$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/3HxDkdBY42h54lrlH0JXRBqFh34.roa File: 3HxDkdBY42h54lrlH0JXRBqFh34.roa (raw, json) Hash identifier: 6jP3mpdcMAbmxYGk2QerP1rSFLzSse6To+E7jljCEhI= Subject key identifier: DC:7C:43:91:D0:58:E3:68:79:E2:5A:E5:1F:42:57:44:1A:85:87:7E Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 014A Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/3HxDkdBY42h54lrlH0JXRBqFh34.roa Signing time: Fri 01 Aug 2025 01:34:03 +0000 ROA not before: Fri 01 Aug 2025 01:34:03 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 10021 IP address blocks: 27.110.60.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Aug 1 01:34:03 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=DC7C4391D058E36879E25AE51F4257441A85877E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ce:9b:61:c5:6f:d4:08:db:1a:1e:6d:89:da: e5:3e:f4:5e:72:4c:0f:46:6e:58:3d:e8:5b:74:c6: ec:fe:27:63:e8:a4:cc:b3:58:ad:22:82:47:f3:65: 84:1a:f7:43:1d:cd:e2:86:56:17:b5:7a:a8:b8:7f: d2:17:5b:3b:bf:ae:37:09:fb:7f:0d:7e:b7:56:19: 45:d0:25:ee:4b:09:15:80:4e:27:5d:87:b9:d6:19: 70:16:fb:79:11:b3:67:c4:6c:e9:17:c4:bd:30:43: 9f:a5:62:81:ea:88:12:61:fd:68:68:3f:36:53:57: 75:ab:4b:a0:c0:53:a4:ac:12:87:aa:f7:61:4b:b3: 02:77:ba:54:9d:4b:fe:5c:db:b7:0d:80:13:76:d0: fa:32:fb:a7:d0:33:1f:fb:a3:db:15:5b:b7:05:31: 8b:b0:91:46:de:bb:bd:ea:61:38:3c:86:09:ea:a1: 22:94:d0:12:1f:74:8c:f5:b7:dd:0f:f2:b8:f2:a7: 7f:56:d2:5a:b6:f9:4d:66:d2:c0:d3:ab:93:67:2f: 76:1c:df:6c:e3:cd:b2:58:aa:77:f8:b6:63:ba:9d: 17:a8:0a:25:ba:fc:23:2f:71:96:96:23:c7:52:32: af:60:86:68:e3:8c:0d:08:9f:d7:42:1f:d6:6a:3a: 3c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:7C:43:91:D0:58:E3:68:79:E2:5A:E5:1F:42:57:44:1A:85:87:7E X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/3HxDkdBY42h54lrlH0JXRBqFh34.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.110.60.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:1c:c2:f2:9f:0f:bd:6a:9c:c0:88:46:a9:c5:47:cd:4f:57: f6:03:0f:84:f8:05:fc:d9:1c:78:71:b8:1b:c6:3e:70:65:34: cc:5e:76:5d:71:de:f6:5c:51:c0:e7:7f:5c:07:9b:a3:2b:26: a5:b2:c2:ad:b9:8f:df:4c:c9:93:07:c5:bc:44:c1:cc:1a:7a: 3e:2b:e0:63:bd:df:de:6c:75:fe:29:54:bb:47:07:9c:b7:60: 3b:89:83:bf:e7:b0:dd:15:84:b0:43:51:97:70:72:a9:8b:43: 98:b2:27:61:3e:b7:d8:79:a3:d9:90:89:8c:b5:c7:3f:5f:87: c9:78:bc:f4:c2:7a:04:f0:c3:c4:d1:bb:f9:eb:d8:48:62:e8: 49:a0:cf:93:cf:fa:3f:bb:37:60:17:9c:ff:4e:cd:5f:ab:0e: 82:2e:6d:62:00:3f:ad:91:01:f4:b6:e9:02:d8:4d:44:8c:a3: 31:1f:b3:a4:6f:ff:e1:ae:65:aa:5b:54:b2:3a:8a:c9:18:86: 51:b6:57:75:a0:78:dd:7b:4c:7a:8a:95:25:02:5a:d1:24:07: f4:ae:c6:50:d6:6c:19:81:67:6e:ad:fb:e7:83:fb:c1:e3:7e: 14:db:e4:ea:3a:cf:f0:67:62:6c:61:3c:26:6f:b9:59:e5:69: d6:c2:b5:73 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAUowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNTA4MDEw MTM0MDNaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKERDN0M0MzkxRDA1OEUz Njg3OUUyNUFFNTFGNDI1NzQ0MUE4NTg3N0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYzpthxW/UCNsaHm2J2uU+9F5yTA9Gblg96Ft0xuz+J2PopMyz WK0igkfzZYQa90MdzeKGVhe1eqi4f9IXWzu/rjcJ+38NfrdWGUXQJe5LCRWATidd h7nWGXAW+3kRs2fEbOkXxL0wQ5+lYoHqiBJh/WhoPzZTV3WrS6DAU6SsEoeq92FL swJ3ulSdS/5c27cNgBN20Poy+6fQMx/7o9sVW7cFMYuwkUbeu73qYTg8hgnqoSKU 0BIfdIz1t90P8rjyp39W0lq2+U1m0sDTq5NnL3Yc32zjzbJYqnf4tmO6nReoCiW6 /CMvcZaWI8dSMq9ghmjjjA0In9dCH9ZqOjyHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3HxDkdBY42h54lrlH0JXRBqFh34wHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5LzNIeERrZEJZNDJoNTRscmxIMEpYUkJxRmgzNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEbbjwwDQYJKoZIhvcNAQELBQADggEBAAwcwvKfD71qnMCIRqnFR81PV/YD D4T4BfzZHHhxuBvGPnBlNMxedl1x3vZcUcDnf1wHm6MrJqWywq25j99MyZMHxbxE wcwaej4r4GO9395sdf4pVLtHB5y3YDuJg7/nsN0VhLBDUZdwcqmLQ5iyJ2E+t9h5 o9mQiYy1xz9fh8l4vPTCegTww8TRu/nr2Ehi6Emgz5PP+j+7N2AXnP9OzV+rDoIu bWIAP62RAfS26QLYTUSMozEfs6Rv/+GuZapbVLI6iskYhlG2V3WgeN17THqKlSUC WtEkB/SuxlDWbBmBZ26t++eD+8HjfhTb5Oo6z/BnYmxhPCZvuVnladbCtXM= -----END CERTIFICATE-----Generated at Mon Aug 11 07:43:59 2025 by rpki-client