$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/zjPQ_hG7Ic1qRSVTI3CimyzZqYk.roa File: zjPQ_hG7Ic1qRSVTI3CimyzZqYk.roa (raw, json) Hash identifier: 6aQFv7XOiZUGslTGDyFaxaeL8bIiRyicm0Ibl0vgfCs= Subject key identifier: CE:33:D0:FE:11:BB:21:CD:6A:45:25:53:23:70:A2:9B:2C:D9:A9:89 Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 016E Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/zjPQ_hG7Ic1qRSVTI3CimyzZqYk.roa Signing time: Wed 01 Oct 2025 01:30:08 +0000 ROA not before: Wed 01 Oct 2025 01:30:08 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 10021 IP address blocks: 203.167.48.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 13:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 366 (0x16e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Oct 1 01:30:08 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=CE33D0FE11BB21CD6A4525532370A29B2CD9A989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3c:0e:58:18:3e:d9:8e:a2:13:0d:2d:b4:fd: a4:23:49:8d:04:7c:28:bd:68:1f:ff:d5:59:c7:5b: b1:63:9f:c7:33:94:dc:72:82:b4:53:a9:af:53:03: 3c:13:30:22:91:16:c3:1b:30:c1:a6:ea:70:15:07: 89:a0:d7:df:5b:d8:7a:d9:f0:51:de:8f:d5:4a:cf: 26:d0:1d:b8:76:76:43:86:82:16:7b:b0:f1:bf:50: 79:c9:b6:ab:4a:70:78:d9:58:e6:5a:4d:ac:b0:91: e1:82:03:01:34:94:fe:a9:11:b2:4c:c7:35:53:be: 35:fe:34:b0:95:b3:9b:27:e1:e5:87:68:2b:9d:58: f5:9b:d2:13:44:2a:04:81:a4:31:d3:ca:03:35:f2: 20:63:d7:e3:77:0a:56:2e:e6:ef:4d:c5:8b:87:d9: 4e:25:5f:de:5b:3e:1c:8c:06:8c:10:00:ae:ea:1b: bb:01:13:35:10:5f:a1:db:41:28:f7:03:58:8c:a6: a2:72:19:10:66:24:6f:44:1d:21:6b:fb:73:34:b9: ef:bb:6d:86:eb:a8:fa:28:f7:07:fa:ac:e7:84:46: 35:6e:c1:27:f1:a5:da:30:11:5f:6d:91:5d:9f:4d: 7a:01:1f:d5:ff:95:60:c3:9a:e3:95:c5:24:42:ae: 1e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:33:D0:FE:11:BB:21:CD:6A:45:25:53:23:70:A2:9B:2C:D9:A9:89 X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/zjPQ_hG7Ic1qRSVTI3CimyzZqYk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.167.48.0/20 Signature Algorithm: sha256WithRSAEncryption 28:8f:7a:cb:c1:76:95:d3:f4:0a:59:a7:82:22:7d:1a:8d:6f: 12:51:4d:23:c0:b8:b5:24:82:e7:af:21:47:f1:e2:4f:76:aa: 55:ca:ed:e0:f2:67:e3:51:b5:ea:90:97:3d:be:b6:49:c0:f7: 9a:ab:94:8b:28:61:ea:53:f8:0b:1e:35:df:12:ec:79:ab:35: 92:d2:60:53:98:70:d5:27:14:3a:25:7d:9b:5a:c1:92:48:19: cc:0d:d9:24:ea:f2:55:7a:d2:6f:83:35:82:88:18:60:0a:bf: 71:15:83:aa:dd:49:b8:41:62:db:d8:fd:a7:7d:0e:89:8e:6d: 4a:6b:a0:9b:49:84:b5:a4:8f:e2:57:0f:da:e8:54:b7:2b:0f: 29:fe:70:0c:22:a7:71:c0:32:cf:e9:8c:67:d4:dd:b2:25:c8: 6c:10:49:28:69:38:fc:a7:bb:59:9c:5c:34:6b:7c:81:fd:0e: 74:fe:91:32:91:1b:42:5c:a7:c4:42:e2:25:43:02:c9:8d:08: 1f:6e:ab:5f:10:0e:c8:32:99:2b:67:6a:6a:16:e0:17:1d:5c: ff:3e:3e:90:b4:ef:6b:51:04:af:7e:93:8a:c6:de:2b:ed:dd: aa:88:35:82:a0:47:c6:26:9c:ef:9c:17:c5:e7:1a:08:30:09: b2:6d:30:8c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNTEwMDEw MTMwMDhaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKENFMzNEMEZFMTFCQjIx Q0Q2QTQ1MjU1MzIzNzBBMjlCMkNEOUE5ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnPA5YGD7ZjqITDS20/aQjSY0EfCi9aB//1VnHW7Fjn8czlNxy grRTqa9TAzwTMCKRFsMbMMGm6nAVB4mg199b2HrZ8FHej9VKzybQHbh2dkOGghZ7 sPG/UHnJtqtKcHjZWOZaTaywkeGCAwE0lP6pEbJMxzVTvjX+NLCVs5sn4eWHaCud WPWb0hNEKgSBpDHTygM18iBj1+N3ClYu5u9NxYuH2U4lX95bPhyMBowQAK7qG7sB EzUQX6HbQSj3A1iMpqJyGRBmJG9EHSFr+3M0ue+7bYbrqPoo9wf6rOeERjVuwSfx pdowEV9tkV2fTXoBH9X/lWDDmuOVxSRCrh6zAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUzjPQ/hG7Ic1qRSVTI3CimyzZqYkwHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5L3pqUFFfaEc3SWMxcVJTVlRJM0NpbXl6WnFZay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATLpzAwDQYJKoZIhvcNAQELBQADggEBACiPesvBdpXT9ApZp4IifRqNbxJR TSPAuLUkguevIUfx4k92qlXK7eDyZ+NRteqQlz2+tknA95qrlIsoYepT+AseNd8S 7HmrNZLSYFOYcNUnFDolfZtawZJIGcwN2STq8lV60m+DNYKIGGAKv3EVg6rdSbhB YtvY/ad9DomObUproJtJhLWkj+JXD9roVLcrDyn+cAwip3HAMs/pjGfU3bIlyGwQ SShpOPynu1mcXDRrfIH9DnT+kTKRG0Jcp8RC4iVDAsmNCB9uq18QDsgymStnamoW 4BcdXP8+PpC072tRBK9+k4rG3ivt3aqINYKgR8YmnO+cF8XnGggwCbJtMIw= -----END CERTIFICATE-----Generated at Mon Oct 20 16:22:25 2025 by rpki-client