$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4wcozQJcXKSAjPGApPExtUl2vEs.roa File: 4wcozQJcXKSAjPGApPExtUl2vEs.roa (raw, json) Hash identifier: qRkp6E39zmqSeWd9BRXalPC0Uic01kbUJtkq/hd+Ff8= Subject key identifier: E3:07:28:CD:02:5C:5C:A4:80:8C:F1:80:A4:F1:31:B5:49:76:BC:4B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F11 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4wcozQJcXKSAjPGApPExtUl2vEs.roa Signing time: Tue 10 Jun 2025 11:20:14 +0000 ROA not before: Tue 10 Jun 2025 11:20:14 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 211.14.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3857 (0xf11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:20:14 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=E30728CD025C5CA4808CF180A4F131B54976BC4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:38:7b:d1:7a:d7:7d:f1:a2:f5:75:30:a7:f1: 64:6a:f1:68:51:0e:03:f4:fa:ca:fe:e9:80:e5:33: 3d:03:c5:c1:84:9a:65:6f:7b:4d:a0:8c:9b:cd:1f: af:bd:4c:80:f2:46:4d:48:e5:06:28:f6:3e:55:23: 37:1c:e3:b0:d3:c8:27:3b:ad:bd:e2:59:27:3d:92: 7a:d1:97:0a:90:78:88:8a:21:f8:d9:a9:ef:f4:be: b7:cf:43:bb:49:4e:5e:49:eb:5a:9d:fe:10:47:43: 26:8a:2d:a5:ef:65:74:31:81:be:d7:a8:f1:5a:49: eb:42:a8:94:e5:48:03:0e:15:4b:c1:74:b2:71:30: d1:92:fd:bc:9d:71:5e:25:7c:6f:01:ad:91:72:46: 6e:b1:e2:8d:36:da:5c:fd:7e:54:75:75:3a:24:79: 58:69:7e:5e:a7:2e:49:64:f6:cf:48:bb:ca:eb:45: e3:ac:aa:46:c7:80:e3:a9:fc:f8:0e:7e:20:bc:17: 72:fe:5a:5b:33:7e:08:e8:98:97:b1:44:61:3d:4e: e6:5f:dc:5c:42:83:20:56:76:67:83:16:91:8c:0d: 9a:6a:34:c6:dc:11:99:ba:05:c5:09:20:04:f6:0f: 11:57:4d:f4:ca:cf:d9:0a:fa:36:cf:9c:64:3a:90: 05:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:07:28:CD:02:5C:5C:A4:80:8C:F1:80:A4:F1:31:B5:49:76:BC:4B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4wcozQJcXKSAjPGApPExtUl2vEs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.72.0/24 Signature Algorithm: sha256WithRSAEncryption a4:01:51:bd:c7:d0:bb:85:3a:12:bd:cb:2c:11:09:07:87:4c: ff:30:1b:83:3a:a6:41:73:49:df:5b:6b:db:5a:0d:47:1d:60: 4a:80:18:80:ed:39:a4:31:36:17:da:95:34:e6:03:9a:c8:14: 35:8d:99:95:4d:47:9a:fe:75:b8:1a:46:77:c9:38:96:64:d7: 2a:ac:8d:70:9a:4b:92:31:7e:1a:09:cc:8c:8f:4b:b4:75:07: 8f:82:5a:a3:7e:02:f8:77:e2:9c:ec:a8:a9:5c:7a:d6:16:42: 70:74:4c:61:00:59:4b:09:61:dd:77:4b:0d:38:63:1f:fa:99: 14:62:8f:1f:10:dd:1d:9d:0c:29:f6:ac:be:69:1d:8f:bb:b5: 35:af:96:ad:e0:82:66:3b:5f:57:85:9c:1f:d9:69:e1:04:f9: 14:a3:0f:d0:e2:4d:fe:c3:31:09:ed:09:d3:e4:93:4c:35:61: 0f:bd:91:37:00:50:a9:16:f0:57:da:c7:67:43:74:9b:2a:f7: c7:fb:26:dc:b6:89:23:06:26:3c:d1:6c:c7:35:8f:6c:78:54: 80:7f:f8:ec:53:2f:5d:6d:e9:6a:2a:7a:57:62:0e:a9:d9:10: cd:93:80:1c:f8:a5:db:5a:a9:1c:01:ee:d2:83:a2:30:d2:0a: 4f:9a:a1:c9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDxEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTIwMTRaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEUzMDcyOENEMDI1QzVD QTQ4MDhDRjE4MEE0RjEzMUI1NDk3NkJDNEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSOHvRetd98aL1dTCn8WRq8WhRDgP0+sr+6YDlMz0DxcGEmmVv e02gjJvNH6+9TIDyRk1I5QYo9j5VIzcc47DTyCc7rb3iWSc9knrRlwqQeIiKIfjZ qe/0vrfPQ7tJTl5J61qd/hBHQyaKLaXvZXQxgb7XqPFaSetCqJTlSAMOFUvBdLJx MNGS/bydcV4lfG8BrZFyRm6x4o022lz9flR1dTokeVhpfl6nLklk9s9Iu8rrReOs qkbHgOOp/PgOfiC8F3L+WlszfgjomJexRGE9TuZf3FxCgyBWdmeDFpGMDZpqNMbc EZm6BcUJIAT2DxFXTfTKz9kK+jbPnGQ6kAWRAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU4wcozQJcXKSAjPGApPExtUl2vEswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzR3Y296UUpjWEtTQWpQR0FwUEV4dFVsMnZFcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADTDkgwDQYJKoZIhvcNAQELBQADggEBAKQBUb3H0LuFOhK9yywRCQeHTP8w G4M6pkFzSd9ba9taDUcdYEqAGIDtOaQxNhfalTTmA5rIFDWNmZVNR5r+dbgaRnfJ OJZk1yqsjXCaS5IxfhoJzIyPS7R1B4+CWqN+Avh34pzsqKlcetYWQnB0TGEAWUsJ Yd13Sw04Yx/6mRRijx8Q3R2dDCn2rL5pHY+7tTWvlq3ggmY7X1eFnB/ZaeEE+RSj D9DiTf7DMQntCdPkk0w1YQ+9kTcAUKkW8Ffax2dDdJsq98f7Jty2iSMGJjzRbMc1 j2x4VIB/+OxTL11t6WoqeldiDqnZEM2TgBz4pdtaqRwB7tKDojDSCk+aock= -----END CERTIFICATE-----Generated at Sun Jun 22 01:03:14 2025 by rpki-client