$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/HnABvi-KnGjLwNsrkCkA59nS08Q.roa File: HnABvi-KnGjLwNsrkCkA59nS08Q.roa (raw, json) Hash identifier: JdVC+cOViPm91z1HZiOAX4hCQA+QiExYnvO4dvNRqFA= Subject key identifier: 1E:70:01:BE:2F:8A:9C:68:CB:C0:DB:2B:90:29:00:E7:D9:D2:D3:C4 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0FD1 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HnABvi-KnGjLwNsrkCkA59nS08Q.roa Signing time: Wed 27 Aug 2025 05:32:35 +0000 ROA not before: Wed 27 Aug 2025 05:32:35 +0000 ROA not after: Sat 15 Aug 2026 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 03:18:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4049 (0xfd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Aug 27 05:32:35 2025 GMT Not After : Aug 15 01:30:02 2026 GMT Subject: CN=1E7001BE2F8A9C68CBC0DB2B902900E7D9D2D3C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:94:c7:da:64:5d:dc:67:19:11:82:6e:e9:b8: a5:0a:60:d9:07:6e:17:92:3a:88:bc:ed:eb:98:3b: 32:73:40:04:79:ae:f0:7f:25:64:c7:fe:59:f2:d0: fa:aa:1d:73:7a:cd:d2:48:b2:fb:1f:12:73:5e:ee: 85:ce:41:14:36:3c:a0:5a:1e:16:49:27:bd:cc:5f: 3f:83:8a:6f:1b:55:73:b3:cf:ed:8a:4a:e4:6c:5a: 1c:98:43:c8:fb:f8:e9:1c:dc:48:de:14:5c:8c:33: ee:f1:68:ae:0d:f6:fb:77:43:39:61:89:7c:b9:d4: 6d:a9:24:18:1f:41:b1:61:89:d9:9d:2d:cd:3a:e1: d7:db:67:18:41:ea:ea:bb:d9:bb:31:e0:ba:48:da: 9a:28:d7:c9:c5:17:1a:7c:cf:83:b7:f7:8c:e8:2d: e9:bd:dd:43:09:fc:10:05:48:36:1a:aa:af:e2:7d: 13:24:00:d5:83:65:06:42:75:d5:b2:c5:67:f5:02: 47:30:07:21:25:12:2a:5a:98:3e:5f:77:12:61:ed: 0e:98:d1:22:71:1c:b4:e2:39:ca:a7:a0:76:6a:81: 76:e9:36:e9:a7:b4:98:8b:8e:ae:3d:2f:94:ae:cf: 39:5d:3c:7b:8b:c2:05:7b:d1:4d:c1:15:a9:3d:28: 6e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:70:01:BE:2F:8A:9C:68:CB:C0:DB:2B:90:29:00:E7:D9:D2:D3:C4 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HnABvi-KnGjLwNsrkCkA59nS08Q.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.136.0/21 Signature Algorithm: sha256WithRSAEncryption 9b:c3:c5:30:ae:17:08:18:0a:d7:20:b6:a3:2f:87:51:88:28: d8:2e:52:b5:f2:7f:8a:e0:1b:56:64:47:df:35:c6:13:d7:c6: 78:ed:52:0b:22:c5:34:67:bf:08:10:8c:38:41:6e:8e:6a:a4: 0a:18:36:03:14:0d:df:65:85:b6:4f:e9:87:10:b2:eb:c8:36: 37:c6:5d:e1:a6:73:a8:a4:df:c4:d8:b8:63:90:38:25:5c:0f: b3:43:e8:c3:15:bb:97:d3:6d:a8:09:10:79:1c:b0:bf:bf:ae: c0:38:c7:8b:0b:7d:80:b3:6d:5c:b1:ae:96:9f:ba:cc:1a:cf: 30:77:6e:0f:bb:e9:4e:ca:2e:49:c4:82:18:20:84:a9:d3:09: 05:24:4f:ce:4c:49:bb:71:d6:54:d2:00:12:dc:5c:47:c4:2b: e8:64:25:f0:64:f7:e9:ee:25:0c:17:cd:91:d8:2c:c8:27:87: 9a:63:9b:5a:5b:9c:1d:14:4d:ea:68:e8:da:ab:0c:d1:0b:b7: 12:fa:a9:c9:6f:09:d4:e9:01:ba:f7:ea:18:0e:00:c3:2b:55: 6c:8c:b0:d6:f2:32:a6:81:22:67:5e:d5:79:5e:66:ff:25:d7: 1b:70:c8:fa:da:42:62:1b:b7:1f:c0:71:e9:3e:f9:aa:e5:52: 76:fb:59:18 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD9EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA4Mjcw NTMyMzVaFw0yNjA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDFFNzAwMUJFMkY4QTlD NjhDQkMwREIyQjkwMjkwMEU3RDlEMkQzQzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDglMfaZF3cZxkRgm7puKUKYNkHbheSOoi87euYOzJzQAR5rvB/ JWTH/lny0PqqHXN6zdJIsvsfEnNe7oXOQRQ2PKBaHhZJJ73MXz+Dim8bVXOzz+2K SuRsWhyYQ8j7+Okc3EjeFFyMM+7xaK4N9vt3QzlhiXy51G2pJBgfQbFhidmdLc06 4dfbZxhB6uq72bsx4LpI2poo18nFFxp8z4O394zoLem93UMJ/BAFSDYaqq/ifRMk ANWDZQZCddWyxWf1AkcwByElEipamD5fdxJh7Q6Y0SJxHLTiOcqnoHZqgXbpNumn tJiLjq49L5SuzzldPHuLwgV70U3BFak9KG4HAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUHnABvi+KnGjLwNsrkCkA59nS08QwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0huQUJ2aS1LbkdqTHdOc3JrQ2tBNTluUzA4US5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMxYIgwDQYJKoZIhvcNAQELBQADggEBAJvDxTCuFwgYCtcgtqMvh1GIKNgu UrXyf4rgG1ZkR981xhPXxnjtUgsixTRnvwgQjDhBbo5qpAoYNgMUDd9lhbZP6YcQ suvINjfGXeGmc6ik38TYuGOQOCVcD7ND6MMVu5fTbagJEHkcsL+/rsA4x4sLfYCz bVyxrpafuswazzB3bg+76U7KLknEghgghKnTCQUkT85MSbtx1lTSABLcXEfEK+hk JfBk9+nuJQwXzZHYLMgnh5pjm1pbnB0UTepo6NqrDNELtxL6qclvCdTpAbr36hgO AMMrVWyMsNbyMqaBImde1XleZv8l1xtwyPraQmIbtx/Acek++arlUnb7WRg= -----END CERTIFICATE-----Generated at Sun Sep 7 07:04:59 2025 by rpki-client