$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/6XtdIHU5z79Zha7OddgCxu2bm-w.roa File: 6XtdIHU5z79Zha7OddgCxu2bm-w.roa (raw, json) Hash identifier: AmiEz4MHSYUy6xf42JvM9INCv2CFVLfhd1LbLOfZ+Ic= Subject key identifier: E9:7B:5D:20:75:39:CF:BF:59:85:AE:CE:75:D8:02:C6:ED:9B:9B:EC Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F8B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/6XtdIHU5z79Zha7OddgCxu2bm-w.roa Signing time: Tue 10 Jun 2025 11:36:18 +0000 ROA not before: Tue 10 Jun 2025 11:36:18 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.74.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 13:51:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3979 (0xf8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:36:18 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=E97B5D207539CFBF5985AECE75D802C6ED9B9BEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3a:1d:20:b5:9c:0b:ed:90:ef:be:70:94:0d: 59:f9:6c:b0:e5:1a:21:60:48:33:f1:4b:e6:d7:58: 38:08:23:ce:a8:c7:c2:ef:1c:87:78:0a:d7:f9:39: b8:bc:5a:88:1f:05:ec:cd:eb:a9:6e:59:4f:f4:ac: 2e:4d:23:0d:81:05:be:ad:18:68:48:e5:b0:63:c4: ab:d1:f4:2d:e7:91:c6:4d:ff:71:aa:4c:a4:ee:52: f4:c1:79:57:e8:d7:37:5e:07:7c:b2:01:c4:00:fd: 86:9f:6a:d4:6d:bb:9c:bd:90:2a:b1:44:e7:30:0a: 99:28:74:35:82:47:cc:0e:47:31:57:0d:b2:53:89: b4:8a:73:26:ec:42:e7:cc:a9:58:95:b7:9d:85:8d: 3b:2f:59:8d:2d:b3:30:c1:f2:9a:01:14:a5:cd:5f: bd:3f:1d:b3:b3:73:6c:da:ec:c5:78:a8:dd:cd:6b: ce:c3:c9:c5:62:d1:47:c4:19:43:51:27:f4:a7:e8: 6c:58:e1:3d:2c:04:6c:0d:91:a9:ef:85:0a:98:5a: 65:32:f4:07:5e:0f:5f:82:36:8e:ab:c5:57:4c:33: 09:a1:19:36:a7:a4:43:a8:55:df:14:f6:12:60:c1: 1f:21:f2:72:31:dc:02:72:f4:52:0d:38:28:62:bf: 1c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:7B:5D:20:75:39:CF:BF:59:85:AE:CE:75:D8:02:C6:ED:9B:9B:EC X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/6XtdIHU5z79Zha7OddgCxu2bm-w.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.74.240.0/21 Signature Algorithm: sha256WithRSAEncryption df:7f:c2:8e:9f:d6:4d:09:50:52:12:29:81:4f:8c:90:89:56: f5:0d:d2:93:01:11:17:fe:07:74:34:d2:b8:5e:10:e6:bf:b0: e7:53:b1:ba:3d:56:b3:83:84:1b:ef:64:96:ad:31:1e:ce:70: 49:39:5b:02:1f:41:e6:77:7b:88:69:9e:38:9f:95:28:82:52: ce:f2:e1:84:22:68:65:e8:9b:2c:75:c6:52:92:7a:dc:27:8f: 6b:34:74:f7:6b:e2:83:48:32:14:e4:a2:f9:c9:b5:0e:bf:f7: 60:15:a5:c4:5b:5d:f2:1f:be:26:d7:6e:78:2e:5e:11:d2:4b: c0:54:9d:00:0b:38:8e:2a:e2:e7:c4:1c:5f:74:b1:0d:8b:6e: 2d:64:f8:55:07:95:fa:c2:70:3f:a4:34:8d:a1:d1:7c:56:3a: 34:49:0e:e1:6b:13:1b:d2:4e:39:64:b3:58:eb:ea:51:35:4f: d3:ef:b2:7b:e5:b9:5d:f4:44:83:45:89:be:f4:35:d1:e6:a5: 4a:ad:eb:a0:b5:21:6d:b2:b6:10:e5:ce:f8:1a:20:03:63:77: 1e:64:e7:da:82:2f:f2:88:9a:4e:20:41:28:33:38:c6:92:52: e8:4a:ba:e0:05:ad:77:33:8c:54:c4:e5:01:59:6a:dc:d7:a3: 4a:64:57:7c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD4swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTM2MThaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEU5N0I1RDIwNzUzOUNG QkY1OTg1QUVDRTc1RDgwMkM2RUQ5QjlCRUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0Oh0gtZwL7ZDvvnCUDVn5bLDlGiFgSDPxS+bXWDgII86ox8Lv HId4Ctf5Obi8WogfBezN66luWU/0rC5NIw2BBb6tGGhI5bBjxKvR9C3nkcZN/3Gq TKTuUvTBeVfo1zdeB3yyAcQA/YafatRtu5y9kCqxROcwCpkodDWCR8wORzFXDbJT ibSKcybsQufMqViVt52FjTsvWY0tszDB8poBFKXNX70/HbOzc2za7MV4qN3Na87D ycVi0UfEGUNRJ/Sn6GxY4T0sBGwNkanvhQqYWmUy9AdeD1+CNo6rxVdMMwmhGTan pEOoVd8U9hJgwR8h8nIx3AJy9FINOChivxydAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU6XtdIHU5z79Zha7OddgCxu2bm+wwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzZYdGRJSFU1ejc5WmhhN09kZGdDeHUyYm0tdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBSvAwDQYJKoZIhvcNAQELBQADggEBAN9/wo6f1k0JUFISKYFPjJCJVvUN 0pMBERf+B3Q00rheEOa/sOdTsbo9VrODhBvvZJatMR7OcEk5WwIfQeZ3e4hpnjif lSiCUs7y4YQiaGXomyx1xlKSetwnj2s0dPdr4oNIMhTkovnJtQ6/92AVpcRbXfIf vibXbnguXhHSS8BUnQALOI4q4ufEHF90sQ2Lbi1k+FUHlfrCcD+kNI2h0XxWOjRJ DuFrExvSTjlks1jr6lE1T9PvsnvluV30RINFib70NdHmpUqt66C1IW2ythDlzvga IANjdx5k59qCL/KImk4gQSgzOMaSUuhKuuAFrXczjFTE5QFZatzXo0pkV3w= -----END CERTIFICATE-----Generated at Sun Jun 22 16:49:12 2025 by rpki-client