$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/8PQZxNTH1T0iY5AOqWxruyYgKeo.roa File: 8PQZxNTH1T0iY5AOqWxruyYgKeo.roa (raw, json) Hash identifier: /zPFae9xhDAkDd9dB6tDNl8Hw9MNAKUm7sgTwHgAjOo= Subject key identifier: F0:F4:19:C4:D4:C7:D5:3D:22:63:90:0E:A9:6C:6B:BB:26:20:29:EA Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Certificate serial: AA Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/8PQZxNTH1T0iY5AOqWxruyYgKeo.roa Signing time: Wed 01 Oct 2025 01:33:49 +0000 ROA not before: Wed 01 Oct 2025 01:33:49 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 2527 IP address blocks: 159.28.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:55:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Validity Not Before: Oct 1 01:33:49 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=F0F419C4D4C7D53D2263900EA96C6BBB262029EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:24:c0:1e:b0:11:9c:f1:a8:83:ee:48:f3:47: 68:03:6c:6b:24:56:cd:4f:59:f3:b1:63:12:ca:04: 7f:1f:62:27:73:ae:42:f4:5a:c4:80:61:6c:31:ac: 74:41:90:1e:c1:68:ae:7d:27:cc:f9:59:de:f5:ae: 9e:b0:60:6d:0c:ae:e6:c7:5d:27:f3:8b:92:e8:71: 36:4a:9e:98:a5:79:1a:6f:60:a0:78:1c:27:dc:1a: c8:59:4a:92:83:eb:bd:1d:f8:16:e4:be:a4:74:29: 90:19:ca:11:5b:6a:37:35:14:34:e8:78:96:89:55: d7:e2:d6:5b:13:77:d6:58:c0:91:51:db:40:65:7f: 0f:7a:f3:5b:d1:18:d8:6b:da:49:83:4c:d2:49:e7: 60:e5:fd:95:fb:a6:31:87:cf:d8:24:3c:bd:63:56: a3:18:2a:d1:99:a5:3c:30:5a:03:7a:5e:bd:20:73: 2b:e5:96:7b:a8:93:1e:83:b0:8f:f2:ba:c9:64:24: 49:84:dc:e3:2b:0f:f9:3a:1c:2a:2b:3b:c4:2f:d0: 60:ca:c1:1d:00:b1:fb:32:b7:bd:66:b2:3f:dd:26: c3:65:4f:d3:e4:41:90:3b:e5:05:18:5b:76:d3:17: c1:31:7d:07:d1:b4:2e:8c:e9:11:f1:1d:76:77:34: 91:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:F4:19:C4:D4:C7:D5:3D:22:63:90:0E:A9:6C:6B:BB:26:20:29:EA X509v3 Authority Key Identifier: keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/8PQZxNTH1T0iY5AOqWxruyYgKeo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 159.28.64.0/18 Signature Algorithm: sha256WithRSAEncryption 64:00:33:7c:73:b7:ac:f6:d9:9b:55:f0:63:c9:7c:b2:fd:bd: 37:e8:12:2b:d4:d0:54:1b:36:49:5b:2f:49:e8:d6:8b:6a:80: 71:ca:51:32:c2:a5:c2:23:25:e7:c7:ca:da:3a:be:2a:c4:95: 86:48:e4:b5:36:54:dd:14:6b:fa:99:24:98:fc:83:da:f5:45: 35:68:33:4f:b1:67:18:4e:5b:9c:bf:36:c9:aa:aa:81:11:7e: 83:8b:51:a2:5c:48:47:9f:e1:39:4c:28:3c:9e:80:3b:2d:86: f9:d6:aa:42:2a:7f:62:ee:68:29:76:d0:14:27:cb:71:ad:e5: a3:e1:2b:4a:e6:74:22:7c:f4:94:48:9a:35:9c:39:19:73:cf: 1e:cd:36:bb:76:0c:52:5b:01:cf:71:d5:20:87:ea:04:b3:30: 36:cc:0d:1c:fb:88:ff:b8:fb:fd:0a:53:0d:58:cb:97:b3:c5: 0e:19:f6:cc:08:ef:2f:0b:b2:c8:b4:9a:d3:a3:6c:83:ed:36: e1:fe:cb:29:df:0e:b9:eb:7b:16:34:4c:08:48:10:0d:6e:59: 22:06:82:f6:e7:cd:dc:84:c8:bf:e0:57:f5:07:c6:32:74:c5: 57:11:ea:ce:81:97:3f:6c:ef:00:95:ca:91:69:3f:14:a4:e1: af:3e:d6:0f -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAKowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDRD QTdGMzVBRjFBOEY1MjU3NUE5RkVGRkYyMUM0QTQ3MDgwRERGQTAeFw0yNTEwMDEw MTMzNDlaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEYwRjQxOUM0RDRDN0Q1 M0QyMjYzOTAwRUE5NkM2QkJCMjYyMDI5RUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4JMAesBGc8aiD7kjzR2gDbGskVs1PWfOxYxLKBH8fYidzrkL0 WsSAYWwxrHRBkB7BaK59J8z5Wd71rp6wYG0MrubHXSfzi5LocTZKnpileRpvYKB4 HCfcGshZSpKD670d+BbkvqR0KZAZyhFbajc1FDToeJaJVdfi1lsTd9ZYwJFR20Bl fw9681vRGNhr2kmDTNJJ52Dl/ZX7pjGHz9gkPL1jVqMYKtGZpTwwWgN6Xr0gcyvl lnuokx6DsI/yuslkJEmE3OMrD/k6HCorO8Qv0GDKwR0Asfsyt71msj/dJsNlT9Pk QZA75QUYW3bTF8ExfQfRtC6M6RHxHXZ3NJFTAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQU8PQZxNTH1T0iY5AOqWxruyYgKeowHwYDVR0jBBgwFoAUBMp/Na8aj1JXWp/v /yHEpHCA3fowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhDQTNmby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhD QTNmby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My84UFFaeE5USDFUMGlZNUFPcVd4cnV5WWdLZW8ucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQGnxxAMA0GCSqGSIb3DQEBCwUAA4IBAQBkADN8c7es9tmbVfBjyXyy/b036BIr 1NBUGzZJWy9J6NaLaoBxylEywqXCIyXnx8raOr4qxJWGSOS1NlTdFGv6mSSY/IPa 9UU1aDNPsWcYTlucvzbJqqqBEX6Di1GiXEhHn+E5TCg8noA7LYb51qpCKn9i7mgp dtAUJ8txreWj4StK5nQifPSUSJo1nDkZc88ezTa7dgxSWwHPcdUgh+oEszA2zA0c +4j/uPv9ClMNWMuXs8UOGfbMCO8vC7LItJrTo2yD7Tbh/ssp3w6563sWNEwISBAN blkiBoL2583chMi/4Ff1B8YydMVXEerOgZc/bO8AlcqRaT8UpOGvPtYP -----END CERTIFICATE-----Generated at Mon Oct 20 23:27:21 2025 by rpki-client