$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/yu3h5f0v8sCd-WG7FglQuGQScOM.roa File: yu3h5f0v8sCd-WG7FglQuGQScOM.roa (raw, json) Hash identifier: yd1MYhwWJBnX4l+AgVh08oApzTOAGDxduLKmT7KtGZ0= Subject key identifier: CA:ED:E1:E5:FD:2F:F2:C0:9D:F9:61:BB:16:09:50:B8:64:12:70:E3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DD0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yu3h5f0v8sCd-WG7FglQuGQScOM.roa Signing time: Tue 01 Apr 2025 02:27:21 +0000 ROA not before: Tue 01 Apr 2025 02:27:21 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.232.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:10:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3536 (0xdd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:27:21 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=CAEDE1E5FD2FF2C09DF961BB160950B8641270E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c0:6c:cb:d8:26:a5:1f:da:d3:41:d6:91:91: 20:40:88:29:97:f6:29:10:58:0c:3d:61:22:4f:67: c8:ec:bd:b4:7f:4d:89:ee:d2:3c:37:20:3b:53:74: 1f:78:6f:f3:a0:42:a7:42:0a:43:80:66:d9:6e:7b: e4:b6:26:b9:6e:d3:a3:60:75:44:44:95:68:c3:0b: 2a:20:34:be:2e:aa:9d:bc:b0:ec:00:c7:ae:0d:4d: ff:4e:e1:bc:22:79:3d:6d:5d:4d:b4:59:48:c2:70: 85:0d:16:e8:f3:4b:4b:a5:fb:ef:88:f0:44:f7:fa: 67:8b:73:bc:5d:a4:36:5d:a5:19:8f:a1:53:f2:8e: d5:00:21:54:48:0b:86:a1:8d:77:9f:da:3c:a4:9e: c4:34:2c:84:0c:55:58:ce:86:2a:83:1f:c0:3c:ec: 94:3c:2e:00:0c:0d:15:e4:1c:df:60:06:a3:1b:b7: 25:c7:09:85:4d:aa:68:6d:d6:2c:db:82:4a:31:bd: ed:27:61:26:95:25:83:c6:d6:bf:d0:3a:70:a7:56: b9:63:c0:d7:b8:65:43:9d:c6:68:a1:65:59:8d:16: e5:b0:34:db:e4:8a:22:9d:f3:e7:58:af:ae:ea:6e: 4a:aa:91:70:9b:52:e1:82:f0:37:7d:be:20:c3:d0: d1:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:ED:E1:E5:FD:2F:F2:C0:9D:F9:61:BB:16:09:50:B8:64:12:70:E3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yu3h5f0v8sCd-WG7FglQuGQScOM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.232.0/21 Signature Algorithm: sha256WithRSAEncryption 67:c7:76:81:04:5d:63:8e:4f:01:59:f8:e9:71:28:da:f9:08: 9f:26:3c:b9:e1:7f:97:1b:28:67:96:1f:c4:2b:c4:bd:c0:8a: be:1d:82:e9:e4:61:6a:69:fa:6d:b2:5d:09:c1:b8:c7:85:d1: b7:a6:81:3b:98:39:ca:f2:c1:5f:64:ac:b4:f6:c6:09:8f:fa: f7:c9:88:fd:0d:20:2b:15:32:8d:8d:35:bc:17:b0:d6:8a:15: 43:d9:cb:a7:f9:ac:3b:21:53:82:04:60:ea:45:2a:2a:20:c2: 95:fc:99:50:2b:f7:bc:18:57:78:f9:51:95:9b:01:a3:3f:ab: 93:10:68:7f:60:95:b2:ca:89:ea:e7:93:91:39:93:75:a0:f2: 47:32:1d:f7:01:e1:bf:2b:86:08:94:60:47:45:fe:4c:44:9a: fc:43:d6:b8:8e:7c:8e:23:db:72:63:63:fc:73:47:08:4f:71: 7e:83:7a:e1:71:59:d4:b4:bb:94:54:f3:3d:71:c0:00:0b:b3: 6d:86:2e:83:7b:99:0b:60:7e:41:b5:f6:70:26:8f:71:08:d9: e2:3d:85:1f:0a:12:82:a0:7e:2a:e6:8f:5d:48:35:04:fb:8e: 9c:41:e9:c1:bf:32:6e:2b:1a:93:69:44:86:5f:d0:22:02:15: c6:97:0b:0c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDdAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI3MjFaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKENBRURFMUU1RkQyRkYy QzA5REY5NjFCQjE2MDk1MEI4NjQxMjcwRTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjwGzL2CalH9rTQdaRkSBAiCmX9ikQWAw9YSJPZ8jsvbR/TYnu 0jw3IDtTdB94b/OgQqdCCkOAZtlue+S2Jrlu06NgdURElWjDCyogNL4uqp28sOwA x64NTf9O4bwieT1tXU20WUjCcIUNFujzS0ul+++I8ET3+meLc7xdpDZdpRmPoVPy jtUAIVRIC4ahjXef2jyknsQ0LIQMVVjOhiqDH8A87JQ8LgAMDRXkHN9gBqMbtyXH CYVNqmht1izbgkoxve0nYSaVJYPG1r/QOnCnVrljwNe4ZUOdxmihZVmNFuWwNNvk iiKd8+dYr67qbkqqkXCbUuGC8Dd9viDD0NGdAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUyu3h5f0v8sCd+WG7FglQuGQScOMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3l1M2g1ZjB2OHNDZC1XRzdGZ2xRdUdRU2NPTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMxYugwDQYJKoZIhvcNAQELBQADggEBAGfHdoEEXWOOTwFZ+OlxKNr5CJ8m PLnhf5cbKGeWH8QrxL3Air4dgunkYWpp+m2yXQnBuMeF0bemgTuYOcrywV9krLT2 xgmP+vfJiP0NICsVMo2NNbwXsNaKFUPZy6f5rDshU4IEYOpFKiogwpX8mVAr97wY V3j5UZWbAaM/q5MQaH9glbLKiernk5E5k3Wg8kcyHfcB4b8rhgiUYEdF/kxEmvxD 1riOfI4j23JjY/xzRwhPcX6DeuFxWdS0u5RU8z1xwAALs22GLoN7mQtgfkG19nAm j3EI2eI9hR8KEoKgfirmj11INQT7jpxB6cG/Mm4rGpNpRIZf0CICFcaXCww= -----END CERTIFICATE-----Generated at Wed Nov 5 07:51:31 2025 by rpki-client