$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/23KG7Flj5bBS4JLD6IiT0ZKIEZ0.roa File: 23KG7Flj5bBS4JLD6IiT0ZKIEZ0.roa (raw, json) Hash identifier: CNpzJeBZ3X8Phk2qLPV40+jZYf8Ig+irqBMt0DqYfgM= Subject key identifier: DB:72:86:EC:59:63:E5:B0:52:E0:92:C3:E8:88:93:D1:92:88:11:9D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E58 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/23KG7Flj5bBS4JLD6IiT0ZKIEZ0.roa Signing time: Tue 10 Jun 2025 10:47:52 +0000 ROA not before: Tue 10 Jun 2025 10:47:52 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.210.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3672 (0xe58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:47:52 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=DB7286EC5963E5B052E092C3E88893D19288119D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:92:61:e4:10:96:fa:74:65:73:17:71:3f:d2: 70:6f:36:42:ba:b7:35:54:41:d9:a0:62:4e:67:da: d6:47:17:1d:09:ea:5e:24:1f:52:a2:75:e0:a3:05: 77:2b:2f:bf:03:66:68:f9:00:f5:8c:42:b4:4b:f1: d1:da:88:49:eb:3f:69:1c:84:54:cb:ae:04:67:b9: 30:43:a9:2a:fa:73:28:04:ce:06:14:b0:67:91:c3: ec:fc:92:01:5d:03:8c:39:d8:6c:08:a3:7e:98:6a: f7:7e:dd:0f:d1:c5:48:b2:0f:cb:68:a0:91:50:f9: cb:2f:6a:ea:ad:71:75:2b:c4:a7:45:21:6f:79:e8: 5f:ca:56:f5:d6:96:9f:cd:a4:41:62:93:ae:2e:3d: cd:5e:0d:57:66:36:34:bb:5d:ea:44:e8:7c:29:cd: 04:9b:9c:d2:61:3c:5d:90:b1:c3:fb:f9:28:da:ad: 59:08:ba:80:f0:62:19:38:83:b3:b4:c6:f2:9e:ce: 2c:d7:0a:46:b8:67:76:f9:38:23:d0:06:d8:4c:97: 0c:9a:90:e8:05:fa:b5:02:4b:55:e0:4d:3f:2f:da: d1:b8:56:42:63:07:de:13:64:45:a2:e6:69:01:03: 4e:45:4d:2e:96:c3:f0:ca:3c:d5:2c:78:8c:c4:08: 1b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:72:86:EC:59:63:E5:B0:52:E0:92:C3:E8:88:93:D1:92:88:11:9D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/23KG7Flj5bBS4JLD6IiT0ZKIEZ0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.88.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:78:72:ad:c8:7d:1c:09:b7:e7:14:94:81:09:a4:6d:9e:1a: 26:a0:73:a9:51:a3:54:b8:45:93:ed:7f:96:ab:22:90:9b:aa: fe:e2:33:eb:26:cc:2b:53:cb:a8:3b:4e:2d:97:40:15:69:2a: 4c:c4:7d:e0:0b:74:a1:63:5c:14:53:45:84:61:b2:65:bc:18: af:e8:19:2a:ac:47:97:00:4b:6e:d5:82:fa:f6:60:0c:f3:5d: ec:c8:69:f1:c0:d7:9b:51:b1:93:a5:1e:44:0d:3e:86:72:b4: cb:5f:ae:54:54:40:cc:bb:74:84:f9:25:e6:b8:b0:47:9e:47: 95:8c:e6:d3:eb:f5:0b:62:d6:d2:13:19:9b:9f:4c:a0:4f:29: 9c:61:18:c7:2c:19:38:26:76:27:1c:7a:f3:8a:49:65:0f:3b: 44:c1:2c:aa:85:39:7c:05:08:75:76:40:c6:81:3c:ea:9e:c8: 99:9b:bf:c8:86:e4:23:55:d1:7e:1e:7e:d7:69:5c:90:f6:9d: 50:79:2e:e4:bd:37:b4:92:60:92:6f:2a:c4:dd:11:5c:9d:f9: 39:df:2b:46:e4:f8:21:e0:9c:27:44:b5:61:51:d6:7e:f6:4b: 20:6a:91:c1:df:ae:29:23:a9:2b:43:d4:1d:44:a3:2a:fd:6b: 6a:26:03:b6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDlgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDQ3NTJaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKERCNzI4NkVDNTk2M0U1 QjA1MkUwOTJDM0U4ODg5M0QxOTI4ODExOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfkmHkEJb6dGVzF3E/0nBvNkK6tzVUQdmgYk5n2tZHFx0J6l4k H1KideCjBXcrL78DZmj5APWMQrRL8dHaiEnrP2kchFTLrgRnuTBDqSr6cygEzgYU sGeRw+z8kgFdA4w52GwIo36Yavd+3Q/RxUiyD8tooJFQ+csvauqtcXUrxKdFIW95 6F/KVvXWlp/NpEFik64uPc1eDVdmNjS7XepE6HwpzQSbnNJhPF2QscP7+SjarVkI uoDwYhk4g7O0xvKezizXCka4Z3b5OCPQBthMlwyakOgF+rUCS1XgTT8v2tG4VkJj B94TZEWi5mkBA05FTS6Ww/DKPNUseIzECBuHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU23KG7Flj5bBS4JLD6IiT0ZKIEZ0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzIzS0c3RmxqNWJCUzRKTEQ2SWlUMFpLSUVaMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALc0lgwDQYJKoZIhvcNAQELBQADggEBAB54cq3IfRwJt+cUlIEJpG2eGiag c6lRo1S4RZPtf5arIpCbqv7iM+smzCtTy6g7Ti2XQBVpKkzEfeALdKFjXBRTRYRh smW8GK/oGSqsR5cAS27Vgvr2YAzzXezIafHA15tRsZOlHkQNPoZytMtfrlRUQMy7 dIT5Jea4sEeeR5WM5tPr9Qti1tITGZufTKBPKZxhGMcsGTgmdiccevOKSWUPO0TB LKqFOXwFCHV2QMaBPOqeyJmbv8iG5CNV0X4eftdpXJD2nVB5LuS9N7SSYJJvKsTd EVyd+TnfK0bk+CHgnCdEtWFR1n72SyBqkcHfrikjqStD1B1Eoyr9a2omA7Y= -----END CERTIFICATE-----Generated at Sun Jun 22 06:33:17 2025 by rpki-client