$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/usgz2TUAqc0-JUfbGDNo9qdSnfc.roa File: usgz2TUAqc0-JUfbGDNo9qdSnfc.roa (raw, json) Hash identifier: tmYf0My+DJ2T1CFN6k1eDRQBNhmA5FhcJ6jMBKJxMGo= Subject key identifier: BA:C8:33:D9:35:00:A9:CD:3E:25:47:DB:18:33:68:F6:A7:52:9D:F7 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 03C3 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/usgz2TUAqc0-JUfbGDNo9qdSnfc.roa Signing time: Fri 01 Aug 2025 01:58:57 +0000 ROA not before: Fri 01 Aug 2025 01:58:57 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 9617 IP address blocks: 125.4.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 18:10:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 963 (0x3c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 1 01:58:57 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=BAC833D93500A9CD3E2547DB183368F6A7529DF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:d2:62:0d:3d:7b:fd:45:81:13:df:03:da:b0: 99:90:b6:14:22:ed:00:03:e2:9a:98:46:46:e3:e0: b8:36:8f:d1:18:aa:99:90:63:69:a3:93:0c:c7:36: fe:9e:82:e7:86:3e:f5:b8:5e:0f:ab:1a:3d:a0:7c: 8b:d6:f5:44:4a:c6:ff:ba:8d:23:b3:41:0b:5b:23: 00:11:5b:02:b8:12:4c:da:a3:6b:71:74:7c:83:cc: d8:cf:99:60:1f:38:e6:64:14:58:b4:3c:30:7d:ec: 4f:8f:70:17:f8:9d:d5:ed:1b:a2:46:64:a9:1a:67: f7:42:c4:01:53:b0:e6:8e:f8:48:db:19:95:2d:2f: 73:56:9f:72:aa:84:17:03:f2:01:07:7b:1e:0b:2a: b6:23:e4:bf:72:c9:5a:97:d9:a3:72:b9:36:c3:32: 89:38:46:b3:b0:63:b7:8a:59:44:b6:cb:63:0d:d6: 42:bb:f4:da:1c:c1:c1:d9:cf:6e:87:ec:dd:b1:77: 42:05:d0:d6:13:07:51:f1:82:08:ab:28:da:47:16: f8:3b:e6:25:7e:56:3a:7d:2a:a7:86:3b:ca:ef:49: b1:2a:af:40:61:e4:6e:8a:a0:9b:d8:3c:86:0c:88: 3e:af:69:09:c7:00:66:aa:87:7f:f5:b7:bf:19:34: d9:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:C8:33:D9:35:00:A9:CD:3E:25:47:DB:18:33:68:F6:A7:52:9D:F7 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/usgz2TUAqc0-JUfbGDNo9qdSnfc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.4.0.0/16 Signature Algorithm: sha256WithRSAEncryption 37:75:f7:2c:c5:f9:cc:21:75:4d:0e:0d:ac:01:52:56:54:4d: 06:c2:29:d2:cd:bf:2c:3a:31:cc:b5:29:df:ce:60:2e:93:40: c7:29:3d:8c:b0:b5:92:cb:4a:17:14:87:f6:e2:d9:62:33:52: d7:bb:c8:c0:2e:fa:6f:ec:61:12:22:e0:8b:f8:c9:28:05:73: 85:76:e9:9c:90:38:98:99:38:89:f9:29:d8:79:a5:43:09:8d: 68:9b:cd:33:f8:c9:fe:dc:48:a5:b7:94:13:ca:13:ff:04:7b: 97:35:60:f9:16:36:3c:cf:32:8e:f1:81:8e:b4:1f:bf:e0:ee: 67:41:5f:02:4c:3e:5f:ce:7f:cb:ce:d7:be:27:58:d7:a7:7b: ae:bd:56:f9:de:77:ad:4c:b8:62:78:2c:12:3e:a0:09:3c:93: 7a:26:fa:6c:0a:67:b5:af:e7:a2:c0:34:0c:83:eb:7b:8c:8a: b6:c4:82:d0:10:75:99:41:d0:d9:59:62:cb:06:75:60:21:dc: ee:41:f2:98:1d:69:ce:a4:de:f7:df:36:bc:82:50:e5:e2:21: e1:b2:74:66:9e:ca:52:98:d6:de:76:fa:e2:9c:02:17:5a:6f: 43:a1:3e:ee:38:3a:25:09:1d:16:c7:ce:53:9a:19:ac:dd:b1: b2:d6:a6:ea -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICA8MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNTA4MDEw MTU4NTdaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKEJBQzgzM0Q5MzUwMEE5 Q0QzRTI1NDdEQjE4MzM2OEY2QTc1MjlERjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCV0mINPXv9RYET3wPasJmQthQi7QAD4pqYRkbj4Lg2j9EYqpmQ Y2mjkwzHNv6egueGPvW4Xg+rGj2gfIvW9URKxv+6jSOzQQtbIwARWwK4Ekzao2tx dHyDzNjPmWAfOOZkFFi0PDB97E+PcBf4ndXtG6JGZKkaZ/dCxAFTsOaO+EjbGZUt L3NWn3KqhBcD8gEHex4LKrYj5L9yyVqX2aNyuTbDMok4RrOwY7eKWUS2y2MN1kK7 9NocwcHZz26H7N2xd0IF0NYTB1HxggirKNpHFvg75iV+Vjp9KqeGO8rvSbEqr0Bh 5G6KoJvYPIYMiD6vaQnHAGaqh3/1t78ZNNnJAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUusgz2TUAqc0+JUfbGDNo9qdSnfcwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL3VzZ3oyVFVBcWMwLUpVZmJHRE5vOXFkU25mYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwB9BDANBgkqhkiG9w0BAQsFAAOCAQEAN3X3LMX5zCF1TQ4NrAFSVlRNBsIp 0s2/LDoxzLUp385gLpNAxyk9jLC1kstKFxSH9uLZYjNS17vIwC76b+xhEiLgi/jJ KAVzhXbpnJA4mJk4ifkp2HmlQwmNaJvNM/jJ/txIpbeUE8oT/wR7lzVg+RY2PM8y jvGBjrQfv+DuZ0FfAkw+X85/y87XvidY16d7rr1W+d53rUy4YngsEj6gCTyTeib6 bApnta/nosA0DIPre4yKtsSC0BB1mUHQ2VliywZ1YCHc7kHymB1pzqTe9982vIJQ 5eIh4bJ0Zp7KUpjW3nb64pwCF1pvQ6E+7jg6JQkdFsfOU5oZrN2xstam6g== -----END CERTIFICATE-----Generated at Wed Nov 5 20:23:36 2025 by rpki-client