$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/33KxYUxS5VDZyQPpxRCB56v79oE.roa File: 33KxYUxS5VDZyQPpxRCB56v79oE.roa (raw, json) Hash identifier: WTNhSEhOwjI6atqoTdNRfd6ASRuhvXVBWqd4eQjW6mg= Subject key identifier: DF:72:B1:61:4C:52:E5:50:D9:C9:03:E9:C5:10:81:E7:AB:FB:F6:81 Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: EF Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/33KxYUxS5VDZyQPpxRCB56v79oE.roa Signing time: Sat 01 Nov 2025 01:28:31 +0000 ROA not before: Sat 01 Nov 2025 01:28:31 +0000 ROA not after: Thu 15 Oct 2026 01:30:02 +0000 asID: 2914 IP address blocks: 153.254.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:38:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Nov 1 01:28:31 2025 GMT Not After : Oct 15 01:30:02 2026 GMT Subject: CN=DF72B1614C52E550D9C903E9C51081E7ABFBF681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:95:ec:b2:bd:c5:e9:dd:0f:10:d8:88:e9:f3: bc:49:df:76:09:30:e4:15:0d:74:9b:69:d5:e6:ef: 6e:ea:9d:28:0f:23:9f:c9:31:7f:38:a6:25:48:1a: e6:97:9e:ca:d4:a2:0d:6e:31:1e:49:41:ca:38:9e: eb:a3:68:cf:7c:51:e5:f9:75:fc:20:90:45:ad:19: be:03:db:a7:dc:cb:fc:f3:c8:74:1a:da:a5:b1:3b: 19:b1:45:6c:d4:a6:e1:61:1a:5c:8e:2a:14:ea:25: d6:6e:1d:63:1c:58:98:09:87:7a:3a:3c:39:b5:cf: 0d:cc:37:95:b7:b8:42:f9:2a:c9:06:fd:b7:63:51: 84:d2:a0:b1:01:31:82:2b:82:0e:78:2c:99:94:62: b7:3d:2f:f8:89:4e:4e:e4:79:df:8f:f9:c3:bf:cd: 39:19:c8:da:57:da:ed:81:86:93:08:6f:56:7c:06: e7:96:7c:d0:c8:12:02:9c:7a:42:11:24:04:37:78: 24:5a:13:16:92:60:ad:7b:ca:1c:2d:76:20:72:0c: 00:5f:a1:7c:b3:00:e4:92:1c:12:f7:38:fa:9e:68: 3a:8e:ab:1f:c2:65:78:cd:3d:c6:10:80:24:16:f6: f7:e2:3c:3d:74:50:37:06:db:ed:35:11:77:75:00: fb:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:72:B1:61:4C:52:E5:50:D9:C9:03:E9:C5:10:81:E7:AB:FB:F6:81 X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/33KxYUxS5VDZyQPpxRCB56v79oE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.254.80.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:b4:cd:e8:ac:c0:e0:05:20:01:aa:a9:6e:59:a1:5c:62:e4: b5:7f:f7:6f:0f:f9:8b:22:08:ce:0f:7e:9e:cf:f0:15:1b:dd: 4c:a8:99:3a:30:0f:a1:98:0e:76:30:35:86:e3:fb:7b:8f:16: 90:82:32:0c:da:2b:1a:ff:0a:61:22:a2:61:ba:66:e3:f9:f3: c5:07:df:bc:68:30:02:8a:ff:af:cf:db:7d:be:dc:8f:f9:2d: 6c:5c:e1:d8:28:86:0f:2f:4b:4f:b1:27:c4:ed:8d:5f:41:d5: 4f:39:51:2d:96:db:e5:1f:6c:18:be:80:30:d5:f7:1d:c9:bc: da:29:a3:7b:ac:1c:27:22:5e:5c:1f:b7:41:9f:64:82:12:de: 14:c3:ef:a8:0c:4e:7a:75:85:8f:c8:c3:3b:e5:fc:90:22:1b: d8:5a:ec:dc:fe:8d:f7:db:79:c3:4b:68:c0:18:36:43:68:fc: bf:ba:cb:5b:3d:ed:c7:51:46:e4:83:a0:ff:3c:2b:cc:87:ad: 1d:14:28:46:ab:4c:d0:e7:a2:08:ca:47:03:de:2c:2c:c7:2e: 0f:e9:b4:a7:04:86:2c:b3:f9:be:d0:a2:6b:44:6e:21:a7:f5: 34:ed:38:ef:75:00:e2:24:2b:23:b8:9d:e2:01:fb:88:9a:3a: fb:fa:25:f5 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQ0 NkRERjg4QTQ2RTRFQzJEOUE5QkFCNUZGMTMwNUZEMDU3RjEzODAeFw0yNTExMDEw MTI4MzFaFw0yNjEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKERGNzJCMTYxNEM1MkU1 NTBEOUM5MDNFOUM1MTA4MUU3QUJGQkY2ODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCaleyyvcXp3Q8Q2Ijp87xJ33YJMOQVDXSbadXm727qnSgPI5/J MX84piVIGuaXnsrUog1uMR5JQco4nuujaM98UeX5dfwgkEWtGb4D26fcy/zzyHQa 2qWxOxmxRWzUpuFhGlyOKhTqJdZuHWMcWJgJh3o6PDm1zw3MN5W3uEL5KskG/bdj UYTSoLEBMYIrgg54LJmUYrc9L/iJTk7ked+P+cO/zTkZyNpX2u2BhpMIb1Z8BueW fNDIEgKcekIRJAQ3eCRaExaSYK17yhwtdiByDABfoXyzAOSSHBL3OPqeaDqOqx/C ZXjNPcYQgCQW9vfiPD10UDcG2+01EXd1APvfAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQU33KxYUxS5VDZyQPpxRCB56v79oEwHwYDVR0jBBgwFoAUjUbd+IpG5Owtmpur X/EwX9BX8TgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTI4L2pVYmQtSXBHNU93dG1wdXJYX0V3WDlCWDhUZy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pVYmQtSXBHNU93dG1wdXJYX0V3 WDlCWDhUZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDEyOC8zM0t4WVV4UzVWRFp5UVBweFJDQjU2djc5b0Uu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCmf5QMA0GCSqGSIb3DQEBCwUAA4IBAQB8tM3orMDgBSABqqluWaFc YuS1f/dvD/mLIgjOD36ez/AVG91MqJk6MA+hmA52MDWG4/t7jxaQgjIM2isa/wph IqJhumbj+fPFB9+8aDACiv+vz9t9vtyP+S1sXOHYKIYPL0tPsSfE7Y1fQdVPOVEt ltvlH2wYvoAw1fcdybzaKaN7rBwnIl5cH7dBn2SCEt4Uw++oDE56dYWPyMM75fyQ IhvYWuzc/o3323nDS2jAGDZDaPy/ustbPe3HUUbkg6D/PCvMh60dFChGq0zQ56II ykcD3iwsxy4P6bSnBIYss/m+0KJrRG4hp/U07TjvdQDiJCsjuJ3iAfuImjr7+iX1 -----END CERTIFICATE-----Generated at Tue Nov 4 22:34:56 2025 by rpki-client