$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/lbezkEunPEybp1DfP5_AVKUD9bE.roa File: lbezkEunPEybp1DfP5_AVKUD9bE.roa (raw, json) Hash identifier: 4bHT0AO0kOfuN3YDXWyWfq9nOmXaHX3peeMtT5pQsJw= Subject key identifier: 95:B7:B3:90:4B:A7:3C:4C:9B:A7:50:DF:3F:9F:C0:54:A5:03:F5:B1 Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Certificate serial: 01FF Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/lbezkEunPEybp1DfP5_AVKUD9bE.roa Signing time: Sat 01 Nov 2025 01:28:17 +0000 ROA not before: Sat 01 Nov 2025 01:28:17 +0000 ROA not after: Thu 15 Oct 2026 01:30:02 +0000 asID: 2497 IP address blocks: 220.156.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:38:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Validity Not Before: Nov 1 01:28:17 2025 GMT Not After : Oct 15 01:30:02 2026 GMT Subject: CN=95B7B3904BA73C4C9BA750DF3F9FC054A503F5B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:42:19:0a:7f:c6:dd:50:9d:21:ad:d2:40:e0: 6f:d9:a0:12:8d:c6:1f:e4:dc:f0:63:e3:cf:9e:b4: 99:ec:4d:bb:af:82:90:fe:c8:01:a1:a7:6b:fa:0d: 8c:dc:85:fd:45:6a:9e:25:16:54:3d:e4:54:45:0c: d8:c7:f0:ab:a5:23:d5:ce:5c:85:e0:88:e1:e2:36: 05:88:a1:a1:c7:70:04:fc:32:c7:97:93:be:a5:ca: e8:a7:2e:c7:4e:fa:e0:d5:23:ae:51:ec:74:01:71: 22:45:d7:49:c5:eb:40:f7:3a:5b:9d:23:38:74:f1: 1e:6d:1f:77:01:dc:98:f0:fe:6c:14:13:70:be:6a: 65:ab:29:b9:39:ac:a2:71:59:42:52:25:9a:9c:a3: c2:73:2f:a5:19:f0:e3:51:b1:04:c3:45:04:d7:49: d7:89:4e:ca:bd:37:9b:90:c5:db:5d:e4:b4:02:e8: cb:47:23:b8:2e:51:c6:a4:2f:85:59:04:18:9c:49: 8f:92:1e:4c:38:8d:93:b2:27:81:71:44:d6:a6:bf: 13:58:c0:4d:fd:44:50:08:74:d1:c1:ac:38:be:fe: 27:f0:57:75:55:65:ec:82:a1:a0:f2:1d:3d:e3:ed: d9:ec:db:c2:cd:cf:05:82:e6:db:a5:d9:2a:0f:5a: c6:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:B7:B3:90:4B:A7:3C:4C:9B:A7:50:DF:3F:9F:C0:54:A5:03:F5:B1 X509v3 Authority Key Identifier: keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/lbezkEunPEybp1DfP5_AVKUD9bE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.156.0.0/18 Signature Algorithm: sha256WithRSAEncryption 3c:8d:fc:03:b6:06:b5:17:ed:92:a7:e0:48:d6:89:6c:e9:0c: a1:18:6b:d2:5c:53:5a:fd:4e:3b:95:f4:3c:29:cc:5a:43:1b: 83:4d:66:af:93:ab:f8:27:7c:28:1f:9b:d7:1d:38:d4:33:82: 18:06:95:46:0c:b8:89:ab:e6:91:b1:b1:36:1c:bb:04:ff:59: 57:4b:cf:36:85:ad:7e:cd:36:a6:0b:9f:b5:38:42:64:2d:c1: 23:44:b7:46:cd:21:01:d1:36:09:b7:da:d5:22:04:ee:38:ac: 18:0e:e6:9c:98:e6:8a:89:d1:1d:13:ce:80:cb:b5:72:83:60: 68:fa:c6:cf:73:01:47:68:37:fd:64:2a:d3:a5:68:22:be:c8: ea:b2:5c:4e:f9:32:10:ef:b5:fd:5e:7c:fa:c1:a6:ab:9a:8b: b2:f6:08:39:d3:09:4d:84:7a:c3:09:41:60:e8:fb:97:bd:3d: 3f:cb:af:c3:ce:d5:17:c5:4c:61:b8:81:ef:eb:a8:3e:d1:82: 83:63:31:d5:f7:57:a5:6d:8b:1d:a8:21:af:76:4a:af:26:db: 9a:65:f3:b4:4c:b0:ad:38:4b:e8:6c:6f:56:e4:dd:13:7a:c4: 32:ef:e7:4d:1a:7e:92:b9:8c:11:b1:a1:2a:ba:6b:ea:6b:0a: e8:bf:8e:63 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4 M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yNTExMDEw MTI4MTdaFw0yNjEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDk1QjdCMzkwNEJBNzND NEM5QkE3NTBERjNGOUZDMDU0QTUwM0Y1QjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJQhkKf8bdUJ0hrdJA4G/ZoBKNxh/k3PBj48+etJnsTbuvgpD+ yAGhp2v6DYzchf1Fap4lFlQ95FRFDNjH8KulI9XOXIXgiOHiNgWIoaHHcAT8MseX k76lyuinLsdO+uDVI65R7HQBcSJF10nF60D3OludIzh08R5tH3cB3Jjw/mwUE3C+ amWrKbk5rKJxWUJSJZqco8JzL6UZ8ONRsQTDRQTXSdeJTsq9N5uQxdtd5LQC6MtH I7guUcakL4VZBBicSY+SHkw4jZOyJ4FxRNamvxNYwE39RFAIdNHBrDi+/ifwV3VV ZeyCoaDyHT3j7dns28LNzwWC5tul2SoPWsYJAgMBAAGjggIgMIICHDAdBgNVHQ4E FgQUlbezkEunPEybp1DfP5/AVKUD9bEwHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwELBIGsMIGpMF8GCCsG AQUFBzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzYvbGJlemtFdW5QRXlicDFEZlA1X0FWS1VEOWJFLnJvYTBGBggr BgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3JyZHAv YXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BtycADANBgkqhkiG9w0BAQsFAAOCAQEAPI38A7YGtRftkqfgSNaJbOkMoRhr0lxT Wv1OO5X0PCnMWkMbg01mr5Or+Cd8KB+b1x041DOCGAaVRgy4iavmkbGxNhy7BP9Z V0vPNoWtfs02pguftThCZC3BI0S3Rs0hAdE2Cbfa1SIE7jisGA7mnJjmionRHRPO gMu1coNgaPrGz3MBR2g3/WQq06VoIr7I6rJcTvkyEO+1/V58+sGmq5qLsvYIOdMJ TYR6wwlBYOj7l709P8uvw87VF8VMYbiB7+uoPtGCg2Mx1fdXpW2LHaghr3ZKrybb mmXztEywrThL6GxvVuTdE3rEMu/nTRp+krmMEbGhKrpr6msK6L+OYw== -----END CERTIFICATE-----Generated at Tue Nov 4 22:34:57 2025 by rpki-client