$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Bcqox_zsT2pWwHOquivtqATMeZw.roa File: Bcqox_zsT2pWwHOquivtqATMeZw.roa (raw, json) Hash identifier: OhGmYMW8vCXB/WwGtWzkpVTbHZv1iBeLS05c8DqYzmM= Subject key identifier: 05:CA:A8:C7:FC:EC:4F:6A:56:C0:73:AA:BA:2B:ED:A8:04:CC:79:9C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0FD3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Bcqox_zsT2pWwHOquivtqATMeZw.roa Signing time: Wed 03 Sep 2025 08:54:28 +0000 ROA not before: Wed 03 Sep 2025 08:54:28 +0000 ROA not after: Sat 15 Aug 2026 01:30:02 +0000 asID: 9605 IP address blocks: 49.97.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 03:18:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4051 (0xfd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Sep 3 08:54:28 2025 GMT Not After : Aug 15 01:30:02 2026 GMT Subject: CN=05CAA8C7FCEC4F6A56C073AABA2BEDA804CC799C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d8:58:47:e2:36:04:95:74:55:b6:40:7a:c3: bb:3b:fe:05:60:36:1d:f4:ee:cf:2a:71:54:cd:13: 76:b1:5a:9d:2a:6f:ce:5d:b9:c9:ac:c6:4f:7d:03: 08:df:39:02:7e:af:6c:f3:0c:30:d8:f9:67:d5:63: 72:9d:ad:84:10:44:0c:d7:c0:23:6b:21:64:0d:9f: 57:0c:1c:17:e9:df:8a:fe:45:bc:72:56:f8:98:12: c7:d3:c7:f0:40:5d:2e:0f:91:76:e3:07:66:2e:94: ef:bd:85:2e:b6:db:ba:a9:cb:40:50:5c:1c:65:0b: 8a:54:7e:36:f7:f3:fa:f2:43:67:8f:d3:26:86:7c: ca:4e:12:2b:95:7b:f5:ec:28:1b:a4:77:ee:9c:fc: 50:e6:1a:5f:ad:54:df:3c:80:4e:04:b0:50:e0:1c: 80:98:fa:6b:eb:dc:f1:ba:84:2f:17:53:97:51:2b: e8:5e:d9:e4:6c:26:12:cb:98:eb:5f:14:a2:4b:f5: de:c6:e5:87:5d:3b:e7:1b:fd:e0:b8:b8:0e:95:c1: a8:b4:cd:fa:d6:af:b2:26:4a:31:e8:98:45:1b:c9: 9f:48:b0:b6:02:b6:c5:65:22:8e:f5:49:89:d9:c7: 3a:d7:b8:43:4b:48:78:60:71:03:12:b3:45:c0:8b: ca:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:CA:A8:C7:FC:EC:4F:6A:56:C0:73:AA:BA:2B:ED:A8:04:CC:79:9C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Bcqox_zsT2pWwHOquivtqATMeZw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.208.0/20 Signature Algorithm: sha256WithRSAEncryption 34:ff:a4:7f:87:e3:10:3e:a8:13:ca:1a:b7:e6:e2:cc:1d:6d: 57:b2:9c:ae:aa:74:4a:6e:26:66:18:d7:00:b0:5d:f9:98:6a: 5f:ee:06:f4:fb:c1:64:4f:7b:e7:78:16:6b:7f:17:9f:7d:04: 2e:d4:82:45:3e:8b:18:0d:f1:c9:48:65:53:af:ba:df:70:c9: 81:d1:bb:47:df:d8:dc:7f:ea:66:44:32:66:e3:67:d9:86:02: 06:43:ec:9d:35:a2:3a:56:b1:37:90:04:85:ef:b7:8b:b6:14: 02:7b:83:d9:51:7d:29:07:7c:7d:4f:98:6f:9d:2b:86:15:c9: 09:d8:7f:0e:88:ed:f9:fc:a4:05:88:bc:9d:02:f9:1e:6e:fe: 0d:c4:8c:93:38:46:6b:93:42:08:25:2d:c8:43:62:55:d5:00: 01:d6:ca:74:dc:63:1f:78:78:ea:38:42:7a:a8:45:87:0d:7c: 92:28:e5:0c:4e:86:74:56:d6:8b:d5:30:65:d8:b9:0a:7d:0f: fd:62:c4:03:05:c3:b6:08:be:3c:17:1f:df:43:76:ae:d0:87: 68:3d:f6:69:b1:52:d5:b0:3a:2a:1b:e0:b2:69:d7:e2:e0:40: e1:5f:be:95:63:e3:16:c5:12:fa:f0:c3:a0:65:a6:79:67:18: 65:6e:c4:d3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD9MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA5MDMw ODU0MjhaFw0yNjA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA1Q0FBOEM3RkNFQzRG NkE1NkMwNzNBQUJBMkJFREE4MDRDQzc5OUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDp2FhH4jYElXRVtkB6w7s7/gVgNh307s8qcVTNE3axWp0qb85d ucmsxk99AwjfOQJ+r2zzDDDY+WfVY3KdrYQQRAzXwCNrIWQNn1cMHBfp34r+Rbxy VviYEsfTx/BAXS4PkXbjB2YulO+9hS6227qpy0BQXBxlC4pUfjb38/ryQ2eP0yaG fMpOEiuVe/XsKBukd+6c/FDmGl+tVN88gE4EsFDgHICY+mvr3PG6hC8XU5dRK+he 2eRsJhLLmOtfFKJL9d7G5YddO+cb/eC4uA6Vwai0zfrWr7ImSjHomEUbyZ9IsLYC tsVlIo71SYnZxzrXuENLSHhgcQMSs0XAi8pfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUBcqox/zsT2pWwHOquivtqATMeZwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0JjcW94X3pzVDJwV3dIT3F1aXZ0cUFUTWVady5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQxYdAwDQYJKoZIhvcNAQELBQADggEBADT/pH+H4xA+qBPKGrfm4swdbVey nK6qdEpuJmYY1wCwXfmYal/uBvT7wWRPe+d4Fmt/F599BC7UgkU+ixgN8clIZVOv ut9wyYHRu0ff2Nx/6mZEMmbjZ9mGAgZD7J01ojpWsTeQBIXvt4u2FAJ7g9lRfSkH fH1PmG+dK4YVyQnYfw6I7fn8pAWIvJ0C+R5u/g3EjJM4RmuTQgglLchDYlXVAAHW ynTcYx94eOo4QnqoRYcNfJIo5QxOhnRW1ovVMGXYuQp9D/1ixAMFw7YIvjwXH99D dq7Qh2g99mmxUtWwOiob4LJp1+LgQOFfvpVj4xbFEvrww6BlpnlnGGVuxNM= -----END CERTIFICATE-----Generated at Sun Sep 7 07:02:05 2025 by rpki-client