$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/-BkfA8ddFdmOLg6C3rDWreE82Lo.roa File: -BkfA8ddFdmOLg6C3rDWreE82Lo.roa (raw, json) Hash identifier: +zITwoka47bk2Kt/BXK0URfBgQqzJJrJb87xEUJ1fck= Subject key identifier: F8:19:1F:03:C7:5D:15:D9:8E:2E:0E:82:DE:B0:D6:AD:E1:3C:D8:BA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0FA7 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-BkfA8ddFdmOLg6C3rDWreE82Lo.roa Signing time: Tue 10 Jun 2025 11:40:37 +0000 ROA not before: Tue 10 Jun 2025 11:40:37 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.76.72.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 12:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4007 (0xfa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:40:37 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=F8191F03C75D15D98E2E0E82DEB0D6ADE13CD8BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4d:08:03:83:83:62:cb:8e:33:3e:08:a2:c5: bd:0d:fe:e7:41:f5:dd:5f:fa:13:74:5d:e8:16:d3: 85:d9:aa:85:82:9c:72:69:7a:22:d0:24:ae:78:ba: 6f:89:4d:df:ce:5a:d5:8e:35:f4:f3:95:c5:26:9d: c9:05:55:b4:b8:5a:d4:6f:c0:9a:32:8f:2a:72:e4: a8:93:cb:a3:17:6b:16:dd:eb:14:71:23:5c:f5:0b: d7:06:d3:53:89:a7:e1:c4:3b:2e:72:04:ae:28:d1: cf:53:59:f4:bb:6c:0b:51:05:47:70:e4:1a:21:1b: 2f:35:87:63:f0:47:7c:ed:ba:13:44:e0:38:dd:d1: db:32:6e:c8:70:cc:9c:62:70:21:23:8b:92:f8:36: 22:08:cc:6c:41:4d:15:23:f1:7b:db:74:cd:80:9e: c4:1e:2d:06:ea:2a:19:f8:a9:d5:d1:50:22:c7:85: d6:15:5f:47:ac:7d:d1:bf:1d:49:aa:84:56:64:c5: 6c:85:a4:34:27:7d:88:5d:ab:25:28:c2:fd:a0:e3: 6a:c5:79:f8:63:02:70:dc:54:ca:e1:7f:53:da:71: 2b:0b:e3:ce:88:38:3a:1a:a9:11:1b:d4:37:7b:53: 80:7c:bf:ad:4e:21:27:95:82:d1:61:33:d9:01:7c: 28:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:19:1F:03:C7:5D:15:D9:8E:2E:0E:82:DE:B0:D6:AD:E1:3C:D8:BA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-BkfA8ddFdmOLg6C3rDWreE82Lo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.72.0/23 Signature Algorithm: sha256WithRSAEncryption 56:f7:65:1b:f1:69:19:b8:57:68:1f:4d:27:63:91:92:5b:69: 50:ad:55:3f:70:c0:79:b3:58:2d:63:63:f4:a0:05:c6:67:56: 24:73:ff:dc:c6:12:bf:35:1e:9e:35:13:e1:6d:f7:41:85:4c: 33:17:f3:3b:ef:2f:ad:9a:af:00:a2:25:51:2d:57:0d:96:66: 0d:57:b3:0c:c0:31:6c:23:9c:9b:ea:24:55:32:77:c1:9c:6c: 0d:f1:06:d6:89:16:77:af:20:39:f4:e0:da:4d:52:bf:0c:ef: e3:28:54:73:aa:83:a4:c4:17:31:52:a0:71:58:1b:a9:6f:b1: fa:17:8c:14:4d:0c:17:97:a1:29:b9:b5:05:3b:20:ca:2a:4b: cd:f6:44:98:2b:14:ba:b8:bd:4d:54:cc:3f:5e:c2:dc:f8:18: 2a:7f:c9:d4:00:0c:ee:76:72:52:e2:9a:eb:a3:7d:44:4f:a3: b8:be:b9:8a:b8:bf:78:da:1d:ab:2e:d2:80:95:aa:e8:ca:af: 9f:d9:02:d6:38:9b:bd:1d:37:9c:b2:df:97:b5:51:b7:2b:5e: bb:61:18:40:f0:c7:2a:25:f1:e0:85:da:c4:e1:91:5e:54:c6: 5d:54:4b:c5:cc:89:1f:76:f7:0a:d2:c7:39:cc:6c:92:d3:b9: 4b:c0:b4:01 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD6cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTQwMzdaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEY4MTkxRjAzQzc1RDE1 RDk4RTJFMEU4MkRFQjBENkFERTEzQ0Q4QkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMTQgDg4Niy44zPgiixb0N/udB9d1f+hN0XegW04XZqoWCnHJp eiLQJK54um+JTd/OWtWONfTzlcUmnckFVbS4WtRvwJoyjypy5KiTy6MXaxbd6xRx I1z1C9cG01OJp+HEOy5yBK4o0c9TWfS7bAtRBUdw5BohGy81h2PwR3ztuhNE4Djd 0dsybshwzJxicCEji5L4NiIIzGxBTRUj8XvbdM2AnsQeLQbqKhn4qdXRUCLHhdYV X0esfdG/HUmqhFZkxWyFpDQnfYhdqyUowv2g42rFefhjAnDcVMrhf1PacSsL486I ODoaqREb1Dd7U4B8v61OISeVgtFhM9kBfChbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU+BkfA8ddFdmOLg6C3rDWreE82LowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5Ly1Ca2ZBOGRkRmRtT0xnNkMzckRXcmVFODJMby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBTEgwDQYJKoZIhvcNAQELBQADggEBAFb3ZRvxaRm4V2gfTSdjkZJbaVCt VT9wwHmzWC1jY/SgBcZnViRz/9zGEr81Hp41E+Ft90GFTDMX8zvvL62arwCiJVEt Vw2WZg1XswzAMWwjnJvqJFUyd8GcbA3xBtaJFnevIDn04NpNUr8M7+MoVHOqg6TE FzFSoHFYG6lvsfoXjBRNDBeXoSm5tQU7IMoqS832RJgrFLq4vU1UzD9ewtz4GCp/ ydQADO52clLimuujfURPo7i+uYq4v3jaHasu0oCVqujKr5/ZAtY4m70dN5yy35e1 UbcrXrthGEDwxyol8eCF2sThkV5Uxl1US8XMiR929wrSxznMbJLTuUvAtAE= -----END CERTIFICATE-----Generated at Wed Nov 5 13:53:51 2025 by rpki-client