$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/539/ycI1n9hTECFTv8u8qy75fUapTfo.roa File: ycI1n9hTECFTv8u8qy75fUapTfo.roa (raw, json) Hash identifier: +XfiFYJdPpLp/e0ykMtL1bKwG6kgdX+408oLoDNfReg= Subject key identifier: C9:C2:35:9F:D8:53:10:21:53:BF:CB:BC:AB:2E:F9:7D:46:A9:4D:FA Certificate issuer: /CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Certificate serial: 9A Authority key identifier: 5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/ycI1n9hTECFTv8u8qy75fUapTfo.roa Signing time: Wed 01 Oct 2025 01:29:51 +0000 ROA not before: Wed 01 Oct 2025 01:29:51 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 55900 IP address blocks: 123.100.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 02:34:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Validity Not Before: Oct 1 01:29:51 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=C9C2359FD853102153BFCBBCAB2EF97D46A94DFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ee:36:c3:e9:c4:14:8b:d9:63:e3:33:b1:24: 39:cc:71:34:56:63:b3:92:4a:63:55:18:31:50:d6: 12:86:ef:26:b2:7c:35:d1:5d:9e:4c:32:b2:4e:ff: 38:f0:71:29:54:a6:fa:8d:ee:98:ba:02:22:f6:87: bb:ec:b6:a1:0c:0c:1a:bc:09:2a:24:55:30:72:ea: 16:6a:ca:87:cc:ec:6c:ac:fd:5d:bc:c4:49:8e:c2: 0e:92:fb:be:26:0a:df:c9:ca:5a:05:e4:5d:d2:d8: 52:7b:dc:c7:32:6e:a6:fb:a5:52:51:ee:a2:31:80: 23:ef:2d:33:cd:61:2e:61:68:eb:bb:f8:18:3f:77: c0:9c:f2:ff:d2:13:25:f1:b8:b4:5d:44:5d:f3:81: f5:36:e3:68:db:82:cc:5a:e7:02:42:c1:34:87:4d: 97:e3:37:6c:bd:3c:c3:65:03:27:af:62:83:9f:5e: 34:3a:1e:1e:41:63:d2:46:75:4a:c2:f4:f2:27:b2: 3f:e0:78:46:8e:f1:35:ab:e4:f9:d5:d2:6c:c7:0d: cf:c8:ce:5c:d0:07:01:67:3b:75:e9:1e:59:1e:20: 5b:a3:45:06:00:d5:7e:bd:79:30:c1:39:12:ff:ee: 27:7e:e6:46:2a:ae:33:20:b1:64:4a:23:91:cd:4f: af:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:C2:35:9F:D8:53:10:21:53:BF:CB:BC:AB:2E:F9:7D:46:A9:4D:FA X509v3 Authority Key Identifier: keyid:5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/ycI1n9hTECFTv8u8qy75fUapTfo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.100.136.0/22 Signature Algorithm: sha256WithRSAEncryption 3d:6a:3a:03:5f:79:6e:da:b5:d7:82:8d:f9:bd:3e:33:b5:d1: 8f:8c:45:73:37:a0:0b:3d:44:25:9d:86:68:6d:17:12:e4:cd: fc:b8:b9:36:93:4b:6f:97:2b:38:59:43:f4:11:86:be:a2:67: 87:75:cf:36:8d:5c:5e:1a:88:35:0d:26:cc:67:6d:bf:bc:84: 61:e9:d4:d7:77:73:30:81:60:81:a2:ab:bc:a3:f8:7e:d1:c8: db:d8:d2:05:b3:a5:1a:32:5f:fe:8e:8d:1d:fe:f5:bd:5e:6c: ad:1a:d8:38:5a:d5:f0:a0:8d:a4:2d:c9:d4:5b:00:6e:12:ba: 83:6c:02:19:c5:e7:43:67:e1:75:67:a3:20:0e:5d:81:0a:8a: 7c:3d:5d:c5:06:e9:72:22:0d:8d:d7:27:ed:30:6f:8e:91:8c: f9:d5:aa:28:e1:5f:89:9e:46:e0:0b:c1:2c:f3:6c:87:9f:11: c6:dd:29:12:fd:4b:95:c8:eb:4b:8b:13:f8:85:96:92:d4:f6: ec:7f:08:ee:84:9e:6e:57:ef:e5:60:f5:6f:ae:a9:de:56:82: 31:ce:c5:cc:aa:b0:0f:02:e8:3e:cb:42:8a:41:59:4c:29:80: 5c:ad:c7:1b:8b:49:b3:46:ee:13:2b:a0:93:26:13:a0:cb:12: e5:6d:45:fe -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAJowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUIw RDcyRjlGNDMwQjdENDAwMzM3NUYxMEQ1MDI1QjlFNUMwMDQzNzAeFw0yNTEwMDEw MTI5NTFaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM5QzIzNTlGRDg1MzEw MjE1M0JGQ0JCQ0FCMkVGOTdENDZBOTRERkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQ7jbD6cQUi9lj4zOxJDnMcTRWY7OSSmNVGDFQ1hKG7yayfDXR XZ5MMrJO/zjwcSlUpvqN7pi6AiL2h7vstqEMDBq8CSokVTBy6hZqyofM7Gys/V28 xEmOwg6S+74mCt/JyloF5F3S2FJ73Mcybqb7pVJR7qIxgCPvLTPNYS5haOu7+Bg/ d8Cc8v/SEyXxuLRdRF3zgfU242jbgsxa5wJCwTSHTZfjN2y9PMNlAyevYoOfXjQ6 Hh5BY9JGdUrC9PInsj/geEaO8TWr5PnV0mzHDc/IzlzQBwFnO3XpHlkeIFujRQYA 1X69eTDBORL/7id+5kYqrjMgsWRKI5HNT6/HAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUycI1n9hTECFTv8u8qy75fUapTfowHwYDVR0jBBgwFoAUWw1y+fQwt9QAM3Xx DVAlueXABDcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzUzOS9XdzF5LWZRd3Q5UUFNM1h4RFZBbHVlWEFCRGMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9XdzF5LWZRd3Q5UUFNM1h4RFZBbHVl WEFCRGMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTM5L3ljSTFuOWhURUNGVHY4dThxeTc1ZlVhcFRmby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJ7ZIgwDQYJKoZIhvcNAQELBQADggEBAD1qOgNfeW7atdeCjfm9PjO10Y+M RXM3oAs9RCWdhmhtFxLkzfy4uTaTS2+XKzhZQ/QRhr6iZ4d1zzaNXF4aiDUNJsxn bb+8hGHp1Nd3czCBYIGiq7yj+H7RyNvY0gWzpRoyX/6OjR3+9b1ebK0a2Dha1fCg jaQtydRbAG4SuoNsAhnF50Nn4XVnoyAOXYEKinw9XcUG6XIiDY3XJ+0wb46RjPnV qijhX4meRuALwSzzbIefEcbdKRL9S5XI60uLE/iFlpLU9ux/CO6Enm5X7+Vg9W+u qd5WgjHOxcyqsA8C6D7LQopBWUwpgFytxxuLSbNG7hMroJMmE6DLEuVtRf4= -----END CERTIFICATE-----Generated at Tue Oct 21 04:00:39 2025 by rpki-client