$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/897/kzs2e9NIUX3AEkjFSGoClWE7-RU.roa File: kzs2e9NIUX3AEkjFSGoClWE7-RU.roa (raw, json) Hash identifier: ZIj7bKLYikXuc/Q2YNySDM67A2uRGKahApq2ndFHv0M= Subject key identifier: 93:3B:36:7B:D3:48:51:7D:C0:12:48:C5:48:6A:02:95:61:3B:F9:15 Certificate issuer: /CN=AA08097C6060710280CDAAA4E7E06C1F13CD16F2 Certificate serial: 9C Authority key identifier: AA:08:09:7C:60:60:71:02:80:CD:AA:A4:E7:E0:6C:1F:13:CD:16:F2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/kzs2e9NIUX3AEkjFSGoClWE7-RU.roa Signing time: Wed 01 Oct 2025 01:30:17 +0000 ROA not before: Wed 01 Oct 2025 01:30:17 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 9621 IP address blocks: 218.40.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 21:29:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA08097C6060710280CDAAA4E7E06C1F13CD16F2 Validity Not Before: Oct 1 01:30:17 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=933B367BD348517DC01248C5486A0295613BF915 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:97:07:a3:86:01:3b:91:f0:2e:40:95:c9:1a: 1d:7a:e9:b1:c0:67:00:b0:fc:32:ff:63:fa:be:4e: 5f:f9:61:8b:47:d0:65:00:50:41:3c:06:33:9f:ed: 4c:c1:b4:82:1f:93:99:74:8f:32:62:f2:c2:2f:a9: 53:4d:e7:cc:78:71:72:0a:09:ff:06:ac:78:4a:49: f6:b8:78:68:94:20:ca:67:fe:79:2c:39:16:cb:93: 82:2c:33:2a:84:c4:c4:78:a7:9b:f3:08:25:68:de: 7c:67:69:f3:8d:7a:03:57:8f:49:94:89:f0:d4:dd: c2:c8:78:78:3f:5d:5e:46:d8:e0:8d:be:5b:5f:cb: 06:71:ee:1b:11:ba:c6:4d:24:74:12:ab:13:c5:9b: 8a:cf:9e:7c:1d:1a:d8:bc:50:49:9d:07:f9:9f:25: 5f:24:cd:db:46:3b:15:67:ba:3d:9e:92:1d:64:37: 79:8c:60:5f:92:f8:6d:17:79:9c:26:96:cd:ed:0f: 4c:f6:43:92:12:00:d0:23:b7:e0:b8:74:23:ad:38: 53:3a:78:53:65:de:7c:2c:44:3a:ef:b5:44:24:0f: e9:35:84:dc:cd:6f:bf:0f:df:84:95:3e:0d:b9:11: d5:a8:6e:aa:df:8e:0e:b1:7a:1d:79:78:23:58:02: c1:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:3B:36:7B:D3:48:51:7D:C0:12:48:C5:48:6A:02:95:61:3B:F9:15 X509v3 Authority Key Identifier: keyid:AA:08:09:7C:60:60:71:02:80:CD:AA:A4:E7:E0:6C:1F:13:CD:16:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/kzs2e9NIUX3AEkjFSGoClWE7-RU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.40.160.0/19 Signature Algorithm: sha256WithRSAEncryption 7b:b2:f0:bc:64:3b:b6:41:22:4f:60:e5:6f:2f:44:3d:ec:e6: 40:f9:51:bd:43:0e:85:63:de:a3:96:08:12:6f:0d:79:34:f7: 98:c9:ba:c3:9f:5d:88:2d:56:1e:34:d7:1d:dd:ff:42:3d:c5: 40:cc:ca:dd:08:82:01:35:9e:85:34:66:64:1e:0c:d9:2c:d9: 9d:17:ce:a2:07:52:8b:a9:88:6c:97:e6:91:84:fe:45:e8:e9: f3:19:13:ee:b2:52:c3:7c:1e:be:44:c3:d6:22:51:35:79:ef: 8e:81:f6:f8:a0:2d:04:ed:82:6d:11:0a:6f:28:21:d1:7c:c0: 70:fc:ad:49:af:ff:35:84:a9:b1:c8:a8:58:98:64:92:82:1e: 15:d8:c0:32:d5:b9:a7:60:03:38:2a:d5:7c:8a:c0:a8:7e:67: 56:81:da:68:02:61:48:ff:5a:f9:5f:6f:60:a0:f3:6f:f5:bd: 02:07:49:20:d8:1c:1d:48:2e:8c:62:ac:73:23:e3:84:e5:81: 0c:94:12:4f:c4:ba:58:de:61:d1:23:a9:4b:fa:c0:90:7f:d2: af:23:6d:bb:bd:b8:93:e0:7e:ce:67:4d:7f:f4:62:1b:b8:31: 0b:c7:45:a6:bb:54:f3:5c:6f:ca:97:c4:ab:6f:0f:32:ca:d3: 24:51:7d:ae -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUEw ODA5N0M2MDYwNzEwMjgwQ0RBQUE0RTdFMDZDMUYxM0NEMTZGMjAeFw0yNTEwMDEw MTMwMTdaFw0yNjA5MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDkzM0IzNjdCRDM0ODUx N0RDMDEyNDhDNTQ4NkEwMjk1NjEzQkY5MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtlwejhgE7kfAuQJXJGh166bHAZwCw/DL/Y/q+Tl/5YYtH0GUA UEE8BjOf7UzBtIIfk5l0jzJi8sIvqVNN58x4cXIKCf8GrHhKSfa4eGiUIMpn/nks ORbLk4IsMyqExMR4p5vzCCVo3nxnafONegNXj0mUifDU3cLIeHg/XV5G2OCNvltf ywZx7hsRusZNJHQSqxPFm4rPnnwdGti8UEmdB/mfJV8kzdtGOxVnuj2ekh1kN3mM YF+S+G0XeZwmls3tD0z2Q5ISANAjt+C4dCOtOFM6eFNl3nwsRDrvtUQkD+k1hNzN b78P34SVPg25EdWobqrfjg6xeh15eCNYAsGlAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUkzs2e9NIUX3AEkjFSGoClWE7+RUwHwYDVR0jBBgwFoAUqggJfGBgcQKAzaqk 5+BsHxPNFvIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzg5Ny9xZ2dKZkdCZ2NRS0F6YXFrNS1Cc0h4UE5GdkkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9xZ2dKZkdCZ2NRS0F6YXFrNS1Cc0h4 UE5GdkkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvODk3L2t6czJlOU5JVVgzQUVrakZTR29DbFdFNy1SVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXaKKAwDQYJKoZIhvcNAQELBQADggEBAHuy8LxkO7ZBIk9g5W8vRD3s5kD5 Ub1DDoVj3qOWCBJvDXk095jJusOfXYgtVh401x3d/0I9xUDMyt0IggE1noU0ZmQe DNks2Z0XzqIHUoupiGyX5pGE/kXo6fMZE+6yUsN8Hr5Ew9YiUTV5746B9vigLQTt gm0RCm8oIdF8wHD8rUmv/zWEqbHIqFiYZJKCHhXYwDLVuadgAzgq1XyKwKh+Z1aB 2mgCYUj/Wvlfb2Cg82/1vQIHSSDYHB1ILoxirHMj44TlgQyUEk/EuljeYdEjqUv6 wJB/0q8jbbu9uJPgfs5nTX/0Yhu4MQvHRaa7VPNcb8qXxKtvDzLK0yRRfa4= -----END CERTIFICATE-----Generated at Tue Oct 21 01:18:44 2025 by rpki-client