$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/CHlm2DCO-x3TcXdMLx2Ci5d1DkY.roa File: CHlm2DCO-x3TcXdMLx2Ci5d1DkY.roa (raw, json) Hash identifier: rYosIqFGAhhA+s9w5gXBKmOHEND2Jpj1VLH7kpb4U7w= Subject key identifier: 08:79:66:D8:30:8E:FB:1D:D3:71:77:4C:2F:1D:82:8B:97:75:0E:46 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: D0 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/CHlm2DCO-x3TcXdMLx2Ci5d1DkY.roa Signing time: Sat 01 Nov 2025 01:38:06 +0000 ROA not before: Sat 01 Nov 2025 01:38:06 +0000 ROA not after: Thu 15 Oct 2026 01:30:02 +0000 asID: 2514 IP address blocks: 160.248.90.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 19:22:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Nov 1 01:38:06 2025 GMT Not After : Oct 15 01:30:02 2026 GMT Subject: CN=087966D8308EFB1DD371774C2F1D828B97750E46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1a:68:32:f2:61:50:0d:60:b3:ee:98:7c:dc: 82:43:8e:09:dc:82:f9:54:c1:78:e9:ff:0e:20:1b: 6f:c5:81:4b:4b:3c:51:be:76:07:07:7c:a8:b7:c3: 8c:bf:eb:58:8b:51:cd:a9:7b:8f:2e:ca:e0:70:74: c5:e2:0f:b4:38:75:d5:3e:6b:f4:c7:48:b0:f7:88: 54:3c:cd:36:7a:f4:ae:0c:2d:6e:ca:d2:3c:96:12: 0d:f1:bd:fc:d6:21:76:9d:c8:ec:0c:33:33:c3:16: c3:2d:da:50:39:28:d4:03:d5:b9:aa:f0:49:51:45: 69:88:77:7e:a5:85:c4:33:5b:e7:38:04:f4:3b:38: 32:b1:05:bc:d9:f8:4c:19:05:91:e3:11:04:3b:05: 38:72:93:25:fb:ad:50:db:1a:cf:9d:f6:9b:0f:0f: f9:f5:db:b3:22:2f:26:2b:07:64:d8:0b:53:3a:21: 2b:f3:df:4c:15:0e:3f:d2:02:c9:55:82:e4:94:dd: 2f:63:eb:99:ba:b0:04:fd:a1:3a:ad:3c:61:df:54: f2:7e:7d:81:23:1d:07:0d:ec:5d:4a:e1:98:54:aa: a5:fa:01:90:07:26:39:62:ea:a5:d5:5d:c3:76:bd: bd:b9:4c:48:eb:07:ba:99:31:29:c5:ab:0f:84:94: b2:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:79:66:D8:30:8E:FB:1D:D3:71:77:4C:2F:1D:82:8B:97:75:0E:46 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/CHlm2DCO-x3TcXdMLx2Ci5d1DkY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.90.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:af:a9:f2:82:59:65:6c:e5:21:0f:eb:03:c0:1d:76:37:55: a0:41:dc:df:e7:29:c0:98:45:25:23:7c:b6:c0:d7:63:9d:de: 1c:51:7e:68:82:cd:44:5b:f4:19:a5:13:c9:bf:7e:25:33:d8: f1:75:d5:2c:4f:10:dc:ec:60:0b:89:19:55:af:c3:9e:ac:87: 91:9e:60:3f:04:6b:f2:d8:c8:ef:7d:d7:71:88:9c:83:7d:99: 98:83:b2:28:c1:e7:7c:2a:72:bc:3f:81:80:4f:c1:06:4b:d4: a9:af:67:f2:59:8d:b5:93:0c:aa:8f:4e:84:21:73:e7:e9:fc: 41:68:ca:71:4e:9b:c4:16:cb:90:d8:3e:46:33:4d:6d:0f:d3: e1:46:1e:1b:d1:72:53:dd:1e:24:88:94:36:51:30:7c:15:2c: 90:34:e0:84:89:34:d8:e3:22:58:b4:fc:97:50:c7:e3:fd:11: 9c:60:53:e3:ba:0c:33:41:a7:18:f7:31:3e:c5:f4:84:af:8d: c5:3b:22:0f:77:21:d5:bb:77:76:70:51:dd:ac:24:e4:99:e1: fc:b4:f8:95:e6:d1:91:cd:6d:62:26:61:41:ae:f0:22:42:7e: a4:87:cf:d4:40:bb:e9:ef:7e:a6:1d:4b:2d:40:ab:eb:c6:a4: 88:38:d3:c6 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICANAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNTExMDEw MTM4MDZaFw0yNjEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA4Nzk2NkQ4MzA4RUZC MUREMzcxNzc0QzJGMUQ4MjhCOTc3NTBFNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHGmgy8mFQDWCz7ph83IJDjgncgvlUwXjp/w4gG2/FgUtLPFG+ dgcHfKi3w4y/61iLUc2pe48uyuBwdMXiD7Q4ddU+a/THSLD3iFQ8zTZ69K4MLW7K 0jyWEg3xvfzWIXadyOwMMzPDFsMt2lA5KNQD1bmq8ElRRWmId36lhcQzW+c4BPQ7 ODKxBbzZ+EwZBZHjEQQ7BThykyX7rVDbGs+d9psPD/n127MiLyYrB2TYC1M6ISvz 30wVDj/SAslVguSU3S9j65m6sAT9oTqtPGHfVPJ+fYEjHQcN7F1K4ZhUqqX6AZAH Jjli6qXVXcN2vb25TEjrB7qZMSnFqw+ElLKbAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUCHlm2DCO+x3TcXdMLx2Ci5d1DkYwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS9DSGxtMkRDTy14M1RjWGRNTHgyQ2k1ZDFEa1kucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBoPhaMA0GCSqGSIb3DQEBCwUAA4IBAQBsr6nyglllbOUhD+sDwB12N1WgQdzf 5ynAmEUlI3y2wNdjnd4cUX5ogs1EW/QZpRPJv34lM9jxddUsTxDc7GALiRlVr8Oe rIeRnmA/BGvy2MjvfddxiJyDfZmYg7Iowed8KnK8P4GAT8EGS9Spr2fyWY21kwyq j06EIXPn6fxBaMpxTpvEFsuQ2D5GM01tD9PhRh4b0XJT3R4kiJQ2UTB8FSyQNOCE iTTY4yJYtPyXUMfj/RGcYFPjugwzQacY9zE+xfSEr43FOyIPdyHVu3d2cFHdrCTk meH8tPiV5tGRzW1iJmFBrvAiQn6kh8/UQLvp736mHUstQKvrxqSIONPG -----END CERTIFICATE-----Generated at Wed Nov 5 21:48:29 2025 by rpki-client