$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/rt4r91BgTkC_n2U8VGxJ9sYS0zA.roa File: rt4r91BgTkC_n2U8VGxJ9sYS0zA.roa (raw, json) Hash identifier: w4uwP+YTonzuIQAiy5Q/YKJECb17dFuh2fDHhMFLZis= Subject key identifier: AE:DE:2B:F7:50:60:4E:40:BF:9F:65:3C:54:6C:49:F6:C6:12:D3:30 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F78 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/rt4r91BgTkC_n2U8VGxJ9sYS0zA.roa Signing time: Tue 10 Jun 2025 11:32:38 +0000 ROA not before: Tue 10 Jun 2025 11:32:38 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.210.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 16:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3960 (0xf78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:32:38 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=AEDE2BF750604E40BF9F653C546C49F6C612D330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:29:fc:30:6e:c3:e1:4f:3a:47:5f:0f:f7:a2: c1:4b:aa:ae:b6:c8:8c:b5:9d:06:70:27:6b:10:e7: bf:fb:0d:19:fd:0c:91:86:76:7b:ed:e9:cc:cf:fe: dd:6f:6a:4a:39:d5:01:a4:ae:8f:99:a5:02:2f:64: 51:e9:0d:95:cb:9b:38:91:0a:a3:ad:15:a3:78:e9: 59:fc:14:aa:7d:c8:4e:1b:cc:44:57:3f:72:35:b3: 65:d4:d6:f9:66:7a:e3:c8:64:07:16:47:79:2a:0b: ac:2d:ec:88:ef:6a:35:63:d2:b4:de:7e:9d:e5:ea: 38:85:d8:33:f8:d3:b8:71:dc:82:9c:b7:51:80:3c: be:6e:e7:41:80:81:a6:08:81:bf:47:e1:d8:2c:fc: 80:f6:98:48:ae:41:6b:70:6e:8f:21:8a:c1:9d:26: 65:52:0d:de:7e:29:d1:2f:f7:88:d9:8e:4b:1e:45: 67:08:ee:3c:c5:b9:e2:a0:4a:af:3f:cf:1d:65:bc: 31:09:a8:da:53:89:ec:81:4c:63:69:08:d6:9c:c4: 5e:93:1f:cc:83:3c:e9:82:98:a2:ed:23:99:ad:50: 3c:5f:05:2f:e7:7a:14:21:28:6d:28:84:bd:93:9e: e9:64:3d:53:b1:7e:04:d8:d4:d0:65:14:80:e4:8e: 0f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:DE:2B:F7:50:60:4E:40:BF:9F:65:3C:54:6C:49:F6:C6:12:D3:30 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/rt4r91BgTkC_n2U8VGxJ9sYS0zA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.96.0/22 Signature Algorithm: sha256WithRSAEncryption 81:f0:17:30:26:c3:48:04:f7:ef:13:e1:6f:38:d1:3a:36:0e: 40:c2:b2:f2:34:dd:1e:6c:95:4b:ff:df:47:a4:44:cd:5c:2c: 06:d6:ba:49:c9:12:95:6a:5b:80:6d:c5:e4:78:ea:55:fe:e0: 9a:30:dc:d8:38:b9:f7:66:61:4a:aa:14:59:7a:74:84:d8:91: 06:37:de:96:46:64:2a:18:4c:bd:a2:9d:a6:51:bc:34:94:36: d7:86:67:38:cb:7b:c6:17:8e:4f:18:29:6a:8f:b1:14:f8:81: 35:a2:4d:f1:ba:10:10:96:a7:1b:fb:0c:dc:4e:c0:2c:e2:10: 9f:d8:4d:50:09:00:b2:1a:3d:fc:52:bf:21:ac:83:46:8b:9f: 9c:a5:94:4e:da:7e:b4:42:39:bc:1f:1e:dc:d0:6c:17:98:85: b8:a6:ac:7e:3c:7b:12:b1:56:8a:07:7d:51:63:f3:74:d0:0d: f9:2d:0e:92:46:43:e2:e9:c8:51:cf:ac:01:9c:11:f5:8c:24: cd:eb:c7:13:d8:62:99:68:64:bc:94:75:d3:7b:73:98:ba:aa: de:83:12:da:50:60:9a:0a:ab:08:b1:0b:ec:8a:56:26:15:22: a2:c1:37:73:6f:29:0c:f0:5e:6e:cb:2a:14:f9:b1:50:a7:22: c3:96:91:b6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD3gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTMyMzhaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEFFREUyQkY3NTA2MDRF NDBCRjlGNjUzQzU0NkM0OUY2QzYxMkQzMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIKfwwbsPhTzpHXw/3osFLqq62yIy1nQZwJ2sQ57/7DRn9DJGG dnvt6czP/t1vako51QGkro+ZpQIvZFHpDZXLmziRCqOtFaN46Vn8FKp9yE4bzERX P3I1s2XU1vlmeuPIZAcWR3kqC6wt7IjvajVj0rTefp3l6jiF2DP407hx3IKct1GA PL5u50GAgaYIgb9H4dgs/ID2mEiuQWtwbo8hisGdJmVSDd5+KdEv94jZjkseRWcI 7jzFueKgSq8/zx1lvDEJqNpTieyBTGNpCNacxF6TH8yDPOmCmKLtI5mtUDxfBS/n ehQhKG0ohL2TnulkPVOxfgTY1NBlFIDkjg81AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUrt4r91BgTkC/n2U8VGxJ9sYS0zAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3J0NHI5MUJnVGtDX24yVThWR3hKOXNZUzB6QS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALc0mAwDQYJKoZIhvcNAQELBQADggEBAIHwFzAmw0gE9+8T4W840To2DkDC svI03R5slUv/30ekRM1cLAbWuknJEpVqW4BtxeR46lX+4Jow3Ng4ufdmYUqqFFl6 dITYkQY33pZGZCoYTL2inaZRvDSUNteGZzjLe8YXjk8YKWqPsRT4gTWiTfG6EBCW pxv7DNxOwCziEJ/YTVAJALIaPfxSvyGsg0aLn5yllE7afrRCObwfHtzQbBeYhbim rH48exKxVooHfVFj83TQDfktDpJGQ+LpyFHPrAGcEfWMJM3rxxPYYploZLyUddN7 c5i6qt6DEtpQYJoKqwixC+yKViYVIqLBN3NvKQzwXm7LKhT5sVCnIsOWkbY= -----END CERTIFICATE-----Generated at Wed Nov 5 19:25:13 2025 by rpki-client