$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/lf40KvPfLJFXBn9N4Qvxz0ZkSQU.roa File: lf40KvPfLJFXBn9N4Qvxz0ZkSQU.roa (raw, json) Hash identifier: S/ADtf9I8KtJ5Rc9lw8vfkQgKMr6Qr9Sa8uOk14to80= Subject key identifier: 95:FE:34:2A:F3:DF:2C:91:57:06:7F:4D:E1:0B:F1:CF:46:64:49:05 Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 0148 Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/lf40KvPfLJFXBn9N4Qvxz0ZkSQU.roa Signing time: Fri 01 Aug 2025 01:34:02 +0000 ROA not before: Fri 01 Aug 2025 01:34:02 +0000 ROA not after: Thu 30 Jul 2026 06:29:08 +0000 asID: 10021 IP address blocks: 27.110.56.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 19:35:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Aug 1 01:34:02 2025 GMT Not After : Jul 30 06:29:08 2026 GMT Subject: CN=95FE342AF3DF2C9157067F4DE10BF1CF46644905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:26:11:f9:bb:64:29:20:10:a8:2c:e8:2e:71: 3a:2b:b0:4d:6f:6e:58:81:3e:7c:c2:ec:a1:f9:f1: 42:2f:a2:f7:15:8f:43:e1:bf:49:e3:74:7a:f4:a0: ff:26:61:5f:b9:99:ab:f4:7c:43:d9:d5:63:f9:02: 14:a3:55:b7:ff:21:ac:29:b3:0a:43:d7:97:7e:3c: 0e:aa:88:f0:62:16:69:51:7b:e8:52:09:f5:82:6f: c4:97:e2:31:cd:6d:96:68:b2:d5:ba:b9:ae:92:0b: 86:93:22:c0:cf:29:89:5b:18:65:e6:f5:26:d0:9f: 93:2d:92:0f:c6:e3:9e:e1:94:0c:e2:45:6d:8e:fd: fe:fc:23:1b:f9:93:3e:fd:a0:c7:35:ec:86:c0:bb: 54:62:b1:1e:e0:a9:53:e5:56:c1:0a:8f:f7:45:95: fc:5f:68:9b:40:a2:df:31:74:3a:dc:9c:c9:8c:c7: ab:a9:c0:9b:c3:d1:a0:4d:84:fd:41:0c:2a:05:97: 45:8e:85:8b:f9:18:f8:f7:53:fb:19:aa:c9:51:3b: e6:a1:e2:a1:69:82:2a:6b:d0:fb:7b:a3:47:66:8d: 2f:73:fa:43:6a:ec:d3:10:d0:c1:6f:0f:bc:54:8d: d6:99:68:8a:4c:85:2a:90:3f:38:44:9e:61:59:09: 8f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:FE:34:2A:F3:DF:2C:91:57:06:7F:4D:E1:0B:F1:CF:46:64:49:05 X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/lf40KvPfLJFXBn9N4Qvxz0ZkSQU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.110.56.0/22 Signature Algorithm: sha256WithRSAEncryption 59:ff:d5:72:e2:e2:00:c0:cd:f3:3e:bf:fe:c8:22:3c:35:bc: c6:46:0f:4e:ab:d7:ee:e7:65:ed:45:21:38:c5:a8:e9:78:41: bc:73:53:f5:25:8e:f1:c7:84:61:cb:86:52:20:aa:c6:3a:e8: ba:cf:dd:53:ff:05:e6:f6:f3:c9:1b:0d:4e:43:5e:ed:75:3c: 80:06:21:1f:56:f0:37:af:b1:f2:6c:59:82:8c:a4:ff:82:dd: 74:93:23:d7:b7:86:ae:81:5a:a7:9a:bc:2d:4f:5d:44:dc:c7: 03:7a:0e:55:b7:ae:b5:1b:f2:d2:cd:33:b9:e6:c0:ea:0d:91: f9:28:54:63:f9:85:25:58:66:72:60:2f:42:98:44:03:3b:2d: a8:8c:89:8d:16:26:97:2c:a9:de:7c:29:2b:0b:b6:17:df:59: 06:1a:6f:8e:ca:27:be:f4:f5:12:c2:1a:2a:8a:c2:84:aa:f5: c2:62:e5:eb:f8:fe:c9:00:83:20:6f:0c:25:e3:dd:01:11:df: bd:92:7a:23:c6:18:4f:62:e0:ea:1d:9d:ee:4d:85:f3:be:20: e7:bf:22:a8:6f:30:9c:44:1d:32:4c:c5:7c:57:d7:3a:b0:30: d9:b9:68:61:93:76:4d:3c:54:c7:ae:85:cd:00:23:eb:44:cd: 1b:36:ad:42 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNTA4MDEw MTM0MDJaFw0yNjA3MzAwNjI5MDhaMDMxMTAvBgNVBAMTKDk1RkUzNDJBRjNERjJD OTE1NzA2N0Y0REUxMEJGMUNGNDY2NDQ5MDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdJhH5u2QpIBCoLOgucTorsE1vbliBPnzC7KH58UIvovcVj0Ph v0njdHr0oP8mYV+5mav0fEPZ1WP5AhSjVbf/IawpswpD15d+PA6qiPBiFmlRe+hS CfWCb8SX4jHNbZZostW6ua6SC4aTIsDPKYlbGGXm9SbQn5Mtkg/G457hlAziRW2O /f78Ixv5kz79oMc17IbAu1RisR7gqVPlVsEKj/dFlfxfaJtAot8xdDrcnMmMx6up wJvD0aBNhP1BDCoFl0WOhYv5GPj3U/sZqslRO+ah4qFpgipr0Pt7o0dmjS9z+kNq 7NMQ0MFvD7xUjdaZaIpMhSqQPzhEnmFZCY/5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUlf40KvPfLJFXBn9N4Qvxz0ZkSQUwHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5L2xmNDBLdlBmTEpGWEJuOU40UXZ4ejBaa1NRVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIbbjgwDQYJKoZIhvcNAQELBQADggEBAFn/1XLi4gDAzfM+v/7IIjw1vMZG D06r1+7nZe1FITjFqOl4QbxzU/UljvHHhGHLhlIgqsY66LrP3VP/Beb288kbDU5D Xu11PIAGIR9W8DevsfJsWYKMpP+C3XSTI9e3hq6BWqeavC1PXUTcxwN6DlW3rrUb 8tLNM7nmwOoNkfkoVGP5hSVYZnJgL0KYRAM7LaiMiY0WJpcsqd58KSsLthffWQYa b47KJ7709RLCGiqKwoSq9cJi5ev4/skAgyBvDCXj3QER372SeiPGGE9i4Oodne5N hfO+IOe/IqhvMJxEHTJMxXxX1zqwMNm5aGGTdk08VMeuhc0AI+tEzRs2rUI= -----END CERTIFICATE-----Generated at Sat Aug 23 22:23:37 2025 by rpki-client