$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/7dz6EofYP7EAxU2MZ6GVVJ6dTgA.roa File: 7dz6EofYP7EAxU2MZ6GVVJ6dTgA.roa (raw, json) Hash identifier: TMcBv4qyW6WTFinyJx2VFhr/0udxLy7aRvK5xK2iQRc= Subject key identifier: ED:DC:FA:12:87:D8:3F:B1:00:C5:4D:8C:67:A1:95:54:9E:9D:4E:00 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E88 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7dz6EofYP7EAxU2MZ6GVVJ6dTgA.roa Signing time: Tue 10 Jun 2025 10:56:49 +0000 ROA not before: Tue 10 Jun 2025 10:56:49 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 49.106.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3720 (0xe88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:56:49 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=EDDCFA1287D83FB100C54D8C67A195549E9D4E00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:76:e5:a6:60:2d:78:00:d5:a1:24:7e:9e:f8: 8e:05:07:4a:74:c4:8c:d9:0f:1e:65:ab:ad:02:09: e4:24:a5:ea:17:f7:1a:e9:19:b2:20:42:2e:d4:a7: 7d:0d:7b:84:51:7a:9f:8c:2d:5c:86:c7:cb:c6:ed: 0c:74:75:f1:59:70:82:53:9a:8a:fa:1e:05:c3:11: 24:a8:a1:55:5c:d1:84:47:02:8b:b9:2b:3d:1f:3b: fc:7f:82:8b:6e:44:1f:5c:c2:9f:ab:31:fd:b7:6f: 90:51:7e:5f:24:d8:4e:c1:88:e9:1c:68:97:08:83: 59:02:9a:ee:90:da:bf:3c:7b:ec:cf:20:88:34:4a: be:45:82:c5:1b:91:17:0c:42:fd:0c:c8:e2:40:b3: ad:cd:7b:79:8d:9c:c5:d1:1c:59:9e:ed:fb:df:43: 16:c7:a6:0f:b7:7f:ca:65:47:0a:f7:91:d8:bd:12: 82:a0:89:95:c2:a7:47:1f:44:a5:e4:b4:5c:6d:33: 96:82:35:0f:dd:61:2f:d1:d6:2a:35:a8:46:28:1f: aa:5f:38:38:ec:d4:59:20:01:2e:b6:ae:1f:86:ce: 5d:aa:b8:22:61:80:6c:f6:a5:cc:3c:49:c2:9c:22: df:e7:c7:53:5d:a9:1b:24:35:6e:e8:32:61:2f:80: 5a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:DC:FA:12:87:D8:3F:B1:00:C5:4D:8C:67:A1:95:54:9E:9D:4E:00 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7dz6EofYP7EAxU2MZ6GVVJ6dTgA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.240.0/21 Signature Algorithm: sha256WithRSAEncryption d8:f9:cf:fb:2a:b1:f6:40:ef:4a:cf:e6:48:a6:70:f1:86:bb: f9:fc:5b:eb:1b:8f:d6:47:93:2e:9f:75:ca:51:0d:b8:fc:ba: f5:44:90:6c:68:68:7f:d8:82:3e:5a:56:52:e4:3b:49:51:d6: 3a:46:4d:03:67:2a:ed:51:27:a6:a0:60:d9:e3:b7:e9:ef:e3: 5d:8e:9d:48:65:f0:9c:aa:6d:db:43:1f:9b:a2:17:fc:17:28: 6b:a1:b4:1c:59:f6:df:08:d4:91:57:9b:5b:92:74:9b:ea:4f: ac:b5:e8:eb:f8:78:0d:83:35:e6:9b:ba:de:ae:99:6e:b9:43: 79:f0:5e:ed:c7:19:27:f4:15:6b:d8:9e:0b:fe:1b:96:a5:4b: 93:00:22:81:5c:35:ef:84:68:6c:a4:e3:d3:95:57:d0:cb:91: 94:61:ae:fa:a2:ac:c0:8f:7d:76:f2:ed:a9:bb:9e:04:4a:ec: b9:42:80:4f:b7:85:f4:19:a4:9a:ef:42:bf:64:7c:28:c6:d0: e7:cc:df:9b:17:f8:34:53:3f:30:e1:8b:18:b6:9a:f6:b7:80: 08:9f:69:76:83:18:6f:50:85:2b:cd:de:45:57:30:90:68:cc: a7:01:41:94:80:40:f5:c0:43:de:e4:64:89:80:c0:ec:07:25: 96:fa:39:11 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDogwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDU2NDlaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEVERENGQTEyODdEODNG QjEwMEM1NEQ4QzY3QTE5NTU0OUU5RDRFMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCVduWmYC14ANWhJH6e+I4FB0p0xIzZDx5lq60CCeQkpeoX9xrp GbIgQi7Up30Ne4RRep+MLVyGx8vG7Qx0dfFZcIJTmor6HgXDESSooVVc0YRHAou5 Kz0fO/x/gotuRB9cwp+rMf23b5BRfl8k2E7BiOkcaJcIg1kCmu6Q2r88e+zPIIg0 Sr5FgsUbkRcMQv0MyOJAs63Ne3mNnMXRHFme7fvfQxbHpg+3f8plRwr3kdi9EoKg iZXCp0cfRKXktFxtM5aCNQ/dYS/R1io1qEYoH6pfODjs1FkgAS62rh+Gzl2quCJh gGz2pcw8ScKcIt/nx1NdqRskNW7oMmEvgFoXAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU7dz6EofYP7EAxU2MZ6GVVJ6dTgAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzdkejZFb2ZZUDdFQXhVMk1aNkdWVko2ZFRnQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMxavAwDQYJKoZIhvcNAQELBQADggEBANj5z/sqsfZA70rP5kimcPGGu/n8 W+sbj9ZHky6fdcpRDbj8uvVEkGxoaH/Ygj5aVlLkO0lR1jpGTQNnKu1RJ6agYNnj t+nv412OnUhl8JyqbdtDH5uiF/wXKGuhtBxZ9t8I1JFXm1uSdJvqT6y16Ov4eA2D Neabut6umW65Q3nwXu3HGSf0FWvYngv+G5alS5MAIoFcNe+EaGyk49OVV9DLkZRh rvqirMCPfXby7am7ngRK7LlCgE+3hfQZpJrvQr9kfCjG0OfM35sX+DRTPzDhixi2 mva3gAifaXaDGG9QhSvN3kVXMJBozKcBQZSAQPXAQ97kZImAwOwHJZb6ORE= -----END CERTIFICATE-----Generated at Sun Jun 22 01:05:47 2025 by rpki-client