$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/F0kOnkAl3z5y_NelY2KpT5Mtq-Q.roa File: F0kOnkAl3z5y_NelY2KpT5Mtq-Q.roa (raw, json) Hash identifier: iik/PTu5BpqQZwuh9yVKDEyBgbDbPIVvTdDmYx35OOg= Subject key identifier: 17:49:0E:9E:40:25:DF:3E:72:FC:D7:A5:63:62:A9:4F:93:2D:AB:E4 Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Certificate serial: B3 Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/F0kOnkAl3z5y_NelY2KpT5Mtq-Q.roa Signing time: Wed 01 Oct 2025 01:38:44 +0000 ROA not before: Wed 01 Oct 2025 01:38:44 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 2527 IP address blocks: 157.147.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:55:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Validity Not Before: Oct 1 01:38:44 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=17490E9E4025DF3E72FCD7A56362A94F932DABE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:55:af:8c:de:f1:7f:dc:6d:4a:4a:a4:e4:c7: 7b:df:e6:8a:cf:58:c9:c6:91:f0:07:83:10:6f:a6: 3e:eb:79:fb:5f:76:30:e3:01:bf:aa:40:c3:07:40: 1b:2f:7f:1f:1e:cd:7c:39:a4:41:9b:6a:d1:2e:7e: bc:77:96:17:6c:f7:9c:e5:df:c1:96:f9:37:e6:14: bf:dd:41:2a:92:ec:42:d4:88:9d:6d:38:08:f3:28: 17:99:8e:d3:70:cc:ed:93:52:a2:5d:8d:40:17:66: d8:1d:ed:90:b7:42:41:0b:b5:31:13:22:a3:96:35: 7b:7a:6a:21:37:b5:a8:d7:e1:ee:44:d9:2c:41:76: ea:d3:9c:88:82:2c:37:f5:b7:bc:b8:f7:d4:6d:ae: 87:91:6a:54:75:4e:45:74:ff:b4:7a:4b:bd:83:4d: 2b:e2:b9:53:83:6e:dd:85:76:4f:47:42:a4:30:55: 3d:cf:1e:97:a9:3a:78:a7:ee:cf:fe:66:a1:4c:dc: 49:2a:fe:97:12:d4:96:f7:6c:c0:05:3e:95:2b:5f: 57:64:24:a9:b5:49:06:dd:5f:a5:36:af:8e:6c:45: 79:8d:4f:c5:3e:e5:41:c2:5d:d3:ea:09:92:0c:9a: f4:2b:28:df:b9:6c:41:66:f2:75:dc:7f:35:a7:6e: 4c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:49:0E:9E:40:25:DF:3E:72:FC:D7:A5:63:62:A9:4F:93:2D:AB:E4 X509v3 Authority Key Identifier: keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/F0kOnkAl3z5y_NelY2KpT5Mtq-Q.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.147.0.0/16 Signature Algorithm: sha256WithRSAEncryption 31:4e:39:12:81:23:54:c5:ad:4c:96:f2:71:b2:a8:21:6a:51: c9:26:72:cb:18:cd:35:14:57:c9:ee:10:a9:0a:9f:dd:2a:80: 7f:e0:cd:05:11:aa:9b:6b:a0:b5:1d:37:80:d8:a4:cc:41:bf: 94:39:e3:e5:e7:d3:87:83:67:f5:6f:db:cd:0f:25:33:4d:b5: af:4d:39:4c:ea:f3:2a:ec:77:ce:63:61:1f:b3:d5:73:fd:89: 1f:a5:bb:b3:71:99:92:1b:76:b1:3b:88:55:ee:36:96:1c:d4: ed:3d:c5:c9:d8:54:d2:06:0f:9e:64:8b:81:c0:e2:64:99:a3: 0d:b2:82:0a:35:86:b4:e9:7c:75:d9:9c:2e:4c:53:a0:17:56: b2:3c:1c:e4:0c:b5:72:c0:82:be:cc:55:a1:b8:91:aa:a6:98: a9:75:e3:92:aa:eb:8d:87:a4:69:ef:08:e6:ed:ac:44:65:62: 52:4b:35:ff:70:3c:45:ac:fe:02:c5:c6:5d:43:22:5e:d0:22: 50:31:e1:90:a1:20:fc:f6:33:b5:64:a1:fc:45:c6:a7:63:df: 77:b8:cb:91:3e:a7:fd:20:52:9e:03:76:bd:19:da:80:57:d2: 30:41:d4:f3:21:77:25:f6:e1:fb:0e:f3:a8:20:2d:7e:3b:4c: 5c:8e:4e:0f -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgICALMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDRD QTdGMzVBRjFBOEY1MjU3NUE5RkVGRkYyMUM0QTQ3MDgwRERGQTAeFw0yNTEwMDEw MTM4NDRaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDE3NDkwRTlFNDAyNURG M0U3MkZDRDdBNTYzNjJBOTRGOTMyREFCRTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYVa+M3vF/3G1KSqTkx3vf5orPWMnGkfAHgxBvpj7reftfdjDj Ab+qQMMHQBsvfx8ezXw5pEGbatEufrx3lhds95zl38GW+TfmFL/dQSqS7ELUiJ1t OAjzKBeZjtNwzO2TUqJdjUAXZtgd7ZC3QkELtTETIqOWNXt6aiE3tajX4e5E2SxB durTnIiCLDf1t7y499RtroeRalR1TkV0/7R6S72DTSviuVODbt2Fdk9HQqQwVT3P HpepOnin7s/+ZqFM3Ekq/pcS1Jb3bMAFPpUrX1dkJKm1SQbdX6U2r45sRXmNT8U+ 5UHCXdPqCZIMmvQrKN+5bEFm8nXcfzWnbkxrAgMBAAGjggIhMIICHTAdBgNVHQ4E FgQUF0kOnkAl3z5y/NelY2KpT5Mtq+QwHwYDVR0jBBgwFoAUBMp/Na8aj1JXWp/v /yHEpHCA3fowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhDQTNmby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhD QTNmby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My9GMGtPbmtBbDN6NXlfTmVsWTJLcFQ1TXRxLVEucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAF AwMAnZMwDQYJKoZIhvcNAQELBQADggEBADFOORKBI1TFrUyW8nGyqCFqUckmcssY zTUUV8nuEKkKn90qgH/gzQURqptroLUdN4DYpMxBv5Q54+Xn04eDZ/Vv280PJTNN ta9NOUzq8yrsd85jYR+z1XP9iR+lu7NxmZIbdrE7iFXuNpYc1O09xcnYVNIGD55k i4HA4mSZow2yggo1hrTpfHXZnC5MU6AXVrI8HOQMtXLAgr7MVaG4kaqmmKl145Kq 642HpGnvCObtrERlYlJLNf9wPEWs/gLFxl1DIl7QIlAx4ZChIPz2M7VkofxFxqdj 33e4y5E+p/0gUp4Ddr0Z2oBX0jBB1PMhdyX24fsO86ggLX47TFyOTg8= -----END CERTIFICATE-----Generated at Mon Oct 20 23:27:56 2025 by rpki-client