$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/O9bhmMjndisej9d5mtfNqCh9Yck.roa File: O9bhmMjndisej9d5mtfNqCh9Yck.roa (raw, json) Hash identifier: F8QUAnTzn/5cj0z9kru1t2lYFhze/S5sg3ixPo1+IzA= Subject key identifier: 3B:D6:E1:98:C8:E7:76:2B:1E:8F:D7:79:9A:D7:CD:A8:28:7D:61:C9 Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Certificate serial: 01FC Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/O9bhmMjndisej9d5mtfNqCh9Yck.roa Signing time: Wed 01 Oct 2025 01:33:42 +0000 ROA not before: Wed 01 Oct 2025 01:33:42 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 131925 IP address blocks: 202.247.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 21:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 508 (0x1fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Validity Not Before: Oct 1 01:33:42 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=3BD6E198C8E7762B1E8FD7799AD7CDA8287D61C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:96:d8:0a:c0:09:6d:2e:f7:f7:0c:3d:d2:b7: 0d:46:2a:29:f4:92:55:4a:05:5f:c2:71:a6:03:91: 2e:b0:73:b6:7a:5d:50:f7:2d:b4:ac:dc:f3:49:67: 1a:51:0b:72:fa:0b:7b:0c:70:cb:69:62:62:cd:df: 56:31:e4:1e:ff:ea:cf:39:82:df:52:f2:1a:86:b8: ae:8b:ad:50:59:4c:eb:b5:09:0e:1c:ce:a9:c1:22: 44:17:5c:bd:7c:43:a9:62:3f:b7:5d:d4:c9:27:c2: 89:53:b4:5a:5c:2b:9c:b6:76:2d:af:78:80:94:a0: b1:ef:b3:02:9b:2f:23:4a:09:86:8d:27:22:64:d4: 3d:a5:1e:5e:36:a3:b5:b9:df:78:ce:38:9e:c8:7c: a4:22:21:2f:13:b6:f0:7c:10:9b:28:d4:2a:3c:95: e5:f7:06:12:75:a7:10:a7:11:57:b4:50:8a:0e:67: ca:a4:90:ff:e6:c0:f1:5d:67:23:17:77:44:7d:4c: 1c:3b:6e:0d:58:d8:34:23:97:6e:1d:43:0f:9c:a6: aa:59:81:83:b6:48:d4:ed:be:6c:d8:44:50:a1:29: 85:fd:3e:d2:72:9d:b8:6c:2e:90:1e:8a:92:c4:5a: 81:b7:fa:ad:ef:bd:96:22:b1:e9:5d:09:51:d9:93: fa:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:D6:E1:98:C8:E7:76:2B:1E:8F:D7:79:9A:D7:CD:A8:28:7D:61:C9 X509v3 Authority Key Identifier: keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/O9bhmMjndisej9d5mtfNqCh9Yck.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.247.168.0/21 Signature Algorithm: sha256WithRSAEncryption 6c:62:c5:b4:a1:3e:3c:6e:1c:ba:08:2b:bd:e7:7c:76:93:32: d5:52:2f:14:be:4d:b3:97:ca:1a:68:e0:12:ee:26:12:0c:03: b8:ab:61:25:0a:76:1d:f3:be:db:ef:bd:95:1c:43:b0:f6:f9: b5:19:1a:e3:48:2f:36:88:36:bf:73:b5:71:19:11:24:ae:c3: af:2f:73:e1:30:81:41:28:cb:ce:b3:98:b8:03:36:1a:8b:25: 26:6f:4f:bc:ea:49:03:5a:c4:33:cb:ad:93:78:6a:9f:a9:61: f0:02:b5:a6:28:4b:75:30:d4:1c:0b:7b:bf:c3:2c:7a:e1:d7: e8:86:29:93:81:5f:91:27:eb:e8:98:41:86:bd:28:9a:8f:b7: 87:cf:53:c3:5f:b1:75:1c:51:5a:b0:fd:28:57:52:6e:dc:e6: b8:98:36:63:f2:63:03:7d:d5:04:63:c4:06:81:2b:6b:59:8d: 1a:43:10:30:b3:d5:4a:1d:fb:3a:58:fb:42:f2:89:75:ad:e2: 45:e9:2d:52:49:48:35:bc:04:33:02:b6:3c:bf:93:5a:84:69: ca:48:62:74:8c:5c:7f:64:bb:96:fe:d9:ef:2a:85:2c:05:97: 43:aa:ff:6c:bc:9b:bb:6d:35:0a:2d:94:46:14:70:99:d3:40: ca:24:05:c8 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgICAfwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4 M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yNTEwMDEw MTMzNDJaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDNCRDZFMTk4QzhFNzc2 MkIxRThGRDc3OTlBRDdDREE4Mjg3RDYxQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWltgKwAltLvf3DD3Stw1GKin0klVKBV/CcaYDkS6wc7Z6XVD3 LbSs3PNJZxpRC3L6C3sMcMtpYmLN31Yx5B7/6s85gt9S8hqGuK6LrVBZTOu1CQ4c zqnBIkQXXL18Q6liP7dd1MknwolTtFpcK5y2di2veICUoLHvswKbLyNKCYaNJyJk 1D2lHl42o7W533jOOJ7IfKQiIS8TtvB8EJso1Co8leX3BhJ1pxCnEVe0UIoOZ8qk kP/mwPFdZyMXd0R9TBw7bg1Y2DQjl24dQw+cpqpZgYO2SNTtvmzYRFChKYX9PtJy nbhsLpAeipLEWoG3+q3vvZYiseldCVHZk/qbAgMBAAGjggIgMIICHDAdBgNVHQ4E FgQUO9bhmMjndisej9d5mtfNqCh9YckwHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwELBIGsMIGpMF8GCCsG AQUFBzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzYvTzliaG1Nam5kaXNlajlkNW10Zk5xQ2g5WWNrLnJvYTBGBggr BgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3JyZHAv YXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME A8r3qDANBgkqhkiG9w0BAQsFAAOCAQEAbGLFtKE+PG4cuggrved8dpMy1VIvFL5N s5fKGmjgEu4mEgwDuKthJQp2HfO+2++9lRxDsPb5tRka40gvNog2v3O1cRkRJK7D ry9z4TCBQSjLzrOYuAM2GoslJm9PvOpJA1rEM8utk3hqn6lh8AK1pihLdTDUHAt7 v8MseuHX6IYpk4FfkSfr6JhBhr0omo+3h89Tw1+xdRxRWrD9KFdSbtzmuJg2Y/Jj A33VBGPEBoEra1mNGkMQMLPVSh37Olj7QvKJda3iRektUklINbwEMwK2PL+TWoRp ykhidIxcf2S7lv7Z7yqFLAWXQ6r/bLybu201Ci2URhRwmdNAyiQFyA== -----END CERTIFICATE-----Generated at Tue Oct 21 02:20:01 2025 by rpki-client