$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/iRWVXj5IpNDHnoIEUzRk5Vdm_wM.roa File: iRWVXj5IpNDHnoIEUzRk5Vdm_wM.roa (raw, json) Hash identifier: pKQKpP5qXCB3RshJQp/jXBmdGZI/KNmfEqbC8z+LWQQ= Subject key identifier: 89:15:95:5E:3E:48:A4:D0:C7:9E:82:04:53:34:64:E5:57:66:FF:03 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0FD0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iRWVXj5IpNDHnoIEUzRk5Vdm_wM.roa Signing time: Wed 27 Aug 2025 05:32:35 +0000 ROA not before: Wed 27 Aug 2025 05:32:35 +0000 ROA not after: Sat 15 Aug 2026 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 02:20:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4048 (0xfd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Aug 27 05:32:35 2025 GMT Not After : Aug 15 01:30:02 2026 GMT Subject: CN=8915955E3E48A4D0C79E8204533464E55766FF03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:65:0a:4c:65:87:5f:21:94:33:c2:11:de:fa: 55:27:56:79:d0:36:5b:dd:ef:df:5e:df:d8:bd:dd: 0d:40:af:82:87:21:b9:d9:d9:56:bc:b5:9b:fd:41: 66:60:e7:f0:16:f3:a9:14:14:d5:80:99:e1:aa:de: de:d0:16:80:e1:4f:ab:c7:06:e7:34:84:81:f2:52: 2a:e7:98:be:87:fc:b3:08:53:9f:c8:1b:1e:dc:dc: 1b:32:ac:9a:bf:8a:09:d3:c2:a2:7d:33:3e:f9:92: f6:3e:88:03:39:1a:63:97:97:42:c5:e8:35:45:4c: ba:4c:cf:86:df:a8:4a:51:82:47:80:b2:ff:dc:05: 57:83:78:ee:58:07:1b:86:d1:05:ee:14:89:48:1d: 09:ad:68:63:cc:6e:7d:ee:91:5d:32:a0:77:ce:ca: f0:e3:2e:ff:cc:c3:33:19:e0:f2:c8:4c:ab:e9:b5: e5:f1:9a:8b:a1:8f:db:61:eb:ad:96:ec:26:8e:00: 0f:34:b9:de:1e:ad:da:09:d1:1d:58:f1:fc:f3:51: 1b:0d:ed:da:6c:b8:d0:b8:cf:1e:c0:19:1e:57:88: 06:7b:28:b7:95:90:f9:b9:13:e1:45:1b:18:16:d3: 7f:8e:60:f5:78:02:f6:51:b0:4f:29:8b:54:d7:9b: 41:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:15:95:5E:3E:48:A4:D0:C7:9E:82:04:53:34:64:E5:57:66:FF:03 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iRWVXj5IpNDHnoIEUzRk5Vdm_wM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.132.0/24 Signature Algorithm: sha256WithRSAEncryption 94:18:64:da:e7:50:e0:4d:99:ea:5a:d6:54:33:e1:cb:8f:a4: 0a:cb:b2:97:19:8c:e5:35:4b:2c:bb:02:71:e6:c5:f5:59:5c: 23:f1:56:b5:2a:b5:24:9d:f2:17:5d:e1:70:5c:26:26:8f:26: b2:c7:60:cb:db:b1:16:6d:d5:69:6a:c1:f8:91:16:98:a3:b2: 04:46:79:8f:ae:3f:db:ab:1d:da:17:31:05:b6:40:1a:64:37: 4f:fb:b2:97:1d:33:96:c6:d7:16:e9:3d:af:6b:27:7d:58:20: 92:6e:82:b4:c2:2f:86:8e:02:c0:a7:08:4c:84:ef:bc:65:08: 3d:9d:d3:72:a1:1c:7e:7c:a0:43:8c:43:5c:5f:01:31:66:03: 42:80:22:e8:db:1b:cf:47:91:fb:49:84:d7:1e:57:fd:09:94: 06:4e:4a:7e:39:de:df:bb:d3:09:42:d4:69:c7:63:c4:fe:70: 00:df:95:c9:84:a4:dd:01:02:41:a7:b9:03:2f:5b:51:02:45: 4c:b7:8d:3e:4a:39:e3:32:ff:43:70:a4:6a:9d:1c:b8:9b:7c: 87:d0:ae:90:f9:0c:66:2e:d9:00:ec:ac:4c:2c:fd:bd:0a:98: d0:f2:cf:d4:86:12:e1:76:9c:ec:82:4d:b8:a3:3a:26:70:68: 67:9d:a1:85 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD9AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA4Mjcw NTMyMzVaFw0yNjA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg5MTU5NTVFM0U0OEE0 RDBDNzlFODIwNDUzMzQ2NEU1NTc2NkZGMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAZQpMZYdfIZQzwhHe+lUnVnnQNlvd799e39i93Q1Ar4KHIbnZ 2Va8tZv9QWZg5/AW86kUFNWAmeGq3t7QFoDhT6vHBuc0hIHyUirnmL6H/LMIU5/I Gx7c3BsyrJq/ignTwqJ9Mz75kvY+iAM5GmOXl0LF6DVFTLpMz4bfqEpRgkeAsv/c BVeDeO5YBxuG0QXuFIlIHQmtaGPMbn3ukV0yoHfOyvDjLv/MwzMZ4PLITKvpteXx mouhj9th662W7CaOAA80ud4erdoJ0R1Y8fzzURsN7dpsuNC4zx7AGR5XiAZ7KLeV kPm5E+FFGxgW03+OYPV4AvZRsE8pi1TXm0FVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUiRWVXj5IpNDHnoIEUzRk5Vdm/wMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2lSV1ZYajVJcE5ESG5vSUVVelJrNVZkbV93TS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYIQwDQYJKoZIhvcNAQELBQADggEBAJQYZNrnUOBNmepa1lQz4cuPpArL spcZjOU1Syy7AnHmxfVZXCPxVrUqtSSd8hdd4XBcJiaPJrLHYMvbsRZt1WlqwfiR FpijsgRGeY+uP9urHdoXMQW2QBpkN0/7spcdM5bG1xbpPa9rJ31YIJJugrTCL4aO AsCnCEyE77xlCD2d03KhHH58oEOMQ1xfATFmA0KAIujbG89HkftJhNceV/0JlAZO Sn453t+70wlC1GnHY8T+cADflcmEpN0BAkGnuQMvW1ECRUy3jT5KOeMy/0NwpGqd HLibfIfQrpD5DGYu2QDsrEws/b0KmNDyz9SGEuF2nOyCTbijOiZwaGedoYU= -----END CERTIFICATE-----Generated at Sun Sep 7 03:31:45 2025 by rpki-client