$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30291/lUDBu8x5MLl2XP43y5nGOVgooBs.roa File: lUDBu8x5MLl2XP43y5nGOVgooBs.roa (raw, json) Hash identifier: phkNmEKxnfZdtJFrlM7kzF149S+qNZBL2RX6awsvVoc= Subject key identifier: 95:40:C1:BB:CC:79:30:B9:76:5C:FE:37:CB:99:C6:39:58:28:A0:1B Certificate issuer: /CN=1CB60B40A98AEAE054CAEE4C09CB7D9AEADE3E9D Certificate serial: 31 Authority key identifier: 1C:B6:0B:40:A9:8A:EA:E0:54:CA:EE:4C:09:CB:7D:9A:EA:DE:3E:9D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/HLYLQKmK6uBUyu5MCct9murePp0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30291/lUDBu8x5MLl2XP43y5nGOVgooBs.roa Signing time: Sat 01 Nov 2025 01:35:20 +0000 ROA not before: Sat 01 Nov 2025 01:35:20 +0000 ROA not after: Thu 15 Oct 2026 01:30:02 +0000 asID: 131964 IP address blocks: 2400:a140:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30291/HLYLQKmK6uBUyu5MCct9murePp0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30291/HLYLQKmK6uBUyu5MCct9murePp0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/HLYLQKmK6uBUyu5MCct9murePp0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 20:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1CB60B40A98AEAE054CAEE4C09CB7D9AEADE3E9D Validity Not Before: Nov 1 01:35:20 2025 GMT Not After : Oct 15 01:30:02 2026 GMT Subject: CN=9540C1BBCC7930B9765CFE37CB99C6395828A01B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:12:1e:25:94:aa:c3:7c:22:8d:5e:7d:a8:19: 26:11:77:d2:d4:c0:3f:e2:80:b9:9d:93:9a:42:09: 12:5a:74:f7:a6:df:d2:67:da:5e:c8:53:14:01:1a: f3:ed:5b:53:ec:ef:77:58:c6:8b:6e:f3:3e:11:8e: 72:04:85:d6:0c:31:93:81:95:b8:47:a6:4c:6c:21: fe:e9:d4:bc:c9:51:66:8b:3a:a4:25:ac:6a:5c:35: fa:93:b4:ee:41:96:4b:53:ad:78:d6:a1:bf:ab:e6: 3a:64:04:0d:a2:bd:d0:ec:7f:d4:07:26:be:11:90: e0:f4:47:96:f6:0c:79:18:d6:6a:0f:87:64:3b:19: 00:8d:d7:b2:76:ba:3b:19:c8:06:42:48:b5:16:2d: ba:a3:87:8f:30:b4:33:2d:28:d9:72:3e:4c:27:22: b9:aa:d8:28:93:34:8a:94:cd:aa:07:a9:b1:53:28: b0:b2:3f:9e:03:21:78:9a:43:7a:34:10:d8:94:dd: 4a:c8:b8:7d:77:a2:66:22:68:2e:0c:a1:ad:a9:d2: 25:8d:78:d3:12:d5:d1:8b:ec:fe:6d:54:d1:60:3c: cb:d4:46:6d:90:09:fa:29:fb:8a:dc:fa:2a:82:56: 32:4c:27:29:84:3f:c7:63:bd:41:23:cb:a7:62:4d: 35:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:40:C1:BB:CC:79:30:B9:76:5C:FE:37:CB:99:C6:39:58:28:A0:1B X509v3 Authority Key Identifier: keyid:1C:B6:0B:40:A9:8A:EA:E0:54:CA:EE:4C:09:CB:7D:9A:EA:DE:3E:9D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30291/HLYLQKmK6uBUyu5MCct9murePp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/HLYLQKmK6uBUyu5MCct9murePp0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30291/lUDBu8x5MLl2XP43y5nGOVgooBs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:a140:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 