$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/DVzaKsA08Fi_18aqYFonEW3Ki5Y.roa File: DVzaKsA08Fi_18aqYFonEW3Ki5Y.roa (raw, json) Hash identifier: Q0r6pyiKYVLR3JvgXB1Bwuz0R5IlXZFdYpvhVzHQuxY= Subject key identifier: 0D:5C:DA:2A:C0:34:F0:58:BF:D7:C6:AA:60:5A:27:11:6D:CA:8B:96 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B50 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DVzaKsA08Fi_18aqYFonEW3Ki5Y.roa Signing time: Tue 01 Apr 2025 01:33:17 +0000 ROA not before: Tue 01 Apr 2025 01:33:17 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 220.159.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 12:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2896 (0xb50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:33:17 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=0D5CDA2AC034F058BFD7C6AA605A27116DCA8B96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:61:b3:5e:f0:20:8d:9f:db:f1:70:ca:c6:6e: bc:12:97:2c:64:2e:2d:e5:37:32:c2:a9:94:4d:15: 24:71:8d:d2:65:be:1b:2a:70:3d:7d:cb:db:35:d4: 10:b2:07:a3:34:c8:d6:17:8e:66:a8:56:24:2a:df: 84:2f:0a:c0:15:76:86:59:3c:58:37:13:20:5a:29: 5c:95:a2:e5:05:7e:c8:23:c8:dc:a1:bb:3d:55:4c: 83:87:f8:18:07:0f:ad:09:82:a6:59:51:7a:81:04: d5:ac:76:08:f7:e9:64:89:28:58:e8:b0:12:ac:b5: 72:d4:d8:bc:38:93:e5:79:03:26:2a:6a:8d:87:b6: 7b:5e:16:4c:ab:1d:bf:0c:82:4a:e5:fc:f7:7f:36: b6:72:03:46:9e:66:07:05:d4:d4:7d:c0:9a:c2:7f: 55:2f:d7:4d:0d:ff:29:35:e5:f9:9e:81:78:cd:b2: c8:ca:3a:82:25:4a:10:38:71:7a:dd:ff:b2:8d:a7: 4b:b7:79:56:4f:80:8e:0d:32:90:e4:49:fe:00:e0: bc:16:d8:de:02:4d:51:a1:64:b2:51:4a:35:da:9c: f8:c9:db:7b:2c:43:7c:cf:e6:0d:ec:3e:83:38:af: 49:c2:20:f8:23:7d:44:a5:fc:5f:8b:6e:6b:47:31: 2a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:5C:DA:2A:C0:34:F0:58:BF:D7:C6:AA:60:5A:27:11:6D:CA:8B:96 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DVzaKsA08Fi_18aqYFonEW3Ki5Y.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.21.0/24 Signature Algorithm: sha256WithRSAEncryption a1:52:9b:61:f9:55:5b:ac:ac:c4:dd:c8:e7:f5:df:08:91:12: e2:3c:a0:bd:1e:1b:ee:1a:5a:9f:6c:2e:28:2a:d4:1a:ff:00: 6d:38:94:2a:38:4d:60:62:a2:47:e2:ca:c4:f8:b7:6f:98:19: b6:6f:ae:f2:be:96:e0:da:8a:19:8e:85:8b:9d:01:6b:46:12: 75:66:50:b4:64:fa:e3:97:1a:93:77:4f:7a:7e:85:0d:13:e4: 79:f9:32:ab:15:a1:88:c7:81:0e:d9:fb:48:40:4b:ea:4a:5c: 58:e7:9c:a8:6b:00:05:3a:78:96:f4:ba:e0:ca:dc:79:be:85: 18:03:00:22:25:97:06:3a:65:04:9e:9b:a1:4c:f8:0f:1d:fb: 24:e1:2e:de:58:44:de:fe:23:d8:a8:e5:85:c0:c6:16:7b:b9: 0e:9d:9b:5c:49:94:bf:f1:4d:8f:00:15:60:06:68:8c:aa:f5: 79:e0:83:7d:d0:67:95:88:ed:a0:8c:cf:1d:13:14:87:57:95: 07:50:ac:65:9b:ea:2d:64:50:da:c1:8a:a0:c9:c0:8c:da:68: ca:81:cf:19:64:37:dc:d0:85:75:f6:42:57:51:12:a7:30:bd: 6a:d1:f1:56:6a:dc:73:19:fa:df:71:46:f9:50:b8:a7:b7:2b: 5e:bd:87:4b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC1AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTMzMTdaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDBENUNEQTJBQzAzNEYw NThCRkQ3QzZBQTYwNUEyNzExNkRDQThCOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAYbNe8CCNn9vxcMrGbrwSlyxkLi3lNzLCqZRNFSRxjdJlvhsq cD19y9s11BCyB6M0yNYXjmaoViQq34QvCsAVdoZZPFg3EyBaKVyVouUFfsgjyNyh uz1VTIOH+BgHD60JgqZZUXqBBNWsdgj36WSJKFjosBKstXLU2Lw4k+V5AyYqao2H tnteFkyrHb8Mgkrl/Pd/NrZyA0aeZgcF1NR9wJrCf1Uv100N/yk15fmegXjNssjK OoIlShA4cXrd/7KNp0u3eVZPgI4NMpDkSf4A4LwW2N4CTVGhZLJRSjXanPjJ23ss Q3zP5g3sPoM4r0nCIPgjfUSl/F+LbmtHMSoJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUDVzaKsA08Fi/18aqYFonEW3Ki5YwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0RWemFLc0EwOEZpXzE4YXFZRm9uRVczS2k1WS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADcnxUwDQYJKoZIhvcNAQELBQADggEBAKFSm2H5VVusrMTdyOf13wiREuI8 oL0eG+4aWp9sLigq1Br/AG04lCo4TWBiokfiysT4t2+YGbZvrvK+luDaihmOhYud AWtGEnVmULRk+uOXGpN3T3p+hQ0T5Hn5MqsVoYjHgQ7Z+0hAS+pKXFjnnKhrAAU6 eJb0uuDK3Hm+hRgDACIllwY6ZQSem6FM+A8d+yThLt5YRN7+I9io5YXAxhZ7uQ6d m1xJlL/xTY8AFWAGaIyq9Xngg33QZ5WI7aCMzx0TFIdXlQdQrGWb6i1kUNrBiqDJ wIzaaMqBzxlkN9zQhXX2QldREqcwvWrR8VZq3HMZ+t9xRvlQuKe3K169h0s= -----END CERTIFICATE-----Generated at Wed Nov 5 13:52:44 2025 by rpki-client