$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/307/KRsYKLoTryYE8rk1yi_i0N9z7yQ.roa File: KRsYKLoTryYE8rk1yi_i0N9z7yQ.roa (raw, json) Hash identifier: GDF0RzwJq6AZyOSE8yqHozYCRBfrYr/DpDE3KywP3Po= Subject key identifier: 29:1B:18:28:BA:13:AF:26:04:F2:B9:35:CA:2F:E2:D0:DF:73:EF:24 Certificate issuer: /CN=6D1ED16D8C6D3BA40BF42CB3A29652ADAB76D061 Certificate serial: 47 Authority key identifier: 6D:1E:D1:6D:8C:6D:3B:A4:0B:F4:2C:B3:A2:96:52:AD:AB:76:D0:61 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/KRsYKLoTryYE8rk1yi_i0N9z7yQ.roa Signing time: Wed 01 Oct 2025 01:32:08 +0000 ROA not before: Wed 01 Oct 2025 01:32:08 +0000 ROA not after: Tue 15 Sep 2026 01:30:02 +0000 asID: 23783 IP address blocks: 61.11.176.0/20 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Oct 2025 20:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D1ED16D8C6D3BA40BF42CB3A29652ADAB76D061 Validity Not Before: Oct 1 01:32:08 2025 GMT Not After : Sep 15 01:30:02 2026 GMT Subject: CN=291B1828BA13AF2604F2B935CA2FE2D0DF73EF24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:d0:1e:10:39:a3:3f:3a:74:87:0b:ad:a0:6f: b6:a3:58:93:74:86:d0:c9:ee:fb:bb:80:e3:59:e8: e0:be:5c:c9:ca:1e:de:d1:17:ec:75:44:08:1b:52: 69:ab:c0:d1:44:33:e8:e7:8d:3c:da:0a:0d:29:4f: e1:ae:82:96:31:66:bc:5f:e8:76:c8:31:fa:9e:90: e5:e4:00:74:0a:cf:42:1c:d8:3b:92:26:3f:62:2f: a7:77:20:81:a5:f3:48:9c:07:26:ca:d5:7b:86:12: 91:57:28:a9:41:e2:0c:b9:3a:6f:c7:48:1c:e3:7b: 39:09:d3:24:1a:e5:1e:fa:79:3f:36:2d:df:c1:55: 63:83:9d:fd:ee:84:37:c5:b8:cd:6b:e7:c8:35:79: e7:ad:cd:a9:51:c1:3b:de:59:5e:e4:79:7a:c5:7c: d8:d7:7b:b8:0b:8a:f2:8e:1d:e1:76:1b:1a:27:29: 7a:01:bd:e6:f1:4b:3a:23:7f:c4:f5:5d:fe:1c:e2: e8:56:8c:91:5c:39:be:c8:50:8e:3e:cc:01:cd:65: 3f:b2:41:12:a0:72:82:89:22:d5:56:68:a3:72:f1: 40:32:74:07:5e:08:7a:fb:66:ee:3d:e3:5d:c4:78: 0b:b8:ed:8a:43:45:61:0c:c4:37:d5:fa:b9:8b:21: f9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:1B:18:28:BA:13:AF:26:04:F2:B9:35:CA:2F:E2:D0:DF:73:EF:24 X509v3 Authority Key Identifier: keyid:6D:1E:D1:6D:8C:6D:3B:A4:0B:F4:2C:B3:A2:96:52:AD:AB:76:D0:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/KRsYKLoTryYE8rk1yi_i0N9z7yQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.11.176.0/20 Signature Algorithm: sha256WithRSAEncryption 24:b2:86:b9:9d:ef:f9:f0:70:2f:95:bb:cc:d1:4d:81:d3:52: 