$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/jzYumAtq1f5AjsSWipoP91FxgUY.roa File: jzYumAtq1f5AjsSWipoP91FxgUY.roa (raw, json) Hash identifier: VnnyYwgZX9NLssqUao9VRVNkVknbq7hZjtnSBHjgM9k= Subject key identifier: 8F:36:2E:98:0B:6A:D5:FE:40:8E:C4:96:8A:9A:0F:F7:51:71:81:46 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E84 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/jzYumAtq1f5AjsSWipoP91FxgUY.roa Signing time: Tue 10 Jun 2025 10:56:47 +0000 ROA not before: Tue 10 Jun 2025 10:56:47 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.159.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 11:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3716 (0xe84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:56:47 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=8F362E980B6AD5FE408EC4968A9A0FF751718146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:57:d1:88:2d:7f:ec:36:4c:34:44:7e:0c:84: 77:f6:2b:64:7c:66:c7:9b:44:81:de:b2:35:70:f0: c6:bb:a0:48:62:e4:ba:e1:e8:d6:dd:af:be:d0:9e: 21:fe:2e:cb:a6:f8:72:6f:47:6e:7e:2e:0c:24:00: 2b:1e:52:78:12:1d:37:31:29:83:26:80:8e:c8:89: 8e:a9:d1:c9:11:c3:ec:42:9b:58:1a:d8:a3:fd:6a: ba:5a:e1:fb:b2:74:54:41:8d:03:cc:6e:62:c1:b0: 9c:36:03:06:ae:c3:8e:df:2b:d4:93:54:69:4c:f9: 64:67:ea:59:9f:cb:8c:98:15:51:97:80:d4:19:2b: 23:b0:26:a9:1e:06:5f:97:9f:dc:7f:bb:31:c7:ff: ff:20:2b:50:c0:a6:d7:7a:dd:eb:e4:50:ba:0b:1e: 48:0b:31:5c:d1:b6:97:86:40:bf:0c:63:d7:56:36: 33:93:87:6a:fe:be:f5:c9:f4:2b:72:11:3a:f6:1a: c2:88:23:68:16:bb:72:da:4a:86:58:e4:73:c7:d2: f7:f7:d3:5d:96:d1:64:99:35:f8:18:d5:44:46:60: 6a:3a:8a:0d:8c:08:60:a6:87:a7:84:72:b0:cf:0b: cc:35:eb:f8:4b:68:c2:78:22:51:52:47:6d:37:61: 7c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:36:2E:98:0B:6A:D5:FE:40:8E:C4:96:8A:9A:0F:F7:51:71:81:46 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/jzYumAtq1f5AjsSWipoP91FxgUY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.128.0/19 Signature Algorithm: sha256WithRSAEncryption 92:95:01:2b:7a:63:fd:77:9a:c8:da:d5:ab:10:12:6b:a6:f0: 67:4c:42:cf:ff:46:1f:1f:a2:8c:e5:be:64:02:34:7d:c2:90: 8f:1a:9d:4c:04:9a:02:fb:d4:18:65:5a:bb:53:03:8d:3a:57: 3b:c8:a1:f3:ad:29:17:51:ed:90:2a:3f:1d:4c:52:76:b9:c1: 76:36:07:21:a0:ee:af:6c:e3:4c:b4:27:1f:0b:df:a2:f5:7a: bd:ea:07:0e:f0:59:3b:03:06:b9:23:a3:c1:0e:e9:e4:8b:cd: 14:48:ce:76:6a:18:cf:95:f9:57:c6:9f:1d:12:67:90:7a:5f: 1e:70:7e:d4:45:02:92:55:b3:c5:52:1d:8d:7d:83:71:7f:36: 3c:ca:f8:8c:dd:fa:5a:02:ed:25:56:16:b9:e1:eb:21:61:c7: 62:3b:dc:92:65:21:b9:96:98:b2:fe:4b:3e:a1:00:67:a6:c1: 24:3b:86:58:b2:0e:85:fb:07:83:ab:d0:03:53:7e:85:46:03: b4:6e:c0:28:09:27:b4:d4:0c:e8:a0:40:fd:98:24:13:fe:84: 52:78:ec:0c:c9:63:9c:d9:dc:07:00:44:fa:61:cd:a1:16:ee: 7e:67:da:7c:1d:67:cc:83:47:6a:e4:6c:ed:4f:e1:aa:a5:3e: c9:29:00:e6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDoQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDU2NDdaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDhGMzYyRTk4MEI2QUQ1 RkU0MDhFQzQ5NjhBOUEwRkY3NTE3MTgxNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6V9GILX/sNkw0RH4MhHf2K2R8ZsebRIHesjVw8Ma7oEhi5Lrh 6Nbdr77QniH+Lsum+HJvR25+LgwkACseUngSHTcxKYMmgI7IiY6p0ckRw+xCm1ga 2KP9arpa4fuydFRBjQPMbmLBsJw2Awauw47fK9STVGlM+WRn6lmfy4yYFVGXgNQZ KyOwJqkeBl+Xn9x/uzHH//8gK1DAptd63evkULoLHkgLMVzRtpeGQL8MY9dWNjOT h2r+vvXJ9CtyETr2GsKII2gWu3LaSoZY5HPH0vf3012W0WSZNfgY1URGYGo6ig2M CGCmh6eEcrDPC8w16/hLaMJ4IlFSR203YXy/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUjzYumAtq1f5AjsSWipoP91FxgUYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2p6WXVtQXRxMWY1QWpzU1dpcG9QOTFGeGdVWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXcn4AwDQYJKoZIhvcNAQELBQADggEBAJKVASt6Y/13msja1asQEmum8GdM Qs//Rh8foozlvmQCNH3CkI8anUwEmgL71BhlWrtTA406VzvIofOtKRdR7ZAqPx1M Una5wXY2ByGg7q9s40y0Jx8L36L1er3qBw7wWTsDBrkjo8EO6eSLzRRIznZqGM+V +VfGnx0SZ5B6Xx5wftRFApJVs8VSHY19g3F/NjzK+Izd+loC7SVWFrnh6yFhx2I7 3JJlIbmWmLL+Sz6hAGemwSQ7hliyDoX7B4Or0ANTfoVGA7RuwCgJJ7TUDOigQP2Y JBP+hFJ47AzJY5zZ3AcARPphzaEW7n5n2nwdZ8yDR2rkbO1P4aqlPskpAOY= -----END CERTIFICATE-----Generated at Wed Nov 5 13:36:40 2025 by rpki-client