$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/8jlInH2lPPth5kCv5VwYAWVcdtA.roa File: 8jlInH2lPPth5kCv5VwYAWVcdtA.roa (raw, json) Hash identifier: es5IzPjlNWcF84H+Ej8DRp5hyjqpXy1zlm+aGn5yjRY= Subject key identifier: F2:39:48:9C:7D:A5:3C:FB:61:E6:40:AF:E5:5C:18:01:65:5C:76:D0 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F87 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8jlInH2lPPth5kCv5VwYAWVcdtA.roa Signing time: Tue 10 Jun 2025 11:36:16 +0000 ROA not before: Tue 10 Jun 2025 11:36:16 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.159.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3975 (0xf87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:36:16 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=F239489C7DA53CFB61E640AFE55C1801655C76D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:8b:cc:19:df:9f:36:b2:a7:9f:e5:6d:72:e7: f3:7b:cd:02:db:f5:c9:b7:8b:90:19:02:c3:42:08: 3b:15:39:df:4c:fa:0f:37:83:17:89:0b:55:8c:96: 90:f0:a0:31:12:66:0f:4a:96:ad:30:58:09:2f:2c: 40:0b:1f:a6:83:cc:59:69:28:5b:d8:2d:51:9e:9f: 9d:40:8b:50:e8:4f:ff:9d:13:d3:d6:c7:ac:e4:13: f5:3b:56:ba:f3:f7:24:97:53:7e:84:56:5e:e4:84: 9a:df:ae:bb:cf:72:a0:3d:d6:b1:fa:a8:02:f2:25: 0d:7d:1d:18:78:a2:33:83:75:8a:8d:04:dd:b6:cc: 41:99:e5:e8:49:17:d0:06:a5:b6:fe:e2:a3:f0:56: a9:b3:3b:2f:c4:aa:9c:cf:95:3d:3c:f6:c5:f0:56: 02:71:78:5a:f5:ca:5e:3d:aa:b3:d4:ad:a8:76:20: d3:1a:a2:dd:5d:8e:be:60:fa:66:43:49:bb:4c:ae: de:4c:b2:51:1e:79:14:8c:88:e6:92:48:bb:5e:62: df:8d:75:46:e1:d0:81:c2:26:9f:12:f6:e0:7f:57: 90:41:c8:dc:bf:73:c9:80:86:69:a9:09:f7:6a:90: ab:b5:96:bb:73:41:83:8f:b0:95:11:f2:26:4c:f1: 82:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:39:48:9C:7D:A5:3C:FB:61:E6:40:AF:E5:5C:18:01:65:5C:76:D0 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8jlInH2lPPth5kCv5VwYAWVcdtA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.31.0/24 Signature Algorithm: sha256WithRSAEncryption 99:b4:25:2c:d4:b6:be:51:8b:9b:a5:aa:3d:8b:64:08:5f:28: b1:78:57:fd:11:de:a7:0d:01:d7:cd:ef:b3:75:3d:49:7d:57: 28:70:ef:70:ed:c9:0b:fc:85:ae:b8:ed:cb:f4:7e:3a:e2:c9: 46:22:7a:3a:6d:c2:46:7a:64:99:19:4e:09:09:8f:d1:c5:27: 82:95:1f:d8:77:ff:6e:cb:8f:63:98:14:86:64:da:a8:1b:09: 82:0d:e3:b7:45:d9:64:03:39:cd:bd:c1:a6:7f:60:2d:06:44: 73:32:ae:d1:98:37:68:d1:d9:8f:29:0f:a3:2c:0c:7b:c8:f8: 68:33:05:04:a3:a9:e2:f4:11:1e:41:32:42:c4:9a:5d:8b:30: 33:2f:a1:82:12:01:2e:9a:6a:b6:42:b1:c5:d0:fc:99:b7:6f: f7:8e:d0:b6:50:a6:50:b0:58:3a:e7:99:14:36:8b:6a:f7:33: 57:c8:d5:45:7b:31:b4:a7:29:7b:e8:fd:8d:f3:36:46:2f:2e: c9:84:dd:7b:f4:bb:9b:d2:a4:69:e4:5a:73:3b:4b:1b:1d:a9: e0:51:bb:02:6d:a9:95:38:68:0c:6a:f9:aa:1b:89:3b:0b:59: 4b:c5:bb:56:2d:aa:01:08:ce:1a:22:88:5b:a5:55:0d:c3:7b: 5f:c8:4f:99 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD4cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTM2MTZaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEYyMzk0ODlDN0RBNTND RkI2MUU2NDBBRkU1NUMxODAxNjU1Qzc2RDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDvi8wZ3582sqef5W1y5/N7zQLb9cm3i5AZAsNCCDsVOd9M+g83 gxeJC1WMlpDwoDESZg9Klq0wWAkvLEALH6aDzFlpKFvYLVGen51Ai1DoT/+dE9PW x6zkE/U7Vrrz9ySXU36EVl7khJrfrrvPcqA91rH6qALyJQ19HRh4ojODdYqNBN22 zEGZ5ehJF9AGpbb+4qPwVqmzOy/EqpzPlT089sXwVgJxeFr1yl49qrPUrah2INMa ot1djr5g+mZDSbtMrt5MslEeeRSMiOaSSLteYt+NdUbh0IHCJp8S9uB/V5BByNy/ c8mAhmmpCfdqkKu1lrtzQYOPsJUR8iZM8YL5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU8jlInH2lPPth5kCv5VwYAWVcdtAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzhqbEluSDJsUFB0aDVrQ3Y1VndZQVdWY2R0QS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADcnx8wDQYJKoZIhvcNAQELBQADggEBAJm0JSzUtr5Ri5ulqj2LZAhfKLF4 V/0R3qcNAdfN77N1PUl9Vyhw73DtyQv8ha647cv0fjriyUYiejptwkZ6ZJkZTgkJ j9HFJ4KVH9h3/27Lj2OYFIZk2qgbCYIN47dF2WQDOc29waZ/YC0GRHMyrtGYN2jR 2Y8pD6MsDHvI+GgzBQSjqeL0ER5BMkLEml2LMDMvoYISAS6aarZCscXQ/Jm3b/eO 0LZQplCwWDrnmRQ2i2r3M1fI1UV7MbSnKXvo/Y3zNkYvLsmE3Xv0u5vSpGnkWnM7 SxsdqeBRuwJtqZU4aAxq+aobiTsLWUvFu1YtqgEIzhoiiFulVQ3De1/IT5k= -----END CERTIFICATE-----Generated at Sun Jun 22 06:15:16 2025 by rpki-client