$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KBbQp7QDctqcH8s46aPn7POmR5o.roa File: KBbQp7QDctqcH8s46aPn7POmR5o.roa (raw, json) Hash identifier: EjTLvVAfOdKDv7Sx9+U9Zw+E78OGkyKTH2V7QoRyTCM= Subject key identifier: 28:16:D0:A7:B4:03:72:DA:9C:1F:CB:38:E9:A3:E7:EC:F3:A6:47:9A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E62 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KBbQp7QDctqcH8s46aPn7POmR5o.roa Signing time: Tue 10 Jun 2025 10:53:22 +0000 ROA not before: Tue 10 Jun 2025 10:53:22 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 49.106.94.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 11:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3682 (0xe62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:53:22 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=2816D0A7B40372DA9C1FCB38E9A3E7ECF3A6479A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:06:08:a9:c3:ab:db:05:04:ca:99:37:a0:5c: 37:64:2d:36:98:0a:24:65:59:87:d7:48:2d:26:54: 7a:57:e1:f3:91:09:f7:44:78:8c:bc:77:8c:1e:eb: 00:a3:c5:fb:e5:83:8e:ba:29:04:12:6e:b4:db:10: c1:62:3b:f6:b8:c0:6b:34:8e:f0:da:e7:b0:d8:73: 63:6e:27:94:2d:9a:f1:b4:83:1d:68:0f:70:80:a1: de:13:dc:85:79:e0:80:e6:c4:be:e3:79:7a:eb:8c: 17:20:a7:fa:0f:a0:b1:dc:2d:0c:7c:0f:c1:fc:b3: a3:67:43:70:34:a5:bc:c0:22:03:66:41:a9:84:a1: d9:fc:42:42:00:09:69:8f:3d:d0:f0:3d:8b:14:dd: 76:0d:81:62:7d:5d:12:fd:20:53:e5:53:e0:0b:08: a1:f0:2b:fb:83:46:ca:14:bd:d9:1f:9b:0d:df:b8: 25:b5:58:d8:bb:93:1e:ad:4c:93:be:29:5c:95:95: c6:85:8e:3d:84:1c:c7:17:87:af:76:0a:cb:20:d8: a0:31:4d:69:21:36:ab:14:11:63:c5:d6:42:6e:d5: 9d:aa:89:ae:18:4f:5a:06:88:83:b3:94:d5:ef:30: 97:b6:20:a2:ec:16:75:66:94:63:f7:0f:20:51:c7: 7d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:16:D0:A7:B4:03:72:DA:9C:1F:CB:38:E9:A3:E7:EC:F3:A6:47:9A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KBbQp7QDctqcH8s46aPn7POmR5o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.94.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:0f:f9:4c:62:71:73:9e:54:a4:7e:57:19:0d:af:19:fb:87: 61:f3:6d:13:d2:86:2f:4a:d7:e6:49:b3:26:c5:a7:2b:89:74: be:0c:70:dc:ae:26:6b:d2:c1:ff:90:ac:7b:01:b5:7d:76:ae: c4:6d:1e:55:61:fa:9d:5b:86:31:00:0a:4b:71:fb:45:64:70: 1d:2c:91:79:b2:14:63:34:89:50:78:3d:95:73:69:4f:69:b4: 1a:88:d1:ee:dc:d9:ea:ec:ff:e1:9e:1c:42:d4:63:0a:3c:e6: c9:06:87:01:17:a2:17:8c:9a:07:2d:54:2d:d3:03:8c:7b:28: 1f:98:52:c8:14:23:59:d5:12:bd:34:71:e7:fe:d2:b3:d5:0f: e0:d4:12:e3:5a:6e:2b:ff:dc:33:11:49:1d:10:82:ad:61:f2: af:68:d6:be:d2:d3:39:70:21:c9:d9:3f:1b:f6:88:1b:90:c6: a5:bd:a6:67:b6:39:de:09:05:8a:8f:b4:22:8f:b0:c8:ac:09: 11:01:87:fa:f0:d6:22:e4:93:90:38:e5:80:1d:ba:4d:ce:f7: ef:4b:bb:37:ad:db:03:3b:5e:b8:c4:f2:93:2b:09:5c:d4:a7: 0c:bd:1d:04:4a:bf:09:fb:5f:07:3b:3a:8c:4d:7c:e1:f5:c2: 54:c8:8f:37 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDmIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDUzMjJaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDI4MTZEMEE3QjQwMzcy REE5QzFGQ0IzOEU5QTNFN0VDRjNBNjQ3OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8Bgipw6vbBQTKmTegXDdkLTaYCiRlWYfXSC0mVHpX4fORCfdE eIy8d4we6wCjxfvlg466KQQSbrTbEMFiO/a4wGs0jvDa57DYc2NuJ5QtmvG0gx1o D3CAod4T3IV54IDmxL7jeXrrjBcgp/oPoLHcLQx8D8H8s6NnQ3A0pbzAIgNmQamE odn8QkIACWmPPdDwPYsU3XYNgWJ9XRL9IFPlU+ALCKHwK/uDRsoUvdkfmw3fuCW1 WNi7kx6tTJO+KVyVlcaFjj2EHMcXh692Cssg2KAxTWkhNqsUEWPF1kJu1Z2qia4Y T1oGiIOzlNXvMJe2IKLsFnVmlGP3DyBRx31NAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKBbQp7QDctqcH8s46aPn7POmR5owHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0tCYlFwN1FEY3RxY0g4czQ2YVBuN1BPbVI1by5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExal4wDQYJKoZIhvcNAQELBQADggEBAEsP+UxicXOeVKR+VxkNrxn7h2Hz bRPShi9K1+ZJsybFpyuJdL4McNyuJmvSwf+QrHsBtX12rsRtHlVh+p1bhjEACktx +0VkcB0skXmyFGM0iVB4PZVzaU9ptBqI0e7c2ers/+GeHELUYwo85skGhwEXoheM mgctVC3TA4x7KB+YUsgUI1nVEr00cef+0rPVD+DUEuNabiv/3DMRSR0Qgq1h8q9o 1r7S0zlwIcnZPxv2iBuQxqW9pme2Od4JBYqPtCKPsMisCREBh/rw1iLkk5A45YAd uk3O9+9Luzet2wM7XrjE8pMrCVzUpwy9HQRKvwn7Xwc7OoxNfOH1wlTIjzc= -----END CERTIFICATE-----Generated at Wed Nov 5 13:31:42 2025 by rpki-client