$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/W7JAJoi60z9HhtVgt_X8uL7YQw8.roa File: W7JAJoi60z9HhtVgt_X8uL7YQw8.roa (raw, json) Hash identifier: 7cQEtq2OU7TyFYdtBG4gownH/N6lw84U1YMIgBR2S0k= Subject key identifier: 5B:B2:40:26:88:BA:D3:3F:47:86:D5:60:B7:F5:FC:B8:BE:D8:43:0F Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 016C Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/W7JAJoi60z9HhtVgt_X8uL7YQw8.roa Signing time: Wed 01 Oct 2025 01:30:06 +0000 ROA not before: Wed 01 Oct 2025 01:30:06 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 10021 IP address blocks: 202.95.208.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 13:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Oct 1 01:30:06 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=5BB2402688BAD33F4786D560B7F5FCB8BED8430F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c8:80:4b:b2:69:60:d0:52:7a:f4:d7:c0:df: be:15:65:b9:a0:48:f8:3c:66:9b:66:0c:d0:ff:c5: d8:03:ed:f3:9e:52:95:4b:7d:3a:2a:de:e7:1f:b4: 6c:ab:b1:3b:fa:6b:d6:79:e8:58:22:5b:3e:07:b5: 9c:cb:d7:c0:0d:bf:9f:50:ff:2a:27:06:ad:50:82: 57:20:13:fc:41:d0:1f:bb:1d:b2:83:38:40:32:90: 9e:90:48:50:4e:af:f5:30:54:92:7b:3e:7e:78:95: 9e:53:59:f4:76:30:dc:b6:a4:44:90:3a:21:af:c6: 5c:6a:7c:a0:24:f7:dc:e3:bd:28:68:c2:f1:38:4d: 23:2e:f1:42:67:f2:32:0f:d0:6b:71:b8:8f:ee:b6: 8c:51:96:25:6c:49:e5:91:0f:87:99:aa:85:ae:5c: 2d:52:31:02:34:e3:21:49:1d:cf:06:9b:6e:b3:6a: c4:5b:a0:14:6f:95:b6:66:89:ff:86:9b:e5:cb:02: c9:da:91:c9:f1:d5:86:66:f0:00:0f:ac:e0:e8:69: 9c:7a:3e:ba:a6:f7:b8:2c:6b:92:34:72:94:91:b2: f0:70:7f:b2:09:a3:d8:89:41:5b:7a:6a:75:65:f6: 34:b8:4d:2d:9f:ce:e4:24:6e:b1:c9:a1:15:44:e9: 2f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:B2:40:26:88:BA:D3:3F:47:86:D5:60:B7:F5:FC:B8:BE:D8:43:0F X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/W7JAJoi60z9HhtVgt_X8uL7YQw8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.95.208.0/21 Signature Algorithm: sha256WithRSAEncryption 64:2c:29:e7:06:11:f1:f6:7e:52:4d:e6:d8:ef:2c:b1:af:a9: 4e:2f:a7:f4:13:81:b9:11:80:9a:d4:79:fc:5d:e4:9e:71:77: f6:c6:ce:a9:93:28:da:76:a8:5b:4f:c0:cb:c1:86:98:89:b3: 34:9f:fe:2a:c1:1e:a7:ba:c7:2e:5c:0b:a3:9c:51:ca:21:d6: 57:e4:84:6c:c2:c1:77:10:0e:3e:f5:26:40:67:6a:02:a0:3d: a3:72:21:3b:a8:c6:26:ef:4f:c6:eb:47:96:47:83:56:bc:b5: 85:ad:9e:b9:e7:62:f2:40:05:41:ea:2f:18:63:84:ee:8d:dd: 05:db:8f:a5:66:28:33:c6:4a:77:f8:9d:00:52:00:45:1e:d1: f5:d4:eb:fc:c5:0d:de:86:18:68:5e:ae:39:14:1a:1e:8f:20: 43:4a:4c:31:f0:b0:b3:6b:77:d9:c5:dc:81:df:c1:73:36:b8: 42:35:ad:66:21:d9:ab:af:b9:97:12:9e:6a:1e:d6:8c:73:91: 7b:91:69:44:a2:0e:39:99:c5:3b:76:10:d4:cd:c0:65:ed:44: e0:f9:ad:cd:02:86:8b:46:e1:b8:20:d0:8c:3f:5e:91:9e:4f: ce:6b:ad:b0:9c:cd:1c:0d:d3:40:c9:a6:a2:84:d3:97:ab:72: 87:61:76:c8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNTEwMDEw MTMwMDZaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDVCQjI0MDI2ODhCQUQz M0Y0Nzg2RDU2MEI3RjVGQ0I4QkVEODQzMEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmyIBLsmlg0FJ69NfA374VZbmgSPg8ZptmDND/xdgD7fOeUpVL fToq3ucftGyrsTv6a9Z56FgiWz4HtZzL18ANv59Q/yonBq1QglcgE/xB0B+7HbKD OEAykJ6QSFBOr/UwVJJ7Pn54lZ5TWfR2MNy2pESQOiGvxlxqfKAk99zjvShowvE4 TSMu8UJn8jIP0GtxuI/utoxRliVsSeWRD4eZqoWuXC1SMQI04yFJHc8Gm26zasRb oBRvlbZmif+Gm+XLAsnakcnx1YZm8AAPrODoaZx6Prqm97gsa5I0cpSRsvBwf7IJ o9iJQVt6anVl9jS4TS2fzuQkbrHJoRVE6S/7AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUW7JAJoi60z9HhtVgt/X8uL7YQw8wHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5L1c3SkFKb2k2MHo5SGh0Vmd0X1g4dUw3WVF3OC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPKX9AwDQYJKoZIhvcNAQELBQADggEBAGQsKecGEfH2flJN5tjvLLGvqU4v p/QTgbkRgJrUefxd5J5xd/bGzqmTKNp2qFtPwMvBhpiJszSf/irBHqe6xy5cC6Oc Ucoh1lfkhGzCwXcQDj71JkBnagKgPaNyITuoxibvT8brR5ZHg1a8tYWtnrnnYvJA BUHqLxhjhO6N3QXbj6VmKDPGSnf4nQBSAEUe0fXU6/zFDd6GGGherjkUGh6PIENK TDHwsLNrd9nF3IHfwXM2uEI1rWYh2auvuZcSnmoe1oxzkXuRaUSiDjmZxTt2ENTN wGXtROD5rc0ChotG4bgg0Iw/XpGeT85rrbCczRwN00DJpqKE05ercodhdsg= -----END CERTIFICATE-----Generated at Mon Oct 20 16:22:19 2025 by rpki-client