$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/1S9jf4qVRaAW3LzCHJp364gbUiI.roa File: 1S9jf4qVRaAW3LzCHJp364gbUiI.roa (raw, json) Hash identifier: y9KHbd6aoTMkp4oFZ4EScsyO0FCIzLXevtk8wstgcFc= Subject key identifier: D5:2F:63:7F:8A:95:45:A0:16:DC:BC:C2:1C:9A:77:EB:88:1B:52:22 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F69 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1S9jf4qVRaAW3LzCHJp364gbUiI.roa Signing time: Tue 10 Jun 2025 11:32:31 +0000 ROA not before: Tue 10 Jun 2025 11:32:31 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.159.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3945 (0xf69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:32:31 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=D52F637F8A9545A016DCBCC21C9A77EB881B5222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:16:18:bb:0e:74:fe:74:8e:15:c2:b5:45:1b: 3b:75:d5:f0:6f:47:8e:42:88:36:bc:0e:27:eb:6c: d1:24:be:9f:1c:05:5e:99:e5:c1:49:6f:9e:8b:1b: 8d:ba:5a:f1:61:6e:0e:18:b3:09:a3:94:96:fa:8e: 34:1d:82:85:7d:df:ca:00:54:79:0b:e9:5d:0c:52: 1c:9e:26:81:70:3c:a1:c7:17:11:56:3f:bd:2b:10: b1:69:b6:a3:cb:d8:8a:54:f7:37:4d:ff:a2:a0:4d: 92:49:60:d3:87:f8:c6:dc:89:44:d4:e5:c0:2b:43: a4:c8:c0:ec:35:60:e3:58:db:4f:06:2d:4c:40:f4: 49:52:d3:4a:74:c0:2d:6f:8f:ab:c6:35:18:ce:e8: 1c:14:7d:6e:4f:14:be:1b:4c:85:ec:81:c3:3c:52: 88:29:1e:dd:d1:8a:82:14:9d:9f:2f:8c:ce:7f:e3: b1:37:f2:c3:d3:9e:64:14:85:9e:83:d1:c8:52:ed: 5f:95:34:ba:04:a9:2a:05:f2:6d:a6:43:e6:c6:f4: 3a:87:de:8a:87:12:42:ad:2f:28:93:12:2d:bd:34: f0:2e:45:64:f7:1d:72:21:2b:ff:95:b1:5c:54:ff: 93:36:1f:bc:74:8e:a4:30:ac:92:dd:f8:54:cf:9e: 1b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:2F:63:7F:8A:95:45:A0:16:DC:BC:C2:1C:9A:77:EB:88:1B:52:22 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1S9jf4qVRaAW3LzCHJp364gbUiI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.233.0/24 Signature Algorithm: sha256WithRSAEncryption 63:18:4a:11:33:f0:83:f4:fe:fb:fd:47:1f:75:78:a4:a0:d3: 6b:61:af:76:18:25:e8:76:a5:5d:38:36:11:1e:26:98:3f:77: a8:5d:76:0f:59:62:b8:16:f8:ca:f9:3f:99:64:85:0b:1c:d6: 02:1b:de:05:77:28:7c:70:76:87:c0:e5:b8:bd:c0:39:b0:3f: a1:bc:44:02:8d:a1:9a:e6:9a:d9:34:37:d2:8d:7a:0e:69:b7: 36:b2:77:b6:b7:78:3f:3e:a7:0c:64:63:a2:11:c4:9a:e3:09: 7f:55:37:2b:12:45:ca:45:f0:6a:79:14:9f:83:f2:9c:4f:c7: 17:40:a1:aa:18:fe:3e:d2:f7:12:ff:09:73:54:ea:97:f8:7e: f8:f8:fd:59:e4:62:42:2c:c2:49:4c:9b:a8:bb:09:7a:39:08: 1a:1c:68:2c:0a:73:18:52:0c:bd:0f:a9:18:da:b2:7e:b8:49: 5b:59:3c:f6:74:d5:19:b6:98:d7:28:9a:c5:84:d5:42:a6:ff: c3:61:29:e9:d9:79:f8:07:78:53:6d:ae:c2:12:6e:96:8b:6f: ef:d6:ae:15:9f:b7:7d:b6:ae:ee:af:e6:55:b2:7e:95:f0:bf: 8c:51:48:b8:d1:92:5d:ef:f1:1c:a4:f4:56:59:b3:c1:f8:04: 64:af:bc:87 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD2kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTMyMzFaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEQ1MkY2MzdGOEE5NTQ1 QTAxNkRDQkNDMjFDOUE3N0VCODgxQjUyMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmFhi7DnT+dI4VwrVFGzt11fBvR45CiDa8DifrbNEkvp8cBV6Z 5cFJb56LG426WvFhbg4YswmjlJb6jjQdgoV938oAVHkL6V0MUhyeJoFwPKHHFxFW P70rELFptqPL2IpU9zdN/6KgTZJJYNOH+MbciUTU5cArQ6TIwOw1YONY208GLUxA 9ElS00p0wC1vj6vGNRjO6BwUfW5PFL4bTIXsgcM8UogpHt3RioIUnZ8vjM5/47E3 8sPTnmQUhZ6D0chS7V+VNLoEqSoF8m2mQ+bG9DqH3oqHEkKtLyiTEi29NPAuRWT3 HXIhK/+VsVxU/5M2H7x0jqQwrJLd+FTPnhthAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU1S9jf4qVRaAW3LzCHJp364gbUiIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzFTOWpmNHFWUmFBVzNMekNISnAzNjRnYlVpSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADcn+kwDQYJKoZIhvcNAQELBQADggEBAGMYShEz8IP0/vv9Rx91eKSg02th r3YYJeh2pV04NhEeJpg/d6hddg9ZYrgW+Mr5P5lkhQsc1gIb3gV3KHxwdofA5bi9 wDmwP6G8RAKNoZrmmtk0N9KNeg5ptzayd7a3eD8+pwxkY6IRxJrjCX9VNysSRcpF 8Gp5FJ+D8pxPxxdAoaoY/j7S9xL/CXNU6pf4fvj4/VnkYkIswklMm6i7CXo5CBoc aCwKcxhSDL0PqRjasn64SVtZPPZ01Rm2mNcomsWE1UKm/8NhKenZefgHeFNtrsIS bpaLb+/WrhWft322ru6v5lWyfpXwv4xRSLjRkl3v8Ryk9FZZs8H4BGSvvIc= -----END CERTIFICATE-----Generated at Sun Jun 22 02:20:32 2025 by rpki-client