$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/87JxYrQvv4c9_MqIEC8tHQ4lB4k.roa File: 87JxYrQvv4c9_MqIEC8tHQ4lB4k.roa (raw, json) Hash identifier: qWkN0gDRRUhXPAD+TzDtnAnqHb+d3vqUcnuHDL7KhEg= Subject key identifier: F3:B2:71:62:B4:2F:BF:87:3D:FC:CA:88:10:2F:2D:1D:0E:25:07:89 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0EF2 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/87JxYrQvv4c9_MqIEC8tHQ4lB4k.roa Signing time: Tue 10 Jun 2025 11:12:40 +0000 ROA not before: Tue 10 Jun 2025 11:12:40 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.72.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3826 (0xef2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:12:40 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=F3B27162B42FBF873DFCCA88102F2D1D0E250789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5a:5f:1b:d8:91:6c:3e:60:7f:08:ee:98:fa: 68:7c:28:ff:a4:6b:f4:0f:6b:6a:e3:87:2e:6b:e5: dc:23:66:e5:e9:3d:2c:a4:28:d1:9d:66:8b:6a:f2: 1e:72:70:2b:50:da:db:4f:31:59:54:bd:cb:39:cb: 6e:4f:0b:9c:11:da:e4:f1:6c:7f:0a:a0:ef:30:58: 3d:6e:f7:13:a7:d6:1b:7a:d8:59:5c:85:29:6e:5a: a6:42:3a:6a:93:a4:e5:73:f1:32:e4:80:25:9a:48: 71:33:b4:30:d1:39:1b:50:73:ac:da:78:cc:13:53: 08:49:6c:f5:f5:23:09:20:a8:28:70:7f:9f:f2:ce: 1e:5e:86:25:1c:2c:87:40:c5:38:84:35:e7:e1:20: 7e:bf:50:8f:b6:bf:4c:bb:c1:f5:c9:52:34:7f:ca: a1:cd:62:6f:63:14:d0:62:b5:70:88:ac:47:04:a2: 62:2d:df:ce:0d:85:29:01:2a:6a:59:c0:74:5b:2e: c3:c7:73:70:8c:fc:31:29:0e:71:76:58:f9:11:1d: 6e:4c:a7:f1:34:15:08:04:7f:32:42:dd:f6:9b:d6: 24:ed:e2:e8:21:a2:f6:cd:ed:1f:d1:8d:a3:46:4e: 0a:4c:ce:f9:b5:d3:09:3c:8a:21:cb:b4:88:1d:0e: bb:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:B2:71:62:B4:2F:BF:87:3D:FC:CA:88:10:2F:2D:1D:0E:25:07:89 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/87JxYrQvv4c9_MqIEC8tHQ4lB4k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.11.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:ab:9c:b6:22:f4:57:4c:0d:8b:02:28:dc:11:8e:ec:7e:6b: 0f:4b:28:19:92:be:1a:07:cc:73:08:b1:19:1c:ec:a6:b1:43: 22:72:23:1f:1d:33:50:75:81:5a:e5:4f:14:fc:c4:84:60:02: 63:b0:97:f3:2e:d7:dc:99:e7:8a:94:01:f3:ca:e4:3d:7e:e0: a3:af:93:73:74:3c:62:57:16:7a:fa:9c:04:a4:bb:3b:e0:94: 38:bf:6d:cf:48:84:01:1b:d4:73:cc:7a:15:07:9c:f8:86:23: 19:08:28:a7:ac:f8:a8:40:00:ca:fc:c1:8b:b5:30:89:2c:8f: 66:f9:7c:b5:3f:74:ee:fe:2f:83:3a:0f:47:3d:86:e6:4a:1e: 0c:2d:91:e5:58:6c:14:c5:ba:22:be:b0:2b:40:5f:c6:71:ea: 48:5c:3d:f0:63:95:83:06:35:7b:59:ed:65:51:ac:1d:64:a5: 4d:a0:cc:3c:40:de:fa:48:a1:aa:98:bf:6c:c2:93:57:17:03: f1:01:ec:ef:04:0a:47:3b:67:6e:5f:df:fc:be:aa:9a:fc:bc: 4c:93:8b:fa:c5:1c:39:02:b8:42:3c:cb:8d:ae:93:5e:76:75: 54:60:fb:4e:c6:a4:00:0e:64:d6:3a:76:eb:34:2a:ed:8e:da: 8d:dd:77:26 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDvIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTEyNDBaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEYzQjI3MTYyQjQyRkJG ODczREZDQ0E4ODEwMkYyRDFEMEUyNTA3ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKWl8b2JFsPmB/CO6Y+mh8KP+ka/QPa2rjhy5r5dwjZuXpPSyk KNGdZotq8h5ycCtQ2ttPMVlUvcs5y25PC5wR2uTxbH8KoO8wWD1u9xOn1ht62Flc hSluWqZCOmqTpOVz8TLkgCWaSHEztDDRORtQc6zaeMwTUwhJbPX1IwkgqChwf5/y zh5ehiUcLIdAxTiENefhIH6/UI+2v0y7wfXJUjR/yqHNYm9jFNBitXCIrEcEomIt 384NhSkBKmpZwHRbLsPHc3CM/DEpDnF2WPkRHW5Mp/E0FQgEfzJC3fab1iTt4ugh ovbN7R/RjaNGTgpMzvm10wk8iiHLtIgdDru3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU87JxYrQvv4c9/MqIEC8tHQ4lB4kwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5Lzg3SnhZclF2djRjOV9NcUlFQzh0SFE0bEI0ay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABSAswDQYJKoZIhvcNAQELBQADggEBAI+rnLYi9FdMDYsCKNwRjux+aw9L KBmSvhoHzHMIsRkc7KaxQyJyIx8dM1B1gVrlTxT8xIRgAmOwl/Mu19yZ54qUAfPK 5D1+4KOvk3N0PGJXFnr6nASkuzvglDi/bc9IhAEb1HPMehUHnPiGIxkIKKes+KhA AMr8wYu1MIksj2b5fLU/dO7+L4M6D0c9huZKHgwtkeVYbBTFuiK+sCtAX8Zx6khc PfBjlYMGNXtZ7WVRrB1kpU2gzDxA3vpIoaqYv2zCk1cXA/EB7O8ECkc7Z25f3/y+ qpr8vEyTi/rFHDkCuEI8y42uk152dVRg+07GpAAOZNY6dus0Ku2O2o3ddyY= -----END CERTIFICATE-----Generated at Sun Jun 22 01:06:24 2025 by rpki-client