$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/och782bM8TVheqiJp4XW7CufkP4.roa File: och782bM8TVheqiJp4XW7CufkP4.roa (raw, json) Hash identifier: EKWStec6Rzj82M3RQ1Ysjmx6qVzlAwr2hyQRSdukkCU= Subject key identifier: A1:C8:7B:F3:66:CC:F1:35:61:7A:A8:89:A7:85:D6:EC:2B:9F:90:FE Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F83 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/och782bM8TVheqiJp4XW7CufkP4.roa Signing time: Tue 10 Jun 2025 11:36:12 +0000 ROA not before: Tue 10 Jun 2025 11:36:12 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 49.100.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 14:58:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3971 (0xf83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:36:12 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=A1C87BF366CCF135617AA889A785D6EC2B9F90FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5c:db:08:22:9c:88:b1:ef:2e:5d:50:aa:4d: 0d:14:5a:90:67:2c:72:5a:b5:83:bd:d9:88:04:0a: 2a:96:52:4b:be:99:0d:cd:31:6f:a3:7e:02:04:e3: e7:76:c6:7a:08:95:30:2c:9d:32:4d:77:5a:ad:d1: 1a:c2:45:a5:06:7c:b2:9f:54:e9:1b:78:b1:b0:d6: 46:8e:a6:ff:9a:e5:c8:a3:a6:f8:10:5f:16:7b:83: 71:80:88:78:93:ec:ec:86:f3:10:de:37:22:be:3a: 9d:79:4e:87:69:36:fe:ce:c4:0a:e2:fb:e1:73:28: 3f:f2:58:f9:ba:81:1b:13:9f:f0:ee:29:84:a9:76: 82:ba:c5:68:cb:ea:58:4d:c9:d2:c9:50:71:0b:9b: c1:e7:2d:4d:85:ab:62:5f:fd:bf:12:16:a7:7e:77: a2:5e:3f:22:be:ef:96:d8:dd:9f:7e:07:e3:9f:fb: 01:f7:50:6e:ef:d9:ac:18:81:b2:e1:ea:4c:b7:d3: 4a:3f:d7:1b:de:33:a0:d1:aa:04:04:9d:3c:d1:52: 77:97:56:ff:5f:2c:6d:74:f8:91:22:4f:b4:7a:14: ce:45:cf:93:0d:7f:18:76:9d:6b:85:a6:b0:da:5d: 22:47:4b:a8:05:46:2f:04:de:89:eb:80:a8:b2:15: 04:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:C8:7B:F3:66:CC:F1:35:61:7A:A8:89:A7:85:D6:EC:2B:9F:90:FE X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/och782bM8TVheqiJp4XW7CufkP4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.100.224.0/19 Signature Algorithm: sha256WithRSAEncryption db:40:37:c4:a8:fd:2d:88:78:99:e3:3b:3d:40:ef:48:8d:f0: 6c:c1:bc:43:47:d5:6e:27:a8:b3:96:0e:b1:53:9e:50:28:cc: 4b:84:4a:e7:48:53:b7:aa:a0:87:4a:0b:e0:9a:3d:00:1b:ec: 1f:9e:29:b7:df:bd:af:dd:3a:59:18:dd:e2:9b:5a:bb:5a:f9: 6a:bf:ef:7d:57:ef:c7:04:5f:e1:eb:1c:07:f8:e8:78:76:59: 19:31:06:4e:16:d5:76:d7:70:27:14:7f:af:7f:a8:83:26:96: 62:6f:54:aa:8c:ab:86:50:1a:be:18:33:7b:d5:6e:6c:d9:b4: be:99:4b:c8:d2:05:a7:62:66:5f:a5:e0:7b:fc:88:60:db:83: 96:52:c8:77:75:ae:2b:84:97:e0:c1:13:41:66:95:d4:60:0b: dd:64:40:d9:e7:c0:4a:a1:8b:00:f6:83:e8:94:90:60:ca:bc: bc:c4:94:20:d4:88:fd:a4:f9:3a:9a:a2:26:11:1d:7d:05:ee: 74:68:cb:61:e4:fb:28:a2:6c:92:67:11:e3:89:6b:c2:d2:23: 51:40:f9:e2:41:92:4c:ac:9c:3a:84:df:a3:1d:64:0f:32:64: 17:92:ba:f7:c4:ec:bc:3f:a8:81:f7:be:18:06:e3:77:93:e4: 18:48:7e:5c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD4MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTM2MTJaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEExQzg3QkYzNjZDQ0Yx MzU2MTdBQTg4OUE3ODVENkVDMkI5RjkwRkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmXNsIIpyIse8uXVCqTQ0UWpBnLHJatYO92YgECiqWUku+mQ3N MW+jfgIE4+d2xnoIlTAsnTJNd1qt0RrCRaUGfLKfVOkbeLGw1kaOpv+a5cijpvgQ XxZ7g3GAiHiT7OyG8xDeNyK+Op15TodpNv7OxAri++FzKD/yWPm6gRsTn/DuKYSp doK6xWjL6lhNydLJUHELm8HnLU2Fq2Jf/b8SFqd+d6JePyK+75bY3Z9+B+Of+wH3 UG7v2awYgbLh6ky300o/1xveM6DRqgQEnTzRUneXVv9fLG10+JEiT7R6FM5Fz5MN fxh2nWuFprDaXSJHS6gFRi8E3onrgKiyFQT3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUoch782bM8TVheqiJp4XW7CufkP4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L29jaDc4MmJNOFRWaGVxaUpwNFhXN0N1ZmtQNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUxZOAwDQYJKoZIhvcNAQELBQADggEBANtAN8So/S2IeJnjOz1A70iN8GzB vENH1W4nqLOWDrFTnlAozEuESudIU7eqoIdKC+CaPQAb7B+eKbffva/dOlkY3eKb Wrta+Wq/731X78cEX+HrHAf46Hh2WRkxBk4W1XbXcCcUf69/qIMmlmJvVKqMq4ZQ Gr4YM3vVbmzZtL6ZS8jSBadiZl+l4Hv8iGDbg5ZSyHd1riuEl+DBE0FmldRgC91k QNnnwEqhiwD2g+iUkGDKvLzElCDUiP2k+TqaoiYRHX0F7nRoy2Hk+yiibJJnEeOJ a8LSI1FA+eJBkkysnDqE36MdZA8yZBeSuvfE7Lw/qIH3vhgG43eT5BhIflw= -----END CERTIFICATE-----Generated at Wed Nov 5 17:25:19 2025 by rpki-client