$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/O4-HdyCTLeCYwECbyARAipCRWkg.roa File: O4-HdyCTLeCYwECbyARAipCRWkg.roa (raw, json) Hash identifier: JwnW/aAtM1nBKzKYuYNcD5QkE5/l7rvqpAdVe4T8G8U= Subject key identifier: 3B:8F:87:77:20:93:2D:E0:98:C0:40:9B:C8:04:40:8A:90:91:5A:48 Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: 0102 Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/O4-HdyCTLeCYwECbyARAipCRWkg.roa Signing time: Sat 01 Nov 2025 01:28:42 +0000 ROA not before: Sat 01 Nov 2025 01:28:42 +0000 ROA not after: Thu 15 Oct 2026 01:30:02 +0000 asID: 2914 IP address blocks: 61.120.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Nov 1 01:28:42 2025 GMT Not After : Oct 15 01:30:02 2026 GMT Subject: CN=3B8F877720932DE098C0409BC804408A90915A48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ad:84:da:04:9d:72:73:78:47:89:a4:03:0e: 99:50:5c:36:cc:31:75:13:76:ca:92:e1:37:54:4a: f2:28:fd:28:a9:f1:fa:ce:41:d1:88:a6:2f:ca:9a: fa:b2:af:23:34:4c:02:67:ac:df:97:5f:80:ae:06: cf:9c:ba:ff:26:46:c8:33:14:d3:09:f5:3e:1f:5e: 99:bc:d8:30:d9:dc:b9:fa:17:38:a8:70:5c:e3:1a: 31:66:ca:54:89:b4:dc:28:1a:37:ac:c1:a8:28:98: 7d:59:5a:ac:ef:3c:6b:f4:08:c0:e9:2a:9e:51:59: 2b:06:47:55:ac:07:d1:e5:32:a2:b6:5c:30:f1:b6: 47:12:d5:f3:94:7c:1e:d2:09:42:40:c3:f3:d0:36: d0:77:4c:4e:04:fd:4b:78:71:04:24:a0:8d:4c:15: f4:29:38:67:1c:aa:21:a7:ab:9a:19:13:47:31:97: de:17:5c:5b:e2:8e:bd:6b:d8:85:dc:de:d5:0b:df: 19:35:0b:bf:7b:c8:85:9b:6e:9f:1a:59:ca:8d:20: c9:50:6a:ac:92:90:14:cf:d0:84:81:aa:b9:93:89: fb:b4:84:7e:bf:58:a8:ff:5d:84:a4:0b:3f:66:09: 5f:42:b6:a6:f7:ad:d6:c5:08:2d:52:20:e5:09:71: 6e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:8F:87:77:20:93:2D:E0:98:C0:40:9B:C8:04:40:8A:90:91:5A:48 X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/O4-HdyCTLeCYwECbyARAipCRWkg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.120.144.0/20 Signature Algorithm: sha256WithRSAEncryption a1:d8:be:5e:6e:1e:1b:0d:1a:3f:db:63:f1:f2:7a:95:0d:7c: be:c8:ef:6c:cc:b9:51:24:3b:fe:f0:23:30:44:3c:8f:1a:78: 08:84:ed:0c:82:8c:6a:94:db:af:21:6c:c2:71:1f:82:2f:bc: 4c:bb:6b:d7:ca:f1:72:81:3f:6c:70:ae:85:47:9f:22:ef:0f: 45:98:03:b4:36:91:83:9f:73:04:0c:57:b1:d6:1a:b6:99:dd: 75:b1:09:47:f2:e3:bf:88:f4:6c:b0:f3:f5:c5:af:ce:8b:fd: 83:02:c5:19:73:46:8a:ec:a8:73:ea:0f:df:25:4d:28:38:6c: d4:51:bf:ba:34:83:49:71:4c:2c:ff:ef:d2:07:39:4e:ad:7a: 19:cd:fe:77:37:51:83:00:e1:51:6b:53:92:fa:42:0c:5a:ac: a6:3f:a5:02:50:57:68:21:4c:b7:b0:8e:25:f5:af:73:a5:cf: 8d:93:6e:18:db:da:88:be:63:f1:d4:55:64:e9:38:db:72:fb: 77:2e:c8:0c:e9:d3:f0:58:3e:d5:d2:28:20:1b:fd:ce:87:88: a9:52:af:13:91:a2:a4:8f:72:11:9e:8f:87:e0:60:2c:c8:e3: a8:bd:a5:0d:7a:95:bf:b2:6b:c0:c7:d6:84:ee:12:16:16:75: 7d:4d:d3:db -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQ0 NkRERjg4QTQ2RTRFQzJEOUE5QkFCNUZGMTMwNUZEMDU3RjEzODAeFw0yNTExMDEw MTI4NDJaFw0yNjEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDNCOEY4Nzc3MjA5MzJE RTA5OEMwNDA5QkM4MDQ0MDhBOTA5MTVBNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6rYTaBJ1yc3hHiaQDDplQXDbMMXUTdsqS4TdUSvIo/Sip8frO QdGIpi/KmvqyryM0TAJnrN+XX4CuBs+cuv8mRsgzFNMJ9T4fXpm82DDZ3Ln6Fzio cFzjGjFmylSJtNwoGjeswagomH1ZWqzvPGv0CMDpKp5RWSsGR1WsB9HlMqK2XDDx tkcS1fOUfB7SCUJAw/PQNtB3TE4E/Ut4cQQkoI1MFfQpOGccqiGnq5oZE0cxl94X XFvijr1r2IXc3tUL3xk1C797yIWbbp8aWcqNIMlQaqySkBTP0ISBqrmTifu0hH6/ WKj/XYSkCz9mCV9Ctqb3rdbFCC1SIOUJcW6HAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUO4+HdyCTLeCYwECbyARAipCRWkgwHwYDVR0jBBgwFoAUjUbd+IpG5Owtmpur X/EwX9BX8TgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTI4L2pVYmQtSXBHNU93dG1wdXJYX0V3WDlCWDhUZy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pVYmQtSXBHNU93dG1wdXJYX0V3 WDlCWDhUZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDEyOC9PNC1IZHlDVExlQ1l3RUNieUFSQWlwQ1JXa2cu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEPXiQMA0GCSqGSIb3DQEBCwUAA4IBAQCh2L5ebh4bDRo/22Px8nqV DXy+yO9szLlRJDv+8CMwRDyPGngIhO0MgoxqlNuvIWzCcR+CL7xMu2vXyvFygT9s cK6FR58i7w9FmAO0NpGDn3MEDFex1hq2md11sQlH8uO/iPRssPP1xa/Oi/2DAsUZ c0aK7Khz6g/fJU0oOGzUUb+6NINJcUws/+/SBzlOrXoZzf53N1GDAOFRa1OS+kIM WqymP6UCUFdoIUy3sI4l9a9zpc+Nk24Y29qIvmPx1FVk6Tjbcvt3LsgM6dPwWD7V 0iggG/3Oh4ipUq8TkaKkj3IRno+H4GAsyOOovaUNepW/smvAx9aE7hIWFnV9TdPb -----END CERTIFICATE-----Generated at Tue Nov 4 21:00:23 2025 by rpki-client