$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/MIBBSYE7hPNh2E68C01HVKuvXn0.roa File: MIBBSYE7hPNh2E68C01HVKuvXn0.roa (raw, json) Hash identifier: VaOTLXzx0Uat5ksC07WK/Yt4Rd4mVJlEjhVrf1pE+QM= Subject key identifier: 30:80:41:49:81:3B:84:F3:61:D8:4E:BC:0B:4D:47:54:AB:AF:5E:7D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F3C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MIBBSYE7hPNh2E68C01HVKuvXn0.roa Signing time: Tue 10 Jun 2025 11:24:39 +0000 ROA not before: Tue 10 Jun 2025 11:24:39 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 219.114.190.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 12:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3900 (0xf3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:24:39 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=30804149813B84F361D84EBC0B4D4754ABAF5E7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:52:9d:e7:b7:03:d4:86:0d:86:9d:fa:95:8b: b3:38:fb:90:90:29:b8:a9:73:10:51:99:58:8f:e7: 1f:1a:c2:51:4d:fc:92:4e:89:9d:76:42:a7:44:f6: 73:e1:a9:ef:39:a0:28:4f:59:a6:72:b0:3e:aa:4c: b8:fd:55:b3:29:43:07:7e:ec:2c:3d:05:cc:7c:b0: 57:db:24:d5:64:fc:d6:a0:3a:72:8a:4f:18:62:5b: 1d:ec:0b:dd:94:a4:d9:2a:e4:12:a8:c9:dd:a0:fa: b6:5e:2c:7c:aa:41:65:3d:6b:a7:ad:b5:81:70:21: 63:d4:de:38:e9:6d:21:1b:8f:5a:51:a4:da:04:58: 8b:6c:ce:b5:be:27:d9:96:14:52:80:dd:01:64:a2: 53:c7:aa:34:56:28:5f:43:da:df:39:bf:84:37:a6: 14:a9:c3:0f:1e:c7:c3:3e:7c:25:0b:bf:02:b1:25: e2:23:89:e1:42:f8:9c:61:73:79:c9:ca:ed:e2:5c: 0b:c4:07:dd:8d:0a:ed:bd:4e:98:37:39:e1:44:6e: d8:be:62:7d:9a:bf:fd:4d:2a:49:62:a8:08:a1:28: 48:fd:ec:b6:71:b1:24:c3:6f:90:9c:5f:a0:1a:b2: ae:70:31:9a:03:82:63:d8:e0:bb:b2:65:f8:1c:16: bb:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:80:41:49:81:3B:84:F3:61:D8:4E:BC:0B:4D:47:54:AB:AF:5E:7D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MIBBSYE7hPNh2E68C01HVKuvXn0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.114.190.0/23 Signature Algorithm: sha256WithRSAEncryption 46:af:1e:47:ac:40:25:a4:d4:61:05:05:a9:4a:b1:0b:51:e5: 83:c8:53:ee:0f:19:43:3c:9d:5c:a9:ff:04:3c:61:c0:15:77: bb:3e:1b:76:b5:0a:a3:96:91:32:7e:73:ba:d0:48:a1:fd:95: 49:f6:89:d6:50:73:07:94:9a:5c:66:7c:74:da:c1:76:65:82: f7:1b:bf:38:b3:4d:18:80:4a:5e:d0:21:4a:04:be:bd:af:db: 42:cb:b2:34:c3:6b:b2:85:96:fe:cc:10:62:87:f9:26:11:9f: 12:cd:a8:96:b6:a4:0d:00:ca:84:e1:b3:33:ba:7a:cf:fc:1d: 70:db:5b:ed:af:bb:dd:1e:83:8e:3f:d1:92:07:57:62:68:bc: cc:db:3a:65:24:69:69:b6:aa:db:4f:6e:04:f2:90:6c:d2:19: f4:ce:35:1b:24:5a:5a:d8:d0:65:4d:a1:a3:ee:ee:15:9d:7c: d2:86:da:34:62:eb:97:50:c7:87:c9:40:09:d5:b1:0d:5d:30: 8b:6b:c9:bc:0c:ba:f0:78:26:f5:7b:e3:fb:dc:c3:5e:62:3c: e7:c4:bd:dc:e1:c3:70:49:12:73:62:9b:79:f9:98:55:e9:ca: 74:df:c9:16:be:21:5e:83:80:cc:fc:75:86:3b:23:06:fa:17: ae:5d:79:ea -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDzwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTI0MzlaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDMwODA0MTQ5ODEzQjg0 RjM2MUQ4NEVCQzBCNEQ0NzU0QUJBRjVFN0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaUp3ntwPUhg2GnfqVi7M4+5CQKbipcxBRmViP5x8awlFN/JJO iZ12QqdE9nPhqe85oChPWaZysD6qTLj9VbMpQwd+7Cw9Bcx8sFfbJNVk/NagOnKK TxhiWx3sC92UpNkq5BKoyd2g+rZeLHyqQWU9a6ettYFwIWPU3jjpbSEbj1pRpNoE WItszrW+J9mWFFKA3QFkolPHqjRWKF9D2t85v4Q3phSpww8ex8M+fCULvwKxJeIj ieFC+Jxhc3nJyu3iXAvEB92NCu29Tpg3OeFEbti+Yn2av/1NKkliqAihKEj97LZx sSTDb5CcX6Aasq5wMZoDgmPY4LuyZfgcFrvDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUMIBBSYE7hPNh2E68C01HVKuvXn0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L01JQkJTWUU3aFBOaDJFNjhDMDFIVkt1dlhuMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHbcr4wDQYJKoZIhvcNAQELBQADggEBAEavHkesQCWk1GEFBalKsQtR5YPI U+4PGUM8nVyp/wQ8YcAVd7s+G3a1CqOWkTJ+c7rQSKH9lUn2idZQcweUmlxmfHTa wXZlgvcbvzizTRiASl7QIUoEvr2v20LLsjTDa7KFlv7MEGKH+SYRnxLNqJa2pA0A yoThszO6es/8HXDbW+2vu90eg44/0ZIHV2JovMzbOmUkaWm2qttPbgTykGzSGfTO NRskWlrY0GVNoaPu7hWdfNKG2jRi65dQx4fJQAnVsQ1dMItrybwMuvB4JvV74/vc w15iPOfEvdzhw3BJEnNim3n5mFXpynTfyRa+IV6DgMz8dYY7Iwb6F65deeo= -----END CERTIFICATE-----Generated at Wed Nov 5 13:52:16 2025 by rpki-client