$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/530/cbRGWDBKSv2gTmdcjJhmNv85-Iw.roa File: cbRGWDBKSv2gTmdcjJhmNv85-Iw.roa (raw, json) Hash identifier: aolTRljc52w7o2TKtCd6uNKYn0xNhW7op0L86aD5ykk= Subject key identifier: 71:B4:46:58:30:4A:4A:FD:A0:4E:67:5C:8C:98:66:36:FF:39:F8:8C Certificate issuer: /CN=40D220B9E4A6358E03CD47864517D9D300B06FF0 Certificate serial: 63 Authority key identifier: 40:D2:20:B9:E4:A6:35:8E:03:CD:47:86:45:17:D9:D3:00:B0:6F:F0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/cbRGWDBKSv2gTmdcjJhmNv85-Iw.roa Signing time: Wed 01 Oct 2025 01:29:39 +0000 ROA not before: Wed 01 Oct 2025 01:29:39 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 59125 IP address blocks: 160.237.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40D220B9E4A6358E03CD47864517D9D300B06FF0 Validity Not Before: Oct 1 01:29:39 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=71B44658304A4AFDA04E675C8C986636FF39F88C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1e:ef:70:49:7d:09:e8:5d:f8:e6:a2:0a:0d: f7:bf:e3:57:a4:d3:f5:71:85:1c:ae:fc:28:62:06: cc:63:10:12:39:7d:ca:d8:c3:19:af:4e:98:14:7e: 61:0b:ff:09:a8:11:c2:40:63:48:3d:6a:73:95:18: c2:20:ee:82:0f:47:32:5c:43:ac:5b:97:ee:58:01: 7d:f1:70:f6:cd:bf:c1:2b:c5:a7:79:f4:ea:79:82: e2:b1:8d:b1:7a:85:9a:23:cb:42:43:fc:1a:52:77: e2:46:0a:fa:f5:d3:22:29:1d:46:a0:fd:f5:ca:f1: ad:8e:2e:83:59:c4:20:6e:35:11:d0:73:c9:12:52: 40:83:df:54:99:1a:2c:04:72:5a:b4:1b:5b:53:bb: d3:81:db:fd:79:0c:95:d4:ca:6d:93:3e:ca:ff:b3: 91:1f:8c:d5:66:27:7e:fd:af:a5:f0:a7:70:a5:fe: 11:d4:4c:82:29:cc:aa:dd:78:5d:3b:d2:8f:7c:0d: 93:fd:3f:4e:90:12:d1:68:11:46:85:70:b6:5b:77: a8:9b:9b:e1:ce:b8:2a:18:3a:ce:ac:86:e4:63:ce: 7f:b2:4c:46:36:9e:78:ff:e4:a3:ea:7d:53:5e:4e: 31:cd:82:88:09:cb:38:99:b8:96:69:3f:a6:12:60: 2e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:B4:46:58:30:4A:4A:FD:A0:4E:67:5C:8C:98:66:36:FF:39:F8:8C X509v3 Authority Key Identifier: keyid:40:D2:20:B9:E4:A6:35:8E:03:CD:47:86:45:17:D9:D3:00:B0:6F:F0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/cbRGWDBKSv2gTmdcjJhmNv85-Iw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.237.128.0/19 Signature Algorithm: sha256WithRSAEncryption 85:ee:92:64:f8:17:3e:05:2f:25:4b:10:72:2a:dc:2a:4a:7e: 8d:b6:0c:e5:01:4b:ef:7a:cc:74:09:58:1b:2c:63:eb:63:08: 