$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/7r3MV620qaW--CqsR_ylF5TBhoI.roa File: 7r3MV620qaW--CqsR_ylF5TBhoI.roa (raw, json) Hash identifier: EV6NYgbbQH6BEMSBIXL3xlFDQlujclbYDtmsdedayRE= Subject key identifier: EE:BD:CC:57:AD:B4:A9:A5:BE:F8:2A:AC:47:FC:A5:17:94:C1:86:82 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0EEF Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7r3MV620qaW--CqsR_ylF5TBhoI.roa Signing time: Tue 10 Jun 2025 11:12:38 +0000 ROA not before: Tue 10 Jun 2025 11:12:38 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.159.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 20:05:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3823 (0xeef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:12:38 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=EEBDCC57ADB4A9A5BEF82AAC47FCA51794C18682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:99:5a:ac:46:05:8b:fe:5b:9e:b8:c1:2f:d5: 8a:b7:84:d6:36:1c:c7:bf:62:e4:29:e4:b5:d1:f2: fc:c4:53:32:e5:aa:89:de:db:fe:bf:2f:d5:bf:43: a4:fa:dc:98:2e:9f:b2:c6:ef:eb:48:d4:2d:90:01: b9:3d:83:58:29:75:1d:09:55:55:b6:bd:f3:4b:94: 46:c7:c4:6b:34:08:4f:28:69:73:23:8f:35:7e:b9: 03:07:bb:f8:f8:02:09:31:84:37:f2:ac:18:f1:25: 24:d3:45:13:86:b3:a3:c6:0e:11:fd:43:c8:ae:83: d2:1c:9b:59:80:a4:a9:09:3c:64:11:56:a3:a7:26: 1b:c4:25:24:7b:1e:af:81:38:2e:de:1e:e4:8d:a5: ef:63:01:bb:58:c1:54:39:76:2f:ce:37:48:de:dd: 6b:bf:6d:d3:f6:ca:9c:f1:8d:ce:8e:e6:28:c3:8a: d5:5f:d3:b1:b1:16:ae:de:72:09:d2:99:45:3e:0f: 80:16:1b:ef:82:55:89:2c:bb:c5:d7:1a:34:c5:19: 9f:78:c3:53:37:87:cb:77:13:33:f5:52:40:18:42: ea:f2:ab:fc:72:2e:1b:3f:cf:e6:09:f2:a1:cd:5e: 14:3d:bb:5f:06:3f:af:d5:0a:a9:6b:d0:25:eb:46: 09:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:BD:CC:57:AD:B4:A9:A5:BE:F8:2A:AC:47:FC:A5:17:94:C1:86:82 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7r3MV620qaW--CqsR_ylF5TBhoI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.216.0/22 Signature Algorithm: sha256WithRSAEncryption d0:1e:16:7e:fe:62:75:2c:b0:46:32:8a:70:3b:e0:2a:15:16: 5a:60:af:a9:dd:4c:4f:90:16:07:73:e4:aa:6f:73:19:37:de: 7e:ab:cd:10:c7:d4:b4:eb:46:19:6e:16:a0:69:3f:53:18:87: 39:6c:68:8d:cc:9b:be:a1:13:43:30:76:2a:83:ad:8a:5d:c6: 89:df:cc:36:86:ad:62:68:dc:4f:ae:08:2a:2e:01:d5:d7:6a: a3:8c:23:ee:4a:29:3c:37:cf:b6:e3:c7:23:ce:e2:0a:44:45: 9a:e4:3e:4f:eb:dd:3c:53:c5:16:24:9c:31:e6:12:a1:6e:a6: a1:12:ae:c5:4e:f2:e3:bd:87:0e:a4:ae:22:a1:dd:77:8f:7b: 22:7f:6a:99:ee:2a:f5:e3:ce:cb:25:60:95:68:d0:42:74:92: 67:5a:59:70:12:ff:49:0e:ff:93:6d:a9:c1:4a:ed:ea:59:25: 34:ce:2a:f6:69:b2:3d:7a:6a:40:ab:16:5a:4b:74:72:09:63: 53:5e:b1:df:73:e6:2b:9d:78:e8:2f:04:79:0b:64:56:63:38: 8a:74:03:ee:73:9e:c3:88:f8:6a:44:03:ae:20:0b:db:bb:52: c3:a4:0e:aa:90:10:93:11:45:f9:d9:18:73:51:cd:83:f1:0f: e8:ab:b6:39 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDu8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTEyMzhaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEVFQkRDQzU3QURCNEE5 QTVCRUY4MkFBQzQ3RkNBNTE3OTRDMTg2ODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjmVqsRgWL/lueuMEv1Yq3hNY2HMe/YuQp5LXR8vzEUzLlqone 2/6/L9W/Q6T63Jgun7LG7+tI1C2QAbk9g1gpdR0JVVW2vfNLlEbHxGs0CE8oaXMj jzV+uQMHu/j4AgkxhDfyrBjxJSTTRROGs6PGDhH9Q8iug9Icm1mApKkJPGQRVqOn JhvEJSR7Hq+BOC7eHuSNpe9jAbtYwVQ5di/ON0je3Wu/bdP2ypzxjc6O5ijDitVf 07GxFq7ecgnSmUU+D4AWG++CVYksu8XXGjTFGZ94w1M3h8t3EzP1UkAYQuryq/xy Lhs/z+YJ8qHNXhQ9u18GP6/VCqlr0CXrRgmdAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU7r3MV620qaW++CqsR/ylF5TBhoIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzdyM01WNjIwcWFXLS1DcXNSX3lsRjVUQmhvSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALcn9gwDQYJKoZIhvcNAQELBQADggEBANAeFn7+YnUssEYyinA74CoVFlpg r6ndTE+QFgdz5Kpvcxk33n6rzRDH1LTrRhluFqBpP1MYhzlsaI3Mm76hE0MwdiqD rYpdxonfzDaGrWJo3E+uCCouAdXXaqOMI+5KKTw3z7bjxyPO4gpERZrkPk/r3TxT xRYknDHmEqFupqESrsVO8uO9hw6kriKh3XePeyJ/apnuKvXjzsslYJVo0EJ0kmda WXAS/0kO/5NtqcFK7epZJTTOKvZpsj16akCrFlpLdHIJY1Nesd9z5iudeOgvBHkL ZFZjOIp0A+5znsOI+GpEA64gC9u7UsOkDqqQEJMRRfnZGHNRzYPxD+irtjk= -----END CERTIFICATE-----Generated at Fri Jun 20 22:32:58 2025 by rpki-client