:be:2c:ba:6b:f7:b6:52:25:6c:e0:3a: 0b:0f:d9:be:7f:c0:31:68:51:73:41:c2:fe:7b:a0: 9a:1a:fb:4f:23:0c:01:e7:03:fd:83:fc:82:85:a1: b5:46:e4:36:00:9e:bb:5b:fb:8f:c0:e9:2a:57:45: 9c:2c:94:6f:79:27:83:a6:ad:db:92:1c:5f:ab:1a: 9e:3e:34:36:2d:28:bf:f0:74:55:41:b0:64:62:b2: f1:2f:eb:c5:8c:d1:59:d9:2d:72:76:62:a5:0b:6a: e1:e1:4c:1b:ad:e9:9a:1a:ff:39:1a:57:11:dd:83: bd:6b:54:7b:23:26:7d:c2:62:bb:c8:68:60:8c:72: 80:24:43:86:d7:92:3d:ec:b4:0d:8b:aa:de:9b:7c: 74:7e:79:98:c4:10:41:16:38:01:aa:14:09:35:c5: dd:cc:34:12:c0:7a:7f:0f:c1:ae:76:e0:b4:12:fb: df:02:82:4a:62:e3:4c:6c:42:25:84:b3:9d:70:06: 3c:5a:de:3d:41:58:f0:00:9b:94:f2:b6:a1:98:86: 5e:17:ea:9b:b3:52:44:b5:f0:f5:a4:fd:b1:4b:c6: 12:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:DC:C6:EE:2B:70:42:40:2F:12:D2:59:CE:D3:41:C4:7A:02:5B:21 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/pNzG7itwQkAvEtJZztNBxHoCWyE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.234.112.0/21 Signature Algorithm: sha256WithRSAEncryption 6e:c8:6c:0a:54:4d:07:1f:e0:8e:e2:2c:80:07:b5:e5:0d:05: f0:e7:97:0b:41:a7:ea:0d:61:d1:e1:16:27:93:9d:b4:9c:66: 6f:5e:7f:73:70:a0:02:6b:9c:f4:a4:e8:76:c0:97:ae:48:8f: 3b:95:bc:0d:62:a4:d3:8a:ea:89:84:a1:ca:99:1a:5b:25:49: 77:c7:d5:b7:62:e9:dd:80:7e:cf:db:6c:25:52:2a:7b:1d:61: 14:40:c9:fa:08:bf:de:8d:4e:cd:40:ff:d4:3f:9a:04:d1:b7: 26:31:3e:f6:f6:ab:22:5e:79:2b:62:2c:76:60:c6:b7:7f:e2: 3c:40:ec:15:e2:c7:38:e1:41:90:c7:37:10:56:fb:7a:87:4e: 60:ab:91:f1:51:24:13:d1:28:6d:28:b5:f9:f3:e7:ea:d7:2d: 1b:6e:bc:21:c5:24:bf:3a:94:d0:0c:cc:11:ea:6e:c5:f5:fd: be:ab:28:eb:c7:ec:ed:42:0c:96:e5:81:60:56:58:29:79:e0: da:3e:80:7a:93:db:f2:b4:6b:97:7c:2b:fb:a1:25:ad:46:10: fb:b0:ad:76:7c:40:ef:2b:f2:6a:bb:cd:b2:44:37:3a:f3:c0: bd:cc:7a:06:0f:b8:f7:03:6f:bc:2e:c9:16:0b:c3:f1:53:20: 03:b0:57:66 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBG0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTEwMDEw MTM0NDdaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEE0RENDNkVFMkI3MDQy NDAyRjEyRDI1OUNFRDM0MUM0N0EwMjVCMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0YFpG9UDWXIR+q0GUPuMyrd6AL24sfd2mJuJ7lbJXyyS+LLpr 97ZSJWzgOgsP2b5/wDFoUXNBwv57oJoa+08jDAHnA/2D/IKFobVG5DYAnrtb+4/A 6SpXRZwslG95J4OmrduSHF+rGp4+NDYtKL/wdFVBsGRisvEv68WM0VnZLXJ2YqUL auHhTBut6Zoa/zkaVxHdg71rVHsjJn3CYrvIaGCMcoAkQ4bXkj3stA2Lqt6bfHR+ eZjEEEEWOAGqFAk1xd3MNBLAen8Pwa524LQS+98Cgkpi40xsQiWEs51wBjxa3j1B WPAAm5TytqGYhl4X6puzUkS18PWk/bFLxhLbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUpNzG7itwQkAvEtJZztNBxHoCWyEwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L3BOekc3aXR3UWtBdkV0Slp6dE5CeEhvQ1d5RS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANv6nAwDQYJKoZIhvcNAQELBQADggEBAG7IbApUTQcf4I7iLIAHteUNBfDn lwtBp+oNYdHhFieTnbScZm9ef3NwoAJrnPSk6HbAl65IjzuVvA1ipNOK6omEocqZ GlslSXfH1bdi6d2Afs/bbCVSKnsdYRRAyfoIv96NTs1A/9Q/mgTRtyYxPvb2qyJe eStiLHZgxrd/4jxA7BXixzjhQZDHNxBW+3qHTmCrkfFRJBPRKG0otfnz5+rXLRtu vCHFJL86lNAMzBHqbsX1/b6rKOvH7O1CDJblgWBWWCl54No+gHqT2/K0a5d8K/uh Ja1GEPuwrXZ8QO8r8mq7zbJENzrzwL3MegYPuPcDb7wuyRYLw/FTIAOwV2Y= -----END CERTIFICATE-----Generated at Mon Oct 20 12:10:14 2025 by rpki-client