$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/In2kSdozrgVqRILF3413WBNFcho.roa File: In2kSdozrgVqRILF3413WBNFcho.roa (raw, json) Hash identifier: /4M1Mpb35Ghi6/PYHlSslIomvt88DzYzjkQZ3jCBFo8= Subject key identifier: 22:7D:A4:49:DA:33:AE:05:6A:44:82:C5:DF:8D:77:58:13:45:72:1A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0FD2 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/In2kSdozrgVqRILF3413WBNFcho.roa Signing time: Wed 03 Sep 2025 08:49:51 +0000 ROA not before: Wed 03 Sep 2025 08:49:51 +0000 ROA not after: Sat 15 Aug 2026 01:30:02 +0000 asID: 9605 IP address blocks: 49.97.204.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 02:20:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4050 (0xfd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Sep 3 08:49:51 2025 GMT Not After : Aug 15 01:30:02 2026 GMT Subject: CN=227DA449DA33AE056A4482C5DF8D77581345721A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a5:43:89:9a:5d:af:a8:f7:64:e4:94:ec:4a: 75:8e:69:41:dc:96:ef:96:be:30:de:5b:1e:49:1c: 88:66:8c:bc:dc:49:6a:1e:2d:65:17:82:78:82:d9: a8:0d:84:7a:49:0f:c3:78:30:4a:13:29:96:dc:a2: 5c:66:1e:99:5e:09:87:f6:b7:9e:d9:a6:9d:6a:ca: 84:74:44:93:80:41:6c:62:ab:5f:e5:59:a6:23:01: c6:9c:4b:df:a1:be:99:4d:53:d1:68:39:bf:dd:0d: 9f:39:f9:6e:aa:6c:55:b1:f7:c4:32:70:3d:c7:6c: f6:33:cc:12:31:ae:0e:bd:1c:3a:f5:b2:8f:ca:86: 1d:3a:93:cc:33:95:1b:31:b1:85:ac:f4:23:b2:98: c3:15:6a:68:c7:59:4f:58:19:1c:b3:85:32:78:e7: a5:f6:57:d5:cb:c6:32:96:5a:5e:c3:11:a9:f3:46: bb:80:2b:9a:cb:af:d4:c0:c6:91:c0:eb:84:fb:7a: 52:f8:3e:57:31:62:13:9f:2e:93:06:4b:62:bf:a1: 5d:49:80:5c:a7:a8:fa:e5:72:98:c7:88:6d:9b:24: 1e:c2:1b:f8:7e:56:29:57:73:aa:1f:45:c1:4d:74: 65:bd:b4:15:83:f2:4a:09:e8:c6:c7:5e:c9:a7:ce: 79:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:7D:A4:49:DA:33:AE:05:6A:44:82:C5:DF:8D:77:58:13:45:72:1A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/In2kSdozrgVqRILF3413WBNFcho.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.204.0/22 Signature Algorithm: sha256WithRSAEncryption ab:0d:09:7a:16:77:2d:d4:bf:09:88:4c:15:04:74:cf:d5:66: e0:11:92:85:b4:ce:70:b5:8b:72:f8:2b:86:71:db:07:c5:f4: e3:5a:bf:ed:be:24:94:77:ee:69:2a:44:e9:de:32:d0:f3:a0: bf:e6:70:a2:1d:c8:22:1e:01:8b:21:84:dd:e8:df:bc:0f:47: 00:bd:dd:91:c1:f0:2f:68:54:4e:55:0e:29:38:6c:26:9e:e3: a0:58:33:62:45:1f:ed:e2:59:b1:e5:f2:35:57:ac:fe:2b:32: 40:a9:bc:34:84:04:0f:63:fb:27:8e:02:62:03:db:6e:1e:1e: 0e:c2:4b:bc:ac:e3:f0:76:52:06:03:dd:ed:34:2c:c9:28:b3: 55:d8:4d:a5:39:df:a6:83:50:aa:14:72:f0:92:98:40:8d:85: d3:f3:a5:a6:2d:e3:75:ee:36:31:66:b0:be:c2:57:19:c1:1f: dc:5d:78:c9:d4:94:34:7f:91:30:26:6b:69:2f:10:d9:f2:63: 04:cc:ce:8d:0f:9a:d9:79:2b:41:1f:5a:3b:ec:0c:df:36:cb: 11:fa:69:b6:03:6a:0b:56:42:ef:54:78:90:71:33:31:b1:36: ce:0a:b4:23:66:5a:3f:55:0d:d4:3b:41:fe:9d:3e:5c:f5:0d: b2:c3:8f:09 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD9IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA5MDMw ODQ5NTFaFw0yNjA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDIyN0RBNDQ5REEzM0FF MDU2QTQ0ODJDNURGOEQ3NzU4MTM0NTcyMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGpUOJml2vqPdk5JTsSnWOaUHclu+WvjDeWx5JHIhmjLzcSWoe LWUXgniC2agNhHpJD8N4MEoTKZbcolxmHpleCYf2t57Zpp1qyoR0RJOAQWxiq1/l WaYjAcacS9+hvplNU9FoOb/dDZ85+W6qbFWx98QycD3HbPYzzBIxrg69HDr1so/K hh06k8wzlRsxsYWs9COymMMVamjHWU9YGRyzhTJ456X2V9XLxjKWWl7DEanzRruA K5rLr9TAxpHA64T7elL4PlcxYhOfLpMGS2K/oV1JgFynqPrlcpjHiG2bJB7CG/h+ VilXc6ofRcFNdGW9tBWD8koJ6MbHXsmnznlJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUIn2kSdozrgVqRILF3413WBNFchowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0luMmtTZG96cmdWcVJJTEYzNDEzV0JORmNoby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYcwwDQYJKoZIhvcNAQELBQADggEBAKsNCXoWdy3UvwmITBUEdM/VZuAR koW0znC1i3L4K4Zx2wfF9ONav+2+JJR37mkqROneMtDzoL/mcKIdyCIeAYshhN3o 37wPRwC93ZHB8C9oVE5VDik4bCae46BYM2JFH+3iWbHl8jVXrP4rMkCpvDSEBA9j +yeOAmID224eHg7CS7ys4/B2UgYD3e00LMkos1XYTaU536aDUKoUcvCSmECNhdPz paYt43XuNjFmsL7CVxnBH9xdeMnUlDR/kTAma2kvENnyYwTMzo0Pmtl5K0EfWjvs DN82yxH6abYDagtWQu9UeJBxMzGxNs4KtCNmWj9VDdQ7Qf6dPlz1DbLDjwk= -----END CERTIFICATE-----Generated at Sun Sep 7 03:31:43 2025 by rpki-client