$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/HqKCITmTJO2bh0Q-497O83v8ZEo.roa File: HqKCITmTJO2bh0Q-497O83v8ZEo.roa (raw, json) Hash identifier: MRMuQRHa27l/Zs8CT9hZ5JJcaRBTuSbh0+oIL4iACdQ= Subject key identifier: 1E:A2:82:21:39:93:24:ED:9B:87:44:3E:E3:DE:CE:F3:7B:FC:64:4A Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: C9 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/HqKCITmTJO2bh0Q-497O83v8ZEo.roa Signing time: Sat 01 Nov 2025 01:32:40 +0000 ROA not before: Sat 01 Nov 2025 01:32:40 +0000 ROA not after: Thu 15 Oct 2026 01:30:02 +0000 asID: 2514 IP address blocks: 160.248.74.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 18:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Nov 1 01:32:40 2025 GMT Not After : Oct 15 01:30:02 2026 GMT Subject: CN=1EA28221399324ED9B87443EE3DECEF37BFC644A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9f:db:fd:0d:2f:f7:68:7c:88:d1:be:86:26: 62:bf:16:39:42:a1:2b:1a:39:81:27:94:40:02:9b: c3:df:d9:74:b2:5a:38:1f:9d:1f:a7:20:79:3e:45: 0e:17:a0:ea:2f:d0:dd:ee:53:f1:9d:4b:ae:15:38: 82:44:07:13:b2:41:76:84:fc:5c:70:02:f1:f4:48: 30:f2:e4:10:a9:af:d2:5e:bc:e2:df:a1:79:6b:58: b5:28:fc:c4:15:06:13:32:ea:fc:26:de:6c:55:4f: 13:44:d7:3c:bf:1c:63:5a:3f:e1:90:50:0c:de:3f: 78:c0:26:c6:cf:0e:4c:ff:41:e5:2c:24:7a:f4:02: ed:c8:ca:8a:2a:03:47:68:8a:f6:c5:c4:3c:17:19: cd:4d:b7:72:e8:4d:ca:30:9e:b3:48:7f:74:00:1a: 9f:20:45:26:95:13:15:4a:e4:a8:7e:49:04:38:00: 58:4c:b5:b6:ef:f8:7c:b5:bc:5e:35:d7:36:24:ac: 7f:4f:90:d7:cb:58:d3:13:6a:19:4e:95:c4:87:78: 32:94:aa:2a:72:6d:d9:3d:cc:22:45:a2:71:99:70: 20:f8:9b:b8:6a:47:00:94:cb:47:06:83:71:9d:ea: d2:d4:d9:3a:a6:55:9e:54:59:54:81:95:24:8e:73: 7f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:A2:82:21:39:93:24:ED:9B:87:44:3E:E3:DE:CE:F3:7B:FC:64:4A X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/HqKCITmTJO2bh0Q-497O83v8ZEo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.74.0/23 Signature Algorithm: sha256WithRSAEncryption 62:54:cf:63:0e:51:02:52:0d:c6:88:af:c7:a5:81:05:2c:c4: c9:b3:4b:0f:d2:8f:8c:54:27:5e:27:e8:d5:16:8e:5b:d6:e4: 6a:74:5c:e4:4d:d2:cf:6e:9a:66:6e:98:fe:2d:8a:53:7c:04: 70:9c:13:78:ac:b4:21:36:b3:f8:24:78:37:92:da:ad:26:2e: 00:58:2b:84:1d:da:89:03:67:6a:8a:fe:99:c9:57:f3:f5:12: e4:ed:b4:b5:0a:5c:c5:50:ef:d7:19:ee:bd:8a:fd:f7:8c:48: 82:18:5a:eb:8a:20:e1:80:22:5d:97:a6:bc:64:2c:f0:09:68: f8:80:02:19:ae:a7:a5:c7:d1:60:df:5e:9c:b4:c1:73:69:1c: 72:49:72:a7:4f:2f:be:78:f4:ca:0a:2d:28:ad:3b:16:af:68: d4:8f:d0:ea:d2:36:f8:a0:38:77:20:8e:d4:00:ff:d4:d1:72: 06:57:2b:95:f6:27:e4:38:7e:90:d9:f7:8e:02:8c:e4:37:95: 11:f3:ca:bc:05:73:2c:89:25:a1:39:33:cc:dd:d2:1c:7e:f1: 9e:8f:ed:b3:b6:6f:ef:28:cc:82:da:0b:c3:5d:8d:40:ee:0f: 72:a2:37:06:c3:bd:01:92:27:0a:4d:7a:e2:85:e1:0f:54:bb: f5:b7:6f:82 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNTExMDEw MTMyNDBaFw0yNjEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDFFQTI4MjIxMzk5MzI0 RUQ5Qjg3NDQzRUUzREVDRUYzN0JGQzY0NEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtn9v9DS/3aHyI0b6GJmK/FjlCoSsaOYEnlEACm8Pf2XSyWjgf nR+nIHk+RQ4XoOov0N3uU/GdS64VOIJEBxOyQXaE/FxwAvH0SDDy5BCpr9JevOLf oXlrWLUo/MQVBhMy6vwm3mxVTxNE1zy/HGNaP+GQUAzeP3jAJsbPDkz/QeUsJHr0 Au3IyooqA0doivbFxDwXGc1Nt3LoTcownrNIf3QAGp8gRSaVExVK5Kh+SQQ4AFhM tbbv+Hy1vF411zYkrH9PkNfLWNMTahlOlcSHeDKUqipybdk9zCJFonGZcCD4m7hq RwCUy0cGg3Gd6tLU2TqmVZ5UWVSBlSSOc3/1AgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUHqKCITmTJO2bh0Q+497O83v8ZEowHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS9IcUtDSVRtVEpPMmJoMFEtNDk3TzgzdjhaRW8ucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBoPhKMA0GCSqGSIb3DQEBCwUAA4IBAQBiVM9jDlECUg3GiK/HpYEFLMTJs0sP 0o+MVCdeJ+jVFo5b1uRqdFzkTdLPbppmbpj+LYpTfARwnBN4rLQhNrP4JHg3ktqt Ji4AWCuEHdqJA2dqiv6ZyVfz9RLk7bS1ClzFUO/XGe69iv33jEiCGFrriiDhgCJd l6a8ZCzwCWj4gAIZrqelx9Fg316ctMFzaRxySXKnTy++ePTKCi0orTsWr2jUj9Dq 0jb4oDh3II7UAP/U0XIGVyuV9ifkOH6Q2feOAozkN5UR88q8BXMsiSWhOTPM3dIc fvGej+2ztm/vKMyC2gvDXY1A7g9yojcGw70BkicKTXriheEPVLv1t2+C -----END CERTIFICATE-----Generated at Wed Nov 5 20:22:01 2025 by rpki-client