6d:5c:ea:28:9e:6b:72:63:03:c6:f7:0a:a6:ba:92:4d:45:0e: 44:7f:38:30:bb:00:a0:b5:74:51:15:5f:60:0c:da:04:61:50: 45:35:7d:58:5f:15:3a:d9:b4:98:db:f7:2c:72:f7:55:e8:98: 66:99:1e:d8:0f:ad:9d:49:11:39:4b:ff:57:47:f9:ed:d2:10: d7:c7:08:a8:5f:5c:e4:42:b7:19:8f:09:e4:83:5e:3b:fd:a3: 28:df:e1:5c:9a:a1:b9:3b:90:5c:33:fe:00:c1:52:38:af:60: 80:79:ce:a0:c6:58:54:35:7e:d0:f8:b5:0e:05:fc:2d:f6:28: c1:d2:04:d2:74:db:60:95:06:bc:ed:73:79:d2:03:7c:5b:e0: 8c:21:ee:dc:b2:a9:8d:61:01:b1:b4:9d:76:e6:f8:ad:09:4c: e2:6e:5d:63:b6:8b:ef:ef:04:35:ad:40:10:bb:36:e5:48:8f: 2a:68:79:8d:c9:01:16:2f:ac:bf:66:8c:60:56:d2:35:cf:88: d0:09:df:6d:38:5a:01:97:98:cc:97:99:d2:6d:27:b8:13:81: 7d:b0:7f:bd:07:ba:b2:a7:c2:d9:00:2d:8b:ed:85:f6:6b:9e: 89:42:58:6a:04:1e:a5:20:f0:cc:4e:d2:94:b1:9a:e9:a0:18: 5f:62:39:90 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIBMTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQ0I2 MEI0MEE5OEFFQUUwNTRDQUVFNEMwOUNCN0Q5QUVBREUzRTlEMB4XDTI1MTEwMTAx MzUyMFoXDTI2MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoOTU0MEMxQkJDQzc5MzBC OTc2NUNGRTM3Q0I5OUM2Mzk1ODI4QTAxQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL8SHiWUqsN8Io1efagZJhF30tTAP+KAuZ2TmkIJElp096bf0mfa XshTFAEa8+1bU+zvd1jGi27zPhGOcgSF1gwxk4GVuEemTGwh/unUvMlRZos6pCWs alw1+pO07kGWS1OteNahv6vmOmQEDaK90Ox/1AcmvhGQ4PRHlvYMeRjWag+HZDsZ AI3Xsna6OxnIBkJItRYtuqOHjzC0My0o2XI+TCciuarYKJM0ipTNqgepsVMosLI/ ngMheJpDejQQ2JTdSsi4fXeiZiJoLgyhranSJY140xLV0Yvs/m1U0WA8y9RGbZAJ +in7itz6KoJWMkwnKYQ/x2O9QSPLp2JNNXcCAwEAAaOCAiswggInMB0GA1UdDgQW BBSVQMG7zHkwuXZc/jfLmcY5WCigGzAfBgNVHSMEGDAWgBQctgtAqYrq4FTK7kwJ y32a6t4+nTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAyOTEvSExZTFFLbUs2dUJVeXU1TUNjdDltdXJlUHAwLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvSExZTFFLbUs2dUJVeXU1TUNjdDlt dXJlUHAwLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMjkxL2xVREJ1OHg1TUxsMlhQNDN5NW5HT1Znb29Ccy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAkAKFA//8wDQYJKoZIhvcNAQELBQADggEBAG1c6iiea3JjA8b3Cqa6 kk1FDkR/ODC7AKC1dFEVX2AM2gRhUEU1fVhfFTrZtJjb9yxy91XomGaZHtgPrZ1J ETlL/1dH+e3SENfHCKhfXORCtxmPCeSDXjv9oyjf4Vyaobk7kFwz/gDBUjivYIB5 zqDGWFQ1ftD4tQ4F/C32KMHSBNJ022CVBrztc3nSA3xb4Iwh7tyyqY1hAbG0nXbm +K0JTOJuXWO2i+/vBDWtQBC7NuVIjypoeY3JARYvrL9mjGBW0jXPiNAJ3204WgGX mMyXmdJtJ7gTgX2wf70HurKnwtkALYvthfZrnolCWGoEHqUg8MxO0pSxmumgGF9i OZA= -----END CERTIFICATE-----Generated at Thu Nov 6 00:02:52 2025 by rpki-client