$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/zNKkwfRok92sLOofWMTbR_ntZDI.roa File: zNKkwfRok92sLOofWMTbR_ntZDI.roa (raw, json) Hash identifier: U4+jbuDrq3CUElLEN6ehogtK5jIHwk2amx8h75BIl7w= Subject key identifier: CC:D2:A4:C1:F4:68:93:DD:AC:2C:EA:1F:58:C4:DB:47:F9:ED:64:32 Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Certificate serial: AC Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/zNKkwfRok92sLOofWMTbR_ntZDI.roa Signing time: Wed 01 Oct 2025 01:33:54 +0000 ROA not before: Wed 01 Oct 2025 01:33:54 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 2527 IP address blocks: 207.65.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:55:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Validity Not Before: Oct 1 01:33:54 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=CCD2A4C1F46893DDAC2CEA1F58C4DB47F9ED6432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:94:e6:09:99:1e:54:e6:11:1a:e3:d1:af:bc: b9:52:b4:2d:c8:23:12:c2:3f:61:41:1b:f3:3d:17: 8d:8b:50:95:60:60:22:6d:32:13:f9:93:92:2a:01: 6c:83:33:0b:c0:12:61:0c:25:4a:38:79:ec:f4:99: 8e:ae:56:b6:7d:39:91:00:7f:16:95:e7:13:53:b8: 79:2f:ee:a1:3a:44:3e:03:56:6f:fd:60:ac:e9:c8: 74:50:24:be:08:98:5c:22:ec:46:2b:ac:79:03:5a: 5b:78:f7:4c:00:81:fb:98:68:8b:ac:c3:53:57:90: 6e:64:11:c6:d6:b9:11:ba:fb:76:da:dc:b5:f0:86: 4f:fc:d2:93:81:a2:5b:3c:a0:bd:34:66:53:b4:c5: 5b:b2:41:de:fe:5a:b4:73:4a:29:7a:18:95:ab:ce: 0c:f3:a4:76:b6:a8:9d:e7:b5:e8:5e:30:81:e5:4f: 44:2f:bb:db:04:6f:c7:9a:70:76:13:81:a3:43:b9: e7:bd:ec:e8:1f:9f:2e:09:06:26:98:e1:3f:56:cf: 4b:38:1c:65:d2:98:82:e7:1d:b2:0f:0b:75:4e:b4: 1d:a2:51:d8:65:79:21:1b:bc:c5:22:b7:22:81:79: b1:88:30:68:08:9a:2c:00:86:f4:ad:6d:b6:f2:cf: 03:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:D2:A4:C1:F4:68:93:DD:AC:2C:EA:1F:58:C4:DB:47:F9:ED:64:32 X509v3 Authority Key Identifier: keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/zNKkwfRok92sLOofWMTbR_ntZDI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 207.65.128.0/17 Signature Algorithm: sha256WithRSAEncryption 97:1e:79:14:1b:85:a6:1d:24:cc:dd:8a:4b:b0:d7:16:a1:51: 3f:7d:a2:da:c2:d1:99:c6:0d:61:0d:2d:b1:3e:c2:29:ca:0a: 7f:0a:65:cc:7d:30:65:66:3b:6b:c3:e1:b3:55:01:a4:c6:84: af:ea:da:67:07:f8:18:72:06:6e:79:86:3f:e7:3d:6e:b4:75: 95:03:0f:a2:27:a1:7e:eb:1b:ce:4d:47:04:c0:0e:d3:a0:fb: 23:6c:2c:4f:c1:73:75:12:c2:f4:c9:c7:05:6b:19:dd:73:37: 9a:04:55:60:1b:46:f9:d1:b9:38:96:27:aa:a0:94:48:1a:eb: ff:d4:e5:17:f9:a4:ea:54:2d:34:0c:69:44:49:af:76:0a:a9: 68:b3:71:df:55:22:17:02:bd:72:b4:c8:c1:5b:22:54:bd:28: 18:7d:3a:4b:db:9c:d2:b5:b7:58:c5:b3:56:64:cb:55:6a:74: 5b:d7:79:f1:bd:2e:9d:a4:b1:c6:ea:3e:ea:e5:3d:5e:fa:46: 45:69:84:96:eb:82:59:b9:4f:75:73:ce:41:09:98:e6:1a:32: 7a:7b:27:a2:f5:4b:bd:fb:05:c7:3d:37:94:75:de:78:6e:31: a0:0d:b1:85:4e:f2:b6:f0:75:ce:26:71:a4:9f:53:ed:43:0e: 61:8c:d4:04 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDRD QTdGMzVBRjFBOEY1MjU3NUE5RkVGRkYyMUM0QTQ3MDgwRERGQTAeFw0yNTEwMDEw MTMzNTRaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKENDRDJBNEMxRjQ2ODkz RERBQzJDRUExRjU4QzREQjQ3RjlFRDY0MzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0lOYJmR5U5hEa49GvvLlStC3IIxLCP2FBG/M9F42LUJVgYCJt MhP5k5IqAWyDMwvAEmEMJUo4eez0mY6uVrZ9OZEAfxaV5xNTuHkv7qE6RD4DVm/9 YKzpyHRQJL4ImFwi7EYrrHkDWlt490wAgfuYaIusw1NXkG5kEcbWuRG6+3ba3LXw hk/80pOBols8oL00ZlO0xVuyQd7+WrRzSil6GJWrzgzzpHa2qJ3nteheMIHlT0Qv u9sEb8eacHYTgaNDuee97Ogfny4JBiaY4T9Wz0s4HGXSmILnHbIPC3VOtB2iUdhl eSEbvMUityKBebGIMGgImiwAhvStbbbyzwOJAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUzNKkwfRok92sLOofWMTbR/ntZDIwHwYDVR0jBBgwFoAUBMp/Na8aj1JXWp/v /yHEpHCA3fowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhDQTNmby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhD QTNmby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My96Tktrd2ZSb2s5MnNMT29mV01UYlJfbnRaREkucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQHz0GAMA0GCSqGSIb3DQEBCwUAA4IBAQCXHnkUG4WmHSTM3YpLsNcWoVE/faLa wtGZxg1hDS2xPsIpygp/CmXMfTBlZjtrw+GzVQGkxoSv6tpnB/gYcgZueYY/5z1u tHWVAw+iJ6F+6xvOTUcEwA7ToPsjbCxPwXN1EsL0yccFaxndczeaBFVgG0b50bk4 lieqoJRIGuv/1OUX+aTqVC00DGlESa92Cqlos3HfVSIXAr1ytMjBWyJUvSgYfTpL 25zStbdYxbNWZMtVanRb13nxvS6dpLHG6j7q5T1e+kZFaYSW64JZuU91c85BCZjm GjJ6eyei9Uu9+wXHPTeUdd54bjGgDbGFTvK28HXOJnGkn1PtQw5hjNQE -----END CERTIFICATE-----Generated at Mon Oct 20 23:29:02 2025 by rpki-client