$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/KiouDyUgB5CF9D_-QaYhdlDtWgk.roa File: KiouDyUgB5CF9D_-QaYhdlDtWgk.roa (raw, json) Hash identifier: Fw5W1WQMNga6TohTpBtCb0FMtirxF1sHQNXRirkj/wk= Subject key identifier: 2A:2A:2E:0F:25:20:07:90:85:F4:3F:FE:41:A6:21:76:50:ED:5A:09 Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 0146 Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/KiouDyUgB5CF9D_-QaYhdlDtWgk.roa Signing time: Fri 01 Aug 2025 01:34:01 +0000 ROA not before: Fri 01 Aug 2025 01:34:01 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 8220 IP address blocks: 27.110.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Aug 1 01:34:01 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=2A2A2E0F2520079085F43FFE41A6217650ED5A09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9c:4a:cd:75:6c:68:ab:52:be:a1:74:cd:ff: ce:8e:38:36:21:13:90:51:14:da:00:a6:60:05:9d: 2b:8e:e8:a3:46:21:d2:17:e9:d2:6b:ba:b0:77:d2: ad:c9:35:12:ae:9e:9b:c3:a9:d1:2c:ca:5c:81:39: 73:33:57:0f:25:51:07:2d:8b:7c:23:ad:6a:eb:6e: 44:89:28:c0:91:ae:a3:33:83:da:6a:cc:df:25:e9: 4a:af:bc:50:37:59:9b:1e:d6:cd:28:d7:26:b4:a0: 03:61:ad:76:a1:64:9c:e4:23:09:5f:94:4a:fc:9a: 29:60:f2:55:91:0a:7a:5e:8d:5d:43:ef:2d:ee:f9: 92:11:cc:4f:0e:2e:fc:1f:cc:6f:94:18:37:99:5f: 50:df:de:56:7e:99:d5:59:00:d4:ba:2d:46:2c:a8: 43:09:8b:de:3f:01:e8:cc:fb:b8:de:a0:e3:50:6e: 41:69:53:b3:1d:f9:0d:04:b1:47:17:a0:be:7f:fe: 1d:be:3b:90:6c:77:e2:11:80:e9:36:33:0b:f4:48: 1a:8c:4f:69:22:58:4e:1b:50:28:de:80:65:df:3a: 9a:8c:8a:d3:64:7c:3a:1e:14:d8:31:cc:9b:ec:89: a5:ac:94:b9:94:64:f2:96:43:00:63:a5:6d:bc:6f: fd:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:2A:2E:0F:25:20:07:90:85:F4:3F:FE:41:A6:21:76:50:ED:5A:09 X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/KiouDyUgB5CF9D_-QaYhdlDtWgk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.110.20.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:49:6e:d2:e1:0c:a3:2d:be:65:16:1a:2b:58:eb:a2:cb:82: b9:ee:c2:59:71:7f:18:09:58:3a:53:68:55:a5:69:07:39:78: 59:84:b6:0d:1b:cc:c5:bb:3d:ee:0b:9a:bf:7f:44:37:7c:ca: fb:95:0a:73:81:9e:d8:0a:87:8d:e8:85:7b:bb:8c:54:52:78: d3:05:91:63:47:f9:20:76:25:2f:01:0f:e8:58:18:05:47:bd: 50:bf:70:be:12:da:22:c5:0c:16:69:85:30:7b:c3:4b:a4:39: 19:a1:d6:47:02:b0:e8:ef:2f:c6:5c:0f:11:1b:5d:2e:d8:4f: 67:ce:db:db:68:b7:d2:b8:28:bc:e3:4f:89:0c:9c:cf:37:16: 60:30:06:58:df:89:32:c2:41:a5:2f:27:06:fc:e4:58:7b:84: 35:d3:d4:45:a0:45:c9:41:24:3c:e8:d4:2f:d8:cf:8d:0b:4b: e4:43:86:8c:96:f3:bf:1b:55:bf:18:4c:82:6a:88:ae:90:8d: dc:4a:46:bf:ff:d6:91:02:9a:70:be:ed:db:88:17:7f:d4:dc: 48:6e:40:5b:3c:ac:69:57:d2:4a:61:86:65:56:16:5e:27:56: 44:33:0d:32:3c:47:d4:f1:b9:7c:c9:fa:93:d1:2f:8b:11:c4: 51:76:40:bf -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNTA4MDEw MTM0MDFaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDJBMkEyRTBGMjUyMDA3 OTA4NUY0M0ZGRTQxQTYyMTc2NTBFRDVBMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3nErNdWxoq1K+oXTN/86OODYhE5BRFNoApmAFnSuO6KNGIdIX 6dJrurB30q3JNRKunpvDqdEsylyBOXMzVw8lUQcti3wjrWrrbkSJKMCRrqMzg9pq zN8l6UqvvFA3WZse1s0o1ya0oANhrXahZJzkIwlflEr8milg8lWRCnpejV1D7y3u +ZIRzE8OLvwfzG+UGDeZX1Df3lZ+mdVZANS6LUYsqEMJi94/AejM+7jeoONQbkFp U7Md+Q0EsUcXoL5//h2+O5Bsd+IRgOk2Mwv0SBqMT2kiWE4bUCjegGXfOpqMitNk fDoeFNgxzJvsiaWslLmUZPKWQwBjpW28b/1VAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKiouDyUgB5CF9D/+QaYhdlDtWgkwHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5L0tpb3VEeVVnQjVDRjlEXy1RYVloZGxEdFdnay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIbbhQwDQYJKoZIhvcNAQELBQADggEBABpJbtLhDKMtvmUWGitY66LLgrnu wllxfxgJWDpTaFWlaQc5eFmEtg0bzMW7Pe4Lmr9/RDd8yvuVCnOBntgKh43ohXu7 jFRSeNMFkWNH+SB2JS8BD+hYGAVHvVC/cL4S2iLFDBZphTB7w0ukORmh1kcCsOjv L8ZcDxEbXS7YT2fO29tot9K4KLzjT4kMnM83FmAwBljfiTLCQaUvJwb85Fh7hDXT 1EWgRclBJDzo1C/Yz40LS+RDhoyW878bVb8YTIJqiK6QjdxKRr//1pECmnC+7duI F3/U3EhuQFs8rGlX0kphhmVWFl4nVkQzDTI8R9TxuXzJ+pPRL4sRxFF2QL8= -----END CERTIFICATE-----Generated at Sun Aug 10 18:55:55 2025 by rpki-client