$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/JHbP7UcFWnJCSV4iYXYF4OHrBuk.roa File: JHbP7UcFWnJCSV4iYXYF4OHrBuk.roa (raw, json) Hash identifier: 4jhLlJ8KLFZ44tgaBLfMBEyshHAOW2TCLKvpNfMVpFQ= Subject key identifier: 24:76:CF:ED:47:05:5A:72:42:49:5E:22:61:76:05:E0:E1:EB:06:E9 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0FAB Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JHbP7UcFWnJCSV4iYXYF4OHrBuk.roa Signing time: Tue 10 Jun 2025 11:40:39 +0000 ROA not before: Tue 10 Jun 2025 11:40:39 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 211.14.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 12:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4011 (0xfab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:40:39 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=2476CFED47055A7242495E22617605E0E1EB06E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4e:72:4e:0e:50:4b:0b:45:86:10:06:f6:2e: 1c:90:35:af:29:5b:a0:9e:bc:bc:96:50:80:9f:59: 33:ad:d9:e7:1c:26:fc:a7:87:9a:3a:f1:16:95:cc: 1d:07:71:69:7e:81:17:d7:3e:a3:63:0b:24:25:59: d0:d8:28:0b:75:70:81:ba:e1:60:70:db:10:69:01: 17:32:56:25:1d:da:fd:3a:48:f6:f1:8d:fb:46:05: 1d:c3:a0:10:00:81:0f:1b:dd:1b:56:f1:f4:27:35: 1b:bb:48:2e:02:4b:2e:78:0f:c2:53:92:a3:61:4a: ec:ce:4a:c5:17:90:9c:2c:ed:b0:f5:17:0e:30:7a: 89:d2:5f:e1:9e:02:26:67:86:1a:c3:c0:f1:97:08: ec:57:06:88:fa:f5:b7:5a:3c:b5:6c:79:3a:11:a5: 8b:2a:f1:04:dd:5c:6c:4d:40:90:c8:07:04:2a:33: 7d:6d:97:95:76:5f:aa:77:48:24:3a:a7:b6:19:02: 43:9c:8f:18:a1:c7:c3:b6:40:1f:87:99:ae:d2:b8: 85:9f:6c:b7:9e:b8:3c:33:99:cb:be:41:41:3b:bd: 66:12:bb:1b:9c:55:e5:6b:90:2f:07:90:67:cc:5e: bc:20:6e:3d:90:ed:6e:96:a1:fd:ac:f1:2f:c1:c6: 6c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:76:CF:ED:47:05:5A:72:42:49:5E:22:61:76:05:E0:E1:EB:06:E9 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JHbP7UcFWnJCSV4iYXYF4OHrBuk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.73.0/24 Signature Algorithm: sha256WithRSAEncryption cb:36:8c:5a:00:e0:76:ed:17:0c:f3:db:b1:bb:ae:b1:cb:b5: e6:6c:95:c4:5d:e8:a4:80:ff:5b:a7:03:21:ca:7b:d9:02:38: 86:72:d2:13:25:2c:94:f8:ca:ea:ff:ce:0f:a6:90:0f:ea:af: 1f:00:2f:3d:77:f4:cd:c8:ee:6f:b9:a8:8a:6b:3b:6a:a2:f3: 31:f0:c5:39:c9:bc:50:80:12:03:72:00:d1:2f:51:ac:e5:24: f8:07:1e:c5:91:7e:bf:81:b2:d2:4f:81:a4:5b:4c:f6:2f:6f: e6:11:b9:99:57:ed:d7:0e:9b:8d:11:de:c5:92:89:c4:48:0e: 24:75:4d:0b:1e:aa:2f:e8:b7:d2:e9:44:e2:3c:5c:6b:9b:1e: 06:b4:41:83:a5:44:2d:5e:4c:bd:ac:c8:ac:50:a6:d5:14:44: 10:36:77:bb:0e:8d:15:a4:2b:2c:ac:b5:9a:da:62:17:8f:32: 08:81:69:73:d0:3e:08:b8:45:1c:6a:c7:63:41:95:c6:ac:54: 28:00:5c:9c:57:ce:58:81:eb:8e:cb:4e:63:9e:73:f0:3a:49: ea:79:7d:e4:f4:c4:f5:2a:37:33:ec:40:50:f8:a0:47:44:b4: fe:e2:04:38:b3:77:be:16:3b:fc:ee:a7:eb:e7:0c:d1:16:0a: 11:2c:0a:a0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD6swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTQwMzlaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDI0NzZDRkVENDcwNTVB NzI0MjQ5NUUyMjYxNzYwNUUwRTFFQjA2RTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVTnJODlBLC0WGEAb2LhyQNa8pW6CevLyWUICfWTOt2eccJvyn h5o68RaVzB0HcWl+gRfXPqNjCyQlWdDYKAt1cIG64WBw2xBpARcyViUd2v06SPbx jftGBR3DoBAAgQ8b3RtW8fQnNRu7SC4CSy54D8JTkqNhSuzOSsUXkJws7bD1Fw4w eonSX+GeAiZnhhrDwPGXCOxXBoj69bdaPLVseToRpYsq8QTdXGxNQJDIBwQqM31t l5V2X6p3SCQ6p7YZAkOcjxihx8O2QB+Hma7SuIWfbLeeuDwzmcu+QUE7vWYSuxuc VeVrkC8HkGfMXrwgbj2Q7W6Wof2s8S/Bxmz/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUJHbP7UcFWnJCSV4iYXYF4OHrBukwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0pIYlA3VWNGV25KQ1NWNGlZWFlGNE9IckJ1ay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADTDkkwDQYJKoZIhvcNAQELBQADggEBAMs2jFoA4HbtFwzz27G7rrHLteZs lcRd6KSA/1unAyHKe9kCOIZy0hMlLJT4yur/zg+mkA/qrx8ALz139M3I7m+5qIpr O2qi8zHwxTnJvFCAEgNyANEvUazlJPgHHsWRfr+BstJPgaRbTPYvb+YRuZlX7dcO m40R3sWSicRIDiR1TQseqi/ot9LpROI8XGubHga0QYOlRC1eTL2syKxQptUURBA2 d7sOjRWkKyystZraYhePMgiBaXPQPgi4RRxqx2NBlcasVCgAXJxXzliB647LTmOe c/A6Sep5feT0xPUqNzPsQFD4oEdEtP7iBDizd74WO/zup+vnDNEWChEsCqA= -----END CERTIFICATE-----Generated at Wed Nov 5 13:53:38 2025 by rpki-client