$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3zZQ-cTuZ4EIVKo8p-S3p9Vxw2M.roa File: 3zZQ-cTuZ4EIVKo8p-S3p9Vxw2M.roa (raw, json) Hash identifier: tgZvZiAOQtPEqDEpTL5vnI+VMomXhn/ElPC89cR2K3U= Subject key identifier: DF:36:50:F9:C4:EE:67:81:08:54:AA:3C:A7:E4:B7:A7:D5:71:C3:63 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E50 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3zZQ-cTuZ4EIVKo8p-S3p9Vxw2M.roa Signing time: Tue 10 Jun 2025 10:47:48 +0000 ROA not before: Tue 10 Jun 2025 10:47:48 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 49.105.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 14:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3664 (0xe50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:47:48 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=DF3650F9C4EE67810854AA3CA7E4B7A7D571C363 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:36:72:8f:1a:e0:02:ba:a6:17:06:7c:6f:0e: 3f:8d:65:f0:5e:00:a2:d0:47:a8:d4:c2:d0:f1:bf: 31:7d:71:27:99:bf:69:96:5f:88:d1:d2:60:17:0c: 08:2d:2d:c3:b7:58:fc:09:35:f4:2c:c3:9e:8a:35: de:65:c9:4a:89:28:4d:ca:ab:68:47:c5:36:ce:9f: 74:4a:99:2d:55:5e:fd:90:9f:b0:c2:ad:6a:76:4a: 67:b4:b1:0e:41:b8:cf:2c:83:c9:78:a1:7b:d4:f9: 9b:46:22:f7:b2:19:5e:15:7a:3d:70:f0:92:e6:ce: 90:05:0b:34:25:50:45:d3:f0:50:72:34:39:3d:07: 37:06:46:e4:b0:c9:e5:c3:15:2f:46:40:d8:59:d2: 57:82:d6:4f:7d:21:c5:6d:44:00:23:50:0c:bb:6a: d1:e9:81:63:7c:09:4f:a2:ed:ee:7b:46:6b:6b:ad: 8d:59:3a:56:2b:7c:47:42:a5:ee:7a:41:1e:70:6e: bf:94:64:c7:b4:95:de:d5:d9:e7:80:88:41:51:03: 9a:83:51:bb:c1:9b:67:72:88:c4:4d:d2:1c:d2:17: c1:59:00:39:7f:84:31:08:f0:38:e6:e7:4d:0c:05: 5e:de:de:c5:ec:ba:67:f6:2e:76:0b:47:e5:71:f4: 93:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:36:50:F9:C4:EE:67:81:08:54:AA:3C:A7:E4:B7:A7:D5:71:C3:63 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3zZQ-cTuZ4EIVKo8p-S3p9Vxw2M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.105.89.0/24 Signature Algorithm: sha256WithRSAEncryption 62:69:27:e1:ac:d7:b4:e5:a4:b7:af:a4:fd:2b:39:85:ac:dc: b8:02:67:6b:f8:d0:22:8f:ae:38:02:74:17:0e:25:8d:a5:a6: 89:e9:c5:37:36:f2:a7:e8:88:8b:ba:51:89:dd:df:fc:e7:21: f8:37:70:8f:fe:1d:64:3f:f4:17:4d:55:ba:4d:a8:a0:a5:33: 52:59:12:ce:2e:36:36:c6:e3:98:1a:cd:bd:e2:96:7a:95:b0: 08:71:87:a9:ab:26:c0:12:3e:49:3f:45:2e:32:b7:45:61:2e: ec:bc:34:ee:d6:cb:59:53:4e:00:b3:d9:e9:dd:7a:a4:56:b0: f6:c6:3a:f1:8c:ac:a8:ff:37:82:4a:28:93:d8:c9:22:26:ef: aa:4a:c0:42:55:68:f6:ad:4f:6e:dd:46:5b:ac:29:28:ae:9d: 14:55:2c:91:72:1b:b0:55:f1:29:a4:25:13:73:2d:3d:2c:17: f4:75:18:d8:23:01:14:be:d2:7a:01:ca:c9:a1:0e:7b:99:f7: 66:df:c5:9c:48:6a:96:ea:2d:43:89:40:20:0f:e8:0e:ec:96: ff:35:d6:83:3d:a0:a7:85:25:fd:5d:51:30:04:a5:83:92:8f: fe:93:47:b8:ac:2e:7b:2c:83:d9:c8:74:d0:ca:03:54:ef:c1: 94:55:2e:05 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDlAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDQ3NDhaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKERGMzY1MEY5QzRFRTY3 ODEwODU0QUEzQ0E3RTRCN0E3RDU3MUMzNjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCiNnKPGuACuqYXBnxvDj+NZfBeAKLQR6jUwtDxvzF9cSeZv2mW X4jR0mAXDAgtLcO3WPwJNfQsw56KNd5lyUqJKE3Kq2hHxTbOn3RKmS1VXv2Qn7DC rWp2Sme0sQ5BuM8sg8l4oXvU+ZtGIveyGV4Vej1w8JLmzpAFCzQlUEXT8FByNDk9 BzcGRuSwyeXDFS9GQNhZ0leC1k99IcVtRAAjUAy7atHpgWN8CU+i7e57RmtrrY1Z OlYrfEdCpe56QR5wbr+UZMe0ld7V2eeAiEFRA5qDUbvBm2dyiMRN0hzSF8FZADl/ hDEI8Djm500MBV7e3sXsumf2LnYLR+Vx9JOLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3zZQ+cTuZ4EIVKo8p+S3p9Vxw2MwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzN6WlEtY1R1WjRFSVZLbzhwLVMzcDlWeHcyTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxaVkwDQYJKoZIhvcNAQELBQADggEBAGJpJ+Gs17TlpLevpP0rOYWs3LgC Z2v40CKPrjgCdBcOJY2lponpxTc28qfoiIu6UYnd3/znIfg3cI/+HWQ/9BdNVbpN qKClM1JZEs4uNjbG45gazb3ilnqVsAhxh6mrJsASPkk/RS4yt0VhLuy8NO7Wy1lT TgCz2endeqRWsPbGOvGMrKj/N4JKKJPYySIm76pKwEJVaPatT27dRlusKSiunRRV LJFyG7BV8SmkJRNzLT0sF/R1GNgjARS+0noBysmhDnuZ92bfxZxIapbqLUOJQCAP 6A7slv811oM9oKeFJf1dUTAEpYOSj/6TR7isLnssg9nIdNDKA1TvwZRVLgU= -----END CERTIFICATE-----Generated at Sat Jun 21 16:53:25 2025 by rpki-client