$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/utkAV3CqWVKNeegc1jbG9aqOPWo.roa File: utkAV3CqWVKNeegc1jbG9aqOPWo.roa (raw, json) Hash identifier: ZUNnLpgmwfa6Vi5b3AUhSiVg/T+CTxUaRiTgSUQKRdc= Subject key identifier: BA:D9:00:57:70:AA:59:52:8D:79:E8:1C:D6:36:C6:F5:AA:8E:3D:6A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F2E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/utkAV3CqWVKNeegc1jbG9aqOPWo.roa Signing time: Tue 10 Jun 2025 11:24:31 +0000 ROA not before: Tue 10 Jun 2025 11:24:31 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 49.110.126.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:11:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3886 (0xf2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:24:31 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=BAD9005770AA59528D79E81CD636C6F5AA8E3D6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c4:ab:6d:62:d2:1a:84:fc:12:39:8d:22:ad: ef:08:d6:5d:fc:aa:f8:74:b5:e0:05:fb:67:09:79: ef:ac:d5:ba:14:e6:c0:36:1a:01:be:c0:3e:60:cc: db:b8:59:1a:72:04:75:65:c6:89:6f:f9:64:59:db: 2f:1f:b8:96:a4:65:0c:1d:0d:f6:9d:5f:3d:d0:a1: 57:65:c2:13:48:a8:5f:67:5e:15:cc:13:89:36:f3: 14:be:cf:84:a8:02:4c:ff:49:a3:4d:a9:c7:a6:a2: 66:87:6c:f0:a2:53:92:6b:fc:25:a3:96:74:b5:88: d7:70:2e:e5:ab:d0:c1:74:b0:f2:ab:ab:d2:70:5a: 38:a4:cd:93:10:d9:eb:1c:a7:5c:b0:01:f5:75:fb: 38:61:97:38:f9:3e:4e:5d:14:92:e7:43:2b:9b:6a: 52:85:da:4a:43:4b:43:5a:1a:e1:1f:78:a0:a5:c4: 72:27:61:20:63:05:c9:c5:5e:57:c2:29:8a:b1:5f: a9:68:ee:17:b9:62:47:0d:10:97:1c:39:ac:65:d2: ee:5c:88:b0:45:93:4a:42:a2:5c:b7:47:de:63:80: 04:a8:4e:41:b0:ec:90:59:1a:b9:4e:49:e2:25:0c: ab:8d:7f:d8:5b:d0:68:12:66:86:c9:9d:cc:d3:44: f4:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:D9:00:57:70:AA:59:52:8D:79:E8:1C:D6:36:C6:F5:AA:8E:3D:6A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/utkAV3CqWVKNeegc1jbG9aqOPWo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.110.126.0/23 Signature Algorithm: sha256WithRSAEncryption df:55:2e:79:c2:66:3f:6a:73:08:dd:8d:e8:b0:ca:89:60:8b: 63:43:8e:c2:b6:7a:38:49:0e:b4:ce:41:df:50:27:65:2e:d0: e4:2f:db:1a:c8:d0:c3:cc:04:7b:61:7e:99:3b:02:a6:b7:92: 1a:4c:3c:ea:d4:11:9f:a5:4a:61:b4:39:97:06:42:d1:75:16: 44:a9:ff:89:34:b9:38:66:14:ec:68:8b:61:9a:68:d1:17:66: a6:17:88:79:61:76:cb:b9:4e:dd:be:1d:91:c2:29:9e:78:ad: 72:e5:b0:d5:f3:3f:05:3c:32:06:0f:d1:ea:a9:7d:a6:6a:4f: 15:63:04:b3:c0:1a:af:5a:e1:d1:0d:0c:cf:e6:1b:be:ca:2c: d1:6b:b0:77:e8:28:df:53:c1:fb:25:7c:fe:ee:23:26:b3:43: e4:35:5e:61:77:ab:7d:f3:db:31:9b:47:8f:d7:8c:1a:dc:82: 2d:89:a0:18:fb:ca:e5:27:2e:b4:ce:7a:72:e7:3c:36:79:cc: 83:74:7d:24:ba:36:22:8d:8c:d8:22:1b:25:7b:95:b1:9f:63: ed:f4:13:94:7b:a4:41:7d:f0:fe:3c:2a:9b:9a:b7:72:5f:79: 97:d2:0d:d9:30:1b:d0:ff:26:5c:b5:72:1c:bd:aa:c9:c4:ce: 09:00:95:57 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDy4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTI0MzFaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEJBRDkwMDU3NzBBQTU5 NTI4RDc5RTgxQ0Q2MzZDNkY1QUE4RTNENkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3xKttYtIahPwSOY0ire8I1l38qvh0teAF+2cJee+s1boU5sA2 GgG+wD5gzNu4WRpyBHVlxolv+WRZ2y8fuJakZQwdDfadXz3QoVdlwhNIqF9nXhXM E4k28xS+z4SoAkz/SaNNqcemomaHbPCiU5Jr/CWjlnS1iNdwLuWr0MF0sPKrq9Jw WjikzZMQ2escp1ywAfV1+zhhlzj5Pk5dFJLnQyubalKF2kpDS0NaGuEfeKClxHIn YSBjBcnFXlfCKYqxX6lo7he5YkcNEJccOaxl0u5ciLBFk0pColy3R95jgASoTkGw 7JBZGrlOSeIlDKuNf9hb0GgSZobJnczTRPRVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUutkAV3CqWVKNeegc1jbG9aqOPWowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3V0a0FWM0NxV1ZLTmVlZ2MxamJHOWFxT1BXby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExbn4wDQYJKoZIhvcNAQELBQADggEBAN9VLnnCZj9qcwjdjeiwyolgi2ND jsK2ejhJDrTOQd9QJ2Uu0OQv2xrI0MPMBHthfpk7Aqa3khpMPOrUEZ+lSmG0OZcG QtF1FkSp/4k0uThmFOxoi2GaaNEXZqYXiHlhdsu5Tt2+HZHCKZ54rXLlsNXzPwU8 MgYP0eqpfaZqTxVjBLPAGq9a4dENDM/mG77KLNFrsHfoKN9TwfslfP7uIyazQ+Q1 XmF3q33z2zGbR4/XjBrcgi2JoBj7yuUnLrTOenLnPDZ5zIN0fSS6NiKNjNgiGyV7 lbGfY+30E5R7pEF98P48Kpuat3JfeZfSDdkwG9D/Jly1chy9qsnEzgkAlVc= -----END CERTIFICATE-----Generated at Wed Nov 5 11:47:14 2025 by rpki-client