$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/bq3rLR-qNYlJNlSkrx548h8eTHE.roa File: bq3rLR-qNYlJNlSkrx548h8eTHE.roa (raw, json) Hash identifier: RQSLI8fPlBFW1i00UncCsf9uYvmFlZs8n7fYh4U4yzU= Subject key identifier: 6E:AD:EB:2D:1F:AA:35:89:49:36:54:A4:AF:1E:78:F2:1F:1E:4C:71 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 0245 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/bq3rLR-qNYlJNlSkrx548h8eTHE.roa Signing time: Tue 10 Jun 2025 10:46:50 +0000 ROA not before: Tue 10 Jun 2025 10:46:50 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 4713 IP address blocks: 36.52.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Jun 10 10:46:50 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=6EADEB2D1FAA3589493654A4AF1E78F21F1E4C71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:35:7a:56:e1:ab:c4:bb:3f:8a:32:be:fe:e6: 7c:ed:8d:c2:38:d6:0c:9e:96:42:7c:e9:f2:d9:3b: ec:6a:e1:91:00:5b:08:e5:ce:dc:f8:0b:70:b1:5d: 44:34:26:cc:9a:2b:d7:3b:6c:31:c5:57:3e:1d:01: d0:02:ba:9a:4e:18:99:c1:76:1e:71:69:4e:6b:c3: 75:b9:8b:40:92:6b:33:ad:1e:76:01:4c:8f:9e:e0: 95:16:e5:99:46:68:8e:5e:7b:82:98:6e:aa:57:87: 7c:02:1e:da:89:f2:54:a2:25:ce:79:dd:98:f1:e6: d4:6a:ff:93:a3:5a:09:7d:11:06:26:da:48:c1:56: cc:86:28:aa:5d:b0:88:79:16:d2:7e:e2:bc:96:6a: b3:70:a6:d9:b1:d3:c1:48:69:8a:ac:d8:78:70:23: 6c:19:cd:6a:c4:55:4f:ea:63:41:57:86:12:2d:ec: e6:e6:bb:0b:cb:04:38:8e:f2:a9:fa:4f:99:85:6a: 87:24:40:0c:ed:a4:78:16:c8:cc:fd:88:6a:a5:48: 65:3b:c5:ec:e8:41:55:68:c1:ee:13:3b:23:7c:ea: 08:5e:e2:e3:1a:2e:57:74:bf:0d:82:cc:c6:14:e4: 3c:85:28:77:f3:89:8c:cd:a3:30:6b:e7:2b:9d:26: 64:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:AD:EB:2D:1F:AA:35:89:49:36:54:A4:AF:1E:78:F2:1F:1E:4C:71 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/bq3rLR-qNYlJNlSkrx548h8eTHE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.52.223.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:0d:ee:4f:6c:03:72:bc:da:79:e0:a7:28:05:02:a6:90:c4: 71:96:83:47:af:cf:0c:32:07:ad:4f:f4:f3:5b:68:c8:73:fd: b3:0f:8e:53:81:9d:1e:e6:a5:4e:6c:39:5a:84:b2:cd:dc:bb: 16:e7:21:06:98:46:6b:d6:6c:11:a0:24:3d:f4:6e:ae:45:a5: 43:17:b6:05:b5:fd:c9:de:52:ae:2e:da:8f:3b:f5:57:68:d1: 1e:8f:a6:57:90:d1:45:0b:a8:e4:68:c7:3e:68:4b:21:1b:f6: 84:8e:83:c1:65:c0:e4:68:1e:1d:8b:6d:4c:b7:b9:7b:bd:e7: ec:cc:58:ed:78:88:2a:d3:18:21:ae:db:8c:7a:0e:af:b3:dc: 83:14:13:cb:9c:d8:05:3d:9f:d9:c8:2c:7b:e2:cf:1d:92:29: 13:11:80:2d:e9:ae:7c:9c:2c:3c:97:c0:ac:88:32:c5:d7:53: c2:fc:c1:86:31:58:cd:63:f2:f9:c6:aa:d4:4b:12:6d:52:08: 87:0f:c7:9c:26:6d:56:a9:30:5b:d7:52:bd:12:b9:c7:5b:25: b9:d3:4b:da:38:53:d2:bc:7b:eb:0c:4b:30:5f:02:23:db:6a: 7e:f3:2d:4b:ec:39:0e:c0:e0:4b:1c:b8:86:f7:80:19:55:20: c9:47:53:3d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNTA2MTAx MDQ2NTBaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDZFQURFQjJEMUZBQTM1 ODk0OTM2NTRBNEFGMUU3OEYyMUYxRTRDNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2NXpW4avEuz+KMr7+5nztjcI41gyelkJ86fLZO+xq4ZEAWwjl ztz4C3CxXUQ0JsyaK9c7bDHFVz4dAdACuppOGJnBdh5xaU5rw3W5i0CSazOtHnYB TI+e4JUW5ZlGaI5ee4KYbqpXh3wCHtqJ8lSiJc553Zjx5tRq/5OjWgl9EQYm2kjB VsyGKKpdsIh5FtJ+4ryWarNwptmx08FIaYqs2HhwI2wZzWrEVU/qY0FXhhIt7Obm uwvLBDiO8qn6T5mFaockQAztpHgWyMz9iGqlSGU7xezoQVVowe4TOyN86ghe4uMa Lld0vw2CzMYU5DyFKHfziYzNozBr5yudJmTNAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUbq3rLR+qNYlJNlSkrx548h8eTHEwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL2JxM3JMUi1xTllsSk5sU2tyeDU0OGg4ZVRIRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAkNN8wDQYJKoZIhvcNAQELBQADggEBAC4N7k9sA3K82nngpygFAqaQxHGW g0evzwwyB61P9PNbaMhz/bMPjlOBnR7mpU5sOVqEss3cuxbnIQaYRmvWbBGgJD30 bq5FpUMXtgW1/cneUq4u2o879Vdo0R6PpleQ0UULqORoxz5oSyEb9oSOg8FlwORo Hh2LbUy3uXu95+zMWO14iCrTGCGu24x6Dq+z3IMUE8uc2AU9n9nILHvizx2SKRMR gC3prnycLDyXwKyIMsXXU8L8wYYxWM1j8vnGqtRLEm1SCIcPx5wmbVapMFvXUr0S ucdbJbnTS9o4U9K8e+sMSzBfAiPban7zLUvsOQ7A4EscuIb3gBlVIMlHUz0= -----END CERTIFICATE-----Generated at Sun Jun 22 01:14:37 2025 by rpki-client