$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/7rH91jlYS56Y3b4EwWZQjKjkMS0.roa File: 7rH91jlYS56Y3b4EwWZQjKjkMS0.roa (raw, json) Hash identifier: EJ15zHXe8c0iQK7L44+U7u5gk3sQtQLfJxsXU79Glg0= Subject key identifier: EE:B1:FD:D6:39:58:4B:9E:98:DD:BE:04:C1:66:50:8C:A8:E4:31:2D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F97 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7rH91jlYS56Y3b4EwWZQjKjkMS0.roa Signing time: Tue 10 Jun 2025 11:40:27 +0000 ROA not before: Tue 10 Jun 2025 11:40:27 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 27.230.108.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3991 (0xf97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:40:27 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=EEB1FDD639584B9E98DDBE04C166508CA8E4312D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:46:63:4c:c5:e1:fb:8a:07:fc:8d:55:2e:e1: c1:2b:8b:86:55:8b:2f:a6:20:85:23:94:9c:7f:39: 0e:a1:8a:1e:37:9c:e8:26:c4:2f:c3:6e:07:33:a2: d8:e7:ed:3e:d7:a2:d6:81:76:92:e3:1c:60:c5:41: ad:4b:84:07:f1:23:a7:06:13:13:30:25:df:0f:0f: 21:fd:05:7c:8c:1a:16:2e:84:6f:4c:dd:e0:7c:02: 17:ee:58:78:39:ed:98:1f:b0:b2:1e:07:0d:61:43: 91:b5:a1:db:c8:a1:32:63:f3:c2:98:69:02:e8:7f: 8f:3c:a5:b5:e9:9f:1d:76:9a:69:20:a1:36:f7:15: d6:b2:69:97:a3:ae:8e:cf:ec:72:ea:d4:4a:05:6a: 9e:1d:e6:f4:35:b4:fd:ed:23:96:9a:b4:71:c7:d8: f9:1e:c4:ae:d1:31:77:86:56:2e:39:67:99:88:dc: dd:f8:e8:8a:69:1b:a1:69:af:d6:80:29:9d:67:62: 6d:f4:f7:c0:70:ae:cd:0c:7c:ca:1d:d0:92:54:72: 0a:5f:02:7c:9a:92:b9:fd:f1:94:4a:20:b0:0f:69: 7e:a0:de:71:f3:75:d3:ab:b9:5e:f2:2c:01:0a:c1: 72:93:51:b0:84:90:02:14:e7:6e:39:cf:4b:65:bb: d4:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:B1:FD:D6:39:58:4B:9E:98:DD:BE:04:C1:66:50:8C:A8:E4:31:2D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7rH91jlYS56Y3b4EwWZQjKjkMS0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.230.108.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:9b:1f:b2:08:fb:03:e3:c5:fd:85:50:65:74:d2:4b:d8:05: 8e:84:a9:61:42:a1:67:b1:f9:71:73:cf:ff:d5:34:89:4d:a2: 4f:40:2a:2b:63:2d:34:bd:73:3c:53:df:e3:7e:80:b5:d9:02: 06:0d:71:63:73:d5:29:d8:52:f8:47:8b:2b:fe:4b:2a:97:58: 98:3d:92:e6:d7:a9:19:e8:f7:b3:72:35:29:38:06:aa:af:9d: a2:65:8b:f8:af:fa:19:3c:cd:8c:42:d8:4b:90:f4:9f:37:25: 1e:23:8d:2f:f7:96:e1:e4:95:d2:2c:cc:eb:c5:3e:4d:2d:c6: 56:58:51:0a:7a:d6:b6:10:ca:2e:2f:55:19:6c:2c:f5:37:1f: 5d:93:6c:67:d8:67:90:7a:0b:32:84:1a:e3:69:13:4a:c1:1b: 79:24:ba:5f:bb:7b:9b:4b:10:84:b3:1e:55:86:f2:f9:81:25: 5b:b7:a2:3d:b7:59:cf:a0:a0:04:58:e2:1d:be:88:e8:36:43: 93:90:f8:b3:f5:a4:fd:bc:8b:16:e0:35:3a:c9:03:21:e9:24: 63:fe:ab:09:f4:0b:32:89:a6:71:26:da:84:a9:dc:34:0d:b4: df:39:11:ba:4a:19:be:4d:9a:3d:1a:6e:bf:86:ac:71:8e:62: 1b:37:86:f3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD5cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTQwMjdaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEVFQjFGREQ2Mzk1ODRC OUU5OEREQkUwNEMxNjY1MDhDQThFNDMxMkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFRmNMxeH7igf8jVUu4cEri4ZViy+mIIUjlJx/OQ6hih43nOgm xC/Dbgczotjn7T7XotaBdpLjHGDFQa1LhAfxI6cGExMwJd8PDyH9BXyMGhYuhG9M 3eB8AhfuWHg57ZgfsLIeBw1hQ5G1odvIoTJj88KYaQLof488pbXpnx12mmkgoTb3 FdayaZejro7P7HLq1EoFap4d5vQ1tP3tI5aatHHH2PkexK7RMXeGVi45Z5mI3N34 6IppG6Fpr9aAKZ1nYm3098Bwrs0MfMod0JJUcgpfAnyakrn98ZRKILAPaX6g3nHz ddOruV7yLAEKwXKTUbCEkAIU5245z0tlu9TVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU7rH91jlYS56Y3b4EwWZQjKjkMS0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzdySDkxamxZUzU2WTNiNEV3V1pRaktqa01TMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIb5mwwDQYJKoZIhvcNAQELBQADggEBAGybH7II+wPjxf2FUGV00kvYBY6E qWFCoWex+XFzz//VNIlNok9AKitjLTS9czxT3+N+gLXZAgYNcWNz1SnYUvhHiyv+ SyqXWJg9kubXqRno97NyNSk4BqqvnaJli/iv+hk8zYxC2EuQ9J83JR4jjS/3luHk ldIszOvFPk0txlZYUQp61rYQyi4vVRlsLPU3H12TbGfYZ5B6CzKEGuNpE0rBG3kk ul+7e5tLEISzHlWG8vmBJVu3oj23Wc+goARY4h2+iOg2Q5OQ+LP1pP28ixbgNTrJ AyHpJGP+qwn0CzKJpnEm2oSp3DQNtN85EbpKGb5Nmj0abr+GrHGOYhs3hvM= -----END CERTIFICATE-----Generated at Sun Jun 22 06:08:55 2025 by rpki-client