$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/bWHTCvAIa2hd1eTgYOjn8ZXwS1c.roa File: bWHTCvAIa2hd1eTgYOjn8ZXwS1c.roa (raw, json) Hash identifier: 2WQL+YFkNdbq4lte/iFQLBNSRjpW59Kui8CtWGMyv5E= Subject key identifier: 6D:61:D3:0A:F0:08:6B:68:5D:D5:E4:E0:60:E8:E7:F1:95:F0:4B:57 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0ECF Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bWHTCvAIa2hd1eTgYOjn8ZXwS1c.roa Signing time: Tue 10 Jun 2025 11:09:08 +0000 ROA not before: Tue 10 Jun 2025 11:09:08 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.159.226.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 18:10:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3791 (0xecf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:09:08 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=6D61D30AF0086B685DD5E4E060E8E7F195F04B57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f4:a0:54:1c:d6:4b:bd:5b:49:5a:4a:fb:7c: f0:c9:91:14:72:89:3b:2b:b6:0a:7b:04:89:f1:04: 15:d5:00:af:c2:48:c5:8f:55:c8:79:12:b5:ba:47: ec:28:dc:95:3d:0a:1b:04:75:d1:1b:c4:7c:a5:7f: 52:cc:b4:9c:7f:ff:d0:8f:d3:41:a8:52:81:99:e7: de:68:ba:81:c4:a6:0e:67:42:fb:4c:a0:36:62:7b: b0:5c:b9:57:08:ab:e3:4e:b0:25:e6:4d:01:aa:ff: 19:fe:f7:fa:3e:de:91:ab:9c:37:bc:05:af:9f:10: 41:91:8f:48:7b:89:15:d0:1a:96:fd:33:2b:ae:73: 26:b4:78:5d:c0:4d:10:f5:05:46:6c:c2:a5:02:28: 15:29:b7:21:6b:b5:9e:9f:64:b5:15:6e:c6:ee:cf: 5f:50:63:08:fb:4f:b3:36:99:3d:09:89:d9:c4:c0: ae:b8:62:44:47:41:1c:35:fe:2d:da:78:a3:6b:64: 25:8b:ab:24:e7:a5:17:c0:b2:5a:b0:9f:56:1e:1d: 65:bc:ab:c2:2e:c7:73:b6:d2:91:d8:49:6c:c1:06: 9b:52:6d:36:a5:54:c7:76:2e:a2:0f:3f:9c:10:c4: 79:04:8c:d7:f5:bd:ac:df:15:66:c1:fc:8b:96:ea: 29:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:61:D3:0A:F0:08:6B:68:5D:D5:E4:E0:60:E8:E7:F1:95:F0:4B:57 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bWHTCvAIa2hd1eTgYOjn8ZXwS1c.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.226.0/23 Signature Algorithm: sha256WithRSAEncryption 94:10:46:81:81:83:9a:fa:be:ed:47:64:5f:2d:67:5c:aa:c5: c5:c7:41:38:5a:c6:93:ca:27:de:89:c7:3c:99:32:06:94:eb: 8a:65:8a:55:26:14:a0:30:38:ff:5f:ef:bd:01:29:03:a8:b3: 26:f5:f4:21:5f:88:9e:e9:aa:8a:ed:dc:04:7e:56:04:8f:73: eb:ee:21:56:83:be:03:ce:c6:e4:b0:3e:2e:df:b7:99:09:ba: f5:cc:39:2f:5a:89:16:69:7d:21:02:d6:57:02:b0:13:d1:96: 97:ae:2c:0f:b1:86:f7:9e:62:61:b8:54:c0:ab:13:d9:6e:06: 5c:27:c6:4b:ea:4b:73:16:48:2e:3b:fb:a6:1a:3e:a0:e5:c9: 87:8d:e2:ba:bb:50:a0:b3:b3:33:b8:a4:fa:8b:ea:c6:82:07: e6:14:92:b7:dd:1e:d2:6b:31:6a:58:ab:8b:25:cb:36:16:d9: c6:d6:63:a6:da:4f:1f:66:3f:98:82:28:84:18:66:8a:96:50: 6b:16:97:6b:f3:31:74:e7:5a:5f:b4:60:53:bc:5e:8b:e3:be: 3d:db:ef:c9:15:ee:26:f5:5d:6a:04:fc:f4:17:aa:b1:8c:43: 04:65:f7:5a:d5:68:09:42:d8:fb:4b:ef:0a:27:b0:2f:c3:7f: a1:99:5d:17 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDs8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTA5MDhaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDZENjFEMzBBRjAwODZC Njg1REQ1RTRFMDYwRThFN0YxOTVGMDRCNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDM9KBUHNZLvVtJWkr7fPDJkRRyiTsrtgp7BInxBBXVAK/CSMWP Vch5ErW6R+wo3JU9ChsEddEbxHylf1LMtJx//9CP00GoUoGZ595ouoHEpg5nQvtM oDZie7BcuVcIq+NOsCXmTQGq/xn+9/o+3pGrnDe8Ba+fEEGRj0h7iRXQGpb9Myuu cya0eF3ATRD1BUZswqUCKBUptyFrtZ6fZLUVbsbuz19QYwj7T7M2mT0JidnEwK64 YkRHQRw1/i3aeKNrZCWLqyTnpRfAslqwn1YeHWW8q8Iux3O20pHYSWzBBptSbTal VMd2LqIPP5wQxHkEjNf1vazfFWbB/IuW6il3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUbWHTCvAIa2hd1eTgYOjn8ZXwS1cwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2JXSFRDdkFJYTJoZDFlVGdZT2puOFpYd1MxYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHcn+IwDQYJKoZIhvcNAQELBQADggEBAJQQRoGBg5r6vu1HZF8tZ1yqxcXH QThaxpPKJ96JxzyZMgaU64plilUmFKAwOP9f770BKQOosyb19CFfiJ7pqort3AR+ VgSPc+vuIVaDvgPOxuSwPi7ft5kJuvXMOS9aiRZpfSEC1lcCsBPRlpeuLA+xhvee YmG4VMCrE9luBlwnxkvqS3MWSC47+6YaPqDlyYeN4rq7UKCzszO4pPqL6saCB+YU krfdHtJrMWpYq4slyzYW2cbWY6baTx9mP5iCKIQYZoqWUGsWl2vzMXTnWl+0YFO8 Xovjvj3b78kV7ib1XWoE/PQXqrGMQwRl91rVaAlC2PtL7wonsC/Df6GZXRc= -----END CERTIFICATE-----Generated at Wed Nov 5 19:32:49 2025 by rpki-client