$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/QM2kePpQNt0JjPrjkDzXOWhEAjY.roa File: QM2kePpQNt0JjPrjkDzXOWhEAjY.roa (raw, json) Hash identifier: DFPyT+JJLUGstyj3wSfocYA29iZbT81pLPOFhYEsJbI= Subject key identifier: 40:CD:A4:78:FA:50:36:DD:09:8C:FA:E3:90:3C:D7:39:68:44:02:36 Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 0152 Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QM2kePpQNt0JjPrjkDzXOWhEAjY.roa Signing time: Fri 01 Aug 2025 01:34:07 +0000 ROA not before: Fri 01 Aug 2025 01:34:07 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 10021 IP address blocks: 202.95.220.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:11:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Aug 1 01:34:07 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=40CDA478FA5036DD098CFAE3903CD73968440236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fb:95:0b:fb:9a:98:5d:3c:c0:64:da:a1:b8: 1c:7e:19:06:ad:4f:fe:ad:69:3d:39:a1:b9:51:00: 44:d9:6f:a8:e1:38:82:3f:81:9e:e8:53:98:f4:5d: f1:ab:e7:8d:32:df:70:6b:16:8c:8d:d8:c0:34:ca: 6d:9a:88:bb:33:08:26:4c:6c:43:96:a6:6f:96:b9: 05:64:6d:a7:2f:80:cd:b0:0b:5f:38:fe:73:f8:9d: dc:a9:fb:24:c8:30:51:12:8d:0b:cd:ae:2a:3e:79: 60:cf:70:14:71:13:8d:86:4e:a8:f4:57:84:d8:93: db:06:aa:b2:49:3f:28:cc:ce:60:7a:76:62:0e:2c: 0a:77:3a:2a:2a:bc:4e:ae:04:1a:27:b0:fd:ed:f0: c8:79:55:d0:20:e2:8a:75:7d:2d:14:aa:8f:18:68: 58:3d:61:9b:24:2a:c6:89:38:06:5e:88:9d:2c:58: b5:88:c9:b2:fe:4d:b8:d5:d0:95:3e:d4:14:41:c1: 8c:16:63:82:4c:cf:41:6e:dd:d3:fb:9c:08:a1:8d: 74:5a:27:fc:35:8d:a0:5b:bc:c9:c4:e9:c0:2b:1d: e3:2d:87:1f:12:06:9b:62:07:02:2b:dc:77:e1:b7: 10:f8:5a:24:da:76:25:dc:b5:52:36:fe:54:cd:90: 1e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:CD:A4:78:FA:50:36:DD:09:8C:FA:E3:90:3C:D7:39:68:44:02:36 X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QM2kePpQNt0JjPrjkDzXOWhEAjY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.95.220.0/22 Signature Algorithm: sha256WithRSAEncryption c6:da:76:fe:de:11:98:58:c6:ab:8d:90:f1:d3:4a:af:d8:c2: 26:f4:61:c9:c9:77:36:1f:5f:f7:20:e3:bf:6d:6d:10:73:ff: 2a:73:3b:0f:de:58:be:4f:26:37:ed:b0:1b:f1:a2:94:01:2e: 10:3c:25:ab:68:49:02:4b:16:95:15:d8:81:50:da:9d:b8:e4: 81:3e:f8:9c:94:af:cb:8b:35:88:51:8d:8a:18:32:1c:ba:f4: c3:52:42:56:5e:92:64:41:43:cb:70:76:90:06:e0:25:eb:40: 17:57:e9:36:ed:0f:c1:c6:81:1c:3f:67:4f:94:9a:7c:95:ea: 69:8b:32:23:5c:59:d2:1a:27:11:05:3c:a4:02:a0:91:5c:a1: 22:71:fe:44:ad:f3:f5:6d:a1:b2:62:65:49:39:56:c0:99:37: e5:d3:fe:18:fe:ca:55:33:4c:4d:b5:37:a7:10:1d:b1:f8:74: 8e:ef:93:8c:ae:f9:fb:56:67:d2:dc:6c:2e:f7:4a:20:fe:7f: ae:7d:58:45:7a:a2:be:e0:b2:e2:8d:4e:0b:95:ac:4e:0e:6f: 39:24:91:e4:de:20:ea:6b:80:fe:8b:18:00:42:7a:d4:63:f6: 76:52:a5:8e:df:8f:68:8d:ae:b0:64:56:21:89:70:0a:3b:78: 6a:55:38:7b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNTA4MDEw MTM0MDdaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDQwQ0RBNDc4RkE1MDM2 REQwOThDRkFFMzkwM0NENzM5Njg0NDAyMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/+5UL+5qYXTzAZNqhuBx+GQatT/6taT05oblRAETZb6jhOII/ gZ7oU5j0XfGr540y33BrFoyN2MA0ym2aiLszCCZMbEOWpm+WuQVkbacvgM2wC184 /nP4ndyp+yTIMFESjQvNrio+eWDPcBRxE42GTqj0V4TYk9sGqrJJPyjMzmB6dmIO LAp3OioqvE6uBBonsP3t8Mh5VdAg4op1fS0Uqo8YaFg9YZskKsaJOAZeiJ0sWLWI ybL+TbjV0JU+1BRBwYwWY4JMz0Fu3dP7nAihjXRaJ/w1jaBbvMnE6cArHeMthx8S BptiBwIr3HfhtxD4WiTadiXctVI2/lTNkB7HAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQM2kePpQNt0JjPrjkDzXOWhEAjYwHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5L1FNMmtlUHBRTnQwSmpQcmprRHpYT1doRUFqWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALKX9wwDQYJKoZIhvcNAQELBQADggEBAMbadv7eEZhYxquNkPHTSq/Ywib0 YcnJdzYfX/cg479tbRBz/ypzOw/eWL5PJjftsBvxopQBLhA8JatoSQJLFpUV2IFQ 2p245IE++JyUr8uLNYhRjYoYMhy69MNSQlZekmRBQ8twdpAG4CXrQBdX6TbtD8HG gRw/Z0+UmnyV6mmLMiNcWdIaJxEFPKQCoJFcoSJx/kSt8/VtobJiZUk5VsCZN+XT /hj+ylUzTE21N6cQHbH4dI7vk4yu+ftWZ9LcbC73SiD+f659WEV6or7gsuKNTguV rE4ObzkkkeTeIOprgP6LGABCetRj9nZSpY7fj2iNrrBkViGJcAo7eGpVOHs= -----END CERTIFICATE-----Generated at Wed Nov 5 12:06:59 2025 by rpki-client