$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/K4cwQTs97DvldXgLlPN4i8LujYE.roa File: K4cwQTs97DvldXgLlPN4i8LujYE.roa (raw, json) Hash identifier: e1jBjXbsK/ga7hdfmw1ljnbCUy99RYUSwyhi/JGVSNk= Subject key identifier: 2B:87:30:41:3B:3D:EC:3B:E5:75:78:0B:94:F3:78:8B:C2:EE:8D:81 Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 0162 Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/K4cwQTs97DvldXgLlPN4i8LujYE.roa Signing time: Wed 01 Oct 2025 01:29:59 +0000 ROA not before: Wed 01 Oct 2025 01:29:59 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 10021 IP address blocks: 27.110.32.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 13:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Oct 1 01:29:59 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=2B8730413B3DEC3BE575780B94F3788BC2EE8D81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:37:5e:af:f0:62:f1:4d:c3:e9:0d:a8:31:f1: 20:97:67:e5:cb:2d:0a:06:e8:9b:9b:e1:c1:46:df: 99:aa:e8:37:f3:12:7c:65:65:9d:68:ac:d7:8d:06: 2f:a0:1c:73:b4:44:ef:cc:4d:25:ce:5a:c0:5f:77: a2:e4:74:53:73:26:d1:94:a8:a8:48:9f:c9:07:5d: be:2a:b6:75:fc:53:69:27:42:35:ec:fe:c4:ea:f9: 44:49:d9:b9:81:15:5b:0a:0d:d7:6a:13:a0:5b:7d: 68:e0:e9:a8:5c:65:cc:99:45:9a:a8:a9:94:aa:78: 9e:ba:7e:af:2f:31:0c:25:86:3e:49:b3:04:36:d4: 16:5b:2f:f9:94:a1:a9:4b:32:01:f8:31:cc:02:98: b1:d7:79:de:41:4a:fd:27:50:38:57:d8:0e:7d:79: bd:65:d6:24:ce:ab:45:06:14:70:ac:5c:48:fc:93: c5:25:da:28:83:7f:31:e2:4a:eb:39:1f:40:de:25: 46:7f:4a:a3:26:41:80:6f:b2:1e:b7:b2:83:60:f0: 96:a2:77:25:39:b5:30:70:6d:93:72:b0:3f:43:5e: 14:e9:09:a6:6a:fa:8a:c3:28:1f:ca:09:09:2f:e2: 9c:58:eb:4a:ae:b8:1b:51:cb:35:35:d7:79:1e:31: 79:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:87:30:41:3B:3D:EC:3B:E5:75:78:0B:94:F3:78:8B:C2:EE:8D:81 X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/K4cwQTs97DvldXgLlPN4i8LujYE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.110.32.0/20 Signature Algorithm: sha256WithRSAEncryption 22:07:fd:69:b5:c4:41:4d:ab:4c:04:ea:c8:89:5d:94:4c:83: 26:f1:b9:02:67:4d:9e:b5:de:58:45:83:2c:06:9a:41:cc:91: 98:8e:f4:f7:c4:ba:c0:7a:d3:ed:5e:71:61:c2:ee:5b:72:58: 33:05:4d:d8:a9:05:e8:95:d2:7f:01:b7:de:48:cd:5d:06:2f: 4f:c9:d4:7d:84:db:82:4a:ed:3c:3e:95:be:cb:9d:b2:b9:ca: 25:48:70:88:97:d2:ac:03:23:b7:04:40:83:96:9e:d3:e6:40: 64:cf:0f:6c:32:a2:98:5b:47:7e:ab:ab:12:6d:eb:51:8b:f1: bd:ba:cc:c8:d6:44:85:e3:50:c4:6f:f9:4b:cb:02:f2:63:29: 84:d7:50:b7:5f:0d:da:6b:93:e1:e6:ba:1c:b4:e9:db:37:f8: 5b:3d:d8:73:d6:94:fb:e4:c1:48:b5:ab:2a:a0:43:67:db:c7: 02:c2:0b:f4:89:91:46:e5:6b:db:8c:52:54:34:a4:17:cb:b7: df:e4:47:66:24:e6:60:1d:43:c5:42:00:ea:f3:82:86:b7:19: 2f:c2:30:0e:04:4c:0b:24:22:5b:da:af:79:47:de:0d:3d:b1: 44:54:31:1b:c3:34:6b:e8:ff:4c:1e:03:93:62:97:e5:5d:2b: 59:4b:65:89 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNTEwMDEw MTI5NTlaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDJCODczMDQxM0IzREVD M0JFNTc1NzgwQjk0RjM3ODhCQzJFRThEODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuN16v8GLxTcPpDagx8SCXZ+XLLQoG6Jub4cFG35mq6DfzEnxl ZZ1orNeNBi+gHHO0RO/MTSXOWsBfd6LkdFNzJtGUqKhIn8kHXb4qtnX8U2knQjXs /sTq+URJ2bmBFVsKDddqE6BbfWjg6ahcZcyZRZqoqZSqeJ66fq8vMQwlhj5JswQ2 1BZbL/mUoalLMgH4McwCmLHXed5BSv0nUDhX2A59eb1l1iTOq0UGFHCsXEj8k8Ul 2iiDfzHiSus5H0DeJUZ/SqMmQYBvsh63soNg8JaidyU5tTBwbZNysD9DXhTpCaZq +orDKB/KCQkv4pxY60quuBtRyzU113keMXllAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUK4cwQTs97DvldXgLlPN4i8LujYEwHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5L0s0Y3dRVHM5N0R2bGRYZ0xsUE40aThMdWpZRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQbbiAwDQYJKoZIhvcNAQELBQADggEBACIH/Wm1xEFNq0wE6siJXZRMgybx uQJnTZ613lhFgywGmkHMkZiO9PfEusB60+1ecWHC7ltyWDMFTdipBeiV0n8Bt95I zV0GL0/J1H2E24JK7Tw+lb7LnbK5yiVIcIiX0qwDI7cEQIOWntPmQGTPD2wyophb R36rqxJt61GL8b26zMjWRIXjUMRv+UvLAvJjKYTXULdfDdprk+Hmuhy06ds3+Fs9 2HPWlPvkwUi1qyqgQ2fbxwLCC/SJkUbla9uMUlQ0pBfLt9/kR2Yk5mAdQ8VCAOrz goa3GS/CMA4ETAskIlvar3lH3g09sURUMRvDNGvo/0weA5Nil+VdK1lLZYk= -----END CERTIFICATE-----Generated at Mon Oct 20 16:22:24 2025 by rpki-client