$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3mNa9bZDEr6IOcECm-lJZ-xVpTY.roa File: 3mNa9bZDEr6IOcECm-lJZ-xVpTY.roa (raw, json) Hash identifier: n9G7wylnnDw+RqHoajGOReV6nSkhP5rMcGLNbRwtdZg= Subject key identifier: DE:63:5A:F5:B6:43:12:BE:88:39:C1:02:9B:E9:49:67:EC:55:A5:36 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0ECE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3mNa9bZDEr6IOcECm-lJZ-xVpTY.roa Signing time: Tue 10 Jun 2025 11:09:06 +0000 ROA not before: Tue 10 Jun 2025 11:09:06 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.210.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 09:20:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3790 (0xece) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:09:06 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=DE635AF5B64312BE8839C1029BE94967EC55A536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:85:c7:f9:ad:94:f9:f1:4d:96:4d:0c:0c:13: 20:45:bf:33:72:0b:62:d8:a9:f4:dd:38:fc:24:7a: 2b:98:8a:35:f6:09:2f:52:e4:ce:0d:ca:13:1d:9a: 0b:72:ae:ad:57:76:5b:36:ab:d2:2e:35:92:a9:07: 8c:df:de:2f:36:e0:4d:a9:14:8b:bc:9d:cd:a7:60: 68:0d:e3:c4:72:fb:86:1b:bd:5e:17:95:ec:76:99: 67:92:99:fb:46:d9:1f:16:75:ea:ab:31:d6:44:3b: 78:6d:8c:69:89:d0:d2:b9:45:6b:2e:55:43:b2:9b: 6e:6d:68:08:47:a8:bb:57:ff:84:29:45:10:07:5e: b3:96:f9:23:ce:2a:66:85:2e:40:48:e0:3c:2b:a4: 57:db:5b:cb:0f:c5:cd:2d:a7:4b:bc:1d:bb:52:f7: 4b:c6:fe:cc:cf:f3:80:f4:cc:91:71:c2:95:33:06: 4a:93:63:e5:71:20:95:f6:67:04:93:8e:6a:38:5e: 4b:80:1a:d5:34:c2:4a:de:47:de:53:44:94:e9:ac: 3e:99:ec:fa:d8:1d:6d:ff:df:e6:63:ee:19:80:a6: 9b:9d:b8:29:54:f2:3c:6d:ca:00:59:95:28:7b:45: 30:e7:7b:ad:58:f7:00:f4:6a:05:1f:dd:62:84:11: ba:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:63:5A:F5:B6:43:12:BE:88:39:C1:02:9B:E9:49:67:EC:55:A5:36 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3mNa9bZDEr6IOcECm-lJZ-xVpTY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.32.0/21 Signature Algorithm: sha256WithRSAEncryption a9:99:01:cc:36:f6:f2:20:6f:c6:78:30:04:0d:20:2b:89:dc: 5e:2b:24:b1:f9:15:d5:42:e9:1a:c3:93:c8:65:4e:8d:80:c2: 59:51:76:83:45:5b:e4:93:a7:2f:74:43:73:87:7f:e9:11:20: 1a:68:1f:3f:4b:d4:05:a6:e0:bf:44:a6:58:0a:22:cf:bb:8f: 9d:39:49:dc:1b:9e:f4:65:6b:06:3f:9c:96:d8:84:d8:b0:e4: 70:fa:bf:0e:a9:6d:ff:b3:75:a2:ad:3a:56:4d:30:7f:1f:17: 69:d3:0e:7d:12:49:d3:60:10:fb:8d:dd:14:0a:5c:57:e2:56: 6d:a4:37:8a:3f:00:94:8f:53:cb:7a:c6:54:80:66:02:28:db: 2d:14:23:65:db:f0:57:b6:78:76:72:c6:3d:b4:c8:5e:ca:36: 2f:32:3b:d6:67:7e:be:f2:9c:1b:62:21:91:dc:f4:47:f0:53: e3:d6:30:e1:08:4a:80:cd:37:00:d2:8c:6b:5d:66:94:cf:d9: 56:a9:1f:20:61:cf:3e:40:41:4f:9c:09:50:d3:b5:4e:3c:7d: 6b:1b:41:0b:b9:d4:cc:bc:23:bd:56:ae:a2:6f:cb:d5:e3:ac: b5:c5:c2:0a:05:57:ff:ad:5b:6d:e5:9c:ff:77:0a:d9:23:16: 7f:cc:9b:56 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDs4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTA5MDZaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKERFNjM1QUY1QjY0MzEy QkU4ODM5QzEwMjlCRTk0OTY3RUM1NUE1MzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIhcf5rZT58U2WTQwMEyBFvzNyC2LYqfTdOPwkeiuYijX2CS9S 5M4NyhMdmgtyrq1Xdls2q9IuNZKpB4zf3i824E2pFIu8nc2nYGgN48Ry+4YbvV4X lex2mWeSmftG2R8WdeqrMdZEO3htjGmJ0NK5RWsuVUOym25taAhHqLtX/4QpRRAH XrOW+SPOKmaFLkBI4DwrpFfbW8sPxc0tp0u8HbtS90vG/szP84D0zJFxwpUzBkqT Y+VxIJX2ZwSTjmo4XkuAGtU0wkreR95TRJTprD6Z7PrYHW3/3+Zj7hmAppuduClU 8jxtygBZlSh7RTDne61Y9wD0agUf3WKEEbpNAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3mNa9bZDEr6IOcECm+lJZ+xVpTYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzNtTmE5YlpERXI2SU9jRUNtLWxKWi14VnBUWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPc0iAwDQYJKoZIhvcNAQELBQADggEBAKmZAcw29vIgb8Z4MAQNICuJ3F4r JLH5FdVC6RrDk8hlTo2AwllRdoNFW+STpy90Q3OHf+kRIBpoHz9L1AWm4L9EplgK Is+7j505SdwbnvRlawY/nJbYhNiw5HD6vw6pbf+zdaKtOlZNMH8fF2nTDn0SSdNg EPuN3RQKXFfiVm2kN4o/AJSPU8t6xlSAZgIo2y0UI2Xb8Fe2eHZyxj20yF7KNi8y O9Znfr7ynBtiIZHc9EfwU+PWMOEISoDNNwDSjGtdZpTP2VapHyBhzz5AQU+cCVDT tU48fWsbQQu51My8I71WrqJvy9XjrLXFwgoFV/+tW23lnP93CtkjFn/Mm1Y= -----END CERTIFICATE-----Generated at Fri Jun 20 11:39:34 2025 by rpki-client