$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/5aKO8Q9wxPAAermCLapM34xzqmc.roa File: 5aKO8Q9wxPAAermCLapM34xzqmc.roa (raw, json) Hash identifier: KpWI9GNs5ZL2I8eMorsm/ItFxRB8AJaCZdZRicD/H10= Subject key identifier: E5:A2:8E:F1:0F:70:C4:F0:00:7A:B9:82:2D:AA:4C:DF:8C:73:AA:67 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F96 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5aKO8Q9wxPAAermCLapM34xzqmc.roa Signing time: Tue 10 Jun 2025 11:36:23 +0000 ROA not before: Tue 10 Jun 2025 11:36:23 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.79.44.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3990 (0xf96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:36:23 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=E5A28EF10F70C4F0007AB9822DAA4CDF8C73AA67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:09:70:cd:cd:6c:b3:11:dd:73:d7:de:f1:52: 99:79:a3:3c:d2:8a:77:1c:ca:ef:05:2d:57:87:89: 01:42:ad:68:f8:bf:17:7c:e9:5a:ca:a0:0e:36:7e: 9d:95:68:50:fc:ce:e0:96:20:62:5c:65:fe:8d:56: bd:9a:b5:fb:3d:ef:20:07:76:96:e2:a3:86:b2:66: 95:8c:5c:37:46:9c:de:59:01:15:91:a3:b9:fc:30: 35:79:d1:01:64:f2:4f:5c:bb:b9:3a:15:8b:a7:98: a1:30:e7:cb:54:de:9b:f2:20:d2:b0:06:ca:0d:cd: 8b:03:3a:37:19:75:e5:24:23:8a:c6:3f:88:ef:aa: 74:20:11:64:f6:18:56:a6:83:d0:a1:51:fb:0a:b9: 72:97:81:c7:e9:4d:fc:9d:77:3d:d4:0f:18:75:7e: 7f:2f:52:25:61:ce:62:e9:21:56:ad:66:d5:f4:63: 0c:9a:6e:d8:ab:c0:e4:f6:50:83:ae:af:26:82:5a: c1:d9:42:53:83:1d:4b:c4:1c:b4:eb:61:83:93:19: 1d:2e:7a:96:b8:ee:25:f7:55:ce:cd:0f:41:63:6c: bf:f7:71:88:04:df:3e:cf:de:69:03:1f:92:28:40: 04:b7:a5:18:25:01:b9:f3:b7:c3:9a:97:d7:21:ca: dd:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:A2:8E:F1:0F:70:C4:F0:00:7A:B9:82:2D:AA:4C:DF:8C:73:AA:67 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5aKO8Q9wxPAAermCLapM34xzqmc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.44.0/22 Signature Algorithm: sha256WithRSAEncryption 19:1a:b2:23:a7:a1:91:ae:ce:60:cd:92:53:84:85:52:c5:ab: 49:0a:cf:98:b8:51:11:21:45:c5:7b:35:17:bf:fb:ea:78:0d: 3a:56:bc:cb:93:59:8b:3b:1d:af:a5:af:c2:ae:2a:e7:3b:d3: 6d:a6:5a:e1:5b:3a:38:6e:6f:c3:25:16:b5:db:1c:71:c3:04: 10:f7:c4:2c:50:5c:95:df:79:ac:6a:b0:3e:01:cf:b4:91:b0: f2:22:eb:0e:b3:38:48:9a:b0:e9:18:ab:52:91:85:7d:93:83: 28:b8:22:a5:53:15:52:19:8f:5c:39:1f:c6:cd:bc:dd:14:c6: a3:34:89:08:de:70:28:4e:f7:f1:4d:0c:3e:44:d5:09:23:e2: db:0a:e8:f8:14:c9:a6:80:27:1d:65:ef:ec:08:dc:06:80:23: f2:66:1a:a5:3d:7d:d4:0e:4c:e0:56:10:78:4d:6d:41:37:db: a7:ef:1a:0d:ea:36:ce:c2:85:eb:2c:f8:70:1f:68:43:a4:f6: 44:1d:17:9b:92:28:da:10:7b:81:81:97:ca:dd:9d:8c:1a:fa: f2:70:53:4f:3e:99:85:37:b2:96:27:69:bc:f0:ed:a7:2c:de: c6:91:e9:76:97:d6:c9:5b:27:47:37:ff:42:63:9c:8b:87:ee: 8c:9a:d3:fc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD5YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTM2MjNaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEU1QTI4RUYxMEY3MEM0 RjAwMDdBQjk4MjJEQUE0Q0RGOEM3M0FBNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDICXDNzWyzEd1z197xUpl5ozzSinccyu8FLVeHiQFCrWj4vxd8 6VrKoA42fp2VaFD8zuCWIGJcZf6NVr2atfs97yAHdpbio4ayZpWMXDdGnN5ZARWR o7n8MDV50QFk8k9cu7k6FYunmKEw58tU3pvyINKwBsoNzYsDOjcZdeUkI4rGP4jv qnQgEWT2GFamg9ChUfsKuXKXgcfpTfyddz3UDxh1fn8vUiVhzmLpIVatZtX0Ywya btirwOT2UIOuryaCWsHZQlODHUvEHLTrYYOTGR0uepa47iX3Vc7ND0FjbL/3cYgE 3z7P3mkDH5IoQAS3pRglAbnzt8Oal9chyt1LAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU5aKO8Q9wxPAAermCLapM34xzqmcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzVhS084UTl3eFBBQWVybUNMYXBNMzR4enFtYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTywwDQYJKoZIhvcNAQELBQADggEBABkasiOnoZGuzmDNklOEhVLFq0kK z5i4UREhRcV7NRe/++p4DTpWvMuTWYs7Ha+lr8KuKuc7022mWuFbOjhub8MlFrXb HHHDBBD3xCxQXJXfeaxqsD4Bz7SRsPIi6w6zOEiasOkYq1KRhX2Tgyi4IqVTFVIZ j1w5H8bNvN0UxqM0iQjecChO9/FNDD5E1Qkj4tsK6PgUyaaAJx1l7+wI3AaAI/Jm GqU9fdQOTOBWEHhNbUE326fvGg3qNs7Chess+HAfaEOk9kQdF5uSKNoQe4GBl8rd nYwa+vJwU08+mYU3spYnabzw7acs3saR6XaX1slbJ0c3/0JjnIuH7oya0/w= -----END CERTIFICATE-----Generated at Sun Jun 22 01:08:35 2025 by rpki-client