$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/nBG37JQICpFakMF5WUcNH3zUmTY.roa File: nBG37JQICpFakMF5WUcNH3zUmTY.roa (raw, json) Hash identifier: 05/yAcpNZCIhEhJ3V9R9bCyhR7QkqZXUvnZ9aMh3ax4= Subject key identifier: 9C:11:B7:EC:94:08:0A:91:5A:90:C1:79:59:47:0D:1F:7C:D4:99:36 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: BD Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/nBG37JQICpFakMF5WUcNH3zUmTY.roa Signing time: Sat 01 Nov 2025 01:32:33 +0000 ROA not before: Sat 01 Nov 2025 01:32:33 +0000 ROA not after: Thu 15 Oct 2026 01:30:02 +0000 asID: 2514 IP address blocks: 157.65.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 14:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Nov 1 01:32:33 2025 GMT Not After : Oct 15 01:30:02 2026 GMT Subject: CN=9C11B7EC94080A915A90C17959470D1F7CD49936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a3:7b:0a:22:3a:8c:81:51:c5:2c:11:e9:0f: 1c:d4:59:79:c4:de:14:e5:59:ce:3b:1d:58:51:75: e0:08:69:23:5a:87:6a:73:0b:1d:1e:3d:1e:4f:f0: 7f:00:d9:72:44:cc:1c:a0:c0:e9:fb:64:46:02:c1: e2:ce:a4:45:38:a5:e9:d8:d7:5e:79:d5:e3:cc:53: ab:ef:e2:3f:f4:c6:c2:e2:0d:4e:da:b9:c6:8e:3a: cf:cd:bc:eb:c5:c3:29:47:88:8c:35:8e:fa:f8:95: 2d:3b:c3:f9:43:10:9d:f7:7c:db:78:83:d2:6b:90: eb:28:83:cc:4c:6e:c3:44:2d:35:4e:19:6f:0c:ef: 7a:5a:b0:59:7a:1f:0b:7f:a6:1f:bf:7d:11:7b:0b: 4c:0d:2c:aa:af:b7:1f:40:5f:4d:8b:20:30:78:d6: d0:7d:38:9e:39:03:97:a4:3b:15:4c:b8:9b:be:bd: 31:9a:fb:f6:5c:8a:79:3c:ca:ef:da:67:8d:79:ed: 7c:71:19:f3:7a:2a:5c:6a:93:18:22:e1:d9:74:ba: 7f:43:48:18:f3:b6:bc:74:14:41:44:f4:6f:a5:1f: 38:f2:6a:25:94:71:16:84:bd:f2:bb:7d:cb:19:12: 07:59:69:c4:d0:db:d4:3d:28:80:09:41:19:2a:20: 63:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:11:B7:EC:94:08:0A:91:5A:90:C1:79:59:47:0D:1F:7C:D4:99:36 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/nBG37JQICpFakMF5WUcNH3zUmTY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.65.64.0/18 Signature Algorithm: sha256WithRSAEncryption 6f:0e:be:5b:b1:38:a2:2b:6c:d2:2f:01:f8:77:ee:00:ad:5a: 67:2b:d6:c3:5e:74:ca:bb:8f:8a:54:2e:d6:01:f4:38:c6:54: 02:9c:b2:80:61:d4:66:25:9a:62:3a:0d:b3:3e:c3:e0:28:e4: 0f:ea:ac:0f:34:a5:e9:c1:48:65:09:df:88:f8:d5:c8:12:1c: 9a:9e:ac:50:11:9b:8c:97:96:62:29:67:55:10:b2:d4:ae:03: 52:5e:5f:c8:4e:61:32:a3:a0:f0:18:b3:ff:db:1a:9a:0d:b4: 1d:33:88:27:4e:fd:14:7d:e0:49:6d:08:2c:70:5a:1b:9b:5b: ee:51:71:32:8a:38:61:fd:25:18:78:b2:96:52:d5:59:5a:f9: 54:b0:f4:ca:c1:6c:a8:5c:74:0d:58:04:3d:cd:b3:5a:e9:52: eb:1e:de:47:ba:1d:e8:63:21:dd:35:df:88:cf:08:83:57:ad: 5a:43:5e:ee:39:11:50:01:0f:46:4a:d0:52:bb:34:c0:45:ba: ae:fb:de:61:20:27:e7:72:a2:d4:bb:8b:b5:4c:76:2a:95:13: 81:1a:2f:25:e8:88:5a:c1:3a:1c:1e:38:76:a9:6c:88:bb:97: e2:de:b4:91:69:d6:a5:d4:26:79:69:f5:2a:b9:34:20:d5:e1: 6d:25:ee:5e -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNTExMDEw MTMyMzNaFw0yNjEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDlDMTFCN0VDOTQwODBB OTE1QTkwQzE3OTU5NDcwRDFGN0NENDk5MzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZo3sKIjqMgVHFLBHpDxzUWXnE3hTlWc47HVhRdeAIaSNah2pz Cx0ePR5P8H8A2XJEzBygwOn7ZEYCweLOpEU4penY11551ePMU6vv4j/0xsLiDU7a ucaOOs/NvOvFwylHiIw1jvr4lS07w/lDEJ33fNt4g9JrkOsog8xMbsNELTVOGW8M 73pasFl6Hwt/ph+/fRF7C0wNLKqvtx9AX02LIDB41tB9OJ45A5ekOxVMuJu+vTGa +/Zcink8yu/aZ4157XxxGfN6Klxqkxgi4dl0un9DSBjztrx0FEFE9G+lHzjyaiWU cRaEvfK7fcsZEgdZacTQ29Q9KIAJQRkqIGPZAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUnBG37JQICpFakMF5WUcNH3zUmTYwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS9uQkczN0pRSUNwRmFrTUY1V1VjTkgzelVtVFkucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQGnUFAMA0GCSqGSIb3DQEBCwUAA4IBAQBvDr5bsTiiK2zSLwH4d+4ArVpnK9bD XnTKu4+KVC7WAfQ4xlQCnLKAYdRmJZpiOg2zPsPgKOQP6qwPNKXpwUhlCd+I+NXI EhyanqxQEZuMl5ZiKWdVELLUrgNSXl/ITmEyo6DwGLP/2xqaDbQdM4gnTv0UfeBJ bQgscFobm1vuUXEyijhh/SUYeLKWUtVZWvlUsPTKwWyoXHQNWAQ9zbNa6VLrHt5H uh3oYyHdNd+IzwiDV61aQ17uORFQAQ9GStBSuzTARbqu+95hICfncqLUu4u1THYq lROBGi8l6IhawTocHjh2qWyIu5fi3rSRadal1CZ5afUquTQg1eFtJe5e -----END CERTIFICATE-----Generated at Wed Nov 5 19:09:18 2025 by rpki-client