54:5c:d0:d1:1c:3c:69:98:63:11:e3:b8:69:77:dc:3d:2f:ef: 40:ca:ee:ed:77:3f:37:56:04:19:f5:20:ef:22:ad:4d:e6:81: b7:32:de:9d:e5:47:66:5a:53:82:77:f3:4e:ea:3e:a4:0a:f0: 47:f1:da:65:4b:c2:bf:55:f3:87:bd:5b:df:02:f9:2b:3c:ce: ea:c7:3b:97:90:5f:25:cf:e3:70:ac:75:98:bb:18:fa:62:1b: 34:a3:76:c5:c3:68:d1:58:f6:22:08:8e:35:f5:ae:45:a7:a5: 63:9e:6a:0c:92:c6:ae:a8:79:3c:4e:1f:b5:9a:4f:bf:7a:6c: 8c:9c:16:70:fc:14:42:7a:83:4e:bd:cf:01:fe:70:d0:71:13: 5c:a2:56:ec:58:99:d2:7e:86:28:b9:69:47:7e:61:2c:77:1c: 1a:e9:ea:a9:7b:c9:8b:05:fc:49:2d:14:28:5a:1f:2b:a7:0e: 75:9f:65:83:d7:a3:1b:9b:46:90:70:26:2d:3b:33:b8:6d:02: 66:55:ab:f9:89:e2:0b:16:14:01:0f:a5:73:15:21:cc:83:b0: 6d:d5:8e:48 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBYzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0MEQy MjBCOUU0QTYzNThFMDNDRDQ3ODY0NTE3RDlEMzAwQjA2RkYwMB4XDTI1MTAwMTAx MjkzOVoXDTI2MDkxNTAxMzAwMlowMzExMC8GA1UEAxMoNzFCNDQ2NTgzMDRBNEFG REEwNEU2NzVDOEM5ODY2MzZGRjM5Rjg4QzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANAe73BJfQnoXfjmogoN97/jV6TT9XGFHK78KGIGzGMQEjl9ytjD Ga9OmBR+YQv/CagRwkBjSD1qc5UYwiDugg9HMlxDrFuX7lgBffFw9s2/wSvFp3n0 6nmC4rGNsXqFmiPLQkP8GlJ34kYK+vXTIikdRqD99crxrY4ug1nEIG41EdBzyRJS QIPfVJkaLARyWrQbW1O704Hb/XkMldTKbZM+yv+zkR+M1WYnfv2vpfCncKX+EdRM ginMqt14XTvSj3wNk/0/TpAS0WgRRoVwtlt3qJub4c64Khg6zqyG5GPOf7JMRjae eP/ko+p9U15OMc2CiAnLOJm4lmk/phJgLpkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRxtEZYMEpK/aBOZ1yMmGY2/zn4jDAfBgNVHSMEGDAWgBRA0iC55KY1jgPNR4ZF F9nTALBv8DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTMwL1FOSWd1ZVNtTlk0RHpVZUdSUmZaMHdDd2JfQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1FOSWd1ZVNtTlk0RHpVZUdSUmZaMHdD d2JfQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MzAvY2JSR1dEQktTdjJnVG1kY2pKaG1Odjg1LUl3LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBaDtgDANBgkqhkiG9w0BAQsFAAOCAQEAhe6SZPgXPgUvJUsQcircKkp+jbYM 5QFL73rMdAlYGyxj62MIVFzQ0Rw8aZhjEeO4aXfcPS/vQMru7Xc/N1YEGfUg7yKt TeaBtzLeneVHZlpTgnfzTuo+pArwR/HaZUvCv1Xzh71b3wL5KzzO6sc7l5BfJc/j cKx1mLsY+mIbNKN2xcNo0Vj2IgiONfWuRaelY55qDJLGrqh5PE4ftZpPv3psjJwW cPwUQnqDTr3PAf5w0HETXKJW7FiZ0n6GKLlpR35hLHccGunqqXvJiwX8SS0UKFof K6cOdZ9lg9ejG5tGkHAmLTszuG0CZlWr+YniCxYUAQ+lcxUhzIOwbdWOSA== -----END CERTIFICATE-----Generated at Tue Oct 21 08:04:36 2025 by rpki-client