$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4PgWZUbXBww9Fg7GiuN0h4sr-VM.roa File: 4PgWZUbXBww9Fg7GiuN0h4sr-VM.roa (raw, json) Hash identifier: q+6zgWD8Js0MLepuK64VA8w6aUjNR1ylk9lvizhw2qc= Subject key identifier: E0:F8:16:65:46:D7:07:0C:3D:16:0E:C6:8A:E3:74:87:8B:2B:F9:53 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F7D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4PgWZUbXBww9Fg7GiuN0h4sr-VM.roa Signing time: Tue 10 Jun 2025 11:36:09 +0000 ROA not before: Tue 10 Jun 2025 11:36:09 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.76.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 18:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3965 (0xf7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:36:09 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=E0F8166546D7070C3D160EC68AE374878B2BF953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:32:bb:5d:49:28:f7:27:88:e2:93:d2:a9:08: c8:7f:71:db:19:24:bd:e5:fd:f2:03:52:70:d3:f1: 59:d9:09:18:32:2d:b0:6f:79:2d:fc:04:5a:52:65: cf:b9:18:42:53:87:a6:35:de:b3:ac:fe:e2:ba:76: 94:5d:a1:34:ef:a9:ea:d8:62:cd:11:39:2e:df:ea: ed:9e:1a:b4:bc:78:d6:fe:9c:27:b6:88:ed:93:ad: 3d:60:f7:31:2b:dd:f9:5d:7d:d4:7c:43:40:b8:d1: fb:31:02:0c:03:79:2d:38:46:9d:7c:ae:4e:34:69: 3e:be:d6:5e:1d:1f:d0:63:72:67:71:cb:b4:4b:1e: c3:d0:2e:3d:86:fc:f5:97:e4:22:5d:43:cf:88:de: 4f:82:1f:df:76:47:cb:91:32:05:96:ee:ed:59:2e: a9:35:6b:3f:e5:59:02:35:15:be:9a:03:77:77:fa: 95:bf:32:67:58:2d:30:02:d2:7f:31:29:9a:76:05: 28:84:bf:63:ec:d1:8d:1a:2a:f8:48:f4:89:5e:60: 47:90:c8:62:70:35:49:e1:58:0d:f8:1d:66:83:fc: e5:ac:44:f4:67:d4:08:7f:cf:0d:87:19:10:6c:ad: e8:5f:3f:07:61:bd:00:25:51:fe:71:65:a1:d5:c8: 0c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:F8:16:65:46:D7:07:0C:3D:16:0E:C6:8A:E3:74:87:8B:2B:F9:53 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4PgWZUbXBww9Fg7GiuN0h4sr-VM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.160.0/20 Signature Algorithm: sha256WithRSAEncryption b5:1d:1e:a9:25:20:73:80:d2:bc:7d:85:43:16:f6:bc:43:ae: c6:73:2c:69:d7:86:77:03:56:9b:48:77:b5:41:87:a1:fa:6e: 6e:3e:8d:fe:30:3c:03:6f:93:9d:c7:97:1a:c4:33:b2:8a:50: 6a:a3:75:6c:7e:1f:4a:92:fe:18:31:15:55:1e:8b:14:a0:fa: 78:fc:cd:42:8a:48:fa:30:f8:8f:ad:6b:a7:9d:a7:ea:23:9c: 2c:58:7a:fe:11:58:01:af:94:39:d0:d8:a0:14:6b:42:40:92: 80:6e:a1:52:c7:11:43:9b:bf:b4:32:0a:17:79:1a:7d:95:71: 29:35:ea:c8:57:33:9e:ec:17:51:f4:57:7d:06:a6:8f:9d:c7: 45:98:0e:82:48:e9:40:69:47:65:f8:d1:1b:fe:75:40:7e:c8: 63:11:4d:95:9a:be:31:8a:a8:a0:28:de:f0:7b:50:10:f1:bd: 61:af:fc:b7:97:37:2c:75:54:7f:e6:09:d2:e3:8d:2f:b8:0e: d7:8a:55:3d:ed:02:c9:24:e8:86:e8:34:83:8a:57:80:81:9e: e7:db:d5:06:0b:c4:52:ef:d0:d4:c4:5f:6e:05:1d:8f:da:b6: 8e:d8:8c:3a:e6:5a:95:e5:5b:fc:4d:6c:54:82:4d:3d:37:01: 9c:ee:d1:34 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD30wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTM2MDlaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEUwRjgxNjY1NDZENzA3 MEMzRDE2MEVDNjhBRTM3NDg3OEIyQkY5NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1MrtdSSj3J4jik9KpCMh/cdsZJL3l/fIDUnDT8VnZCRgyLbBv eS38BFpSZc+5GEJTh6Y13rOs/uK6dpRdoTTvqerYYs0ROS7f6u2eGrS8eNb+nCe2 iO2TrT1g9zEr3fldfdR8Q0C40fsxAgwDeS04Rp18rk40aT6+1l4dH9Bjcmdxy7RL HsPQLj2G/PWX5CJdQ8+I3k+CH992R8uRMgWW7u1ZLqk1az/lWQI1Fb6aA3d3+pW/ MmdYLTAC0n8xKZp2BSiEv2Ps0Y0aKvhI9IleYEeQyGJwNUnhWA34HWaD/OWsRPRn 1Ah/zw2HGRBsrehfPwdhvQAlUf5xZaHVyAzzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU4PgWZUbXBww9Fg7GiuN0h4sr+VMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzRQZ1daVWJYQnd3OUZnN0dpdU4waDRzci1WTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBTKAwDQYJKoZIhvcNAQELBQADggEBALUdHqklIHOA0rx9hUMW9rxDrsZz LGnXhncDVptId7VBh6H6bm4+jf4wPANvk53HlxrEM7KKUGqjdWx+H0qS/hgxFVUe ixSg+nj8zUKKSPow+I+ta6edp+ojnCxYev4RWAGvlDnQ2KAUa0JAkoBuoVLHEUOb v7QyChd5Gn2VcSk16shXM57sF1H0V30Gpo+dx0WYDoJI6UBpR2X40Rv+dUB+yGMR TZWavjGKqKAo3vB7UBDxvWGv/LeXNyx1VH/mCdLjjS+4DteKVT3tAskk6IboNIOK V4CBnufb1QYLxFLv0NTEX24FHY/ato7YjDrmWpXlW/xNbFSCTT03AZzu0TQ= -----END CERTIFICATE-----Generated at Fri Jun 20 21:28:41 2025 by rpki-client