$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/hVDQ_LyvJxGpTDY3b9ZVjzZuTo0.roa File: hVDQ_LyvJxGpTDY3b9ZVjzZuTo0.roa (raw, json) Hash identifier: q8Am95q0y7UYYZDAboRXRDvUgOBQni+yOHgQ7uNVkuw= Subject key identifier: 85:50:D0:FC:BC:AF:27:11:A9:4C:36:37:6F:D6:55:8F:36:6E:4E:8D Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D Certificate serial: 019D Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/hVDQ_LyvJxGpTDY3b9ZVjzZuTo0.roa Signing time: Wed 01 Oct 2025 01:33:54 +0000 ROA not before: Wed 01 Oct 2025 01:33:54 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 2527 IP address blocks: 210.156.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:27:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D Validity Not Before: Oct 1 01:33:54 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=8550D0FCBCAF2711A94C36376FD6558F366E4E8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:47:60:99:56:d1:cf:85:73:49:e0:62:5a:f3: c9:9c:36:8e:8a:e4:95:b8:3d:0b:13:79:bb:f6:a9: 44:80:83:be:78:52:ea:d8:5c:99:8f:25:b1:40:60: c5:1c:c7:20:45:d9:20:92:39:a6:b2:3b:20:68:97: 01:cf:f2:86:de:5b:be:a2:4a:6a:18:a4:a1:72:ad: 58:d8:5d:7a:8d:51:4b:7c:0f:bd:21:de:2d:e6:de: 21:be:ec:63:4b:f0:ab:0a:ea:fe:bf:d8:f6:38:16: 74:fa:35:aa:89:52:2f:61:b9:4f:4f:80:7b:fa:ba: 13:1a:52:23:49:a4:fb:05:10:66:26:e9:ae:e8:55: 97:71:62:ee:68:22:03:f2:25:8c:53:a5:f7:99:3d: 60:a4:8a:ae:de:53:c0:3a:8a:83:7c:d3:9d:f9:6c: f8:bf:20:1f:5e:27:c3:c1:6c:42:22:86:18:64:03: c6:5a:b8:25:f2:dd:74:f9:84:d6:69:3b:5a:c2:6d: f8:7a:08:e0:0e:1f:ca:63:a7:0c:ce:7b:4c:66:75: 89:5b:f9:8e:e1:0e:2e:e2:30:ba:a5:e2:25:97:0b: 96:0c:b1:82:86:2a:bc:b5:de:9c:7a:2e:fc:dd:21: 12:d3:bd:63:60:53:5c:a0:f7:d1:a0:fd:5f:6e:74: 43:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:50:D0:FC:BC:AF:27:11:A9:4C:36:37:6F:D6:55:8F:36:6E:4E:8D X509v3 Authority Key Identifier: keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/hVDQ_LyvJxGpTDY3b9ZVjzZuTo0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.156.160.0/20 Signature Algorithm: sha256WithRSAEncryption 65:7b:70:32:4b:b3:5d:17:81:11:6d:29:0b:5e:fe:2b:e5:dd: 7b:13:c7:97:12:dc:e4:b5:4e:c2:59:c7:3d:45:5f:b9:4d:fb: d3:12:20:11:d2:88:3c:ec:47:ee:f5:af:a4:71:2d:4f:a1:fe: c0:bb:e9:df:a2:c1:15:3f:43:36:e0:74:d6:12:77:5c:4f:fe: 26:9e:f6:a4:ff:33:11:9e:d3:29:03:d0:e4:d3:05:49:d4:33: aa:c3:26:01:13:1a:c9:0e:b0:cd:aa:44:c2:1b:a2:fd:bf:e7: 69:af:54:30:a3:c2:53:56:e0:e2:b1:95:e0:3a:43:2f:0c:38: f9:53:01:d6:cc:5b:f7:7f:de:64:48:b3:95:7c:12:eb:31:b8: 40:5a:d7:08:25:a5:aa:df:f4:7f:a9:7f:83:3a:c4:02:9b:c8: 06:76:ec:1a:cf:09:36:87:a3:bc:08:5b:d0:1e:7e:2e:4a:71: d5:43:94:14:ad:79:eb:12:1a:70:06:78:da:33:e1:28:ac:90: 1c:5e:ed:48:bb:d1:c7:1c:12:11:62:b6:91:de:57:c0:a3:c3: 51:90:b0:50:6b:3d:da:88:a0:bb:fd:2e:68:de:a6:9d:1d:09: f8:c1:4d:6c:56:e4:d8:26:ea:8f:6b:d0:f4:e4:74:da:62:21: fc:d8:ee:a5 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1 QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yNTEwMDEw MTMzNTRaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg1NTBEMEZDQkNBRjI3 MTFBOTRDMzYzNzZGRDY1NThGMzY2RTRFOEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbR2CZVtHPhXNJ4GJa88mcNo6K5JW4PQsTebv2qUSAg754UurY XJmPJbFAYMUcxyBF2SCSOaayOyBolwHP8obeW76iSmoYpKFyrVjYXXqNUUt8D70h 3i3m3iG+7GNL8KsK6v6/2PY4FnT6NaqJUi9huU9PgHv6uhMaUiNJpPsFEGYm6a7o VZdxYu5oIgPyJYxTpfeZPWCkiq7eU8A6ioN80535bPi/IB9eJ8PBbEIihhhkA8Za uCXy3XT5hNZpO1rCbfh6COAOH8pjpwzOe0xmdYlb+Y7hDi7iMLql4iWXC5YMsYKG Kry13px6LvzdIRLTvWNgU1yg99Gg/V9udEPXAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUhVDQ/LyvJxGpTDY3b9ZVjzZuTo0wHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo 3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1 ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My9oVkRRX0x5dkp4R3BURFkzYjlaVmp6WnVUbzAucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQE0pygMA0GCSqGSIb3DQEBCwUAA4IBAQBle3AyS7NdF4ERbSkLXv4r5d17E8eX EtzktU7CWcc9RV+5TfvTEiAR0og87Efu9a+kcS1Pof7Au+nfosEVP0M24HTWEndc T/4mnvak/zMRntMpA9Dk0wVJ1DOqwyYBExrJDrDNqkTCG6L9v+dpr1Qwo8JTVuDi sZXgOkMvDDj5UwHWzFv3f95kSLOVfBLrMbhAWtcIJaWq3/R/qX+DOsQCm8gGduwa zwk2h6O8CFvQHn4uSnHVQ5QUrXnrEhpwBnjaM+EorJAcXu1Iu9HHHBIRYraR3lfA o8NRkLBQaz3aiKC7/S5o3qadHQn4wU1sVuTYJuqPa9D05HTaYiH82O6l -----END CERTIFICATE-----Generated at Mon Oct 20 19:56:06 2025 by rpki-client