$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/2vb2IOankCFG5Mi1ehc7CmQrXms.roa File: 2vb2IOankCFG5Mi1ehc7CmQrXms.roa (raw, json) Hash identifier: kDYeHJXQNwd3SDSR5EAM7gXvI4oFYMZ12QzzqZHKNos= Subject key identifier: DA:F6:F6:20:E6:A7:90:21:46:E4:C8:B5:7A:17:3B:0A:64:2B:5E:6B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0EAC Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2vb2IOankCFG5Mi1ehc7CmQrXms.roa Signing time: Tue 10 Jun 2025 11:00:45 +0000 ROA not before: Tue 10 Jun 2025 11:00:45 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 110.158.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 11:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3756 (0xeac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:00:45 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=DAF6F620E6A7902146E4C8B57A173B0A642B5E6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:8b:18:2a:1b:10:c9:f3:a3:79:a2:e3:72:f2: c6:f3:b3:c5:fa:1c:0d:5e:f5:82:41:e1:3e:2b:ce: f8:09:26:3b:42:f5:c9:d8:15:47:18:04:6f:5f:5f: 12:8b:b9:3e:b5:93:15:5b:3b:49:0a:e6:7e:19:79: 25:cc:e5:74:c3:59:57:7a:15:ad:e7:7a:95:77:03: 57:c6:9c:6a:8d:f9:a7:81:0e:1a:d3:3f:2c:95:b0: 43:3b:50:28:23:1a:71:e5:fd:0c:38:4b:60:40:75: b7:46:9b:4f:12:d0:e8:a1:64:89:c1:ce:8a:14:71: cc:ed:77:7f:31:b0:61:2a:fb:20:5f:2b:0a:6a:a1: 4f:a2:b2:c0:77:25:19:c7:41:56:34:b7:3f:9c:df: 35:b8:30:8d:db:2e:90:49:f0:de:61:ea:27:5d:c6: 49:0d:d0:fe:e4:67:02:61:8f:f8:b8:88:3b:e4:de: f3:f6:e6:aa:54:fe:07:c2:bf:6a:8f:f2:14:54:75: 53:2e:9c:14:8f:64:dd:5e:61:43:c7:c6:b4:e1:e2: e5:8b:a6:8e:25:65:40:77:c0:8f:50:90:91:a5:de: 2e:d3:fc:bc:83:1e:8e:09:b7:91:57:bf:f3:45:4f: 0b:b1:27:4d:ec:a8:ab:c2:d1:5f:9e:49:0e:f4:5a: f0:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:F6:F6:20:E6:A7:90:21:46:E4:C8:B5:7A:17:3B:0A:64:2B:5E:6B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2vb2IOankCFG5Mi1ehc7CmQrXms.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.158.128.0/24 Signature Algorithm: sha256WithRSAEncryption 18:59:e5:60:7c:5a:54:70:92:5d:15:7e:8b:a1:c9:c1:8b:d7: e8:8c:24:cd:ce:a2:1d:dd:a0:25:f8:fb:94:33:9b:a8:d2:c5: 6b:c8:22:5c:fe:38:25:cc:8d:a0:46:ff:b6:85:37:84:09:4e: f2:ba:8e:39:b1:9e:09:13:79:cd:a4:a6:3c:f2:ae:d4:14:b7: 68:69:33:f9:30:54:3e:b6:4e:55:a4:f7:26:ed:88:e4:e7:d9: 9a:f5:a1:48:d2:37:eb:6b:50:ed:c6:29:09:a2:25:33:89:02: 48:70:16:ac:43:68:8a:f7:6b:0f:62:e6:7b:93:cb:1b:04:8c: 09:77:15:c5:d4:c2:c4:eb:a9:99:f4:e5:5e:48:05:2f:77:91: 8b:51:14:74:97:c1:22:93:49:4e:ad:a5:bb:f9:e2:69:ae:5b: f6:9b:f1:0a:a0:ff:61:2e:28:fc:c4:05:42:e1:a0:4b:f0:74: 09:81:59:7a:07:fb:4a:83:47:e6:20:bf:ce:7c:8d:70:96:b1: 85:43:4f:d7:64:b7:e4:36:bb:5f:48:73:ac:ea:15:86:19:2e: 3d:3c:6f:6b:4a:01:c8:d1:d3:e7:42:3d:c1:11:b3:5e:95:6b: 79:cc:f9:40:33:13:61:29:81:2d:b3:16:85:e9:d7:c7:84:70: 06:74:fc:c7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDqwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTAwNDVaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKERBRjZGNjIwRTZBNzkw MjE0NkU0QzhCNTdBMTczQjBBNjQyQjVFNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpixgqGxDJ86N5ouNy8sbzs8X6HA1e9YJB4T4rzvgJJjtC9cnY FUcYBG9fXxKLuT61kxVbO0kK5n4ZeSXM5XTDWVd6Fa3nepV3A1fGnGqN+aeBDhrT PyyVsEM7UCgjGnHl/Qw4S2BAdbdGm08S0OihZInBzooUccztd38xsGEq+yBfKwpq oU+issB3JRnHQVY0tz+c3zW4MI3bLpBJ8N5h6iddxkkN0P7kZwJhj/i4iDvk3vP2 5qpU/gfCv2qP8hRUdVMunBSPZN1eYUPHxrTh4uWLpo4lZUB3wI9QkJGl3i7T/LyD Ho4Jt5FXv/NFTwuxJ03sqKvC0V+eSQ70WvAzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU2vb2IOankCFG5Mi1ehc7CmQrXmswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzJ2YjJJT2Fua0NGRzVNaTFlaGM3Q21Rclhtcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABunoAwDQYJKoZIhvcNAQELBQADggEBABhZ5WB8WlRwkl0VfouhycGL1+iM JM3Ooh3doCX4+5Qzm6jSxWvIIlz+OCXMjaBG/7aFN4QJTvK6jjmxngkTec2kpjzy rtQUt2hpM/kwVD62TlWk9ybtiOTn2Zr1oUjSN+trUO3GKQmiJTOJAkhwFqxDaIr3 aw9i5nuTyxsEjAl3FcXUwsTrqZn05V5IBS93kYtRFHSXwSKTSU6tpbv54mmuW/ab 8Qqg/2EuKPzEBULhoEvwdAmBWXoH+0qDR+Ygv858jXCWsYVDT9dkt+Q2u19Ic6zq FYYZLj08b2tKAcjR0+dCPcERs16Va3nM+UAzE2EpgS2zFoXp18eEcAZ0/Mc= -----END CERTIFICATE-----Generated at Wed Nov 5 13:34:20 2025 by rpki-client