$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/539/nfljsvxV4phLW-N_w6STTqMBkxc.roa File: nfljsvxV4phLW-N_w6STTqMBkxc.roa (raw, json) Hash identifier: fzoF5TgtI4wa9f24g+68ecAcYHF3sQnEiVKkSovsZOM= Subject key identifier: 9D:F9:63:B2:FC:55:E2:98:4B:5B:E3:7F:C3:A4:93:4E:A3:01:93:17 Certificate issuer: /CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Certificate serial: 9B Authority key identifier: 5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/nfljsvxV4phLW-N_w6STTqMBkxc.roa Signing time: Wed 01 Oct 2025 01:29:52 +0000 ROA not before: Wed 01 Oct 2025 01:29:52 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 55900 IP address blocks: 123.100.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 21:29:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Validity Not Before: Oct 1 01:29:52 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=9DF963B2FC55E2984B5BE37FC3A4934EA3019317 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a9:87:90:92:50:fd:38:6d:1f:bf:d2:42:a3: a9:47:8a:76:e5:aa:fa:d0:ed:9b:5a:07:b6:83:73: 81:8f:33:28:98:bd:4d:90:46:92:b0:ef:8d:29:4a: 9a:78:1b:6a:d7:6a:f3:aa:c1:cc:44:66:4f:0d:e3: 0e:f9:55:67:a4:a4:80:8b:08:4f:fa:c6:9d:14:76: d5:94:cc:10:ef:86:d3:78:e6:b1:48:d5:b1:b6:e6: eb:48:23:1c:d4:1e:23:76:dc:56:8f:2b:9b:c4:c9: be:a6:16:fa:8f:77:14:78:e3:d5:6d:57:ea:1e:26: 92:5c:f8:29:cf:a3:19:3a:1d:75:5f:a5:73:93:82: 6d:e4:ac:6d:a2:cc:a1:4d:54:90:d8:9a:c8:b8:9c: b8:96:b8:1d:34:ef:0c:9b:9d:da:83:ce:60:3c:8e: 05:7b:55:7a:cf:d0:e5:8c:16:6c:96:7a:fd:0c:03: f3:89:59:1e:14:31:ed:e8:d3:6a:b4:a4:cb:97:50: f9:37:a3:79:ee:89:13:50:7e:8c:1e:bf:a4:f2:5e: 9a:22:90:2f:46:38:dd:f3:9e:d7:f1:c8:98:6d:ad: 4a:66:9e:ac:1c:15:7b:e4:c9:c4:80:f7:97:8b:5c: ab:e5:d3:dd:fa:5f:cb:99:a3:69:31:a7:fe:64:3a: f0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:F9:63:B2:FC:55:E2:98:4B:5B:E3:7F:C3:A4:93:4E:A3:01:93:17 X509v3 Authority Key Identifier: keyid:5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/nfljsvxV4phLW-N_w6STTqMBkxc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.100.156.0/22 Signature Algorithm: sha256WithRSAEncryption 35:0b:d2:19:dd:17:85:26:2b:55:d3:8e:62:18:5c:3e:d8:94: db:c0:7c:bc:63:69:fe:6b:21:76:72:e7:fe:96:c2:1e:51:4e: 43:dc:8d:16:84:f4:f3:d1:69:08:ae:08:08:e4:b0:9b:2f:95: 1b:fe:d8:53:26:22:41:05:14:af:ce:9f:a1:4a:53:b6:0a:14: ad:a0:e5:04:36:61:68:ef:54:77:f1:02:0d:3c:0a:56:a9:cb: f5:13:6a:7b:a5:cd:11:00:fe:02:95:02:28:32:78:ff:b9:5d: ee:9f:c5:1e:79:ee:7c:fa:2a:33:40:a0:f9:e1:fc:2c:fb:ef: f5:91:c5:c1:de:4e:2a:4e:36:dd:3b:1c:e3:6c:8f:45:a0:87: 92:90:41:ab:c5:ab:9c:06:dc:59:1e:48:b0:d1:77:61:44:7f: 4b:1b:44:9a:c5:3c:de:a3:8e:44:ae:d7:db:78:e7:9e:6a:28: 5e:8c:b0:a1:31:8a:7a:9b:6e:b0:24:37:06:36:d4:7d:6d:55: f5:64:80:a2:de:de:93:f0:a5:b8:c0:33:a7:a5:6a:61:33:0d: b9:fa:b3:2a:73:ed:95:87:dd:90:de:3f:03:35:f0:07:2d:88: 89:72:d7:fd:73:69:63:a3:08:14:2d:a3:43:c1:4a:29:6e:b8: ea:e1:9a:1f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAJswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUIw RDcyRjlGNDMwQjdENDAwMzM3NUYxMEQ1MDI1QjlFNUMwMDQzNzAeFw0yNTEwMDEw MTI5NTJaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDlERjk2M0IyRkM1NUUy OTg0QjVCRTM3RkMzQTQ5MzRFQTMwMTkzMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrqYeQklD9OG0fv9JCo6lHinblqvrQ7ZtaB7aDc4GPMyiYvU2Q RpKw740pSpp4G2rXavOqwcxEZk8N4w75VWekpICLCE/6xp0UdtWUzBDvhtN45rFI 1bG25utIIxzUHiN23FaPK5vEyb6mFvqPdxR449VtV+oeJpJc+CnPoxk6HXVfpXOT gm3krG2izKFNVJDYmsi4nLiWuB007wybndqDzmA8jgV7VXrP0OWMFmyWev0MA/OJ WR4UMe3o02q0pMuXUPk3o3nuiRNQfowev6TyXpoikC9GON3zntfxyJhtrUpmnqwc FXvkycSA95eLXKvl0936X8uZo2kxp/5kOvDHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUnfljsvxV4phLW+N/w6STTqMBkxcwHwYDVR0jBBgwFoAUWw1y+fQwt9QAM3Xx DVAlueXABDcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzUzOS9XdzF5LWZRd3Q5UUFNM1h4RFZBbHVlWEFCRGMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9XdzF5LWZRd3Q5UUFNM1h4RFZBbHVl WEFCRGMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTM5L25mbGpzdnhWNHBoTFctTl93NlNUVHFNQmt4Yy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJ7ZJwwDQYJKoZIhvcNAQELBQADggEBADUL0hndF4UmK1XTjmIYXD7YlNvA fLxjaf5rIXZy5/6Wwh5RTkPcjRaE9PPRaQiuCAjksJsvlRv+2FMmIkEFFK/On6FK U7YKFK2g5QQ2YWjvVHfxAg08Clapy/UTanulzREA/gKVAigyeP+5Xe6fxR557nz6 KjNAoPnh/Cz77/WRxcHeTipONt07HONsj0Wgh5KQQavFq5wG3FkeSLDRd2FEf0sb RJrFPN6jjkSu19t4555qKF6MsKExinqbbrAkNwY21H1tVfVkgKLe3pPwpbjAM6el amEzDbn6sypz7ZWH3ZDePwM18ActiIly1/1zaWOjCBQto0PBSiluuOrhmh8= -----END CERTIFICATE-----Generated at Tue Oct 21 01:26:52 2025 by rpki-client