$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/21042/aqN4h9wpuYYmm3NYbmq8cKM2o2M.roa File: aqN4h9wpuYYmm3NYbmq8cKM2o2M.roa (raw, json) Hash identifier: /3Vhq/BtsPDJLDkhBST9Noge9YKaoKaDC/3fQ0Z6IJQ= Subject key identifier: 6A:A3:78:87:DC:29:B9:86:26:9B:73:58:6E:6A:BC:70:A3:36:A3:63 Certificate issuer: /CN=4F3E6396C9D76CBDF4ED2D5DE7A2A760214C9837 Certificate serial: 62 Authority key identifier: 4F:3E:63:96:C9:D7:6C:BD:F4:ED:2D:5D:E7:A2:A7:60:21:4C:98:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/aqN4h9wpuYYmm3NYbmq8cKM2o2M.roa Signing time: Fri 01 Aug 2025 01:34:33 +0000 ROA not before: Fri 01 Aug 2025 01:34:33 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 15830 IP address blocks: 14.128.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 14:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F3E6396C9D76CBDF4ED2D5DE7A2A760214C9837 Validity Not Before: Aug 1 01:34:33 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=6AA37887DC29B986269B73586E6ABC70A336A363 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:e4:a1:c4:50:cf:4e:14:44:f8:ab:a9:9a:ef: 66:f2:55:b6:2b:04:c9:8e:15:27:0f:54:69:4f:f6: 0a:09:a5:78:28:e0:d8:8d:25:75:43:d4:ea:bc:70: bd:1a:ac:76:9b:fe:e0:cd:45:0a:fc:0e:f2:8e:08: e1:3b:02:da:2f:1b:c9:a7:ad:5e:a8:f7:cb:59:7c: bb:e9:72:da:69:5d:db:d4:4a:63:74:5f:d6:35:97: 36:66:eb:24:18:1a:e9:ec:c0:46:8f:e1:2a:30:1f: 39:5b:76:5d:26:28:4d:67:1b:97:d5:86:e0:a3:fc: 1f:17:a1:e4:42:e0:2c:97:71:81:d7:b7:4c:45:a2: 5e:04:57:b9:b7:55:6c:e0:d2:d4:9e:8f:f6:11:f4: 83:12:a5:4a:17:a1:17:5e:77:85:fc:dd:ae:69:69: 77:3e:46:f4:ab:44:df:ee:58:e3:77:cf:44:8c:5e: aa:3c:2f:82:d1:59:c2:f9:a5:82:d9:1d:36:27:31: 82:5f:fe:b6:41:dd:d0:f8:5c:02:b0:c0:09:98:6b: b4:13:66:5c:de:7d:d7:70:bc:17:bc:de:1b:f0:c5: df:f6:15:a3:25:25:d5:5b:22:31:ee:bd:7b:23:59: 78:9f:60:51:9f:9f:66:7b:37:45:ee:0d:2f:4d:cb: 0d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:A3:78:87:DC:29:B9:86:26:9B:73:58:6E:6A:BC:70:A3:36:A3:63 X509v3 Authority Key Identifier: keyid:4F:3E:63:96:C9:D7:6C:BD:F4:ED:2D:5D:E7:A2:A7:60:21:4C:98:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/aqN4h9wpuYYmm3NYbmq8cKM2o2M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.128.16.0/20 Signature Algorithm: sha256WithRSAEncryption 87:d7:89:0f:28:e9:54:23:b0:2b:e9:ae:1c:20:19:9f:0c:62: