$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/0oN3byRiNC_FrZ6O6EKHaSE-S_4.roa File: 0oN3byRiNC_FrZ6O6EKHaSE-S_4.roa (raw, json) Hash identifier: vbREjYSrNNiBxaIMSS37iS3VTZmfHC3ZVAUmRMBnsxs= Subject key identifier: D2:83:77:6F:24:62:34:2F:C5:AD:9E:8E:E8:42:87:69:21:3E:4B:FE Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0EA2 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/0oN3byRiNC_FrZ6O6EKHaSE-S_4.roa Signing time: Tue 10 Jun 2025 11:00:38 +0000 ROA not before: Tue 10 Jun 2025 11:00:38 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 49.110.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 12:41:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3746 (0xea2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:00:38 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=D283776F2462342FC5AD9E8EE8428769213E4BFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:50:c5:35:3c:f2:d7:51:49:4a:ab:93:1c:1b: e3:a2:2d:1a:6a:27:b6:6c:9c:9f:b5:36:7a:e4:65: 03:fa:f3:1e:a2:d9:9f:19:79:1d:55:4b:cd:22:d1: 05:28:c2:32:c0:99:68:32:95:8f:35:ed:4f:26:7b: 0c:4b:33:f8:bb:a7:86:f7:e5:4a:13:6a:60:06:d8: df:b5:30:af:f7:21:db:b3:be:5b:2b:08:44:13:4c: 9e:4a:ec:9a:f0:3c:1c:d6:cc:1e:73:92:08:91:76: f0:bb:a7:33:70:46:fd:e4:6f:1b:55:d6:27:4f:ab: 1d:12:05:dc:c4:12:cc:de:4f:07:23:b3:f9:10:b0: 74:3a:22:70:fd:ea:71:ce:04:4e:f3:fc:41:b1:2b: fb:10:1d:1b:bc:25:76:f7:0e:17:5d:8a:97:d5:53: 38:e4:17:59:9d:3f:dc:c9:80:ac:b6:7e:21:b0:25: cc:0a:f9:53:34:01:d9:76:e9:b0:9a:6f:02:16:3c: 3b:2c:f7:92:4c:f6:34:bb:62:52:29:0f:95:0c:ad: e6:5b:9f:f0:e7:8c:75:d0:cf:ff:4f:ae:1e:75:d4: 9c:5c:6b:2c:13:34:80:0b:cd:86:0c:89:c6:62:63: 5d:af:06:04:fd:23:9c:bc:82:d2:08:9e:b3:01:e9: 98:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:83:77:6F:24:62:34:2F:C5:AD:9E:8E:E8:42:87:69:21:3E:4B:FE X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/0oN3byRiNC_FrZ6O6EKHaSE-S_4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.110.0.0/19 Signature Algorithm: sha256WithRSAEncryption 80:93:50:75:be:ee:db:46:d2:67:f8:38:32:ac:6c:9c:0e:e4: 5d:87:1a:7f:32:da:68:49:16:4f:41:5d:fd:fa:92:57:ce:9c: ea:21:46:40:70:d6:43:8b:b7:4d:26:bd:ff:60:b0:ea:d6:3e: 75:9d:d6:fb:77:05:1f:37:c0:92:cb:9b:1d:0d:a4:5e:df:3c: b0:cd:56:d3:11:9b:b8:03:13:35:48:b0:08:a4:37:5d:58:77: 4a:88:9b:b1:5f:8a:6c:27:0c:d7:39:22:c8:47:ca:4f:c1:6e: 1d:ad:e1:a9:92:ad:d9:6e:b1:c4:8f:e2:b4:1e:69:1b:1a:45: cb:5f:96:ba:12:b4:e7:33:b3:65:1a:96:dc:b8:a1:f6:05:e0: 5c:94:ea:b7:78:67:07:d3:f0:79:4e:5c:1e:2b:06:ac:1b:c1: 65:3e:ed:7e:0b:60:70:3a:2e:1a:a4:1d:20:f6:ca:b5:74:c7: a8:92:03:a9:21:28:26:d5:9e:77:5c:b5:c9:42:98:e6:30:92: ab:5c:b2:7f:b8:58:71:a0:66:cf:fe:53:ac:a0:b6:bc:0d:66: 14:de:32:58:09:5d:ed:5a:b5:4f:1e:cc:e3:bd:bb:24:67:be: be:95:b2:c8:ad:e7:c9:fe:3c:6c:33:5b:64:0e:67:97:7f:cc: 1f:31:d7:18 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDqIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTAwMzhaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEQyODM3NzZGMjQ2MjM0 MkZDNUFEOUU4RUU4NDI4NzY5MjEzRTRCRkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD2UMU1PPLXUUlKq5McG+OiLRpqJ7ZsnJ+1NnrkZQP68x6i2Z8Z eR1VS80i0QUowjLAmWgylY817U8mewxLM/i7p4b35UoTamAG2N+1MK/3Iduzvlsr CEQTTJ5K7JrwPBzWzB5zkgiRdvC7pzNwRv3kbxtV1idPqx0SBdzEEszeTwcjs/kQ sHQ6InD96nHOBE7z/EGxK/sQHRu8JXb3DhddipfVUzjkF1mdP9zJgKy2fiGwJcwK +VM0Adl26bCabwIWPDss95JM9jS7YlIpD5UMreZbn/DnjHXQz/9Prh511JxcaywT NIALzYYMicZiY12vBgT9I5y8gtIInrMB6ZjtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU0oN3byRiNC/FrZ6O6EKHaSE+S/4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzBvTjNieVJpTkNfRnJaNk82RUtIYVNFLVNfNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUxbgAwDQYJKoZIhvcNAQELBQADggEBAICTUHW+7ttG0mf4ODKsbJwO5F2H Gn8y2mhJFk9BXf36klfOnOohRkBw1kOLt00mvf9gsOrWPnWd1vt3BR83wJLLmx0N pF7fPLDNVtMRm7gDEzVIsAikN11Yd0qIm7FfimwnDNc5IshHyk/Bbh2t4amSrdlu scSP4rQeaRsaRctflroStOczs2Ualty4ofYF4FyU6rd4ZwfT8HlOXB4rBqwbwWU+ 7X4LYHA6LhqkHSD2yrV0x6iSA6khKCbVnndctclCmOYwkqtcsn+4WHGgZs/+U6yg trwNZhTeMlgJXe1atU8ezOO9uyRnvr6Vssit58n+PGwzW2QOZ5d/zB8x1xg= -----END CERTIFICATE-----Generated at Sun Jun 22 15:11:19 2025 by rpki-client