$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/qrB-WH6hyFKqd4IjlNKZCBb0wWg.roa File: qrB-WH6hyFKqd4IjlNKZCBb0wWg.roa (raw, json) Hash identifier: L20J3YBaE5pOwLBu1VCtQkf/MlvNFWPq2+4dlDbz+Bk= Subject key identifier: AA:B0:7E:58:7E:A1:C8:52:AA:77:82:23:94:D2:99:08:16:F4:C1:68 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0FC9 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qrB-WH6hyFKqd4IjlNKZCBb0wWg.roa Signing time: Tue 01 Jul 2025 01:36:13 +0000 ROA not before: Tue 01 Jul 2025 01:36:13 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 9605 IP address blocks: 49.109.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4041 (0xfc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 1 01:36:13 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=AAB07E587EA1C852AA77822394D2990816F4C168 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:32:f3:3c:15:3a:e6:40:96:49:70:1b:4e:32: 2f:28:43:20:f3:54:1b:69:00:28:44:4b:f7:89:64: 6b:1c:8e:7c:53:ed:14:2a:78:b9:6d:c5:24:6d:4e: 3c:1a:57:89:b0:8d:37:d9:67:04:9a:4d:f3:33:eb: 0d:30:9c:e4:ef:73:3a:37:be:83:8e:c4:c6:af:36: 3a:f8:ef:64:72:f2:58:81:a7:de:a8:a6:2c:8c:3b: 78:de:bf:d7:27:71:2e:88:73:7c:36:3c:40:4a:50: 38:21:2b:e9:96:d2:dc:eb:2e:a2:57:9a:24:b3:b0: 10:46:ac:b2:e0:f2:b6:25:c7:18:67:66:f3:79:8a: 73:70:29:66:cd:67:ef:43:2f:f6:2c:6e:5f:4e:e6: 5e:b3:89:1a:d2:6d:9d:d0:0c:b9:99:b9:b9:0d:1a: d5:28:0b:83:af:3b:60:d0:85:27:d1:3f:95:6a:0a: 49:02:4f:03:0b:10:e2:33:c1:a5:76:b2:78:92:e7: b4:fe:0e:d2:77:35:c9:7e:e2:f2:8f:d1:79:27:e7: 20:8d:0b:f1:e5:80:31:25:2f:f8:c2:cc:16:8c:e0: 4e:bc:d2:df:2d:89:76:ed:4f:80:63:d2:df:d8:a1: 3f:f2:0f:81:bb:ae:98:d1:15:2c:f1:e3:64:7a:6e: 10:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:B0:7E:58:7E:A1:C8:52:AA:77:82:23:94:D2:99:08:16:F4:C1:68 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qrB-WH6hyFKqd4IjlNKZCBb0wWg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.109.64.0/22 Signature Algorithm: sha256WithRSAEncryption 19:ba:6d:d5:88:85:42:68:4e:99:97:56:33:e2:ff:49:86:f5: b8:7d:d2:9e:87:e2:fd:bf:41:d5:d0:9c:ea:d2:5b:45:7a:78: 05:26:c7:12:00:c3:8f:30:ba:08:7e:49:2c:09:85:63:83:55: ab:78:1f:a8:57:41:0b:6e:8a:4f:7f:c3:f0:a7:c5:cf:6d:23: 23:c3:a4:b9:f6:11:01:fd:88:aa:4e:d8:87:e4:c9:18:20:61: c9:0f:b0:86:55:1c:06:5c:50:51:5b:e2:21:62:5b:b5:1b:2a: 56:6b:22:8a:04:b6:15:ef:54:b4:dc:7d:44:6f:35:ff:f2:c0: bd:1c:a1:2b:40:57:68:e3:70:20:cf:66:bc:64:fa:1a:fa:b2: 2a:0b:18:61:f4:58:37:3d:4d:11:f6:6e:9c:ce:58:ec:06:bc: 5c:29:7a:5d:a8:da:92:8e:fe:fe:1a:4a:25:b0:4e:3f:a8:9c: a2:24:6e:cd:40:11:ea:64:20:8c:d7:99:0f:08:35:79:98:e9: c9:67:6a:57:b6:26:70:ab:ef:6d:7d:56:60:76:a1:da:f5:86: ef:d2:08:64:16:90:47:27:1c:ab:97:c5:b3:3e:9a:06:f9:04: 16:57:9c:e6:74:ee:2c:c7:5a:bc:64:9a:8a:64:da:73:63:a3: c0:6c:ab:57 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD8kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA3MDEw MTM2MTNaFw0yNjA2MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEFBQjA3RTU4N0VBMUM4 NTJBQTc3ODIyMzk0RDI5OTA4MTZGNEMxNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3MvM8FTrmQJZJcBtOMi8oQyDzVBtpAChES/eJZGscjnxT7RQq eLltxSRtTjwaV4mwjTfZZwSaTfMz6w0wnOTvczo3voOOxMavNjr472Ry8liBp96o piyMO3jev9cncS6Ic3w2PEBKUDghK+mW0tzrLqJXmiSzsBBGrLLg8rYlxxhnZvN5 inNwKWbNZ+9DL/Ysbl9O5l6ziRrSbZ3QDLmZubkNGtUoC4OvO2DQhSfRP5VqCkkC TwMLEOIzwaV2sniS57T+DtJ3Ncl+4vKP0Xkn5yCNC/HlgDElL/jCzBaM4E680t8t iXbtT4Bj0t/YoT/yD4G7rpjRFSzx42R6bhABAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUqrB+WH6hyFKqd4IjlNKZCBb0wWgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3FyQi1XSDZoeUZLcWQ0SWpsTktaQ0JiMHdXZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxbUAwDQYJKoZIhvcNAQELBQADggEBABm6bdWIhUJoTpmXVjPi/0mG9bh9 0p6H4v2/QdXQnOrSW0V6eAUmxxIAw48wugh+SSwJhWODVat4H6hXQQtuik9/w/Cn xc9tIyPDpLn2EQH9iKpO2IfkyRggYckPsIZVHAZcUFFb4iFiW7UbKlZrIooEthXv VLTcfURvNf/ywL0coStAV2jjcCDPZrxk+hr6sioLGGH0WDc9TRH2bpzOWOwGvFwp el2o2pKO/v4aSiWwTj+onKIkbs1AEepkIIzXmQ8INXmY6clnale2JnCr7219VmB2 odr1hu/SCGQWkEcnHKuXxbM+mgb5BBZXnOZ07izHWrxkmopk2nNjo8Bsq1c= -----END CERTIFICATE-----Generated at Thu Jul 3 19:21:55 2025 by rpki-client