$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/VKJDtmY6496h8LpHX0WmNTU0rb4.roa File: VKJDtmY6496h8LpHX0WmNTU0rb4.roa (raw, json) Hash identifier: qharwy1DF7j6B3dpn7IyiMEv7r31wSemRt7txvHE/ck= Subject key identifier: 54:A2:43:B6:66:3A:E3:DE:A1:F0:BA:47:5F:45:A6:35:35:34:AD:BE Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E24 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VKJDtmY6496h8LpHX0WmNTU0rb4.roa Signing time: Tue 01 Apr 2025 02:33:27 +0000 ROA not before: Tue 01 Apr 2025 02:33:27 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 220.159.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 12:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3620 (0xe24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:33:27 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=54A243B6663AE3DEA1F0BA475F45A6353534ADBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:62:85:ea:a3:6e:6b:df:6c:03:5d:71:10:5a: 70:68:0a:00:e8:6a:a0:88:04:cb:c4:a8:50:b9:bc: 15:08:ac:cd:1e:af:07:31:14:51:73:bf:74:55:04: d2:ea:bd:e4:99:db:44:3b:68:88:dd:a4:9a:ad:4a: 23:69:e9:45:ee:13:fd:a0:5c:5f:2e:08:29:41:3a: 6d:6c:3d:bd:ad:b8:fc:4e:66:07:96:75:84:3b:16: 4a:e1:04:fb:cf:29:18:a3:ee:8b:6f:f4:8e:62:cd: 41:c8:03:2c:83:64:59:ac:40:e3:05:fa:f7:29:aa: 53:f4:fc:d1:5e:2e:41:47:e6:d4:8c:9b:fc:49:b9: 36:84:1b:e3:d7:f6:54:e1:4e:51:71:4b:39:1a:81: 9a:6c:4f:4c:8e:b4:b0:b5:e8:bd:e6:20:72:6e:50: a1:e4:c1:b4:4a:b1:ee:83:da:23:79:9f:33:23:8c: 00:09:9c:49:7f:a3:bf:8c:61:04:c3:e6:9a:82:38: 5f:88:c2:3b:bf:aa:13:1c:ea:4b:7e:cb:c2:79:78: 53:4a:e6:f9:e5:7c:aa:d5:1a:90:63:87:90:ea:6d: b8:32:58:ce:de:50:1d:5a:74:26:44:3d:31:78:63: b2:6c:62:0d:c3:c9:76:d0:7e:be:26:c3:72:ea:05: 5c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:A2:43:B6:66:3A:E3:DE:A1:F0:BA:47:5F:45:A6:35:35:34:AD:BE X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VKJDtmY6496h8LpHX0WmNTU0rb4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.216.0/21 Signature Algorithm: sha256WithRSAEncryption 62:63:51:43:c7:e0:80:4c:17:c4:9c:98:af:76:9b:89:45:fe: a7:9a:5a:b8:26:2e:fe:74:14:fd:8a:45:4f:ed:73:80:4b:92: 79:69:f7:43:ef:d9:cc:6b:da:38:3b:cc:95:0f:5a:c6:f3:ab: 8d:5e:d0:c9:81:9c:35:89:25:95:f5:e8:00:a3:36:b1:41:37: 74:f0:1a:95:09:b3:69:bc:28:99:e3:16:10:50:9d:08:38:0f: 61:63:4d:cc:7c:fa:90:15:fd:1d:7d:83:aa:81:f6:53:4c:0b: 41:02:5b:8d:d8:7b:81:23:9d:47:68:f1:49:c4:0c:11:5b:e6: dc:1a:7d:9b:3e:5b:20:cb:88:c9:f3:b2:96:5d:bc:ff:2a:f6: 92:4f:7b:c7:ac:c1:b4:f1:6c:13:28:c8:7b:ef:d4:4c:2b:4b: 75:8f:02:fc:0a:76:e4:96:0c:25:6d:57:8c:47:a6:71:5c:a8: 31:80:21:81:3b:29:3a:a8:ff:23:fd:cc:c8:42:68:a7:2f:68: d8:1a:a7:74:15:01:8a:a4:f5:58:cd:62:75:6f:ae:75:26:7f: 2b:37:d1:dc:bc:88:8f:b3:e8:fd:42:5a:8a:8e:0f:d3:fa:c2: ca:dc:61:18:9c:f0:98:a4:7e:87:8a:c9:07:5a:f2:4b:62:7c: 7a:ed:58:5b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDiQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjMzMjdaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDU0QTI0M0I2NjYzQUUz REVBMUYwQkE0NzVGNDVBNjM1MzUzNEFEQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiYoXqo25r32wDXXEQWnBoCgDoaqCIBMvEqFC5vBUIrM0erwcx FFFzv3RVBNLqveSZ20Q7aIjdpJqtSiNp6UXuE/2gXF8uCClBOm1sPb2tuPxOZgeW dYQ7FkrhBPvPKRij7otv9I5izUHIAyyDZFmsQOMF+vcpqlP0/NFeLkFH5tSMm/xJ uTaEG+PX9lThTlFxSzkagZpsT0yOtLC16L3mIHJuUKHkwbRKse6D2iN5nzMjjAAJ nEl/o7+MYQTD5pqCOF+Iwju/qhMc6kt+y8J5eFNK5vnlfKrVGpBjh5DqbbgyWM7e UB1adCZEPTF4Y7JsYg3DyXbQfr4mw3LqBVxbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUVKJDtmY6496h8LpHX0WmNTU0rb4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1ZLSkR0bVk2NDk2aDhMcEhYMFdtTlRVMHJiNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPcn9gwDQYJKoZIhvcNAQELBQADggEBAGJjUUPH4IBMF8ScmK92m4lF/qea WrgmLv50FP2KRU/tc4BLknlp90Pv2cxr2jg7zJUPWsbzq41e0MmBnDWJJZX16ACj NrFBN3TwGpUJs2m8KJnjFhBQnQg4D2FjTcx8+pAV/R19g6qB9lNMC0ECW43Ye4Ej nUdo8UnEDBFb5twafZs+WyDLiMnzspZdvP8q9pJPe8eswbTxbBMoyHvv1EwrS3WP AvwKduSWDCVtV4xHpnFcqDGAIYE7KTqo/yP9zMhCaKcvaNgap3QVAYqk9VjNYnVv rnUmfys30dy8iI+z6P1CWoqOD9P6wsrcYRic8JikfoeKyQda8ktifHrtWFs= -----END CERTIFICATE-----Generated at Wed Nov 5 13:53:05 2025 by rpki-client