$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/803/4XmCXtY7qRfLEjW2pDAgvIF1XMg.roa File: 4XmCXtY7qRfLEjW2pDAgvIF1XMg.roa (raw, json) Hash identifier: yFOS272p2nZV9rTieDjI5+EyE4rhH6K0Y6k8ElQS1mE= Subject key identifier: E1:79:82:5E:D6:3B:A9:17:CB:12:35:B6:A4:30:20:BC:81:75:5C:C8 Certificate issuer: /CN=E98C96D61ADABE6F87001F7231581BB31FA87C98 Certificate serial: 14 Authority key identifier: E9:8C:96:D6:1A:DA:BE:6F:87:00:1F:72:31:58:1B:B3:1F:A8:7C:98 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6YyW1hravm-HAB9yMVgbsx-ofJg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/803/4XmCXtY7qRfLEjW2pDAgvIF1XMg.roa Signing time: Tue 07 Oct 2025 01:30:00 +0000 ROA not before: Tue 07 Oct 2025 01:30:00 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 18281 IP address blocks: 157.5.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/803/6YyW1hravm-HAB9yMVgbsx-ofJg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/803/6YyW1hravm-HAB9yMVgbsx-ofJg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6YyW1hravm-HAB9yMVgbsx-ofJg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E98C96D61ADABE6F87001F7231581BB31FA87C98 Validity Not Before: Oct 7 01:30:00 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=E179825ED63BA917CB1235B6A43020BC81755CC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:92:e5:a6:f2:fd:6d:20:77:f4:5a:b0:2f:b0: 24:23:d8:9a:26:2a:34:c2:31:41:b6:ab:d4:f8:de: c2:fa:f4:1d:b2:d8:e2:6d:b1:47:a5:ae:4c:2a:ca: 8e:cf:be:c9:b2:7d:51:38:a4:b2:8a:ce:60:7e:6e: ab:91:5b:4b:b2:2d:22:1f:1d:27:fb:f0:e4:8f:04: 28:cb:f4:6f:c5:5e:5b:95:cf:59:da:e3:a3:c1:61: 2e:9d:e5:71:1c:43:b7:c0:19:2f:d5:c2:6d:26:9a: 7a:c9:d1:f7:88:54:0f:ea:77:79:85:b4:dc:5d:82: 87:5b:2f:6e:52:ef:f5:ed:53:9c:22:6b:a9:a3:35: 2c:fb:c0:5f:0d:8b:47:99:06:fe:60:1e:f3:90:d8: 92:34:16:77:f7:8b:1f:05:54:85:e2:16:11:82:84: d5:d7:9a:cc:06:53:d4:ec:89:fa:50:13:54:0f:9c: f7:9d:79:cd:56:04:7d:c3:97:b4:d1:98:a9:d3:69: f8:5b:5d:f7:cc:bb:e8:b8:5d:15:f5:8e:c9:44:77: 10:a5:88:90:2b:2c:5c:e2:c3:ff:89:2f:da:bd:94: cf:69:1f:68:d1:ca:90:c9:d0:ce:55:1d:ec:00:b0: 7d:1d:b3:dd:dd:59:07:8d:75:18:5b:cf:45:58:e6: ed:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:79:82:5E:D6:3B:A9:17:CB:12:35:B6:A4:30:20:BC:81:75:5C:C8 X509v3 Authority Key Identifier: keyid:E9:8C:96:D6:1A:DA:BE:6F:87:00:1F:72:31:58:1B:B3:1F:A8:7C:98 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/803/6YyW1hravm-HAB9yMVgbsx-ofJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6YyW1hravm-HAB9yMVgbsx-ofJg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/803/4XmCXtY7qRfLEjW2pDAgvIF1XMg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.5.32.0/20 