$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/6fnGrOBP9lBDvslxkginAEidJTU.roa File: 6fnGrOBP9lBDvslxkginAEidJTU.roa (raw, json) Hash identifier: z6R7AnJq2WJNDuGSRqAuVxLNGOLHj46rMehkn1M2uno= Subject key identifier: E9:F9:C6:AC:E0:4F:F6:50:43:BE:C9:71:92:08:A7:00:48:9D:25:35 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D55 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/6fnGrOBP9lBDvslxkginAEidJTU.roa Signing time: Tue 01 Apr 2025 02:17:16 +0000 ROA not before: Tue 01 Apr 2025 02:17:16 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 14:58:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3413 (0xd55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:17:16 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=E9F9C6ACE04FF65043BEC9719208A700489D2535 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9c:96:16:52:df:c5:6c:f8:c2:98:1a:63:5a: e9:38:69:e1:a8:5d:4f:7f:33:a5:7d:e7:6a:19:5b: 52:a7:b2:93:93:f2:51:88:bc:4d:eb:5c:16:cf:99: 7f:6a:a3:c9:d5:d8:08:ee:35:22:06:2d:f7:4f:d9: c3:d5:6b:0c:58:0f:ee:0b:b3:fb:1a:88:a7:4c:26: 0e:3f:f5:d0:7d:ac:ea:c8:72:8a:f8:d3:47:6e:95: 2d:49:d5:ac:08:3c:25:be:fa:25:2a:01:f7:70:a4: 68:2f:d9:5d:04:69:46:c7:28:93:9c:9d:a8:c2:2b: 63:57:d4:40:94:d1:6f:a6:30:36:d5:7a:87:1f:3d: b6:9f:a0:5f:4b:68:7b:e6:d6:5c:34:4c:c7:dd:c0: b6:b9:76:af:7f:60:bc:a1:79:12:3e:6c:ec:df:fc: d1:e3:7d:48:85:d2:74:b5:71:2b:10:84:48:1b:2f: 5d:58:44:f4:b1:56:a3:86:22:74:fc:c9:eb:36:8c: 45:df:09:6a:af:50:50:a5:1b:72:47:61:bd:12:6e: c6:3d:88:81:86:3d:a7:05:ee:4f:54:45:f1:0e:f2: 26:63:94:9a:ed:c4:0e:3d:12:41:76:9c:39:f8:1e: ff:4f:17:18:08:94:4d:d6:2a:c7:de:7b:b4:f1:3a: a5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:F9:C6:AC:E0:4F:F6:50:43:BE:C9:71:92:08:A7:00:48:9D:25:35 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/6fnGrOBP9lBDvslxkginAEidJTU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.170.0/23 Signature Algorithm: sha256WithRSAEncryption d0:07:fd:20:8e:85:c9:25:e6:3f:8a:d9:df:67:4b:7b:e1:05: e9:6d:00:98:76:00:9c:af:fb:10:db:68:2f:46:44:1f:27:87: 01:c8:0b:59:38:25:27:88:c9:8e:49:d0:05:23:85:ec:0c:0a: 8c:28:e9:db:d0:8b:ad:8b:23:72:e8:31:b7:1b:46:e9:9b:03: 5b:fa:0a:9d:47:a3:ac:57:72:2a:18:04:84:d7:81:02:da:f6: 73:19:a0:6e:3a:7f:bf:b4:6a:06:2a:e1:f1:38:3f:bd:7b:b9: 1d:f3:1b:7a:a6:1f:c4:40:84:a0:ce:c9:b2:3e:f1:f0:3a:cc: 4d:62:90:b0:d1:4c:43:9e:a7:b4:7d:97:a8:6d:eb:6a:fd:8d: 15:d4:b1:85:e0:f3:7e:c8:d7:a1:fe:3d:55:7a:40:f1:94:57: 0d:e7:c4:98:7f:fc:aa:7d:b5:88:2d:6a:ae:c5:21:7d:c3:6a: 6a:0e:73:b2:b1:e3:f6:6e:a1:3d:00:ce:15:2b:c9:e3:0e:11: 5f:43:04:73:77:d4:d2:ce:47:a8:65:1d:5a:0c:4b:74:08:8b: 6a:ce:b7:a0:b9:05:0e:7f:6d:f7:e9:c4:65:8c:89:91:34:bb: 2a:91:98:ec:4c:c8:26:9a:05:88:ac:5b:04:2d:f5:e8:15:c7: 50:88:43:06 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDVUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjE3MTZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEU5RjlDNkFDRTA0RkY2 NTA0M0JFQzk3MTkyMDhBNzAwNDg5RDI1MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxnJYWUt/FbPjCmBpjWuk4aeGoXU9/M6V952oZW1KnspOT8lGI vE3rXBbPmX9qo8nV2AjuNSIGLfdP2cPVawxYD+4Ls/saiKdMJg4/9dB9rOrIcor4 00dulS1J1awIPCW++iUqAfdwpGgv2V0EaUbHKJOcnajCK2NX1ECU0W+mMDbVeocf PbafoF9LaHvm1lw0TMfdwLa5dq9/YLyheRI+bOzf/NHjfUiF0nS1cSsQhEgbL11Y RPSxVqOGInT8yes2jEXfCWqvUFClG3JHYb0SbsY9iIGGPacF7k9URfEO8iZjlJrt xA49EkF2nDn4Hv9PFxgIlE3WKsfee7TxOqXHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU6fnGrOBP9lBDvslxkginAEidJTUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzZmbkdyT0JQOWxCRHZzbHhrZ2luQUVpZEpUVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYqowDQYJKoZIhvcNAQELBQADggEBANAH/SCOhckl5j+K2d9nS3vhBelt AJh2AJyv+xDbaC9GRB8nhwHIC1k4JSeIyY5J0AUjhewMCowo6dvQi62LI3LoMbcb RumbA1v6Cp1Ho6xXcioYBITXgQLa9nMZoG46f7+0agYq4fE4P717uR3zG3qmH8RA hKDOybI+8fA6zE1ikLDRTEOep7R9l6ht62r9jRXUsYXg837I16H+PVV6QPGUVw3n xJh//Kp9tYgtaq7FIX3DamoOc7Kx4/ZuoT0AzhUryeMOEV9DBHN31NLOR6hlHVoM S3QIi2rOt6C5BQ5/bffpxGWMiZE0uyqRmOxMyCaaBYisWwQt9egVx1CIQwY= -----END CERTIFICATE-----Generated at Wed Nov 5 17:24:42 2025 by rpki-client