$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/thUq2DpvsI89k3lOSVk6FzRWRns.roa File: thUq2DpvsI89k3lOSVk6FzRWRns.roa (raw, json) Hash identifier: nQ7tXgqaQIzeInTgmufV4Pvz8mZOQOTwygb5SclDGA4= Subject key identifier: B6:15:2A:D8:3A:6F:B0:8F:3D:93:79:4E:49:59:3A:17:34:56:46:7B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B86 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/thUq2DpvsI89k3lOSVk6FzRWRns.roa Signing time: Tue 01 Apr 2025 01:36:54 +0000 ROA not before: Tue 01 Apr 2025 01:36:54 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.105.78.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:11:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2950 (0xb86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:36:54 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=B6152AD83A6FB08F3D93794E49593A173456467B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:88:ee:60:10:0d:28:7c:55:a6:3c:40:9b:8d: 17:ad:34:7a:b2:76:1a:42:93:ad:ea:a8:a0:0c:67: 85:04:ca:24:dd:77:f2:41:62:00:3b:66:36:01:3f: a3:61:b7:17:8d:ad:77:cb:d1:87:a0:17:8f:c1:9b: be:d2:ce:65:66:20:dc:21:e6:9d:ea:c2:e3:d3:ca: fa:1c:4d:96:6b:00:0d:4b:e6:70:84:0d:a1:eb:46: 82:74:af:7e:52:af:c1:bf:b7:3a:32:e5:4c:a9:93: b1:56:d3:76:bf:88:56:e3:02:97:37:45:61:05:df: a5:73:6d:95:99:a7:bd:be:15:11:a5:e3:d7:09:e6: c5:5f:eb:ef:e8:a5:ef:11:df:42:a9:59:e6:ac:a8: eb:a4:0c:ef:a4:85:9f:57:53:c5:5a:55:c9:8a:a2: 59:3a:b2:32:b6:56:36:bd:ce:c7:52:43:29:48:30: d1:1f:4d:16:5f:ac:ce:75:3d:8c:15:0c:bd:13:1f: ea:9a:2a:18:93:ed:b7:b5:20:a6:ad:16:82:87:8f: e3:fe:5a:82:35:d0:f7:25:c6:fd:e1:ac:7f:86:bb: 3a:c2:41:b2:3b:2b:bd:34:cf:a8:20:e2:d6:6b:4d: 25:64:04:51:7e:25:db:28:fc:69:a8:2b:f0:fd:ac: b8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:15:2A:D8:3A:6F:B0:8F:3D:93:79:4E:49:59:3A:17:34:56:46:7B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/thUq2DpvsI89k3lOSVk6FzRWRns.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.105.78.0/23 Signature Algorithm: sha256WithRSAEncryption 14:70:b8:2b:d1:c5:37:85:f1:05:f2:6c:d8:d4:a4:10:a9:e3: 65:b6:8d:e9:04:72:1f:ca:9a:6e:ed:ea:30:93:51:2a:a5:7a: 9c:73:f4:3d:0c:14:dc:04:0e:51:bc:4c:4b:01:62:f1:86:fb: 77:11:94:db:f2:e1:57:1b:b3:14:17:f6:d7:aa:3a:9e:7f:39: 28:14:a4:87:49:4c:05:34:b0:4e:65:10:5a:a9:18:28:6f:15: 40:56:20:0c:8e:cb:68:53:ca:42:53:bc:a1:b6:00:60:47:a3: 24:4d:77:99:b1:94:38:14:75:f1:78:b0:e8:62:7f:40:f1:6f: a9:61:66:79:6d:8c:25:7d:f4:3d:73:45:56:e0:b4:2f:c1:d1: 64:46:28:94:fa:ad:cb:24:24:51:b2:84:a3:bb:74:e8:eb:c1: 5c:79:09:d4:da:9a:16:c0:ca:58:fb:e9:99:d3:ed:15:22:25: 54:27:36:81:ec:ea:06:1f:a9:ae:08:f8:2e:2a:c0:51:35:c4: ba:2e:a2:e1:85:d6:2d:b8:b1:97:cd:5e:7f:69:a2:3f:7d:42: ff:34:83:26:1c:be:e4:22:df:ca:52:73:68:38:7a:c0:8b:df: 0e:7a:6a:99:77:17:06:52:c3:b0:4b:c6:8d:c3:19:1d:71:1b: ca:a4:9c:a4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC4YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTM2NTRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEI2MTUyQUQ4M0E2RkIw OEYzRDkzNzk0RTQ5NTkzQTE3MzQ1NjQ2N0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCiO5gEA0ofFWmPECbjRetNHqydhpCk63qqKAMZ4UEyiTdd/JB YgA7ZjYBP6NhtxeNrXfL0YegF4/Bm77SzmVmINwh5p3qwuPTyvocTZZrAA1L5nCE DaHrRoJ0r35Sr8G/tzoy5Uypk7FW03a/iFbjApc3RWEF36VzbZWZp72+FRGl49cJ 5sVf6+/ope8R30KpWeasqOukDO+khZ9XU8VaVcmKolk6sjK2Vja9zsdSQylIMNEf TRZfrM51PYwVDL0TH+qaKhiT7be1IKatFoKHj+P+WoI10Pclxv3hrH+GuzrCQbI7 K700z6gg4tZrTSVkBFF+Jdso/GmoK/D9rLhDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUthUq2DpvsI89k3lOSVk6FzRWRnswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3RoVXEyRHB2c0k4OWszbE9TVms2RnpSV1Jucy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExaU4wDQYJKoZIhvcNAQELBQADggEBABRwuCvRxTeF8QXybNjUpBCp42W2 jekEch/Kmm7t6jCTUSqlepxz9D0MFNwEDlG8TEsBYvGG+3cRlNvy4VcbsxQX9teq Op5/OSgUpIdJTAU0sE5lEFqpGChvFUBWIAyOy2hTykJTvKG2AGBHoyRNd5mxlDgU dfF4sOhif0Dxb6lhZnltjCV99D1zRVbgtC/B0WRGKJT6rcskJFGyhKO7dOjrwVx5 CdTamhbAylj76ZnT7RUiJVQnNoHs6gYfqa4I+C4qwFE1xLououGF1i24sZfNXn9p oj99Qv80gyYcvuQi38pSc2g4esCL3w56apl3FwZSw7BLxo3DGR1xG8qknKQ= -----END CERTIFICATE-----Generated at Wed Nov 5 11:36:02 2025 by rpki-client