Signature Algorithm: sha256WithRSAEncryption 3a:9f:8c:4b:2b:3c:51:6f:b1:23:e6:f6:57:5d:61:a7:30:c0: 74:5b:55:6f:05:bf:47:f4:53:69:6f:48:39:76:98:bd:11:ca: ce:d3:87:9d:8f:33:0b:94:08:39:33:1f:35:81:1d:dc:a3:82: 76:8a:83:a7:2b:9c:ca:6a:aa:58:af:1b:83:97:78:1e:84:f2: ed:ce:62:d4:8c:38:42:99:84:39:9f:78:42:62:d1:4e:91:95: 26:fa:6f:69:99:5e:ef:91:17:97:4c:f0:25:66:e5:91:24:9c: e5:af:eb:c7:4d:9d:3c:ec:71:6a:5c:99:88:70:05:af:e2:5e: 5c:d2:8d:47:97:49:ea:e8:2f:15:ba:49:51:03:2c:1f:bb:86: cf:bf:79:e7:87:55:28:1b:d1:66:47:e4:e4:d2:7e:9e:a6:5e: 4a:86:f0:da:06:c2:ce:ef:c2:c6:84:2b:7a:5d:d6:24:8e:2a: d1:e9:42:24:8f:0d:42:f7:b9:a3:52:d3:47:43:b7:03:f2:f0: 0c:38:8f:8c:dd:83:25:06:1b:f4:89:20:78:54:e8:b8:12:c0: ba:73:b7:5b:af:c5:dd:2a:32:f5:d7:39:3c:93:87:3d:28:92: 6f:66:4b:6a:0e:19:ca:4a:7a:97:d2:0f:73:01:4b:b2:7c:01: f6:21:f3:b4 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBFDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFOThD OTZENjFBREFCRTZGODcwMDFGNzIzMTU4MUJCMzFGQTg3Qzk4MB4XDTI1MTAwNzAx MzAwMFoXDTI2MDkxNTAxMzAwMlowMzExMC8GA1UEAxMoRTE3OTgyNUVENjNCQTkx N0NCMTIzNUI2QTQzMDIwQkM4MTc1NUNDODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALyS5aby/W0gd/RasC+wJCPYmiYqNMIxQbar1Pjewvr0HbLY4m2x R6WuTCrKjs++ybJ9UTiksorOYH5uq5FbS7ItIh8dJ/vw5I8EKMv0b8VeW5XPWdrj o8FhLp3lcRxDt8AZL9XCbSaaesnR94hUD+p3eYW03F2Ch1svblLv9e1TnCJrqaM1 LPvAXw2LR5kG/mAe85DYkjQWd/eLHwVUheIWEYKE1deazAZT1OyJ+lATVA+c9515 zVYEfcOXtNGYqdNp+Ftd98y76LhdFfWOyUR3EKWIkCssXOLD/4kv2r2Uz2kfaNHK kMnQzlUd7ACwfR2z3d1ZB411GFvPRVjm7UUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTheYJe1jupF8sSNbakMCC8gXVcyDAfBgNVHSMEGDAWgBTpjJbWGtq+b4cAH3Ix WBuzH6h8mDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODAzLzZZeVcxaHJhdm0tSEFCOXlNVmdic3gtb2ZKZy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzZZeVcxaHJhdm0tSEFCOXlNVmdic3gt b2ZKZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84MDMvNFhtQ1h0WTdxUmZMRWpXMnBEQWd2SUYxWE1nLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBJ0FIDANBgkqhkiG9w0BAQsFAAOCAQEAOp+MSys8UW+xI+b2V11hpzDAdFtV bwW/R/RTaW9IOXaYvRHKztOHnY8zC5QIOTMfNYEd3KOCdoqDpyucymqqWK8bg5d4 HoTy7c5i1Iw4QpmEOZ94QmLRTpGVJvpvaZle75EXl0zwJWblkSSc5a/rx02dPOxx alyZiHAFr+JeXNKNR5dJ6ugvFbpJUQMsH7uGz79554dVKBvRZkfk5NJ+nqZeSobw 2gbCzu/CxoQrel3WJI4q0elCJI8NQve5o1LTR0O3A/LwDDiPjN2DJQYb9IkgeFTo uBLAunO3W6/F3Soy9dc5PJOHPSiSb2ZLag4Zykp6l9IPcwFLsnwB9iHztA== -----END CERTIFICATE-----Generated at Tue Oct 21 06:43:56 2025 by rpki-client