$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/xptBZ5i0UkRwPtNvEEHIAQZM5Fw.roa File: xptBZ5i0UkRwPtNvEEHIAQZM5Fw.roa (raw, json) Hash identifier: vjzMmNLu2e382fa3w5LkJhEN21EAXaTKFIA/MRrTTeI= Subject key identifier: C6:9B:41:67:98:B4:52:44:70:3E:D3:6F:10:41:C8:01:06:4C:E4:5C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F3A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xptBZ5i0UkRwPtNvEEHIAQZM5Fw.roa Signing time: Tue 10 Jun 2025 11:24:38 +0000 ROA not before: Tue 10 Jun 2025 11:24:38 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 49.105.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 12:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3898 (0xf3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:24:38 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=C69B416798B45244703ED36F1041C801064CE45C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:47:d6:f5:8d:e7:65:fb:82:16:a5:25:e5:9f: d6:a4:f5:99:83:2e:c4:9d:c6:c1:f6:71:d2:a9:be: 28:25:e0:a4:23:9e:80:e2:ee:c1:2d:7f:3c:90:6f: d2:0d:b1:4f:34:ef:ad:5c:95:1d:ee:4e:69:e6:cc: b2:1e:66:af:ce:cc:57:a4:c9:6e:00:27:09:94:10: 58:fb:40:ba:e8:21:ae:7a:3d:7e:95:d2:b3:05:b2: 67:3f:0e:c7:c4:6f:72:3f:cd:fe:25:a1:31:e0:7e: 99:f9:ca:f9:84:28:3f:f2:c6:8b:8b:49:b6:8e:94: e5:4a:bb:51:6c:37:2b:bd:cd:31:76:4f:47:54:53: 46:d1:a1:18:3e:24:20:94:45:95:ff:23:50:c4:01: a0:10:1d:95:df:81:8a:3a:49:8e:1f:af:54:e5:45: d2:80:85:22:ce:e9:94:b7:74:31:be:9b:54:21:a6: b2:03:30:bd:91:9e:ea:f7:08:75:49:1d:47:3a:14: 42:fd:88:30:b5:da:6e:80:19:1d:5e:3d:1b:6e:92: bb:a0:98:2b:a7:70:41:9b:2b:40:88:69:02:ff:e6: 1c:52:b8:f6:6d:61:96:5e:dd:26:a1:d1:dc:b5:cd: 64:a6:fb:1a:1a:c4:c2:67:f1:ae:d4:6f:30:ce:42: 85:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:9B:41:67:98:B4:52:44:70:3E:D3:6F:10:41:C8:01:06:4C:E4:5C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xptBZ5i0UkRwPtNvEEHIAQZM5Fw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.105.114.0/24 Signature Algorithm: sha256WithRSAEncryption d5:ea:53:f2:49:02:7f:38:c2:05:28:ae:1b:5d:42:b9:ca:9c: 4b:0c:60:3c:9f:fa:63:55:61:56:97:14:d3:4a:80:8f:88:39: ab:71:f3:14:1f:bd:33:4e:d7:3a:1c:3e:96:8d:e8:c7:a4:8b: db:18:95:75:e0:08:65:5d:8d:cd:98:48:b1:50:48:ac:fa:43: 5d:b8:f7:5f:4f:2d:c8:f4:a3:91:b6:40:a1:1f:89:da:d2:08: 7d:09:5a:0d:e4:48:c6:6c:fb:fb:77:b5:a0:e3:05:4d:c2:ec: 36:34:3f:db:98:05:a7:4b:a4:70:af:b7:24:7d:b6:c9:31:a6: 60:81:8d:2f:86:e8:92:08:ea:f4:0f:61:f0:ca:38:84:a2:1c: 08:c1:97:b8:1f:96:1b:ac:46:fe:b5:b2:6a:80:41:29:05:fd: 23:c3:a3:b3:e9:57:d0:fd:47:75:08:af:be:db:78:fa:16:59: 32:1b:88:29:35:a6:fd:19:42:7f:e7:83:21:4e:5c:3a:ab:7d: 3b:35:a5:71:ac:9e:b2:d7:c4:ed:e8:59:3b:81:1a:f1:8b:ef: 0d:3e:e2:28:39:e7:ef:78:33:98:a8:73:46:ab:fc:03:6c:3c: 1e:32:c9:0a:c4:72:0a:ff:8d:64:62:73:c8:8e:45:00:71:18: 02:86:93:ce -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDzowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTI0MzhaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEM2OUI0MTY3OThCNDUy NDQ3MDNFRDM2RjEwNDFDODAxMDY0Q0U0NUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKR9b1jedl+4IWpSXln9ak9ZmDLsSdxsH2cdKpvigl4KQjnoDi 7sEtfzyQb9INsU80761clR3uTmnmzLIeZq/OzFekyW4AJwmUEFj7QLroIa56PX6V 0rMFsmc/DsfEb3I/zf4loTHgfpn5yvmEKD/yxouLSbaOlOVKu1FsNyu9zTF2T0dU U0bRoRg+JCCURZX/I1DEAaAQHZXfgYo6SY4fr1TlRdKAhSLO6ZS3dDG+m1QhprID ML2Rnur3CHVJHUc6FEL9iDC12m6AGR1ePRtukrugmCuncEGbK0CIaQL/5hxSuPZt YZZe3Sah0dy1zWSm+xoaxMJn8a7UbzDOQoXbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUxptBZ5i0UkRwPtNvEEHIAQZM5FwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3hwdEJaNWkwVWtSd1B0TnZFRUhJQVFaTTVGdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxaXIwDQYJKoZIhvcNAQELBQADggEBANXqU/JJAn84wgUorhtdQrnKnEsM YDyf+mNVYVaXFNNKgI+IOatx8xQfvTNO1zocPpaN6Meki9sYlXXgCGVdjc2YSLFQ SKz6Q124919PLcj0o5G2QKEfidrSCH0JWg3kSMZs+/t3taDjBU3C7DY0P9uYBadL pHCvtyR9tskxpmCBjS+G6JII6vQPYfDKOISiHAjBl7gflhusRv61smqAQSkF/SPD o7PpV9D9R3UIr77bePoWWTIbiCk1pv0ZQn/ngyFOXDqrfTs1pXGsnrLXxO3oWTuB GvGL7w0+4ig55+94M5ioc0ar/ANsPB4yyQrEcgr/jWRic8iORQBxGAKGk84= -----END CERTIFICATE-----Generated at Wed Nov 5 13:52:52 2025 by rpki-client