$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/Zm08woS8zk2d7TNojWJ4cZs8_NU.roa File: Zm08woS8zk2d7TNojWJ4cZs8_NU.roa (raw, json) Hash identifier: eufRR46fYh28yAE1GIegd1fqBLSw/1gsa6Ae8xlJ7+s= Subject key identifier: 66:6D:3C:C2:84:BC:CE:4D:9D:ED:33:68:8D:62:78:71:9B:3C:FC:D5 Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: 0114 Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/Zm08woS8zk2d7TNojWJ4cZs8_NU.roa Signing time: Sat 01 Nov 2025 01:33:53 +0000 ROA not before: Sat 01 Nov 2025 01:33:53 +0000 ROA not after: Thu 15 Oct 2026 01:30:02 +0000 asID: 2914 IP address blocks: 61.213.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:38:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Nov 1 01:33:53 2025 GMT Not After : Oct 15 01:30:02 2026 GMT Subject: CN=666D3CC284BCCE4D9DED33688D6278719B3CFCD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:23:33:ef:fa:0a:75:93:a5:c1:b8:c1:c3:94: 3d:50:2f:72:06:e6:9d:a0:03:a3:56:97:b6:70:20: fc:ce:08:12:24:4e:7e:a4:40:59:ea:16:d4:d8:2f: 75:24:20:4a:30:18:69:8f:59:75:8c:96:b8:2e:af: f4:e9:08:dd:77:59:e7:04:7b:fc:a5:b8:d1:e2:a0: a4:d1:44:04:1d:71:99:96:a4:d1:27:12:e0:9f:6e: 28:41:7b:90:ae:f1:d0:bf:cc:70:3b:45:af:fe:2f: e3:d0:f1:1e:8a:fe:4e:97:bd:de:bc:6c:25:34:71: ed:9f:72:3c:b9:9b:77:f6:14:61:74:49:c1:14:a2: a7:83:6a:7b:a6:05:af:a5:82:4a:bc:1b:11:13:8b: f3:e4:bb:8b:36:f6:c9:61:f0:81:50:57:93:7b:ff: 42:43:52:42:bd:c1:9c:ac:89:56:2a:35:ea:04:b0: 98:a1:db:e7:d0:e4:78:3a:5d:12:e5:7f:d0:c1:42: f1:5c:cd:e7:d6:91:50:bf:b5:64:2d:0b:9a:e1:45: 40:d5:9f:8b:f8:aa:e6:f3:4e:50:23:95:d9:0b:f2: ae:4f:b8:ee:89:ca:15:87:34:79:3a:50:a4:ea:25: fb:bc:7c:42:c7:77:18:41:f9:f0:3a:b8:af:62:8e: a3:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:6D:3C:C2:84:BC:CE:4D:9D:ED:33:68:8D:62:78:71:9B:3C:FC:D5 X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/Zm08woS8zk2d7TNojWJ4cZs8_NU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.213.144.0/20 Signature Algorithm: sha256WithRSAEncryption 44:fb:79:c6:c6:fc:a8:d9:b5:77:04:b9:dc:cb:ee:7b:73:53: 81:58:c6:3e:c2:fb:ec:9c:d5:21:04:27:dc:0f:9e:7e:2b:14: 60:8a:38:88:08:3e:94:f3:be:a5:1d:c0:59:36:02:f6:0c:b4: af:87:2b:51:d6:30:cb:80:a5:b0:c4:79:7f:f7:3f:f4:15:7e: c1:b4:42:ec:5b:90:92:bf:7d:4b:bb:31:56:32:a8:a1:ab:7d: 10:b6:ba:bd:81:c6:8d:5e:56:1d:44:b8:1c:9b:96:5a:42:04: e4:06:1c:52:4d:dd:22:e0:92:d1:70:5a:f7:0b:ed:c2:14:98: b4:d7:6c:21:12:f9:60:06:d0:9f:27:b6:7b:7e:5c:b8:45:2d: 75:aa:1d:e1:44:97:63:cd:30:13:e1:7f:71:ed:4c:ad:98:40: b8:a6:93:97:76:a5:42:bb:c6:a5:8a:ef:06:58:ca:0a:46:c0: 75:c2:c3:ac:70:d8:39:b1:8d:96:88:51:91:68:17:a2:a0:5f: a9:36:20:dc:05:ee:9a:18:66:c9:4d:93:1d:4a:51:8c:37:b4: 01:33:59:48:5a:64:55:1e:66:cc:d2:6e:1f:2f:38:38:24:eb: c6:56:c9:8a:c9:7c:2d:a0:12:ba:bc:5e:69:85:99:79:e8:ee: ff:27:0b:55 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICARQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQ0 NkRERjg4QTQ2RTRFQzJEOUE5QkFCNUZGMTMwNUZEMDU3RjEzODAeFw0yNTExMDEw MTMzNTNaFw0yNjEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY2NkQzQ0MyODRCQ0NF NEQ5REVEMzM2ODhENjI3ODcxOUIzQ0ZDRDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJIzPv+gp1k6XBuMHDlD1QL3IG5p2gA6NWl7ZwIPzOCBIkTn6k QFnqFtTYL3UkIEowGGmPWXWMlrgur/TpCN13WecEe/yluNHioKTRRAQdcZmWpNEn EuCfbihBe5Cu8dC/zHA7Ra/+L+PQ8R6K/k6Xvd68bCU0ce2fcjy5m3f2FGF0ScEU oqeDanumBa+lgkq8GxETi/Pku4s29slh8IFQV5N7/0JDUkK9wZysiVYqNeoEsJih 2+fQ5Hg6XRLlf9DBQvFczefWkVC/tWQtC5rhRUDVn4v4qubzTlAjldkL8q5PuO6J yhWHNHk6UKTqJfu8fELHdxhB+fA6uK9ijqM1AgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUZm08woS8zk2d7TNojWJ4cZs8/NUwHwYDVR0jBBgwFoAUjUbd+IpG5Owtmpur X/EwX9BX8TgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTI4L2pVYmQtSXBHNU93dG1wdXJYX0V3WDlCWDhUZy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pVYmQtSXBHNU93dG1wdXJYX0V3 WDlCWDhUZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDEyOC9abTA4d29TOHprMmQ3VE5valdKNGNaczhfTlUu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEPdWQMA0GCSqGSIb3DQEBCwUAA4IBAQBE+3nGxvyo2bV3BLncy+57 c1OBWMY+wvvsnNUhBCfcD55+KxRgijiICD6U876lHcBZNgL2DLSvhytR1jDLgKWw xHl/9z/0FX7BtELsW5CSv31LuzFWMqihq30Qtrq9gcaNXlYdRLgcm5ZaQgTkBhxS Td0i4JLRcFr3C+3CFJi012whEvlgBtCfJ7Z7fly4RS11qh3hRJdjzTAT4X9x7Uyt mEC4ppOXdqVCu8aliu8GWMoKRsB1wsOscNg5sY2WiFGRaBeioF+pNiDcBe6aGGbJ TZMdSlGMN7QBM1lIWmRVHmbM0m4fLzg4JOvGVsmKyXwtoBK6vF5phZl56O7/JwtV -----END CERTIFICATE-----Generated at Tue Nov 4 22:35:15 2025 by rpki-client