31:f7:5d:eb:1a:51:d0:ce:d2:88:76:88:7e:05:d5:6c:da:54: 3a:48:1a:c3:42:c3:20:29:f3:29:ae:5a:c5:cf:12:47:fa:71: 5e:a3:f3:69:e0:2d:6b:1b:38:f2:20:06:45:a8:98:65:d3:01: 8c:dc:10:b1:5b:13:f3:67:c8:22:24:cc:a5:67:42:55:0c:ee: 81:02:2d:ff:98:e6:d7:25:dd:41:91:cc:bd:4d:7a:45:f9:3f: 37:fd:d7:42:c7:b4:6a:f6:70:a8:3a:3f:7e:df:e1:3d:d8:91: 9c:2b:54:8d:2b:10:87:c3:d9:c8:c4:37:a9:ec:c4:12:4c:c4: 4a:f0:4d:32:74:6b:8a:fe:65:bd:7f:f6:5b:ed:08:15:03:c0: c3:7a:0e:28:36:55:e9:b4:23:39:78:8d:3e:ee:5d:83:03:34: 99:25:52:00:84:58:0c:ba:f0:96:b0:b7:5b:a9:66:5f:96:a2: 1f:a8:b3:6b:75:ff:3f:b2:3f:aa:5b:6f:5e:6f:84:8f:fa:4b: 0f:58:ae:ca:36:dc:bd:75:52:92:48:39:9e:96:c6:94:dd:77: 4e:d3:54:68:79:eb:73:b3:75:22:21:19:22:51:8e:7f:4b:78: dd:18:4f:49 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBRzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2RDFF RDE2RDhDNkQzQkE0MEJGNDJDQjNBMjk2NTJBREFCNzZEMDYxMB4XDTI1MTAwMTAx MzIwOFoXDTI2MDkxNTAxMzAwMlowMzExMC8GA1UEAxMoMjkxQjE4MjhCQTEzQUYy NjA0RjJCOTM1Q0EyRkUyRDBERjczRUYyNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOPQHhA5oz86dIcLraBvtqNYk3SG0Mnu+7uA41no4L5cycoe3tEX 7HVECBtSaavA0UQz6OeNPNoKDSlP4a6CljFmvF/odsgx+p6Q5eQAdArPQhzYO5Im P2Ivp3cggaXzSJwHJsrVe4YSkVcoqUHiDLk6b8dIHON7OQnTJBrlHvp5PzYt38FV Y4Od/e6EN8W4zWvnyDV5563NqVHBO95ZXuR5esV82Nd7uAuK8o4d4XYbGicpegG9 5vFLOiN/xPVd/hzi6FaMkVw5vshQjj7MAc1lP7JBEqBygoki1VZoo3LxQDJ0B14I evtm7j3jXcR4C7jtikNFYQzEN9X6uYsh+TMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQpGxgouhOvJgTyuTXKL+LQ33PvJDAfBgNVHSMEGDAWgBRtHtFtjG07pAv0LLOi llKtq3bQYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA3L2JSN1JiWXh0TzZRTDlDeXpvcFpTcmF0MjBHRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2JSN1JiWXh0TzZRTDlDeXpvcFpTcmF0 MjBHRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDcvS1JzWUtMb1RyeVlFOHJrMXlpX2kwTjl6N3lRLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBD0LsDANBgkqhkiG9w0BAQsFAAOCAQEAJLKGuZ3v+fBwL5W7zNFNgdNSMfdd 6xpR0M7SiHaIfgXVbNpUOkgaw0LDICnzKa5axc8SR/pxXqPzaeAtaxs48iAGRaiY ZdMBjNwQsVsT82fIIiTMpWdCVQzugQIt/5jm1yXdQZHMvU16Rfk/N/3XQse0avZw qDo/ft/hPdiRnCtUjSsQh8PZyMQ3qezEEkzESvBNMnRriv5lvX/2W+0IFQPAw3oO KDZV6bQjOXiNPu5dgwM0mSVSAIRYDLrwlrC3W6lmX5aiH6iza3X/P7I/qltvXm+E j/pLD1iuyjbcvXVSkkg5npbGlN13TtNUaHnrc7N1IiEZIlGOf0t43RhPSQ== -----END CERTIFICATE-----Generated at Wed Oct 8 21:29:31 2025 by rpki-client