$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3o9BrdDnOsvVd5bPqLSe8Hk2ODs.roa File: 3o9BrdDnOsvVd5bPqLSe8Hk2ODs.roa (raw, json) Hash identifier: IJM79MqQv4hbTgRCYceWwoIx9ju5OGuMrvBwJoptng8= Subject key identifier: DE:8F:41:AD:D0:E7:3A:CB:D5:77:96:CF:A8:B4:9E:F0:79:36:38:3B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0EEA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3o9BrdDnOsvVd5bPqLSe8Hk2ODs.roa Signing time: Tue 10 Jun 2025 11:12:35 +0000 ROA not before: Tue 10 Jun 2025 11:12:35 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.67.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 16:44:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3818 (0xeea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:12:35 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=DE8F41ADD0E73ACBD57796CFA8B49EF07936383B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3a:1b:10:29:c2:04:ab:b2:c4:0e:2d:d9:0b: 14:79:01:9d:e5:83:51:f1:27:75:63:10:9a:a5:d1: a4:9d:36:2f:08:39:7a:3e:5f:0a:c4:bc:8e:f5:d7: 79:25:44:81:27:c5:5f:37:d3:d7:a2:75:c6:11:ff: 96:05:6b:6f:f2:93:c9:6e:a9:89:6c:1f:d2:18:07: 92:80:59:9c:ce:32:5a:c2:2e:e1:58:5c:e1:0b:42: d5:2c:3b:13:0a:65:4f:89:74:1b:77:04:0d:55:20: a9:cd:7e:c6:70:2d:7b:f1:f6:f4:db:96:ad:d0:49: 2b:aa:56:8f:77:37:56:59:15:e6:a8:d7:ac:9f:1f: c9:2c:20:86:21:70:c6:4c:20:e0:9d:87:db:af:d8: d3:77:85:5a:8e:92:2d:9e:9a:e2:86:4b:88:ff:f1: c8:d7:79:dd:c8:4c:ff:40:6c:a5:a4:4c:d8:48:b7: 76:3e:49:96:de:b4:91:a8:ac:77:a3:45:1f:53:2d: 2e:43:06:d6:a6:f2:36:be:3e:2d:df:e6:5f:5a:c6: f0:57:2f:92:98:e7:e4:b7:14:8a:18:a9:c7:b3:4d: 43:22:a2:88:92:b1:d5:bb:87:da:06:a4:3a:f5:b8: 0c:cf:fb:49:78:82:e6:e0:c6:8d:fd:c3:61:9d:16: df:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:8F:41:AD:D0:E7:3A:CB:D5:77:96:CF:A8:B4:9E:F0:79:36:38:3B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3o9BrdDnOsvVd5bPqLSe8Hk2ODs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.67.64.0/18 Signature Algorithm: sha256WithRSAEncryption 53:90:42:ca:36:85:68:6f:ef:34:88:00:3f:b7:82:b9:57:33: e6:a8:95:e1:49:ea:59:b7:0a:a7:cb:ee:c2:06:04:a3:2d:cb: b9:72:28:72:9e:a3:53:eb:ea:81:fc:eb:fb:30:fd:24:34:bd: 0a:4f:e0:77:72:f4:08:b4:f6:1e:ee:25:f0:be:a4:2a:dd:57: 97:08:7c:d5:ea:03:12:02:19:8e:b9:36:b1:4b:f0:9f:10:2f: 23:3c:f6:14:17:ff:c0:83:b6:09:3f:d8:50:ca:fa:af:34:03: 14:69:e0:57:72:88:93:92:a9:95:9d:05:fe:97:02:03:51:ac: 53:e3:83:ca:b1:86:ed:73:e4:b6:7a:ab:d8:4b:2f:f3:91:f7: 07:9f:2d:02:e7:46:93:8f:9c:e8:e6:dd:f8:c4:53:1a:62:8a: 98:d3:b4:ce:51:9e:ec:0f:ca:20:66:82:5e:da:90:bb:de:67: 4a:18:49:14:4b:44:05:2d:82:84:a2:8f:3f:9c:a2:62:31:c9: 60:da:99:2d:44:7f:f0:c6:7b:81:ba:de:bb:f8:c0:95:3d:e9: 75:6a:cd:3a:ad:55:65:98:7d:9f:28:fd:95:aa:f0:54:3a:72: 74:81:04:1d:eb:69:e6:43:3b:c1:33:86:ef:d0:15:a6:80:14: ad:a3:88:e2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDuowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTEyMzVaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKERFOEY0MUFERDBFNzNB Q0JENTc3OTZDRkE4QjQ5RUYwNzkzNjM4M0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJOhsQKcIEq7LEDi3ZCxR5AZ3lg1HxJ3VjEJql0aSdNi8IOXo+ XwrEvI7113klRIEnxV8309eidcYR/5YFa2/yk8luqYlsH9IYB5KAWZzOMlrCLuFY XOELQtUsOxMKZU+JdBt3BA1VIKnNfsZwLXvx9vTblq3QSSuqVo93N1ZZFeao16yf H8ksIIYhcMZMIOCdh9uv2NN3hVqOki2emuKGS4j/8cjXed3ITP9AbKWkTNhIt3Y+ SZbetJGorHejRR9TLS5DBtam8ja+Pi3f5l9axvBXL5KY5+S3FIoYqcezTUMiooiS sdW7h9oGpDr1uAzP+0l4gubgxo39w2GdFt//AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3o9BrdDnOsvVd5bPqLSe8Hk2ODswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzNvOUJyZERuT3N2VmQ1YlBxTFNlOEhrMk9Ecy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYBQ0AwDQYJKoZIhvcNAQELBQADggEBAFOQQso2hWhv7zSIAD+3grlXM+ao leFJ6lm3CqfL7sIGBKMty7lyKHKeo1Pr6oH86/sw/SQ0vQpP4Hdy9Ai09h7uJfC+ pCrdV5cIfNXqAxICGY65NrFL8J8QLyM89hQX/8CDtgk/2FDK+q80AxRp4FdyiJOS qZWdBf6XAgNRrFPjg8qxhu1z5LZ6q9hLL/OR9wefLQLnRpOPnOjm3fjEUxpiipjT tM5RnuwPyiBmgl7akLveZ0oYSRRLRAUtgoSijz+comIxyWDamS1Ef/DGe4G63rv4 wJU96XVqzTqtVWWYfZ8o/ZWq8FQ6cnSBBB3raeZDO8Ezhu/QFaaAFK2jiOI= -----END CERTIFICATE-----Generated at Sat Jun 21 19:42:50 2025 by rpki-client