$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/iU_B6RmCwK6HTGTEeGWycpStD2g.roa File: iU_B6RmCwK6HTGTEeGWycpStD2g.roa (raw, json) Hash identifier: YyVXGSw9US0CzDTua4sfeMCiYgsmo0otEtAvj4wZ+Ag= Subject key identifier: 89:4F:C1:E9:19:82:C0:AE:87:4C:64:C4:78:65:B2:72:94:AD:0F:68 Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 0167 Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/iU_B6RmCwK6HTGTEeGWycpStD2g.roa Signing time: Wed 01 Oct 2025 01:30:03 +0000 ROA not before: Wed 01 Oct 2025 01:30:03 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 10021 IP address blocks: 114.31.88.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 13:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Oct 1 01:30:03 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=894FC1E91982C0AE874C64C47865B27294AD0F68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:84:40:cb:fb:85:c7:62:bb:0e:9b:06:3a:42: 27:3c:3e:0f:ea:cd:69:57:13:dd:d7:0a:55:1f:48: 47:86:c6:5c:ef:16:76:06:89:c1:fc:ca:8b:53:b5: f4:00:7c:7a:99:90:cf:46:5c:7f:c5:68:ca:85:a8: 1f:14:35:81:3b:49:b8:0b:e3:bb:2b:44:11:18:6d: 12:1e:13:63:d6:67:72:d2:a0:b8:05:9d:33:5e:1e: b8:49:66:92:44:67:e0:6e:2c:30:86:1f:1e:e3:06: de:3f:14:c1:96:e0:42:14:b2:6f:b6:22:fb:97:a8: cf:8e:fc:6c:af:ec:07:be:7a:30:fb:46:03:f3:5a: 63:c1:30:45:99:c2:51:78:5f:b8:b4:6a:bf:24:8c: b2:8f:12:05:b4:af:8e:fb:9e:a8:c1:cc:8d:e2:b2: ee:81:4e:fc:78:69:d5:c0:4f:73:79:e5:d1:ee:b3: fc:e8:42:d1:f0:dd:98:30:f5:5a:c3:77:f9:83:e1: 47:eb:c1:bc:5a:b0:9d:7d:12:5b:48:29:05:12:1d: a0:27:82:9f:6f:4b:3a:46:87:b7:20:7f:fa:59:35: 0e:05:e9:b8:28:95:d9:cb:74:9a:91:8e:41:df:a1: d4:d3:2d:54:40:e4:bf:9e:28:d8:9f:c2:2f:e6:80: 7b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:4F:C1:E9:19:82:C0:AE:87:4C:64:C4:78:65:B2:72:94:AD:0F:68 X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/iU_B6RmCwK6HTGTEeGWycpStD2g.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.31.88.0/21 Signature Algorithm: sha256WithRSAEncryption 0d:81:1f:05:92:d0:f1:50:08:d6:73:58:38:fe:cb:93:b6:85: 4e:9b:1c:4f:33:b9:ae:06:bf:30:43:db:87:f7:24:59:bf:51: 0c:65:c3:79:70:f2:13:90:b0:8f:49:91:5b:d1:a9:9c:6f:24: c2:1b:a8:88:50:11:33:2e:e9:f1:d6:a2:08:9e:3f:0e:bb:f4: 9a:f3:85:a1:46:16:0c:e3:eb:32:04:15:a4:cb:1f:14:1a:83: 68:87:ac:be:78:ad:3e:b0:73:d2:b0:90:16:b7:74:4b:ef:c8: 36:a1:44:73:6b:d2:5f:4f:15:6f:14:28:1c:72:fc:16:6a:13: ed:55:f1:d4:78:cc:c0:90:39:68:a5:f8:d1:ab:4c:df:e3:af: 72:0f:88:14:ad:b5:28:c8:dd:ff:cb:a5:d2:97:5b:f7:09:dd: 8a:ca:9b:b9:00:ed:52:37:06:d4:6d:47:74:ca:8b:9e:b3:9f: 09:7c:2c:dc:8b:b2:f2:ca:86:f7:f7:97:7a:1d:93:f0:33:08: 6b:2d:2c:46:53:07:9d:22:85:66:c6:81:bb:68:9c:32:3f:bc: 78:c9:24:23:b0:7a:f8:dd:ab:ec:12:ad:00:9a:bc:81:31:ea: 46:1c:a9:32:5b:81:32:df:37:19:ef:70:27:d5:18:bf:f8:cd: 3d:74:a8:a4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNTEwMDEw MTMwMDNaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg5NEZDMUU5MTk4MkMw QUU4NzRDNjRDNDc4NjVCMjcyOTRBRDBGNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4hEDL+4XHYrsOmwY6Qic8Pg/qzWlXE93XClUfSEeGxlzvFnYG icH8yotTtfQAfHqZkM9GXH/FaMqFqB8UNYE7SbgL47srRBEYbRIeE2PWZ3LSoLgF nTNeHrhJZpJEZ+BuLDCGHx7jBt4/FMGW4EIUsm+2IvuXqM+O/Gyv7Ae+ejD7RgPz WmPBMEWZwlF4X7i0ar8kjLKPEgW0r477nqjBzI3isu6BTvx4adXAT3N55dHus/zo QtHw3Zgw9VrDd/mD4UfrwbxasJ19EltIKQUSHaAngp9vSzpGh7cgf/pZNQ4F6bgo ldnLdJqRjkHfodTTLVRA5L+eKNifwi/mgHsrAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUiU/B6RmCwK6HTGTEeGWycpStD2gwHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5L2lVX0I2Um1Dd0s2SFRHVEVlR1d5Y3BTdEQyZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANyH1gwDQYJKoZIhvcNAQELBQADggEBAA2BHwWS0PFQCNZzWDj+y5O2hU6b HE8zua4GvzBD24f3JFm/UQxlw3lw8hOQsI9JkVvRqZxvJMIbqIhQETMu6fHWogie Pw679JrzhaFGFgzj6zIEFaTLHxQag2iHrL54rT6wc9KwkBa3dEvvyDahRHNr0l9P FW8UKBxy/BZqE+1V8dR4zMCQOWil+NGrTN/jr3IPiBSttSjI3f/LpdKXW/cJ3YrK m7kA7VI3BtRtR3TKi56znwl8LNyLsvLKhvf3l3odk/AzCGstLEZTB50ihWbGgbto nDI/vHjJJCOwevjdq+wSrQCavIEx6kYcqTJbgTLfNxnvcCfVGL/4zT10qKQ= -----END CERTIFICATE-----Generated at Mon Oct 20 16:22:33 2025 by rpki-client