$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KvmaUhm6dImRY42Du0b7FhiAkvg.roa File: KvmaUhm6dImRY42Du0b7FhiAkvg.roa (raw, json) Hash identifier: t7X3cvw7ktMn1hLOkVFACKyJ4BHuKOQ0Fvbyxw2HjOA= Subject key identifier: 2A:F9:9A:52:19:BA:74:89:91:63:8D:83:BB:46:FB:16:18:80:92:F8 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E9A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KvmaUhm6dImRY42Du0b7FhiAkvg.roa Signing time: Tue 10 Jun 2025 11:00:33 +0000 ROA not before: Tue 10 Jun 2025 11:00:33 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 27.230.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3738 (0xe9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:00:33 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=2AF99A5219BA748991638D83BB46FB16188092F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:cd:e6:22:3e:c2:3e:38:fa:1d:83:83:af:8b: 9a:d9:12:bf:b3:d2:d0:88:b4:b5:73:61:d9:94:27: 98:ee:c7:06:f8:56:4d:10:b2:cc:45:2b:5b:9b:2a: 62:87:cf:42:a9:8b:b0:e1:21:9a:32:9c:b1:a2:99: e6:89:3f:44:2f:b4:75:f4:0d:24:4d:be:a5:a5:02: 82:c2:c8:e4:09:1f:21:d7:c1:fe:93:a8:72:17:97: 5e:c5:a7:8f:6b:24:c2:52:d7:18:a6:98:8e:f3:cd: 08:58:ad:44:cc:a1:f2:10:5d:c8:c1:6a:6f:29:53: b9:04:17:e1:54:7f:4c:4f:c5:04:b9:44:e4:9d:fc: fd:4b:9a:d1:df:7e:47:c2:39:dd:cf:9a:5f:0e:47: e7:53:c2:7f:12:d5:cd:01:fb:ba:ee:58:cb:70:8e: 8c:4b:ce:03:a7:66:8c:c5:33:ef:03:ef:2e:c9:51: 3b:af:9b:cc:b4:02:34:8d:c8:9c:8a:56:43:af:7e: 71:e7:88:16:48:0e:f1:c7:1b:fb:85:f4:5a:7c:3f: f4:87:66:79:1d:01:a0:ce:2b:fd:a3:49:23:c5:93: 2e:f5:f8:55:96:01:a8:e6:93:9f:f5:e0:74:3b:12: 88:dc:08:f7:d7:cf:f3:b9:72:24:f3:40:ac:1b:9e: 6e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:F9:9A:52:19:BA:74:89:91:63:8D:83:BB:46:FB:16:18:80:92:F8 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KvmaUhm6dImRY42Du0b7FhiAkvg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.230.99.0/24 Signature Algorithm: sha256WithRSAEncryption 54:29:ae:af:e5:92:08:c1:60:09:a1:15:4b:23:dc:a8:ac:84: 8b:2c:b6:6f:3f:2d:79:f8:16:b2:d4:9a:2d:44:c6:eb:c5:44: c3:73:be:6c:e4:56:13:46:48:67:f2:3f:6e:0c:ff:cd:0a:74: b4:ac:c5:aa:27:d5:e1:5d:b3:ed:6a:ba:c5:1c:5a:67:18:bc: 8a:37:ae:6b:8c:5b:c3:91:86:bc:d1:50:2a:79:cc:9e:b6:ad: 0d:1f:0c:84:11:97:73:f9:fa:3f:2a:93:1e:50:86:e2:98:86: 06:c7:e3:75:98:2a:10:6e:43:3d:6f:2a:be:da:9b:32:0e:5f: 88:64:44:5e:77:2c:df:d9:a8:c3:5c:b3:74:ae:37:e9:cc:e2: 59:cf:ae:ec:86:2c:4c:02:1b:a3:07:4f:e9:3d:2d:d4:35:72: c3:be:b2:8c:df:b4:be:7c:11:85:40:d0:07:62:93:14:c3:15: 99:92:d5:a6:32:fc:ca:88:3e:96:63:fc:6a:32:f7:8e:4f:cd: 77:a8:0b:89:43:74:cd:75:b8:84:3f:c4:b9:59:c1:f4:75:db: 27:d9:ed:52:ec:c9:a1:7c:c9:38:d8:c6:03:bc:10:fa:3b:54: d4:28:c9:7c:a6:d7:23:6a:69:9d:09:4a:7e:b5:e8:f9:b1:82: a3:7a:ae:01 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDpowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTAwMzNaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDJBRjk5QTUyMTlCQTc0 ODk5MTYzOEQ4M0JCNDZGQjE2MTg4MDkyRjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPzeYiPsI+OPodg4Ovi5rZEr+z0tCItLVzYdmUJ5juxwb4Vk0Q ssxFK1ubKmKHz0Kpi7DhIZoynLGimeaJP0QvtHX0DSRNvqWlAoLCyOQJHyHXwf6T qHIXl17Fp49rJMJS1ximmI7zzQhYrUTMofIQXcjBam8pU7kEF+FUf0xPxQS5ROSd /P1LmtHffkfCOd3Pml8OR+dTwn8S1c0B+7ruWMtwjoxLzgOnZozFM+8D7y7JUTuv m8y0AjSNyJyKVkOvfnHniBZIDvHHG/uF9Fp8P/SHZnkdAaDOK/2jSSPFky71+FWW Aajmk5/14HQ7EojcCPfXz/O5ciTzQKwbnm71AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKvmaUhm6dImRY42Du0b7FhiAkvgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0t2bWFVaG02ZEltUlk0MkR1MGI3RmhpQWt2Zy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAb5mMwDQYJKoZIhvcNAQELBQADggEBAFQprq/lkgjBYAmhFUsj3KishIss tm8/LXn4FrLUmi1ExuvFRMNzvmzkVhNGSGfyP24M/80KdLSsxaon1eFds+1qusUc WmcYvIo3rmuMW8ORhrzRUCp5zJ62rQ0fDIQRl3P5+j8qkx5QhuKYhgbH43WYKhBu Qz1vKr7amzIOX4hkRF53LN/ZqMNcs3SuN+nM4lnPruyGLEwCG6MHT+k9LdQ1csO+ sozftL58EYVA0AdikxTDFZmS1aYy/MqIPpZj/Goy945PzXeoC4lDdM11uIQ/xLlZ wfR12yfZ7VLsyaF8yTjYxgO8EPo7VNQoyXym1yNqaZ0JSn616PmxgqN6rgE= -----END CERTIFICATE-----Generated at Thu Jul 3 19:16:17 2025 by rpki-client