$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20042/CGwUkEdxHDDmFPphqwr5WfaUmXo.roa File: CGwUkEdxHDDmFPphqwr5WfaUmXo.roa (raw, json) Hash identifier: RDGVT40hiwdqqloC+wYUDuM+CtSAHdr80fY0SvKFLn0= Subject key identifier: 08:6C:14:90:47:71:1C:30:E6:14:FA:61:AB:0A:F9:59:F6:94:99:7A Certificate issuer: /CN=961BC18512722AAF9A90D898ADEA9AF7793C2543 Certificate serial: 8F Authority key identifier: 96:1B:C1:85:12:72:2A:AF:9A:90:D8:98:AD:EA:9A:F7:79:3C:25:43 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/CGwUkEdxHDDmFPphqwr5WfaUmXo.roa Signing time: Fri 01 Aug 2025 01:29:58 +0000 ROA not before: Fri 01 Aug 2025 01:29:58 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 15830 IP address blocks: 202.143.64.0/19 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 11:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=961BC18512722AAF9A90D898ADEA9AF7793C2543 Validity Not Before: Aug 1 01:29:58 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=086C149047711C30E614FA61AB0AF959F694997A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:43:34:e0:4c:12:34:1e:cf:e7:79:82:f9:d2: 0f:86:b7:d3:e4:a4:e1:0c:a9:f3:e2:64:4e:a9:e8: 95:be:19:37:d6:17:1d:79:79:72:14:3a:c6:7d:bb: ae:10:53:2e:ea:54:3d:5e:55:ad:db:3b:99:a0:0d: 3a:0c:a9:5d:e6:4b:b5:c9:f1:c3:b8:cd:b8:f8:26: 3c:fc:e9:04:b8:92:1b:1f:d4:56:5d:e6:b6:06:ca: b2:e3:10:eb:ad:71:15:1a:35:b9:38:bf:16:9a:bb: 98:e5:44:5a:00:aa:5b:8a:60:a2:7b:c6:87:8c:3d: e3:b2:2d:89:db:b6:95:90:ae:73:aa:6e:f9:be:1b: da:85:18:87:62:b2:64:c2:67:70:49:c1:da:5c:5c: 9a:b5:bb:e7:31:61:06:fb:bc:ac:47:ba:76:fa:bc: d4:cc:34:f0:7e:dd:d1:48:39:03:06:a6:94:0b:ab: bc:4a:f9:52:1d:51:21:ec:63:33:91:9a:f0:53:9c: 1b:23:b3:94:6b:e2:2c:e3:0a:03:ac:89:e1:5e:22: 32:10:06:fb:ae:0d:58:89:65:b2:63:33:0f:eb:1b: 46:b7:e3:e8:a4:78:b5:d1:24:27:22:86:2e:cb:35: be:19:da:75:33:11:21:13:e2:87:5d:b8:38:1c:85: 98:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:6C:14:90:47:71:1C:30:E6:14:FA:61:AB:0A:F9:59:F6:94:99:7A X509v3 Authority Key Identifier: keyid:96:1B:C1:85:12:72:2A:AF:9A:90:D8:98:AD:EA:9A:F7:79:3C:25:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/CGwUkEdxHDDmFPphqwr5WfaUmXo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.143.64.0/19 Signature Algorithm: sha256WithRSAEncryption 32:e6:72:73:76:7c:d3:6b:34:7a:71:b5:18:ad:4d:57:03:f7: 30:ed:fe:b5:1d:ab:99:f3:6b:15:d2:79:b1:7a:2c:ba:44:0c: 34:8e:31:ad:ce:37:8f:a8:3f:c8:35:7e:d8:05:03:31:74:c2: df:5b:fc:3b:0b:48:2e:f3:ff:7e:b4:20:a3:29:e6:b4:86:2b: 6b:27:7f:74:35:50:b7:48:e7:60:82:df:65:87:8b:23:7e:28: 81:a0:41:72:ee:7f:5b:c6:77:c5:14:e4:35:76:f0:a0:03:03: 86:56:8a:a8:ac:de:16:1d:69:0d:07:fe:34:43:85:7d:bf:92: dc:9f:fb:d8:eb:c8:96:7d:79:b6:a2:97:1b:92:f9:a2:40:92: 3c:5a:d3:32:38:5d:d4:48:1e:9b:e3:fd:f8:db:16:8b:12:a1: 83:da:0c:a8:16:a8:d9:70:1e:a4:c7:bf:a6:01:b4:7d:65:42: 2a:5f:a1:1c:bf:d9:6c:b6:6f:ea:db:36:42:c9:16:98:01:ef: 4b:13:10:c7:13:50:f6:19:fd:a2:f9:62:10:0e:da:8e:a3:f7: 83:c1:dd:13:ba:96:7a:37:57:1b:fe:83:5c:19:9f:c3:c5:f7: e9:a3:55:52:e1:1e:10:19:93:ff:36:b8:ac:03:b0:89:ef:52: 1a:53:97:bb -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTYx QkMxODUxMjcyMkFBRjlBOTBEODk4QURFQTlBRjc3OTNDMjU0MzAeFw0yNTA4MDEw MTI5NThaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDA4NkMxNDkwNDc3MTFD MzBFNjE0RkE2MUFCMEFGOTU5RjY5NDk5N0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDoQzTgTBI0Hs/neYL50g+Gt9PkpOEMqfPiZE6p6JW+GTfWFx15 eXIUOsZ9u64QUy7qVD1eVa3bO5mgDToMqV3mS7XJ8cO4zbj4Jjz86QS4khsf1FZd 5rYGyrLjEOutcRUaNbk4vxaau5jlRFoAqluKYKJ7xoeMPeOyLYnbtpWQrnOqbvm+ G9qFGIdismTCZ3BJwdpcXJq1u+cxYQb7vKxHunb6vNTMNPB+3dFIOQMGppQLq7xK +VIdUSHsYzORmvBTnBsjs5Rr4izjCgOsieFeIjIQBvuuDViJZbJjMw/rG0a34+ik eLXRJCcihi7LNb4Z2nUzESET4odduDgchZiFAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUCGwUkEdxHDDmFPphqwr5WfaUmXowHwYDVR0jBBgwFoAUlhvBhRJyKq+akNiY reqa93k8JUMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDQyL2xodkJoUkp5S3EtYWtOaVlyZXFhOTNrOEpVTS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2xodkJoUkp5S3EtYWtOaVlyZXFh OTNrOEpVTS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA0Mi9DR3dVa0VkeEhERG1GUHBocXdyNVdmYVVtWG8u cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFyo9AMA0GCSqGSIb3DQEBCwUAA4IBAQAy5nJzdnzTazR6cbUYrU1X A/cw7f61HauZ82sV0nmxeiy6RAw0jjGtzjePqD/INX7YBQMxdMLfW/w7C0gu8/9+ tCCjKea0hitrJ390NVC3SOdggt9lh4sjfiiBoEFy7n9bxnfFFOQ1dvCgAwOGVoqo rN4WHWkNB/40Q4V9v5Lcn/vY68iWfXm2opcbkvmiQJI8WtMyOF3USB6b4/342xaL EqGD2gyoFqjZcB6kx7+mAbR9ZUIqX6Ecv9lstm/q2zZCyRaYAe9LExDHE1D2Gf2i +WIQDtqOo/eDwd0TupZ6N1cb/oNcGZ/Dxffpo1VS4R4QGZP/NrisA7CJ71IaU5e7 -----END CERTIFICATE-----Generated at Wed Nov 5 13:37:13 2025 by rpki-client