$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/0q5ZEF7HFLec8wIuZXS8bRU1YF0.roa File: 0q5ZEF7HFLec8wIuZXS8bRU1YF0.roa (raw, json) Hash identifier: 8khX+7ATl+HTBrekPNnIWO/VIH0/i/8bAkAMo/SrQ7k= Subject key identifier: D2:AE:59:10:5E:C7:14:B7:9C:F3:02:2E:65:74:BC:6D:15:35:60:5D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E92 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/0q5ZEF7HFLec8wIuZXS8bRU1YF0.roa Signing time: Tue 10 Jun 2025 10:56:56 +0000 ROA not before: Tue 10 Jun 2025 10:56:56 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.66.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 13:51:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3730 (0xe92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:56:56 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=D2AE59105EC714B79CF3022E6574BC6D1535605D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0c:9a:6f:97:51:81:3a:af:c1:4d:89:e2:ba: 15:dd:91:1c:dd:e3:ad:23:09:08:90:9b:98:ca:1b: 28:aa:a7:c7:bc:f5:00:a9:6b:d1:97:35:b5:fc:0c: d6:98:e2:e6:d2:1c:a3:34:12:66:f0:d6:43:23:b4: 8d:81:4d:ca:55:1c:e0:31:9d:5b:cc:ce:73:9c:72: 8c:e1:42:f1:f5:45:36:da:88:d2:44:4f:60:78:c6: 6f:ce:d4:d5:1f:22:11:13:b3:58:00:3b:d6:7c:91: 87:f1:4d:18:42:9d:79:f7:67:4b:a6:2a:7e:5d:0f: 44:ee:0f:71:4d:52:f5:9b:0a:ad:aa:43:76:7e:f9: 48:83:95:1f:fa:4a:4f:f1:22:ab:d5:db:4c:e5:4e: 56:77:0b:76:42:8a:9f:c1:40:f7:b8:48:2e:4d:36: 0f:71:7b:b6:ff:b5:8d:e5:7d:5c:08:68:8e:0d:e3: 04:ad:d6:4e:81:4b:74:6c:9b:b9:8d:cc:8c:9f:83: 9d:c5:52:67:e4:9d:52:ff:dc:a6:9a:e9:a4:51:5a: 23:a5:b6:ee:fe:d0:a2:a9:e5:70:ce:e1:26:60:26: d5:ec:01:a5:01:94:4a:1a:6d:88:79:a3:03:34:e4: aa:a9:04:9c:56:bb:21:69:25:4b:27:57:a7:a2:70: 88:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:AE:59:10:5E:C7:14:B7:9C:F3:02:2E:65:74:BC:6D:15:35:60:5D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/0q5ZEF7HFLec8wIuZXS8bRU1YF0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.108.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:b6:64:04:8b:08:20:99:bc:9c:31:19:f0:9c:bf:0c:3d:a8: 43:be:8c:99:ec:d7:88:1e:83:85:93:d9:d0:11:08:03:0b:a2: 4b:37:77:8d:52:6d:ea:99:44:c2:0f:c9:aa:d4:79:f9:b7:63: 58:ac:be:29:bc:5f:a8:c5:30:dd:65:e4:03:f2:2c:7a:f3:ab: f2:88:25:d0:61:d9:0a:06:65:1a:7d:c5:65:25:1c:aa:ad:a7: a6:e0:bb:c2:9b:60:d7:a3:16:fb:d1:e2:80:bf:a4:38:05:9d: 8f:9c:82:7e:a0:d7:29:da:9c:ec:4c:9a:66:b9:5a:ce:80:3d: 58:2a:e3:28:f4:bb:5d:b0:ef:aa:9e:ea:56:cc:a0:e4:14:1f: 22:13:30:c1:58:a4:dc:47:09:b9:fc:00:86:78:ff:b2:66:44: 24:57:a8:31:3a:e1:8c:19:09:cd:2c:f0:74:04:c3:68:ca:f4: ab:ae:60:ef:56:03:5b:a7:cf:e1:05:15:d8:b1:12:6f:f1:ea: ea:04:32:92:4a:52:e3:a8:13:eb:f8:b1:5f:ee:48:c0:ef:d7: d0:5e:89:01:97:59:82:a5:4a:84:9a:15:91:6b:1a:bb:7e:8e: 8b:f7:89:67:19:5a:92:b1:87:5d:74:7c:15:f8:69:7e:60:2a: 01:f4:2e:66 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDpIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDU2NTZaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEQyQUU1OTEwNUVDNzE0 Qjc5Q0YzMDIyRTY1NzRCQzZEMTUzNTYwNUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2DJpvl1GBOq/BTYniuhXdkRzd460jCQiQm5jKGyiqp8e89QCp a9GXNbX8DNaY4ubSHKM0Embw1kMjtI2BTcpVHOAxnVvMznOccozhQvH1RTbaiNJE T2B4xm/O1NUfIhETs1gAO9Z8kYfxTRhCnXn3Z0umKn5dD0TuD3FNUvWbCq2qQ3Z+ +UiDlR/6Sk/xIqvV20zlTlZ3C3ZCip/BQPe4SC5NNg9xe7b/tY3lfVwIaI4N4wSt 1k6BS3Rsm7mNzIyfg53FUmfknVL/3Kaa6aRRWiOltu7+0KKp5XDO4SZgJtXsAaUB lEoabYh5owM05KqpBJxWuyFpJUsnV6eicIj/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU0q5ZEF7HFLec8wIuZXS8bRU1YF0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzBxNVpFRjdIRkxlYzh3SXVaWFM4YlJVMVlGMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBQmwwDQYJKoZIhvcNAQELBQADggEBAI+2ZASLCCCZvJwxGfCcvww9qEO+ jJns14geg4WT2dARCAMLoks3d41SbeqZRMIPyarUefm3Y1isvim8X6jFMN1l5APy LHrzq/KIJdBh2QoGZRp9xWUlHKqtp6bgu8KbYNejFvvR4oC/pDgFnY+cgn6g1yna nOxMmma5Ws6APVgq4yj0u12w76qe6lbMoOQUHyITMMFYpNxHCbn8AIZ4/7JmRCRX qDE64YwZCc0s8HQEw2jK9KuuYO9WA1unz+EFFdixEm/x6uoEMpJKUuOoE+v4sV/u SMDv19BeiQGXWYKlSoSaFZFrGrt+jov3iWcZWpKxh110fBX4aX5gKgH0LmY= -----END CERTIFICATE-----Generated at Sun Jun 22 16:51:54 2025 by rpki-client