$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Jq7CT8n1OVFuePyoAskUvKWzTX8.roa File: Jq7CT8n1OVFuePyoAskUvKWzTX8.roa (raw, json) Hash identifier: 9XDNL6X03TmcwYQUm6XejFl4A+/T+FzVOyzfmw+hzMw= Subject key identifier: 26:AE:C2:4F:C9:F5:39:51:6E:78:FC:A8:02:C9:14:BC:A5:B3:4D:7F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B56 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Jq7CT8n1OVFuePyoAskUvKWzTX8.roa Signing time: Tue 01 Apr 2025 01:33:20 +0000 ROA not before: Tue 01 Apr 2025 01:33:20 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.76.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 12:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2902 (0xb56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:33:20 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=26AEC24FC9F539516E78FCA802C914BCA5B34D7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fc:ba:de:a2:4a:50:0c:4f:30:43:74:c5:6a: 6f:36:8c:7d:5a:ee:1a:d4:00:04:0f:76:27:9d:30: 6b:80:49:77:2c:70:5e:2a:86:e3:1a:4e:2a:0d:53: 58:17:99:87:12:89:b1:1f:e7:06:08:ac:b1:db:80: 9a:42:47:75:42:45:53:b2:b8:de:94:1c:be:a9:67: c2:4e:a2:38:a3:c2:c2:85:90:a0:e0:2f:f6:e2:2c: 6c:87:b1:9a:9d:5c:75:ab:3f:51:21:dc:25:41:f5: 94:03:96:e7:b1:eb:73:12:4a:02:aa:33:90:ca:d5: c2:57:e0:8a:a0:73:c9:f0:04:22:c2:b8:a8:a4:55: 08:af:59:f6:63:64:e5:87:36:6a:4f:47:34:dc:10: a5:28:a4:16:ec:19:e4:3e:13:8a:2a:16:c6:a1:21: 17:2e:fc:98:c0:89:8a:fe:0b:ea:b2:61:ec:97:ad: 3f:f7:3f:fb:9f:36:9c:26:2f:18:72:d6:5e:ec:4f: 65:2a:6f:f4:57:6e:3a:f7:6b:81:07:5f:ed:94:25: b6:33:ca:9c:7f:72:d4:77:48:81:1d:2d:08:90:d4: c6:61:c7:2f:d0:05:c9:d4:90:fa:14:a2:dd:2b:17: cb:c9:73:70:f0:2d:b1:63:04:65:dc:d0:04:42:58: ba:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:AE:C2:4F:C9:F5:39:51:6E:78:FC:A8:02:C9:14:BC:A5:B3:4D:7F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Jq7CT8n1OVFuePyoAskUvKWzTX8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.64.0/21 Signature Algorithm: sha256WithRSAEncryption 9f:01:67:27:78:63:c7:40:68:73:ee:3e:f3:2e:05:53:57:ba: e5:2f:bc:ad:01:33:8d:e8:27:a5:0a:d6:be:d6:a4:95:ad:b0: 04:9a:f9:06:c1:2b:b3:12:28:78:5a:23:74:0c:04:56:ae:39: de:46:f0:48:a5:ac:9e:a0:28:6b:1d:00:58:54:db:e4:a0:5e: 7b:66:c1:bd:ba:f9:51:c8:68:b9:91:23:2e:f3:d7:d4:ba:5a: e0:bd:f3:36:62:4e:43:98:9d:98:27:13:ff:34:0c:a5:04:e4: 1e:a6:a0:be:e9:06:03:32:2e:a6:70:37:ce:21:40:44:96:11: 7d:dc:56:83:7f:e0:a0:db:23:48:4b:d4:f3:7a:b0:67:16:63: 1a:cd:21:51:60:76:c1:db:53:c7:bc:c4:77:e3:62:f2:d1:b1: 82:3b:d5:22:d1:da:12:e5:d1:06:d0:21:58:ef:92:2c:05:af: 6d:35:a7:60:11:6b:d7:6d:54:59:17:cc:62:43:1a:ae:ef:5a: 94:98:d2:b5:da:49:10:8a:81:62:bb:68:43:a6:7f:bb:5b:3c: 2f:c2:c0:37:a2:dd:f7:73:ac:30:8a:81:ef:68:88:88:3d:11: 96:07:c6:b7:0c:dd:08:9c:29:1a:5c:14:bd:83:af:c5:c7:b5: 35:88:f2:b7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC1YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTMzMjBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDI2QUVDMjRGQzlGNTM5 NTE2RTc4RkNBODAyQzkxNEJDQTVCMzREN0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDF/LreokpQDE8wQ3TFam82jH1a7hrUAAQPdiedMGuASXcscF4q huMaTioNU1gXmYcSibEf5wYIrLHbgJpCR3VCRVOyuN6UHL6pZ8JOojijwsKFkKDg L/biLGyHsZqdXHWrP1Eh3CVB9ZQDluex63MSSgKqM5DK1cJX4Iqgc8nwBCLCuKik VQivWfZjZOWHNmpPRzTcEKUopBbsGeQ+E4oqFsahIRcu/JjAiYr+C+qyYeyXrT/3 P/ufNpwmLxhy1l7sT2Uqb/RXbjr3a4EHX+2UJbYzypx/ctR3SIEdLQiQ1MZhxy/Q BcnUkPoUot0rF8vJc3DwLbFjBGXc0ARCWLpfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUJq7CT8n1OVFuePyoAskUvKWzTX8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0pxN0NUOG4xT1ZGdWVQeW9Bc2tVdktXelRYOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBTEAwDQYJKoZIhvcNAQELBQADggEBAJ8BZyd4Y8dAaHPuPvMuBVNXuuUv vK0BM43oJ6UK1r7WpJWtsASa+QbBK7MSKHhaI3QMBFauOd5G8EilrJ6gKGsdAFhU 2+SgXntmwb26+VHIaLmRIy7z19S6WuC98zZiTkOYnZgnE/80DKUE5B6moL7pBgMy LqZwN84hQESWEX3cVoN/4KDbI0hL1PN6sGcWYxrNIVFgdsHbU8e8xHfjYvLRsYI7 1SLR2hLl0QbQIVjvkiwFr201p2ARa9dtVFkXzGJDGq7vWpSY0rXaSRCKgWK7aEOm f7tbPC/CwDei3fdzrDCKge9oiIg9EZYHxrcM3QicKRpcFL2Dr8XHtTWI8rc= -----END CERTIFICATE-----Generated at Wed Nov 5 13:54:04 2025 by rpki-client