$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/yVQqXsKm-2abu8YM_2RITS3ZUKg.roa File: yVQqXsKm-2abu8YM_2RITS3ZUKg.roa (raw, json) Hash identifier: KO3wVJ+qdzLAcQrD+0Ohk89Hi8/Mn25agU0FkaEHN8Q= Subject key identifier: C9:54:2A:5E:C2:A6:FB:66:9B:BB:C6:0C:FF:64:48:4D:2D:D9:50:A8 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BC8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yVQqXsKm-2abu8YM_2RITS3ZUKg.roa Signing time: Tue 01 Apr 2025 01:43:48 +0000 ROA not before: Tue 01 Apr 2025 01:43:48 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.105.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 12:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3016 (0xbc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:43:48 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=C9542A5EC2A6FB669BBBC60CFF64484D2DD950A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:33:3e:15:b8:6b:9c:c9:c5:4b:0d:56:92:62: 1c:b4:cb:b7:5e:58:6a:67:8b:75:a0:9a:6a:5a:76: 45:c6:34:ae:81:c4:e0:71:9c:04:3c:40:90:50:70: 24:e5:86:58:03:e6:00:73:8c:95:98:09:d7:f5:f2: 46:95:b0:e0:18:55:ed:99:9e:a1:f5:c2:1f:67:ed: df:2b:07:5d:26:7a:65:39:98:69:74:1e:3d:ef:72: 15:e9:4d:75:63:93:67:2e:be:b1:b2:cf:03:47:ab: 4e:90:7c:4b:df:bf:26:07:ae:ce:5a:36:03:3f:5d: 1e:a0:28:a7:67:fe:b8:6c:ee:25:24:5e:7c:34:20: 8f:47:cf:40:2b:71:48:ad:34:d2:9e:06:01:72:8a: a9:80:f3:54:b4:2a:c7:36:db:14:8d:6f:a2:33:d5: 59:94:05:40:80:f1:3f:d0:55:79:98:36:c9:01:0d: dc:1e:58:45:c9:4d:15:c0:11:20:ab:9a:1f:4d:38: bd:f7:dd:5c:3a:50:f3:30:cd:ab:8a:51:03:7c:65: 95:a7:6f:1c:fa:28:ca:40:1f:97:4b:5b:c1:7a:84: ba:1b:0e:b0:b2:b6:07:96:d2:2d:d1:21:d9:a6:14: 0f:27:58:af:71:e2:31:f6:5e:4a:c2:5e:7c:1a:e5: b0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:54:2A:5E:C2:A6:FB:66:9B:BB:C6:0C:FF:64:48:4D:2D:D9:50:A8 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yVQqXsKm-2abu8YM_2RITS3ZUKg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.105.64.0/21 Signature Algorithm: sha256WithRSAEncryption 4b:07:1f:2b:79:c6:5b:b0:d9:c0:c9:b3:40:88:ef:71:8c:67: 65:3c:8e:29:91:23:7f:2f:c8:cf:cb:6f:fe:4b:1e:87:2d:42: 2b:8a:a4:5b:d1:0d:d6:c7:6e:82:78:53:99:15:8f:74:40:71: 73:1e:8c:f5:05:25:97:f4:37:35:61:e0:59:be:fb:2a:c4:8a: 27:1b:87:1a:cd:bf:6f:a8:ad:01:0e:09:9b:31:c9:15:e8:6c: 16:64:56:26:5a:c9:7a:8a:a5:01:d7:12:8e:b2:ae:92:92:de: 6c:c9:3b:f4:3e:93:f3:f1:33:00:4a:09:9b:d8:4a:94:12:cd: 72:5e:f1:d0:19:06:34:b9:02:cd:3d:e9:ad:12:67:58:8d:58: f7:81:f6:17:38:5a:46:f7:b7:53:0a:fa:a5:55:ae:77:13:2b: f3:04:77:46:ac:82:a3:90:bf:54:e5:6d:c2:b8:40:c5:19:9d: 5f:c5:f3:df:1e:ee:70:22:9f:e4:a3:ce:df:b8:d9:61:34:65: 65:75:35:77:fa:70:e0:c1:b5:4d:d7:f9:2c:e6:da:7d:ab:4a: dd:ef:24:ea:b4:8a:cb:c8:99:5b:3d:c7:76:1c:c1:1e:aa:b8: 09:a1:29:d4:aa:5e:2d:35:af:bc:40:74:60:cd:fd:f3:17:30: fc:b4:6d:bd -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC8gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQzNDhaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEM5NTQyQTVFQzJBNkZC NjY5QkJCQzYwQ0ZGNjQ0ODREMkREOTUwQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCMz4VuGucycVLDVaSYhy0y7deWGpni3WgmmpadkXGNK6BxOBx nAQ8QJBQcCTlhlgD5gBzjJWYCdf18kaVsOAYVe2ZnqH1wh9n7d8rB10memU5mGl0 Hj3vchXpTXVjk2cuvrGyzwNHq06QfEvfvyYHrs5aNgM/XR6gKKdn/rhs7iUkXnw0 II9Hz0ArcUitNNKeBgFyiqmA81S0Ksc22xSNb6Iz1VmUBUCA8T/QVXmYNskBDdwe WEXJTRXAESCrmh9NOL333Vw6UPMwzauKUQN8ZZWnbxz6KMpAH5dLW8F6hLobDrCy tgeW0i3RIdmmFA8nWK9x4jH2XkrCXnwa5bDVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUyVQqXsKm+2abu8YM/2RITS3ZUKgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3lWUXFYc0ttLTJhYnU4WU1fMlJJVFMzWlVLZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMxaUAwDQYJKoZIhvcNAQELBQADggEBAEsHHyt5xluw2cDJs0CI73GMZ2U8 jimRI38vyM/Lb/5LHoctQiuKpFvRDdbHboJ4U5kVj3RAcXMejPUFJZf0NzVh4Fm+ +yrEiicbhxrNv2+orQEOCZsxyRXobBZkViZayXqKpQHXEo6yrpKS3mzJO/Q+k/Px MwBKCZvYSpQSzXJe8dAZBjS5As096a0SZ1iNWPeB9hc4Wkb3t1MK+qVVrncTK/ME d0asgqOQv1TlbcK4QMUZnV/F898e7nAin+Sjzt+42WE0ZWV1NXf6cODBtU3X+Szm 2n2rSt3vJOq0isvImVs9x3YcwR6quAmhKdSqXi01r7xAdGDN/fMXMPy0bb0= -----END CERTIFICATE-----Generated at Wed Nov 5 13:52:45 2025 by rpki-client