$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/897/YhbbQbUWmYQIVeel-VbjxAkTCyw.roa File: YhbbQbUWmYQIVeel-VbjxAkTCyw.roa (raw, json) Hash identifier: oK2HKr1pskMMHThSY1Jc5pcKl3UQ76lWFkKYj0EKCDc= Subject key identifier: 62:16:DB:41:B5:16:99:84:08:55:E7:A5:F9:56:E3:C4:09:13:0B:2C Certificate issuer: /CN=AA08097C6060710280CDAAA4E7E06C1F13CD16F2 Certificate serial: 9F Authority key identifier: AA:08:09:7C:60:60:71:02:80:CD:AA:A4:E7:E0:6C:1F:13:CD:16:F2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/YhbbQbUWmYQIVeel-VbjxAkTCyw.roa Signing time: Wed 01 Oct 2025 01:30:18 +0000 ROA not before: Wed 01 Oct 2025 01:30:18 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 9621 IP address blocks: 125.2.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:27:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA08097C6060710280CDAAA4E7E06C1F13CD16F2 Validity Not Before: Oct 1 01:30:18 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=6216DB41B51699840855E7A5F956E3C409130B2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f2:65:b3:26:e6:1e:15:c7:88:59:d2:5a:32: 77:82:17:de:8b:ec:70:a4:2b:22:9b:3f:13:f8:d7: 54:c5:dc:02:5e:a7:c3:bd:fa:e5:59:65:a6:a5:25: d6:03:c6:cc:8c:de:36:67:e0:ee:74:7b:4b:8d:42: a2:1d:7f:42:90:14:52:53:97:ec:d1:70:dd:35:6e: 20:d1:3e:72:67:1a:f7:e0:84:58:5a:95:c6:46:7d: dc:db:8a:ff:dd:7c:31:41:92:3c:54:36:43:07:ae: 39:e3:c2:f0:6b:f9:cd:29:59:f5:f1:a8:e6:18:3f: e2:47:e0:14:4f:22:d4:8d:d2:1a:0a:81:fb:bf:c8: 13:02:ef:39:97:05:1f:f3:44:cd:7c:55:0b:49:18: a4:af:81:26:5e:dc:43:20:92:92:1b:7d:bb:55:0f: 83:2d:f8:22:1a:f3:fe:54:b8:ff:ca:a2:bb:cf:a4: 31:3b:af:52:d4:c8:06:7f:d0:e1:29:bd:30:9e:50: 31:41:7d:ea:f3:b0:a2:21:22:d4:02:0d:23:07:17: 7d:6f:cd:f0:f7:83:fd:d1:a7:90:fb:2f:8a:92:37: a3:fd:85:66:8e:90:e0:8c:b8:56:9a:84:3c:b5:fd: d9:41:2a:fa:08:1f:3b:d3:73:2b:c0:8d:75:64:35: 89:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:16:DB:41:B5:16:99:84:08:55:E7:A5:F9:56:E3:C4:09:13:0B:2C X509v3 Authority Key Identifier: keyid:AA:08:09:7C:60:60:71:02:80:CD:AA:A4:E7:E0:6C:1F:13:CD:16:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/YhbbQbUWmYQIVeel-VbjxAkTCyw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.2.224.0/19 Signature Algorithm: sha256WithRSAEncryption a2:57:78:04:f2:1f:51:7d:de:ed:d7:47:ad:2a:80:ed:3a:fa: 80:b5:30:f6:25:91:e6:5e:47:57:a4:56:bf:50:c9:74:64:b6: d0:02:77:cd:4b:33:14:d6:14:77:56:80:80:c6:8a:ee:10:bb: 6c:c4:7a:95:b6:9f:cb:f9:07:21:47:48:10:7a:31:b6:c3:a6: 26:84:15:3f:cc:13:43:02:3f:5c:76:46:9e:54:2f:34:be:44: 3d:fc:63:38:47:6e:b6:25:f4:5e:57:bd:99:78:72:84:40:90: d2:b0:b9:a8:3c:5c:81:3b:70:50:93:4a:9e:14:4b:50:16:80: dc:77:17:57:c3:e9:5a:c2:02:af:a7:63:61:41:88:a6:85:83: ea:4f:87:23:8a:10:17:4d:a8:57:4b:e8:6b:9b:49:93:c3:af: 83:97:35:72:15:06:bf:d8:e7:73:61:cb:f1:3b:74:7e:03:48: 21:c4:34:47:1d:c5:8f:47:17:bd:d6:ea:04:9c:46:2f:16:de: a3:6a:30:e1:71:a1:a4:f1:f3:0e:42:d0:50:07:55:14:6a:54: 54:14:e9:7c:c6:9a:0d:b1:5a:ba:3f:99:9a:d0:2b:db:cc:6f: 9a:4c:30:dd:68:e7:c9:ef:df:f4:41:80:03:27:40:b1:29:8a: ed:a1:1b:f0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUEw ODA5N0M2MDYwNzEwMjgwQ0RBQUE0RTdFMDZDMUYxM0NEMTZGMjAeFw0yNTEwMDEw MTMwMThaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDYyMTZEQjQxQjUxNjk5 ODQwODU1RTdBNUY5NTZFM0M0MDkxMzBCMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDj8mWzJuYeFceIWdJaMneCF96L7HCkKyKbPxP411TF3AJep8O9 +uVZZaalJdYDxsyM3jZn4O50e0uNQqIdf0KQFFJTl+zRcN01biDRPnJnGvfghFha lcZGfdzbiv/dfDFBkjxUNkMHrjnjwvBr+c0pWfXxqOYYP+JH4BRPItSN0hoKgfu/ yBMC7zmXBR/zRM18VQtJGKSvgSZe3EMgkpIbfbtVD4Mt+CIa8/5UuP/KorvPpDE7 r1LUyAZ/0OEpvTCeUDFBferzsKIhItQCDSMHF31vzfD3g/3Rp5D7L4qSN6P9hWaO kOCMuFaahDy1/dlBKvoIHzvTcyvAjXVkNYmDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYhbbQbUWmYQIVeel+VbjxAkTCywwHwYDVR0jBBgwFoAUqggJfGBgcQKAzaqk 5+BsHxPNFvIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzg5Ny9xZ2dKZkdCZ2NRS0F6YXFrNS1Cc0h4UE5GdkkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9xZ2dKZkdCZ2NRS0F6YXFrNS1Cc0h4 UE5GdkkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvODk3L1loYmJRYlVXbVlRSVZlZWwtVmJqeEFrVEN5dy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAV9AuAwDQYJKoZIhvcNAQELBQADggEBAKJXeATyH1F93u3XR60qgO06+oC1 MPYlkeZeR1ekVr9QyXRkttACd81LMxTWFHdWgIDGiu4Qu2zEepW2n8v5ByFHSBB6 MbbDpiaEFT/ME0MCP1x2Rp5ULzS+RD38YzhHbrYl9F5XvZl4coRAkNKwuag8XIE7 cFCTSp4US1AWgNx3F1fD6VrCAq+nY2FBiKaFg+pPhyOKEBdNqFdL6GubSZPDr4OX NXIVBr/Y53Nhy/E7dH4DSCHENEcdxY9HF73W6gScRi8W3qNqMOFxoaTx8w5C0FAH VRRqVFQU6XzGmg2xWro/mZrQK9vMb5pMMN1o58nv3/RBgAMnQLEpiu2hG/A= -----END CERTIFICATE-----Generated at Mon Oct 20 20:13:59 2025 by rpki-client