$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/23h2cxYjJscLkvGEBsXI9rKUOhA.roa File: 23h2cxYjJscLkvGEBsXI9rKUOhA.roa (raw, json) Hash identifier: CWo9oIaZgggBYK+7MRMDpj7CjAcpkHsq/7QCrka/EAE= Subject key identifier: DB:78:76:73:16:23:26:C7:0B:92:F1:84:06:C5:C8:F6:B2:94:3A:10 Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Certificate serial: A8 Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/23h2cxYjJscLkvGEBsXI9rKUOhA.roa Signing time: Wed 01 Oct 2025 01:33:48 +0000 ROA not before: Wed 01 Oct 2025 01:33:48 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 2527 IP address blocks: 131.147.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:55:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Validity Not Before: Oct 1 01:33:48 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=DB787673162326C70B92F18406C5C8F6B2943A10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:20:48:a9:73:1b:26:1b:f2:b5:5e:33:66:ab: 0b:02:e5:fa:57:a7:03:8b:00:0e:e1:5d:c5:85:28: f6:9f:0a:6d:28:b5:c9:ea:5d:15:c2:b5:c1:20:93: 3c:e0:2f:25:4d:85:00:33:10:7f:01:55:83:f0:95: c6:f3:80:a4:94:66:a0:be:37:93:55:01:64:62:30: cc:e1:52:4a:08:ad:6c:34:e6:f0:a1:f1:29:aa:c3: 52:ec:9a:be:da:5b:e2:16:69:8a:2f:ba:53:31:14: 2c:39:a0:1e:b6:86:91:1a:d7:65:bd:6d:ba:a7:1e: 0b:66:4e:9a:09:5f:f9:8d:cb:4c:42:64:d0:ca:ba: b2:49:44:2f:82:ac:8c:00:3a:c3:aa:2a:8b:43:ec: 64:6c:ea:69:af:e7:6d:b3:b0:7a:1c:7a:c1:70:41: 9d:b3:23:b8:09:95:ee:ef:91:3f:50:1a:ed:7f:ce: 78:6c:66:68:92:12:51:92:fa:7c:c2:c9:70:16:0f: 22:86:35:e4:80:65:0d:0a:2b:0e:d4:87:b1:87:49: ec:e5:04:88:fb:1a:ec:0b:99:5d:0f:af:7f:3d:87: 42:61:b3:d0:a7:14:1e:8e:ab:dc:e9:a7:8d:6b:0f: 90:90:c9:99:18:0c:54:95:0d:5f:c2:19:1a:ab:73: c4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:78:76:73:16:23:26:C7:0B:92:F1:84:06:C5:C8:F6:B2:94:3A:10 X509v3 Authority Key Identifier: keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/23h2cxYjJscLkvGEBsXI9rKUOhA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 131.147.0.0/16 Signature Algorithm: sha256WithRSAEncryption 84:43:51:95:11:0b:c8:20:90:49:83:85:e3:22:cd:e1:5b:08: 84:f6:9a:29:ff:16:f0:21:45:43:8d:2a:37:27:aa:9a:6f:df: fb:3c:31:8a:ec:08:66:ff:29:21:80:ef:2a:33:71:cf:80:e5: ae:c6:2d:af:42:da:70:11:69:74:5a:8a:6d:b5:f0:7c:78:22: 7f:86:fb:83:38:97:6f:28:06:36:bb:12:b6:fc:85:de:18:47: d5:7f:ed:6f:5b:a7:db:fb:e2:1c:2d:47:01:d6:ed:f3:6a:66: 7d:b5:dc:86:3d:c4:24:bd:fb:be:e1:f8:fb:a6:69:3b:11:34: a2:2c:65:27:93:e8:7e:e4:9a:be:6d:15:15:f2:b0:ff:85:1b: 5c:00:5b:d6:84:9a:b2:fa:7a:1a:89:c4:87:1e:3e:7a:6a:d6: de:a7:3d:1b:19:0d:b1:5a:d2:d4:6c:87:50:44:73:ba:5f:e5: f2:c0:99:1f:25:21:1c:9a:00:69:42:93:bc:97:00:16:d6:6b: e8:7b:da:b9:91:ce:36:cd:ce:8c:18:76:1a:a5:80:16:eb:96: 66:e7:b4:91:d9:c2:e0:44:f0:ee:3b:1a:e3:3f:c8:91:2b:18: cf:71:00:28:e9:1f:64:82:54:6b:78:ed:b8:03:e4:47:09:42: 74:51:d5:df -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDRD QTdGMzVBRjFBOEY1MjU3NUE5RkVGRkYyMUM0QTQ3MDgwRERGQTAeFw0yNTEwMDEw MTMzNDhaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKERCNzg3NjczMTYyMzI2 QzcwQjkyRjE4NDA2QzVDOEY2QjI5NDNBMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuIEipcxsmG/K1XjNmqwsC5fpXpwOLAA7hXcWFKPafCm0otcnq XRXCtcEgkzzgLyVNhQAzEH8BVYPwlcbzgKSUZqC+N5NVAWRiMMzhUkoIrWw05vCh 8Smqw1Lsmr7aW+IWaYovulMxFCw5oB62hpEa12W9bbqnHgtmTpoJX/mNy0xCZNDK urJJRC+CrIwAOsOqKotD7GRs6mmv522zsHocesFwQZ2zI7gJle7vkT9QGu1/znhs ZmiSElGS+nzCyXAWDyKGNeSAZQ0KKw7Uh7GHSezlBIj7GuwLmV0Pr389h0Jhs9Cn FB6Oq9zpp41rD5CQyZkYDFSVDV/CGRqrc8TjAgMBAAGjggIhMIICHTAdBgNVHQ4E FgQU23h2cxYjJscLkvGEBsXI9rKUOhAwHwYDVR0jBBgwFoAUBMp/Na8aj1JXWp/v /yHEpHCA3fowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhDQTNmby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhD QTNmby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My8yM2gyY3hZakpzY0xrdkdFQnNYSTlyS1VPaEEucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAF AwMAg5MwDQYJKoZIhvcNAQELBQADggEBAIRDUZURC8ggkEmDheMizeFbCIT2min/ FvAhRUONKjcnqppv3/s8MYrsCGb/KSGA7yozcc+A5a7GLa9C2nARaXRaim218Hx4 In+G+4M4l28oBja7Erb8hd4YR9V/7W9bp9v74hwtRwHW7fNqZn213IY9xCS9+77h +PumaTsRNKIsZSeT6H7kmr5tFRXysP+FG1wAW9aEmrL6ehqJxIcePnpq1t6nPRsZ DbFa0tRsh1BEc7pf5fLAmR8lIRyaAGlCk7yXABbWa+h72rmRzjbNzowYdhqlgBbr lmbntJHZwuBE8O47GuM/yJErGM9xACjpH2SCVGt47bgD5EcJQnRR1d8= -----END CERTIFICATE-----Generated at Mon Oct 20 23:27:56 2025 by rpki-client