$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/WF-VFIDYKe-yD7nEbP3OMJtmOww.roa File: WF-VFIDYKe-yD7nEbP3OMJtmOww.roa (raw, json) Hash identifier: b0mpAwIKMvg1kwmj+vItiOaU23XAemPSuixjDlpOtO4= Subject key identifier: 58:5F:95:14:80:D8:29:EF:B2:0F:B9:C4:6C:FD:CE:30:9B:66:3B:0C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F5B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WF-VFIDYKe-yD7nEbP3OMJtmOww.roa Signing time: Tue 10 Jun 2025 11:28:32 +0000 ROA not before: Tue 10 Jun 2025 11:28:32 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 211.14.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 12:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3931 (0xf5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:28:32 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=585F951480D829EFB20FB9C46CFDCE309B663B0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:4c:b8:71:63:0c:af:5b:ce:21:41:c2:33:6a: 6a:7f:1b:83:fb:5e:05:8f:c8:3e:e7:42:a1:22:dd: 6b:9c:03:d2:ab:56:c5:3a:2a:46:88:2c:e8:68:0f: 93:24:2d:13:21:4b:4a:b4:e1:fa:f5:55:c0:ac:b2: 04:38:76:df:b0:93:a0:78:fb:6a:45:3c:f3:e6:d6: 50:b1:9f:ed:e8:9c:13:ab:a0:8c:28:da:8e:d3:68: 3f:15:cb:02:e5:db:e8:c7:60:44:81:9d:db:1f:33: 22:41:6e:a3:40:84:39:14:2f:03:ce:e8:50:51:3d: a3:fe:c1:7d:d6:db:48:97:da:11:cf:29:f6:3d:4c: 25:7b:90:15:64:08:a3:f9:21:53:ef:ec:99:13:a0: 36:7b:25:7c:49:e8:49:46:05:ee:5a:d4:3f:cc:bc: f7:3e:e7:12:38:b8:51:c3:5e:03:d3:b7:84:a2:6b: e2:61:83:3e:cf:74:ba:8b:52:f0:bd:d4:84:78:d4: c2:76:37:68:2c:30:70:82:dc:7b:08:c1:ff:60:5f: 8e:da:75:29:7f:a7:f8:21:aa:73:6b:1e:9e:a4:c4: 7c:cc:db:e6:6f:9b:75:64:1a:24:4f:88:da:3d:40: 9d:54:e1:8f:2d:07:c7:3a:6c:02:9d:4f:6b:85:fe: 78:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:5F:95:14:80:D8:29:EF:B2:0F:B9:C4:6C:FD:CE:30:9B:66:3B:0C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WF-VFIDYKe-yD7nEbP3OMJtmOww.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.100.0/22 Signature Algorithm: sha256WithRSAEncryption a3:a3:dd:2a:4f:bd:c9:ab:4a:73:45:db:53:31:55:6c:45:6a: 5a:e4:72:1c:43:b8:38:b6:d3:a5:0f:1a:94:ef:41:1d:90:46: 72:6f:7f:14:33:89:5a:23:13:29:78:93:06:61:88:85:99:d3: db:62:e6:28:50:bd:56:94:02:60:c4:a3:a5:5c:75:7e:51:ad: 34:3c:a7:64:9b:7f:67:8a:6a:b0:37:22:11:c4:31:c8:f1:9d: 4f:de:3c:be:fd:e7:5e:3b:ab:5d:8e:5f:25:2e:ac:75:2c:8c: c8:12:3b:b0:03:a6:e6:44:83:30:13:d7:3d:c5:02:7c:6d:1c: f8:84:c3:35:fc:94:1e:6a:c4:37:71:59:9e:06:cc:ec:63:29: ec:1a:8f:9a:b6:23:57:4e:70:42:36:bf:ee:ee:41:4b:66:bd: 06:a7:61:4d:15:5c:83:22:85:73:87:cb:74:25:39:77:1e:84: 0a:33:7d:55:c9:cb:a6:ad:e5:66:69:c0:f0:4b:25:a5:6c:32: e1:0d:6c:11:bb:bf:22:92:0c:91:5f:8e:1b:bd:9c:17:54:fd: 33:70:12:b3:45:6c:e6:57:d6:fd:eb:e6:03:58:f6:23:4e:78: 6f:f4:6e:cd:75:0b:c9:00:be:c8:93:99:fc:5f:95:86:7a:6e: fe:26:3b:21 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD1swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTI4MzJaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDU4NUY5NTE0ODBEODI5 RUZCMjBGQjlDNDZDRkRDRTMwOUI2NjNCMEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpTLhxYwyvW84hQcIzamp/G4P7XgWPyD7nQqEi3WucA9KrVsU6 KkaILOhoD5MkLRMhS0q04fr1VcCssgQ4dt+wk6B4+2pFPPPm1lCxn+3onBOroIwo 2o7TaD8VywLl2+jHYESBndsfMyJBbqNAhDkULwPO6FBRPaP+wX3W20iX2hHPKfY9 TCV7kBVkCKP5IVPv7JkToDZ7JXxJ6ElGBe5a1D/MvPc+5xI4uFHDXgPTt4Sia+Jh gz7PdLqLUvC91IR41MJ2N2gsMHCC3HsIwf9gX47adSl/p/ghqnNrHp6kxHzM2+Zv m3VkGiRPiNo9QJ1U4Y8tB8c6bAKdT2uF/niDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUWF+VFIDYKe+yD7nEbP3OMJtmOwwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1dGLVZGSURZS2UteUQ3bkViUDNPTUp0bU93dy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALTDmQwDQYJKoZIhvcNAQELBQADggEBAKOj3SpPvcmrSnNF21MxVWxFalrk chxDuDi206UPGpTvQR2QRnJvfxQziVojEyl4kwZhiIWZ09ti5ihQvVaUAmDEo6Vc dX5RrTQ8p2Sbf2eKarA3IhHEMcjxnU/ePL795147q12OXyUurHUsjMgSO7ADpuZE gzAT1z3FAnxtHPiEwzX8lB5qxDdxWZ4GzOxjKewaj5q2I1dOcEI2v+7uQUtmvQan YU0VXIMihXOHy3QlOXcehAozfVXJy6at5WZpwPBLJaVsMuENbBG7vyKSDJFfjhu9 nBdU/TNwErNFbOZX1v3r5gNY9iNOeG/0bs11C8kAvsiTmfxflYZ6bv4mOyE= -----END CERTIFICATE-----Generated at Wed Nov 5 13:53:51 2025 by rpki-client