e8:bd:36:2b:64:90:39:47:af:15:f7:a9:e8:2d:e4:76:60:84: 4e:22:0e:bd:e1:27:b2:33:ac:39:dc:9f:f5:7a:2c:fa:9e:c0: 6e:df:5f:9b:cc:34:df:a7:53:af:94:af:87:a1:54:26:b4:61: 5a:b1:69:6e:f8:d7:53:34:e9:53:cf:51:b7:b8:8a:25:6d:b7: 89:7b:6f:b7:ba:98:4a:f4:7a:62:b3:8b:9c:fc:5d:d3:80:2b: 52:1d:48:c6:08:7f:4c:0d:f0:cc:c9:d3:05:9a:be:eb:a5:4b: 3c:e3:3c:e0:39:a6:dc:8d:82:c5:5f:0f:25:b2:33:77:e0:73: aa:68:0b:b5:08:c1:dc:9f:27:cb:14:a4:c5:86:50:49:fe:f7: 32:78:c3:e1:fa:02:0d:49:99:ae:d9:60:91:a2:56:f7:02:27: 52:a3:7a:31:11:fa:7e:ce:cd:4c:86:7e:5a:94:c3:f0:66:f6: dc:cf:64:88:92:92:55:21:1a:c1:f5:cf:07:d4:d4:09:9e:d0: 8c:4f:c3:e6:ef:5e:9f:33:1c:69:0a:f5:f5:cb:45:b5:e8:f8: 07:d3:cf:2d:d6:e5:48:8f:42:13:81:20:6b:67:59:22:be:a6: a0:dd:60:4d -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBYjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0RjNF NjM5NkM5RDc2Q0JERjRFRDJENURFN0EyQTc2MDIxNEM5ODM3MB4XDTI1MDgwMTAx MzQzM1oXDTI2MDczMDA2MjkwOFowMzExMC8GA1UEAxMoNkFBMzc4ODdEQzI5Qjk4 NjI2OUI3MzU4NkU2QUJDNzBBMzM2QTM2MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPjkocRQz04URPirqZrvZvJVtisEyY4VJw9UaU/2CgmleCjg2I0l dUPU6rxwvRqsdpv+4M1FCvwO8o4I4TsC2i8byaetXqj3y1l8u+ly2mld29RKY3Rf 1jWXNmbrJBga6ezARo/hKjAfOVt2XSYoTWcbl9WG4KP8Hxeh5ELgLJdxgde3TEWi XgRXubdVbODS1J6P9hH0gxKlShehF153hfzdrmlpdz5G9KtE3+5Y43fPRIxeqjwv gtFZwvmlgtkdNicxgl/+tkHd0PhcArDACZhrtBNmXN5913C8F7zeG/DF3/YVoyUl 1VsiMe69eyNZeJ9gUZ+fZns3Re4NL03LDbcCAwEAAaOCAigwggIkMB0GA1UdDgQW BBRqo3iH3Cm5hiabc1huarxwozajYzAfBgNVHSMEGDAWgBRPPmOWyddsvfTtLV3n oqdgIUyYNzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjEwNDIvVHo1amxzblhiTDMwN1MxZDU2S25ZQ0ZNbURjLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvVHo1amxzblhiTDMwN1MxZDU2S25Z Q0ZNbURjLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIxMDQyL2FxTjRoOXdwdVlZbW0zTllibXE4Y0tNMm8yTS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAQOgBAwDQYJKoZIhvcNAQELBQADggEBAIfXiQ8o6VQjsCvprhwgGZ8M Yui9NitkkDlHrxX3qegt5HZghE4iDr3hJ7IzrDncn/V6LPqewG7fX5vMNN+nU6+U r4ehVCa0YVqxaW7411M06VPPUbe4iiVtt4l7b7e6mEr0emKzi5z8XdOAK1IdSMYI f0wN8MzJ0wWavuulSzzjPOA5ptyNgsVfDyWyM3fgc6poC7UIwdyfJ8sUpMWGUEn+ 9zJ4w+H6Ag1Jma7ZYJGiVvcCJ1KjejER+n7OzUyGflqUw/Bm9tzPZIiSklUhGsH1 zwfU1Ame0IxPw+bvXp8zHGkK9fXLRbXo+AfTzy3W5UiPQhOBIGtnWSK+pqDdYE0= -----END CERTIFICATE-----Generated at Wed Nov 5 15:51:42 2025 by rpki-client