$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4qEa_uH2QVZsGzjI8_s0mfF4kYY.roa File: 4qEa_uH2QVZsGzjI8_s0mfF4kYY.roa (raw, json) Hash identifier: uogFYNrJmhRlS0lYrKL/Pq7Z24IcVJFn2IQxJd6QZ5Y= Subject key identifier: E2:A1:1A:FE:E1:F6:41:56:6C:1B:38:C8:F3:FB:34:99:F1:78:91:86 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0EFD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4qEa_uH2QVZsGzjI8_s0mfF4kYY.roa Signing time: Tue 10 Jun 2025 11:16:45 +0000 ROA not before: Tue 10 Jun 2025 11:16:45 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.79.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 14:58:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3837 (0xefd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:16:45 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=E2A11AFEE1F641566C1B38C8F3FB3499F1789186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:c0:84:ff:15:a2:89:2c:6d:b0:94:a0:22:eb: 71:51:8e:9c:c0:ff:f4:b6:f4:44:3e:99:9e:7d:ed: fa:ec:a2:64:ae:b6:48:73:23:8d:f7:04:d1:6d:6b: 88:25:fb:79:70:fa:f9:24:e5:5b:97:2f:c5:69:e1: 8e:15:0a:3b:85:05:b2:cc:ba:fa:af:5d:de:d6:ef: 90:61:df:b8:fa:4a:50:bf:74:a0:96:05:2d:d5:1f: ac:61:a1:a9:02:c5:aa:18:40:5a:04:cd:2e:78:c3: 19:b6:c3:3d:1b:ed:63:fe:62:80:8d:fb:c5:3b:8a: 5f:89:6e:04:8f:dd:2e:9d:9c:7f:79:00:43:4b:69: 17:b5:43:40:3e:6f:3a:46:c2:6c:d5:5a:d3:8d:53: bb:93:75:73:6f:91:75:3b:86:98:d7:e6:e2:6a:2e: 58:49:40:30:11:33:24:bd:28:e6:5e:eb:3c:4d:52: 04:cd:3d:6d:12:dc:14:9b:14:5a:5d:aa:06:d1:54: b9:50:2b:d6:f4:31:5e:d0:4f:3b:64:25:f7:e3:c6: f7:16:d8:a8:25:db:a3:d7:45:41:66:a5:88:33:96: c6:a0:da:a2:f3:30:09:51:24:36:c0:cb:dd:47:d4: b4:be:c8:2a:af:25:14:3f:bd:ae:0e:71:cc:a0:4d: cc:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:A1:1A:FE:E1:F6:41:56:6C:1B:38:C8:F3:FB:34:99:F1:78:91:86 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4qEa_uH2QVZsGzjI8_s0mfF4kYY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.120.0/21 Signature Algorithm: sha256WithRSAEncryption 29:54:7c:56:24:83:ac:85:c1:a2:83:74:83:ca:fa:80:c5:89: 34:6a:ef:8e:11:dc:69:80:c3:92:75:62:86:b6:f8:00:59:7c: f4:64:02:a0:04:ce:e0:34:6e:8d:29:12:ee:3f:d1:62:ad:1c: d3:a6:ee:e1:2b:a4:2a:7d:65:91:2b:9b:56:d0:06:ef:f0:22: 9c:f2:49:d2:6d:2a:12:36:4d:58:66:79:6d:ae:95:08:36:22: de:e0:d6:4b:62:2a:e3:24:a2:a1:94:6b:45:a3:78:58:fa:27: 36:d2:d3:c9:bf:7a:25:e3:1d:3c:25:a1:32:75:25:c0:ee:a7: 7d:b6:b0:11:16:7c:fb:c0:39:a9:3a:23:ef:00:57:9e:2a:ca: d8:16:e1:3f:45:b2:7e:f2:83:f2:e0:3f:0c:2e:d2:24:55:ee: c2:ab:1c:32:25:2e:08:16:f4:b9:b8:3e:dd:2b:01:91:e7:4d: 9b:d5:41:96:59:2f:e9:9c:6a:8c:92:8d:ab:91:be:ec:06:31: 25:2e:24:a4:44:1a:e1:01:74:12:fe:0b:fd:1e:23:04:db:75: c5:4f:3c:ef:73:48:3b:0e:ee:4c:ec:09:5d:d2:81:a7:fe:11: ba:e6:e3:30:b3:90:c0:73:66:66:5f:eb:d0:f1:3d:cf:92:28: 74:df:12:9f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDv0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTE2NDVaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEUyQTExQUZFRTFGNjQx NTY2QzFCMzhDOEYzRkIzNDk5RjE3ODkxODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDvwIT/FaKJLG2wlKAi63FRjpzA//S29EQ+mZ597frsomSutkhz I433BNFta4gl+3lw+vkk5VuXL8Vp4Y4VCjuFBbLMuvqvXd7W75Bh37j6SlC/dKCW BS3VH6xhoakCxaoYQFoEzS54wxm2wz0b7WP+YoCN+8U7il+JbgSP3S6dnH95AENL aRe1Q0A+bzpGwmzVWtONU7uTdXNvkXU7hpjX5uJqLlhJQDARMyS9KOZe6zxNUgTN PW0S3BSbFFpdqgbRVLlQK9b0MV7QTztkJffjxvcW2Kgl26PXRUFmpYgzlsag2qLz MAlRJDbAy91H1LS+yCqvJRQ/va4OccygTcwPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU4qEa/uH2QVZsGzjI8/s0mfF4kYYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzRxRWFfdUgyUVZac0d6akk4X3MwbWZGNGtZWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBT3gwDQYJKoZIhvcNAQELBQADggEBAClUfFYkg6yFwaKDdIPK+oDFiTRq 744R3GmAw5J1Yoa2+ABZfPRkAqAEzuA0bo0pEu4/0WKtHNOm7uErpCp9ZZErm1bQ Bu/wIpzySdJtKhI2TVhmeW2ulQg2It7g1ktiKuMkoqGUa0WjeFj6JzbS08m/eiXj HTwloTJ1JcDup322sBEWfPvAOak6I+8AV54qytgW4T9Fsn7yg/LgPwwu0iRV7sKr HDIlLggW9Lm4Pt0rAZHnTZvVQZZZL+mcaoySjauRvuwGMSUuJKREGuEBdBL+C/0e IwTbdcVPPO9zSDsO7kzsCV3Sgaf+Ebrm4zCzkMBzZmZf69DxPc+SKHTfEp8= -----END CERTIFICATE-----Generated at Wed Nov 5 17:24:05 2025 by rpki-client