$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/H1QTIpFqyUZm65GBAbb6UX8z2CA.roa File: H1QTIpFqyUZm65GBAbb6UX8z2CA.roa (raw, json) Hash identifier: PG3heZFXp0X4CsCIbp3RE7yuF3oQa6OiAGQZq92OAy0= Subject key identifier: 1F:54:13:22:91:6A:C9:46:66:EB:91:81:01:B6:FA:51:7F:33:D8:20 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F72 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/H1QTIpFqyUZm65GBAbb6UX8z2CA.roa Signing time: Tue 10 Jun 2025 11:32:35 +0000 ROA not before: Tue 10 Jun 2025 11:32:35 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 110.163.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:11:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3954 (0xf72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:32:35 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=1F541322916AC94666EB918101B6FA517F33D820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:aa:e1:3f:93:32:1d:2f:75:4f:11:f5:96:3e: fb:f0:a7:c0:86:a7:69:f0:c6:a7:60:e9:2b:58:28: 8d:98:05:30:b7:44:f8:b5:cb:1b:31:f1:dc:58:0a: b3:41:d7:5e:e7:05:3b:4b:67:a6:f3:de:8f:71:0d: f2:d7:7e:5e:43:23:bc:78:c3:83:61:32:d2:0c:1a: 80:8d:2b:60:01:95:74:b3:a6:53:3d:c5:e8:cb:3e: 8d:50:be:ed:fd:52:60:93:23:8a:5e:eb:6a:c3:a0: 90:bc:e6:49:57:1c:9c:35:ab:b3:d4:1c:a5:4a:cd: 39:94:f9:b1:16:ac:b0:66:4f:f4:62:6a:7e:73:b9: 3d:09:38:3c:56:74:b6:54:ac:fa:24:eb:7a:28:be: ee:65:ce:b3:4e:ae:e9:2d:c5:cb:9f:5c:a4:0a:e1: 24:ce:89:66:b5:b9:04:ae:4d:e6:94:01:e2:6e:7f: 60:95:7a:d8:2b:2d:07:c4:a0:d3:62:6f:16:a8:e7: e8:d0:36:d1:a6:91:26:13:49:94:22:c3:44:e7:c3: f8:64:33:58:f1:6b:0b:68:5c:29:81:5b:f9:f7:fa: c0:d1:07:1f:5a:38:b9:93:3b:ad:da:dd:c4:62:b1: 7f:3b:e1:ea:b8:2f:c1:3c:2c:00:54:18:bb:12:dd: 4f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:54:13:22:91:6A:C9:46:66:EB:91:81:01:B6:FA:51:7F:33:D8:20 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/H1QTIpFqyUZm65GBAbb6UX8z2CA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.163.28.0/22 Signature Algorithm: sha256WithRSAEncryption 06:9b:ca:7b:73:18:1e:0e:19:99:eb:af:c5:7b:bc:26:20:61: 89:54:f4:a4:5b:51:f6:84:df:62:4c:d4:03:42:75:f9:34:a1: e3:8b:91:f5:92:0a:ac:1c:cb:21:9d:82:04:c6:9e:86:41:d1: 6b:d2:74:17:94:95:eb:ff:bb:e7:52:1f:38:51:18:2e:3f:a2: de:43:37:99:f9:a6:10:1d:f7:78:48:4d:15:5b:6a:53:9a:e9: f2:85:2d:9a:65:15:f7:e7:dc:e2:3b:fc:ad:6b:ed:ed:1c:13: 0c:01:bf:8e:d3:11:a0:f3:93:d7:e3:c2:2b:2d:80:37:ee:51: 15:62:0a:f9:32:25:50:62:e7:3d:86:b0:a7:07:15:51:7d:f8: 62:97:21:ea:77:35:d3:38:f5:d1:4d:42:93:ea:d1:f2:b8:f7: 46:7d:ca:a3:f8:f8:d0:94:e6:39:25:01:40:df:6e:0c:9e:07: 83:85:fe:c5:fc:f8:e4:0c:88:ee:05:16:9a:92:38:d6:af:af: 5b:e2:e9:a7:ea:a4:73:ce:45:5f:df:43:c6:e8:68:c4:5d:e5: 95:7c:d1:df:99:16:2e:4f:82:f4:2d:1f:15:39:a5:61:ce:8a: 78:f3:2f:f2:15:9b:2e:e3:f0:01:5b:29:0b:8a:0f:27:bc:35: cf:3a:c0:b6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD3IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTMyMzVaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDFGNTQxMzIyOTE2QUM5 NDY2NkVCOTE4MTAxQjZGQTUxN0YzM0Q4MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZquE/kzIdL3VPEfWWPvvwp8CGp2nwxqdg6StYKI2YBTC3RPi1 yxsx8dxYCrNB117nBTtLZ6bz3o9xDfLXfl5DI7x4w4NhMtIMGoCNK2ABlXSzplM9 xejLPo1Qvu39UmCTI4pe62rDoJC85klXHJw1q7PUHKVKzTmU+bEWrLBmT/Rian5z uT0JODxWdLZUrPok63oovu5lzrNOruktxcufXKQK4STOiWa1uQSuTeaUAeJuf2CV etgrLQfEoNNibxao5+jQNtGmkSYTSZQiw0Tnw/hkM1jxawtoXCmBW/n3+sDRBx9a OLmTO63a3cRisX874eq4L8E8LABUGLsS3U+HAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUH1QTIpFqyUZm65GBAbb6UX8z2CAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0gxUVRJcEZxeVVabTY1R0JBYmI2VVg4ejJDQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJuoxwwDQYJKoZIhvcNAQELBQADggEBAAabyntzGB4OGZnrr8V7vCYgYYlU 9KRbUfaE32JM1ANCdfk0oeOLkfWSCqwcyyGdggTGnoZB0WvSdBeUlev/u+dSHzhR GC4/ot5DN5n5phAd93hITRVbalOa6fKFLZplFffn3OI7/K1r7e0cEwwBv47TEaDz k9fjwistgDfuURViCvkyJVBi5z2GsKcHFVF9+GKXIep3NdM49dFNQpPq0fK490Z9 yqP4+NCU5jklAUDfbgyeB4OF/sX8+OQMiO4FFpqSONavr1vi6afqpHPORV/fQ8bo aMRd5ZV80d+ZFi5PgvQtHxU5pWHOinjzL/IVmy7j8AFbKQuKDye8Nc86wLY= -----END CERTIFICATE-----Generated at Wed Nov 5 12:05:07 2025 by rpki-client