$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/0zmV5nwDbCWS1nVRm3A0GyrfbtM.roa File: 0zmV5nwDbCWS1nVRm3A0GyrfbtM.roa (raw, json) Hash identifier: teiLbjMtXWWKA9sl4xHv4jQYqkLP0asOaKMUVt0yMW4= Subject key identifier: D3:39:95:E6:7C:03:6C:25:92:D6:75:51:9B:70:34:1B:2A:DF:6E:D3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F26 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/0zmV5nwDbCWS1nVRm3A0GyrfbtM.roa Signing time: Tue 10 Jun 2025 11:20:27 +0000 ROA not before: Tue 10 Jun 2025 11:20:27 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.76.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3878 (0xf26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:20:27 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=D33995E67C036C2592D675519B70341B2ADF6ED3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:bf:c6:7b:ee:e6:bb:91:c2:9f:6b:8d:d0:85: 1a:3e:dc:66:39:89:b7:54:48:5a:96:71:ac:ff:a3: 2f:be:e5:28:03:19:7a:42:18:26:25:c1:72:20:fc: 94:a8:13:ce:17:98:25:e6:3b:63:72:2c:b3:ff:78: 69:8f:fc:6f:33:b9:22:0f:ac:53:47:aa:56:f0:22: 90:87:39:90:b5:a8:c8:f6:a5:91:a8:b7:b2:72:27: 96:b6:66:4b:64:ef:d7:c2:33:07:f0:7b:48:da:c4: 1b:16:5a:47:0e:69:06:21:b5:89:70:8b:0e:2d:3b: 9f:11:eb:b1:fd:c8:79:3c:7a:2d:58:df:b0:54:35: 9d:a2:35:45:39:b2:10:2b:f1:8d:3e:c4:97:e5:7d: 8f:93:51:21:17:46:d9:d8:8d:2a:52:df:fd:a2:68: 87:65:b4:ec:24:78:ae:a7:bb:cf:25:21:29:ee:6c: 69:74:2c:83:db:e6:01:8e:98:4e:41:4e:83:bc:5b: e8:cc:2f:ec:c9:c7:03:f5:c1:fd:a4:30:76:4f:62: 7a:4b:bd:41:e8:60:b8:80:44:9c:56:ed:a6:3f:d5: 7a:5f:59:d2:02:bd:03:c3:e5:61:17:d9:44:c1:1c: e1:be:5c:e3:d9:90:de:f4:1d:a1:21:c3:3f:4b:64: 44:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:39:95:E6:7C:03:6C:25:92:D6:75:51:9B:70:34:1B:2A:DF:6E:D3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/0zmV5nwDbCWS1nVRm3A0GyrfbtM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.152.0/22 Signature Algorithm: sha256WithRSAEncryption c2:16:2c:1d:ff:f4:57:2b:9a:3a:6b:9d:04:79:73:01:eb:8f: 64:21:b6:c6:34:23:4f:77:67:ef:5a:e1:2f:8d:08:4c:de:a0: 90:79:54:bf:fb:50:5b:e2:2f:f9:d6:08:9d:ce:51:18:0a:41: b1:d9:bc:37:89:20:40:b2:69:1a:17:e1:e1:32:be:1b:49:04: 5a:14:ad:c4:86:3d:86:0a:bd:93:44:36:03:53:43:dd:00:f5: 49:ba:98:04:d2:7d:23:d8:07:28:65:43:78:f9:c6:ad:ed:7b: a4:09:4b:db:1a:35:d7:42:3d:53:88:24:b9:ad:df:fb:1f:11: f2:68:82:6d:8f:2b:cd:fa:3b:48:c2:54:8e:c3:8b:e4:cd:95: 4e:1a:0d:cc:57:4d:da:27:f9:b0:49:d9:2e:16:d4:d6:0f:d9: 81:56:57:a8:4c:fd:c5:05:a3:24:b0:da:07:f2:c1:15:59:53: e1:d2:a0:0d:62:ed:d1:ed:77:a8:3a:60:1b:f9:07:32:8d:34: ea:d6:c1:46:b6:ea:6f:b7:f6:08:b1:01:9d:f8:a7:31:87:13: 61:cd:75:06:ea:e5:d9:f7:14:07:0a:88:8e:02:35:53:64:79: 4f:39:7f:d1:6e:79:64:ea:4b:16:52:5a:ba:4b:b8:94:19:df: 0c:20:4f:97 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDyYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTIwMjdaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEQzMzk5NUU2N0MwMzZD MjU5MkQ2NzU1MTlCNzAzNDFCMkFERjZFRDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDxv8Z77ua7kcKfa43QhRo+3GY5ibdUSFqWcaz/oy++5SgDGXpC GCYlwXIg/JSoE84XmCXmO2NyLLP/eGmP/G8zuSIPrFNHqlbwIpCHOZC1qMj2pZGo t7JyJ5a2Zktk79fCMwfwe0jaxBsWWkcOaQYhtYlwiw4tO58R67H9yHk8ei1Y37BU NZ2iNUU5shAr8Y0+xJflfY+TUSEXRtnYjSpS3/2iaIdltOwkeK6nu88lISnubGl0 LIPb5gGOmE5BToO8W+jML+zJxwP1wf2kMHZPYnpLvUHoYLiARJxW7aY/1XpfWdIC vQPD5WEX2UTBHOG+XOPZkN70HaEhwz9LZERHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU0zmV5nwDbCWS1nVRm3A0GyrfbtMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzB6bVY1bndEYkNXUzFuVlJtM0EwR3lyZmJ0TS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTJgwDQYJKoZIhvcNAQELBQADggEBAMIWLB3/9FcrmjprnQR5cwHrj2Qh tsY0I093Z+9a4S+NCEzeoJB5VL/7UFviL/nWCJ3OURgKQbHZvDeJIECyaRoX4eEy vhtJBFoUrcSGPYYKvZNENgNTQ90A9Um6mATSfSPYByhlQ3j5xq3te6QJS9saNddC PVOIJLmt3/sfEfJogm2PK836O0jCVI7Di+TNlU4aDcxXTdon+bBJ2S4W1NYP2YFW V6hM/cUFoySw2gfywRVZU+HSoA1i7dHtd6g6YBv5BzKNNOrWwUa26m+39gixAZ34 pzGHE2HNdQbq5dn3FAcKiI4CNVNkeU85f9FueWTqSxZSWrpLuJQZ3wwgT5c= -----END CERTIFICATE-----Generated at Sat Jun 21 06:46:18 2025 by rpki-client