$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/9l2IozP_4BuDv-7tuXV3bX5FNzw.roa File: 9l2IozP_4BuDv-7tuXV3bX5FNzw.roa (raw, json) Hash identifier: ZEudS3pa8NzYQggNRTfGZH23REEzrHX7qM0JVLlpQO8= Subject key identifier: F6:5D:88:A3:33:FF:E0:1B:83:BF:EE:ED:B9:75:77:6D:7E:45:37:3C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F6E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/9l2IozP_4BuDv-7tuXV3bX5FNzw.roa Signing time: Tue 10 Jun 2025 11:32:33 +0000 ROA not before: Tue 10 Jun 2025 11:32:33 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 49.103.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3950 (0xf6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:32:33 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=F65D88A333FFE01B83BFEEEDB975776D7E45373C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:16:d1:91:bb:00:2e:41:1d:e3:74:cd:de:71: 53:ea:4c:5b:72:b2:a6:f4:1d:bc:dc:b0:f8:d5:9f: 6e:d4:e1:f2:5a:8c:76:99:53:6a:8a:13:a1:35:38: 7e:4b:04:ae:2b:83:5d:e4:5a:7c:88:ab:e8:14:1e: 55:81:0d:7a:86:d6:37:bc:bf:8a:61:df:69:33:c7: a9:b2:f3:c1:c7:84:9a:83:11:50:c4:44:da:c8:af: e1:45:10:4c:79:85:63:da:44:50:ba:ad:ea:76:91: f6:dc:19:0a:15:7e:af:5e:ab:54:eb:cb:1a:c2:21: 5f:1d:b3:5b:19:4b:0f:bb:b2:53:7a:e8:8a:0c:c2: 8a:c6:ff:98:40:f0:16:f0:af:56:17:bc:da:37:95: ec:b6:31:b9:c3:76:0d:67:50:bd:06:6d:c7:70:3e: d1:ef:0f:b6:c6:6a:d4:32:33:05:f9:0a:b4:1b:d4: 30:e0:f1:05:48:71:d7:11:48:26:70:7b:0d:cd:19: 0a:06:94:fd:d7:70:fe:27:d9:f9:57:fb:b4:06:2b: 6b:60:37:28:c4:dc:b2:9b:d4:db:eb:20:81:9d:62: a2:9d:e4:21:1c:3f:73:c8:fd:f4:05:46:e0:36:fd: 02:44:03:c3:7e:83:94:4d:20:bc:de:ad:c0:ba:82: 1f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:5D:88:A3:33:FF:E0:1B:83:BF:EE:ED:B9:75:77:6D:7E:45:37:3C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/9l2IozP_4BuDv-7tuXV3bX5FNzw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.103.17.0/24 Signature Algorithm: sha256WithRSAEncryption ac:18:d5:79:3f:51:db:1e:5f:72:59:74:78:1e:0e:e6:f2:06: d3:86:a3:24:a2:03:a3:81:10:9b:ae:b6:a3:5a:53:c3:82:0a: 36:1c:b1:12:a3:6b:25:6c:56:aa:90:c3:b6:c2:4b:8e:35:ae: f3:0c:5b:6f:34:64:7a:ac:c7:87:14:5c:42:37:d6:81:31:a1: a0:d7:8c:70:34:1e:4d:e0:61:59:30:c2:31:a5:72:78:a2:1b: 27:91:be:2a:e0:0c:81:e8:fe:35:bb:47:4f:08:8b:28:e7:97: 71:4d:b1:f3:73:0f:9e:1d:71:1d:2c:19:71:e3:d1:35:01:85: ce:e3:8a:6a:dc:28:36:0a:15:03:03:a6:b3:61:fb:6c:39:85: 85:db:bb:34:cd:5a:8f:49:63:2f:59:bd:65:31:f8:5d:97:7e: 4f:b8:6b:e2:be:92:6c:ae:a0:33:36:64:c0:3a:b7:57:ce:cc: 68:72:68:54:f9:00:5e:07:e4:76:03:ef:3e:e1:da:9f:d1:d9: 86:3a:b1:9b:c0:ed:ca:b2:8b:39:ff:1d:0b:b1:72:ca:2e:be: 54:68:22:04:83:fd:9c:bd:e9:a2:ae:69:dd:ea:34:ce:d4:90: f1:da:63:a5:4b:52:7d:96:db:e8:39:99:9f:48:64:6d:b4:b4: c7:c2:69:11 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD24wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTMyMzNaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEY2NUQ4OEEzMzNGRkUw MUI4M0JGRUVFREI5NzU3NzZEN0U0NTM3M0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/FtGRuwAuQR3jdM3ecVPqTFtysqb0HbzcsPjVn27U4fJajHaZ U2qKE6E1OH5LBK4rg13kWnyIq+gUHlWBDXqG1je8v4ph32kzx6my88HHhJqDEVDE RNrIr+FFEEx5hWPaRFC6rep2kfbcGQoVfq9eq1TryxrCIV8ds1sZSw+7slN66IoM worG/5hA8Bbwr1YXvNo3ley2MbnDdg1nUL0GbcdwPtHvD7bGatQyMwX5CrQb1DDg 8QVIcdcRSCZwew3NGQoGlP3XcP4n2flX+7QGK2tgNyjE3LKb1NvrIIGdYqKd5CEc P3PI/fQFRuA2/QJEA8N+g5RNILzercC6gh/DAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU9l2IozP/4BuDv+7tuXV3bX5FNzwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzlsMklvelBfNEJ1RHYtN3R1WFYzYlg1Rk56dy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxZxEwDQYJKoZIhvcNAQELBQADggEBAKwY1Xk/UdseX3JZdHgeDubyBtOG oySiA6OBEJuutqNaU8OCCjYcsRKjayVsVqqQw7bCS441rvMMW280ZHqsx4cUXEI3 1oExoaDXjHA0Hk3gYVkwwjGlcniiGyeRvirgDIHo/jW7R08Iiyjnl3FNsfNzD54d cR0sGXHj0TUBhc7jimrcKDYKFQMDprNh+2w5hYXbuzTNWo9JYy9ZvWUx+F2Xfk+4 a+K+kmyuoDM2ZMA6t1fOzGhyaFT5AF4H5HYD7z7h2p/R2YY6sZvA7cqyizn/HQux csouvlRoIgSD/Zy96aKuad3qNM7UkPHaY6VLUn2W2+g5mZ9IZG20tMfCaRE= -----END CERTIFICATE-----Generated at Sun Jun 22 03:57:23 2025 by rpki-client