$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/nFQyPhB7vMstYmfacWrDW0Cu4mM.roa File: nFQyPhB7vMstYmfacWrDW0Cu4mM.roa (raw, json) Hash identifier: jjEQLGmlAv4+cEDCKrvk5ZzAZjAR3Xbhhauwm75jSxM= Subject key identifier: 9C:54:32:3E:10:7B:BC:CB:2D:62:67:DA:71:6A:C3:5B:40:AE:E2:63 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B58 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nFQyPhB7vMstYmfacWrDW0Cu4mM.roa Signing time: Tue 01 Apr 2025 01:33:20 +0000 ROA not before: Tue 01 Apr 2025 01:33:20 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.106.214.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 16:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2904 (0xb58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:33:20 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=9C54323E107BBCCB2D6267DA716AC35B40AEE263 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b2:00:f4:ff:ce:ef:c0:1f:92:ce:a1:85:4a: 5a:62:af:91:e8:f7:fb:2f:08:a5:4f:24:bb:45:3c: 46:36:83:ef:4d:08:69:e3:27:75:be:01:fc:b4:66: fc:6d:a7:31:4e:17:4c:a3:e3:07:b8:0f:72:50:28: e7:f3:d2:21:ae:6e:a5:c9:68:13:85:e1:fb:ce:58: cf:8f:39:d6:e8:76:03:45:9e:ba:b1:ee:0b:52:ed: 27:3e:ba:21:1b:52:06:ac:09:a1:85:8b:21:50:4b: cc:01:14:64:b6:c4:18:ba:5a:85:42:9a:b7:44:64: ec:68:e1:53:db:2c:c1:f4:0e:9a:f6:c0:88:73:88: fd:c0:8c:d4:69:13:36:f7:f4:bb:30:0c:25:03:be: df:6b:dd:e5:2d:05:28:f1:a2:c0:7b:3d:d1:e1:23: 31:fd:97:08:6d:ab:e8:88:97:65:84:56:1d:56:8b: db:49:00:43:7f:e9:fd:0c:a5:1e:98:09:41:46:05: c4:f0:67:89:fa:a1:a4:23:eb:2e:7a:0d:29:e5:a4: cc:1b:b8:1d:bd:0c:c4:0d:ae:59:fb:8d:9c:b7:c4: 55:fd:f5:c1:4b:cd:5b:ff:73:88:92:83:1a:2b:fe: 23:0d:f7:cb:dc:cf:c6:bf:44:20:2e:35:58:2b:55: b2:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:54:32:3E:10:7B:BC:CB:2D:62:67:DA:71:6A:C3:5B:40:AE:E2:63 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nFQyPhB7vMstYmfacWrDW0Cu4mM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.214.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:6e:e0:c4:3f:c3:e4:8e:5f:d3:7f:20:60:08:f4:21:56:9b: fc:4b:80:f4:17:18:ab:76:d1:de:84:f2:4d:e8:8a:a8:0f:52: d8:6a:cc:27:16:88:7c:49:79:16:0c:a1:51:d0:97:a7:92:16: bf:9d:48:92:80:46:e5:ab:3d:10:3a:60:fc:97:c7:ed:b7:dc: fa:3b:55:93:12:32:1a:11:9d:15:70:56:78:54:4c:02:f1:5f: b8:4b:df:41:55:e2:3b:53:25:1c:ca:00:4a:d1:56:92:22:e2: 15:dc:2f:dd:31:52:13:43:78:9d:72:db:91:de:bb:86:7e:08: 48:8a:49:f0:a8:ef:c6:08:7b:c5:bb:6b:39:06:b5:d5:15:92: 97:45:a6:d6:aa:a0:42:60:94:73:2d:0d:65:be:2e:fb:45:91: 6b:ca:53:52:3e:46:0a:b7:06:08:3e:3e:ba:4b:13:62:bc:e9: 72:47:a7:5a:46:b5:32:59:f2:de:9b:e8:17:bf:7f:18:e2:10: 2f:88:48:09:65:b6:f3:57:4a:bf:ba:a7:95:4d:cb:44:91:72: c8:da:d8:ad:d5:47:50:ae:eb:16:84:8b:2a:b4:66:51:d5:79: 77:6c:76:f6:11:15:82:40:b8:99:c8:d0:46:d3:3f:db:cd:9b: bb:10:dc:a2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC1gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTMzMjBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDlDNTQzMjNFMTA3QkJD Q0IyRDYyNjdEQTcxNkFDMzVCNDBBRUUyNjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvsgD0/87vwB+SzqGFSlpir5Ho9/svCKVPJLtFPEY2g+9NCGnj J3W+Afy0ZvxtpzFOF0yj4we4D3JQKOfz0iGubqXJaBOF4fvOWM+POdbodgNFnrqx 7gtS7Sc+uiEbUgasCaGFiyFQS8wBFGS2xBi6WoVCmrdEZOxo4VPbLMH0Dpr2wIhz iP3AjNRpEzb39LswDCUDvt9r3eUtBSjxosB7PdHhIzH9lwhtq+iIl2WEVh1Wi9tJ AEN/6f0MpR6YCUFGBcTwZ4n6oaQj6y56DSnlpMwbuB29DMQNrln7jZy3xFX99cFL zVv/c4iSgxor/iMN98vcz8a/RCAuNVgrVbLFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUnFQyPhB7vMstYmfacWrDW0Cu4mMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L25GUXlQaEI3dk1zdFltZmFjV3JEVzBDdTRtTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExatYwDQYJKoZIhvcNAQELBQADggEBAEpu4MQ/w+SOX9N/IGAI9CFWm/xL gPQXGKt20d6E8k3oiqgPUthqzCcWiHxJeRYMoVHQl6eSFr+dSJKARuWrPRA6YPyX x+233Po7VZMSMhoRnRVwVnhUTALxX7hL30FV4jtTJRzKAErRVpIi4hXcL90xUhND eJ1y25Heu4Z+CEiKSfCo78YIe8W7azkGtdUVkpdFptaqoEJglHMtDWW+LvtFkWvK U1I+Rgq3Bgg+PrpLE2K86XJHp1pGtTJZ8t6b6Be/fxjiEC+ISAlltvNXSr+6p5VN y0SRcsja2K3VR1Cu6xaEiyq0ZlHVeXdsdvYRFYJAuJnI0EbTP9vNm7sQ3KI= -----END CERTIFICATE-----Generated at Wed Nov 5 18:53:50 2025 by rpki-client