$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/qUxOMLtONXIIfVWHfuVZtum_0vE.roa File: qUxOMLtONXIIfVWHfuVZtum_0vE.roa (raw, json) Hash identifier: 3oW0Z6ItzEuKtdaX/iiK75U67uXnV81eQqlhzesf/cE= Subject key identifier: A9:4C:4E:30:BB:4E:35:72:08:7D:55:87:7E:E5:59:B6:E9:BF:D2:F1 Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D Certificate serial: 01AF Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/qUxOMLtONXIIfVWHfuVZtum_0vE.roa Signing time: Wed 01 Oct 2025 01:38:34 +0000 ROA not before: Wed 01 Oct 2025 01:38:34 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 2527 IP address blocks: 211.128.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:27:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D Validity Not Before: Oct 1 01:38:34 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=A94C4E30BB4E3572087D55877EE559B6E9BFD2F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1a:13:ea:d5:51:d0:b9:54:28:ee:59:7a:32: c5:b0:bd:17:f1:ad:e8:d4:b7:f9:39:25:0c:bd:58: 09:2b:d7:64:59:1a:0e:35:e6:6a:e4:a3:48:22:89: 57:fe:40:92:84:c8:e3:06:6e:cd:55:b7:2b:a2:3d: f0:86:61:86:4b:e7:e9:ac:ad:9b:2b:f9:05:9c:17: 37:2c:35:69:54:cc:f5:8e:f8:2e:23:35:11:ef:0b: 6e:10:2a:6e:4a:4a:16:a9:3a:57:cd:62:b9:03:1b: 6f:4d:6f:08:eb:9f:48:04:c1:ce:f6:d2:57:16:e9: 0b:a1:ee:6b:a7:60:bc:6f:5e:32:fd:33:32:d4:03: 38:3d:60:42:9b:0b:d5:b4:1b:b5:7b:6d:d7:b0:d1: 97:cc:89:8e:bf:dd:5f:1b:5a:66:4c:b4:69:70:36: a7:59:6c:d3:98:15:ed:f1:9a:c4:3d:71:3d:76:aa: ea:70:3f:73:b2:ee:3e:f9:44:02:1c:51:96:c5:b8: af:4a:f2:3b:99:30:00:80:90:b4:e3:a9:c4:f2:ed: f1:cd:22:67:54:1c:3a:71:d8:fd:b8:53:e5:e6:f3: 8e:c7:4c:bd:af:1b:fe:5b:40:89:8d:6d:c2:d8:3a: 59:24:6c:1f:a3:3a:ab:0d:23:86:75:be:ef:00:48: d1:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:4C:4E:30:BB:4E:35:72:08:7D:55:87:7E:E5:59:B6:E9:BF:D2:F1 X509v3 Authority Key Identifier: keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/qUxOMLtONXIIfVWHfuVZtum_0vE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.128.32.0/19 Signature Algorithm: sha256WithRSAEncryption 03:38:cd:43:f0:39:c3:d7:47:83:66:c7:d2:88:70:e0:30:81: e2:37:93:e4:52:c9:50:d4:11:02:9f:24:47:49:7b:26:84:7b: 08:a1:ae:cd:0e:1f:52:cd:97:6f:c9:69:97:2b:58:b5:cb:46: 5d:50:9a:fe:eb:58:17:d9:b4:ee:38:05:ad:e1:d3:d6:cf:23: e6:04:21:e4:b6:d6:45:fc:9a:c5:66:85:99:09:66:0c:9a:0c: 3d:43:e4:9c:ef:d3:66:1d:e6:5e:b1:b0:fc:2e:0a:b1:4b:8b: e9:b8:1d:65:b9:25:d2:af:b0:d6:77:68:e6:6b:c5:ec:5f:6d: 59:b9:87:28:8f:90:44:1e:77:ab:12:ad:a9:cd:fa:17:a8:6c: f3:12:2c:68:d3:19:d6:62:3e:b7:f1:4d:5f:11:f6:b1:10:81: 02:8d:ef:ae:c1:4b:c9:6e:26:d8:a7:ee:85:b9:a2:13:02:17: ca:08:3c:9c:97:b2:cc:4b:10:a7:d0:95:d5:9c:12:92:cb:9d: ad:9c:d6:72:51:9d:da:50:ca:14:a8:0e:be:49:94:42:cc:3b: 62:7a:c2:5d:15:92:91:92:b0:09:7c:94:08:c4:13:e6:ef:3c: 4b:7b:63:c7:13:31:23:eb:f4:ff:69:e9:e8:8b:e4:9b:d7:f4: 6b:0b:e5:2e -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1 QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yNTEwMDEw MTM4MzRaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEE5NEM0RTMwQkI0RTM1 NzIwODdENTU4NzdFRTU1OUI2RTlCRkQyRjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsGhPq1VHQuVQo7ll6MsWwvRfxrejUt/k5JQy9WAkr12RZGg41 5mrko0giiVf+QJKEyOMGbs1VtyuiPfCGYYZL5+msrZsr+QWcFzcsNWlUzPWO+C4j NRHvC24QKm5KShapOlfNYrkDG29Nbwjrn0gEwc720lcW6Quh7munYLxvXjL9MzLU Azg9YEKbC9W0G7V7bdew0ZfMiY6/3V8bWmZMtGlwNqdZbNOYFe3xmsQ9cT12qupw P3Oy7j75RAIcUZbFuK9K8juZMACAkLTjqcTy7fHNImdUHDpx2P24U+Xm847HTL2v G/5bQImNbcLYOlkkbB+jOqsNI4Z1vu8ASNE1AgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUqUxOMLtONXIIfVWHfuVZtum/0vEwHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo 3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1 ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My9xVXhPTUx0T05YSUlmVldIZnVWWnR1bV8wdkUucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQF04AgMA0GCSqGSIb3DQEBCwUAA4IBAQADOM1D8DnD10eDZsfSiHDgMIHiN5Pk UslQ1BECnyRHSXsmhHsIoa7NDh9SzZdvyWmXK1i1y0ZdUJr+61gX2bTuOAWt4dPW zyPmBCHkttZF/JrFZoWZCWYMmgw9Q+Sc79NmHeZesbD8LgqxS4vpuB1luSXSr7DW d2jma8XsX21ZuYcoj5BEHnerEq2pzfoXqGzzEixo0xnWYj638U1fEfaxEIECje+u wUvJbibYp+6FuaITAhfKCDycl7LMSxCn0JXVnBKSy52tnNZyUZ3aUMoUqA6+SZRC zDtiesJdFZKRkrAJfJQIxBPm7zxLe2PHEzEj6/T/aenoi+Sb1/RrC+Uu -----END CERTIFICATE-----Generated at Mon Oct 20 19:56:02 2025 by rpki-client