$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/MbxpaRHwCIp-Ds4aMUbgbVT71bk.roa File: MbxpaRHwCIp-Ds4aMUbgbVT71bk.roa (raw, json) Hash identifier: my3/OTFqiY+ldiY/pIPsrjql/oahfl7i8Qp2tgoX3Qo= Subject key identifier: 31:BC:69:69:11:F0:08:8A:7E:0E:CE:1A:31:46:E0:6D:54:FB:D5:B9 Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: F8 Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/MbxpaRHwCIp-Ds4aMUbgbVT71bk.roa Signing time: Sat 01 Nov 2025 01:28:36 +0000 ROA not before: Sat 01 Nov 2025 01:28:36 +0000 ROA not after: Thu 15 Oct 2026 01:30:02 +0000 asID: 20940 IP address blocks: 117.104.142.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Nov 1 01:28:36 2025 GMT Not After : Oct 15 01:30:02 2026 GMT Subject: CN=31BC696911F0088A7E0ECE1A3146E06D54FBD5B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9e:3b:05:38:f0:1b:d4:19:df:d3:09:81:3f: f2:e1:17:f4:63:07:23:ab:79:19:8c:ac:1d:44:60: ab:f6:67:71:c7:47:85:1b:91:5f:3a:68:96:f1:d8: 86:d6:52:83:b7:ec:a3:b0:f6:32:f9:88:22:e0:94: d4:6e:7a:14:f1:03:d2:a4:be:ce:82:77:44:78:48: 60:46:ed:a8:0d:eb:97:3b:05:62:05:36:99:57:b0: 66:01:4f:7d:71:50:92:ab:c1:72:2d:8c:96:74:84: 33:66:64:70:d3:cf:95:41:b5:b5:ef:b2:a4:27:e3: 9f:b8:b0:bd:c4:2b:3f:5d:40:60:63:97:e6:81:f9: 3f:08:92:57:24:2d:34:e0:f7:58:f7:38:24:08:dc: 64:f4:98:a6:ea:9a:75:12:f4:97:14:a7:97:54:7a: b5:21:f4:fe:22:45:18:6d:19:b3:fb:80:f2:ba:b0: 79:5c:3b:1f:98:24:7f:9d:3e:c6:20:f3:e6:29:d7: bc:88:75:09:d7:59:3f:9e:b1:13:f4:7b:1c:f8:01: f1:e8:74:87:e7:f8:7f:62:d6:bd:03:4e:3b:c2:4d: 1e:9c:5c:32:02:97:79:1b:49:3a:1f:b5:89:81:81: 8d:ab:77:36:50:48:eb:2f:b0:70:1b:83:ee:1f:fd: e2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:BC:69:69:11:F0:08:8A:7E:0E:CE:1A:31:46:E0:6D:54:FB:D5:B9 X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/MbxpaRHwCIp-Ds4aMUbgbVT71bk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.104.142.0/23 Signature Algorithm: sha256WithRSAEncryption a4:f5:e3:74:d9:a6:76:c4:47:bb:52:2f:a6:c8:0f:ee:7b:82: 1a:db:4a:cd:4f:a5:35:9e:7c:68:8a:45:ee:25:98:d3:04:89: d8:41:ea:72:01:a8:21:2e:05:42:df:d8:a0:db:e7:86:56:6a: 52:c8:3d:6b:7b:50:81:52:d7:e1:54:22:f7:61:24:08:2e:04: 55:4b:1b:e2:c8:f1:d4:ad:a0:8f:d0:66:c6:48:f8:0b:20:7c: 1f:c9:f8:d0:16:9f:40:84:6e:89:90:b0:d0:62:04:6b:4c:d1: 76:a7:48:3c:82:95:7c:4f:3a:16:5b:5f:3a:d7:12:00:f0:39: aa:d9:34:c9:21:d0:25:91:14:44:01:d1:3b:e5:b8:48:cf:da: 2d:12:05:48:c3:f7:4d:6d:05:9c:98:fc:85:c9:8b:6e:54:9d: b0:0a:31:85:0f:cb:5c:e9:f0:c8:b7:c7:9a:af:ad:e5:df:34: 31:ae:02:a0:d3:62:15:e9:8f:80:47:2d:42:28:40:2a:71:ed: 8d:e1:7b:9e:1d:e2:c6:bf:51:40:71:33:40:79:16:14:58:10: bd:32:0f:fc:d1:a6:70:4c:96:3b:be:83:6a:9e:58:fe:55:3a: a9:b9:6b:9c:e2:4b:5a:9c:bc:fe:3d:7f:a7:77:4c:64:1d:a0: 6e:66:2e:01 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQ0 NkRERjg4QTQ2RTRFQzJEOUE5QkFCNUZGMTMwNUZEMDU3RjEzODAeFw0yNTExMDEw MTI4MzZaFw0yNjEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDMxQkM2OTY5MTFGMDA4 OEE3RTBFQ0UxQTMxNDZFMDZENTRGQkQ1QjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEnjsFOPAb1Bnf0wmBP/LhF/RjByOreRmMrB1EYKv2Z3HHR4Ub kV86aJbx2IbWUoO37KOw9jL5iCLglNRuehTxA9Kkvs6Cd0R4SGBG7agN65c7BWIF NplXsGYBT31xUJKrwXItjJZ0hDNmZHDTz5VBtbXvsqQn45+4sL3EKz9dQGBjl+aB +T8IklckLTTg91j3OCQI3GT0mKbqmnUS9JcUp5dUerUh9P4iRRhtGbP7gPK6sHlc Ox+YJH+dPsYg8+Yp17yIdQnXWT+esRP0exz4AfHodIfn+H9i1r0DTjvCTR6cXDIC l3kbSToftYmBgY2rdzZQSOsvsHAbg+4f/eIlAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUMbxpaRHwCIp+Ds4aMUbgbVT71bkwHwYDVR0jBBgwFoAUjUbd+IpG5Owtmpur X/EwX9BX8TgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTI4L2pVYmQtSXBHNU93dG1wdXJYX0V3WDlCWDhUZy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pVYmQtSXBHNU93dG1wdXJYX0V3 WDlCWDhUZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDEyOC9NYnhwYVJId0NJcC1EczRhTVViZ2JWVDcxYmsu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBdWiOMA0GCSqGSIb3DQEBCwUAA4IBAQCk9eN02aZ2xEe7Ui+myA/u e4Ia20rNT6U1nnxoikXuJZjTBInYQepyAaghLgVC39ig2+eGVmpSyD1re1CBUtfh VCL3YSQILgRVSxviyPHUraCP0GbGSPgLIHwfyfjQFp9AhG6JkLDQYgRrTNF2p0g8 gpV8TzoWW1861xIA8Dmq2TTJIdAlkRREAdE75bhIz9otEgVIw/dNbQWcmPyFyYtu VJ2wCjGFD8tc6fDIt8ear63l3zQxrgKg02IV6Y+ARy1CKEAqce2N4XueHeLGv1FA cTNAeRYUWBC9Mg/80aZwTJY7voNqnlj+VTqpuWuc4ktanLz+PX+nd0xkHaBuZi4B -----END CERTIFICATE-----Generated at Wed Nov 5 05:00:00 2025 by rpki-client