$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ACBlF9I5ktWsfdFesfATc3oU-0U.roa File: ACBlF9I5ktWsfdFesfATc3oU-0U.roa (raw, json) Hash identifier: rVDn8jbdNH+1Yt/QT50QOw9GBePzKi1l6Dm0FwQPfm8= Subject key identifier: 00:20:65:17:D2:39:92:D5:AC:7D:D1:5E:B1:F0:13:73:7A:14:FB:45 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E96 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ACBlF9I5ktWsfdFesfATc3oU-0U.roa Signing time: Tue 10 Jun 2025 10:56:58 +0000 ROA not before: Tue 10 Jun 2025 10:56:58 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 27.231.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3734 (0xe96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:56:58 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=00206517D23992D5AC7DD15EB1F013737A14FB45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:eb:44:62:c0:a2:ff:01:4b:f5:28:08:d3:51: 13:3c:6c:b4:9b:2d:93:11:f5:07:54:e8:6f:bd:8c: 02:00:ba:d3:1c:52:fe:c1:38:e1:67:db:10:85:ac: 2c:71:3d:b7:a4:05:51:b2:cc:89:35:a7:fd:f6:09: da:63:d7:17:46:a7:91:21:6a:4b:a1:23:db:db:78: c2:9e:4b:c9:59:a6:a6:12:40:71:5f:98:e6:7f:e9: 90:7b:88:09:07:de:a1:b7:36:9d:62:12:39:e6:91: f9:23:08:9d:b9:0a:60:df:b7:7c:13:0f:ba:47:f4: 27:bc:93:3d:88:be:53:2c:af:db:ff:a7:df:9d:f9: 96:6c:3d:5a:65:c0:66:8d:25:08:0d:44:ec:29:f7: 93:e7:92:1f:16:fd:4a:5f:70:ee:e0:91:2e:fc:d1: c2:de:15:28:fb:cc:d5:f4:f0:4d:9a:30:46:b2:81: ab:b6:b1:4b:9e:29:15:41:f8:5f:11:01:d4:6c:d0: eb:43:d0:4a:6d:fa:e3:e5:27:24:7b:95:df:1e:bb: 01:db:80:95:d7:90:ca:2d:6b:41:b7:2f:32:85:72: b0:bd:8b:1a:66:1c:0e:a1:b8:56:cc:ed:11:31:3b: 70:c3:b6:c6:e9:98:cc:30:8c:37:a6:8d:cf:0e:83: 26:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:20:65:17:D2:39:92:D5:AC:7D:D1:5E:B1:F0:13:73:7A:14:FB:45 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ACBlF9I5ktWsfdFesfATc3oU-0U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.231.0.0/17 Signature Algorithm: sha256WithRSAEncryption c9:13:54:0b:a7:e1:18:c8:4e:00:2b:c3:f7:77:6b:4e:e3:e0: d9:96:d7:5c:d3:43:e2:46:ca:56:b8:3f:48:2d:26:2d:ad:2e: 1d:4f:7b:e3:75:4e:a4:40:fd:bb:7a:ee:3a:04:d4:e9:5d:4b: 38:a8:2b:a2:41:0c:47:a9:ad:3a:54:9d:51:b8:05:b6:fe:60: f0:2c:08:d4:ff:9d:7b:71:12:22:0d:51:56:c7:87:79:20:1e: ac:63:cb:84:29:8e:f5:45:54:eb:24:1e:3c:47:84:88:0c:89: 7f:32:06:38:27:a5:e7:25:42:aa:64:92:f5:d4:f0:51:1a:7d: 3b:1e:5d:3e:fc:e3:56:a3:9e:e6:f2:0a:27:8b:44:a5:f9:21: 62:67:3c:bb:94:f4:17:bc:69:c6:07:ba:9c:c5:50:b5:4f:d9: 41:a9:d0:cf:2b:87:17:42:1e:8e:d6:4a:07:eb:e1:3e:10:97: 45:db:8b:ff:34:2e:38:1d:85:ea:4a:60:44:f8:40:f4:75:a1: 8d:94:81:b1:a1:c6:90:61:33:f3:ea:cb:5e:da:59:cd:be:86: 2f:d9:fc:0f:64:d8:54:cf:b8:20:49:6b:5a:94:5e:7c:19:41: 60:ce:f7:7a:b4:69:23:78:42:a2:51:8f:69:e5:e7:b6:42:6e: 09:c5:ee:c7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDpYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDU2NThaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDAwMjA2NTE3RDIzOTky RDVBQzdERDE1RUIxRjAxMzczN0ExNEZCNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDh60RiwKL/AUv1KAjTURM8bLSbLZMR9QdU6G+9jAIAutMcUv7B OOFn2xCFrCxxPbekBVGyzIk1p/32Cdpj1xdGp5EhakuhI9vbeMKeS8lZpqYSQHFf mOZ/6ZB7iAkH3qG3Np1iEjnmkfkjCJ25CmDft3wTD7pH9Ce8kz2IvlMsr9v/p9+d +ZZsPVplwGaNJQgNROwp95Pnkh8W/UpfcO7gkS780cLeFSj7zNX08E2aMEaygau2 sUueKRVB+F8RAdRs0OtD0Ept+uPlJyR7ld8euwHbgJXXkMota0G3LzKFcrC9ixpm HA6huFbM7RExO3DDtsbpmMwwjDemjc8OgyaxAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUACBlF9I5ktWsfdFesfATc3oU+0UwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0FDQmxGOUk1a3RXc2ZkRmVzZkFUYzNvVS0wVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcb5wAwDQYJKoZIhvcNAQELBQADggEBAMkTVAun4RjITgArw/d3a07j4NmW 11zTQ+JGyla4P0gtJi2tLh1Pe+N1TqRA/bt67joE1OldSzioK6JBDEeprTpUnVG4 Bbb+YPAsCNT/nXtxEiINUVbHh3kgHqxjy4QpjvVFVOskHjxHhIgMiX8yBjgnpecl QqpkkvXU8FEafTseXT7841ajnubyCieLRKX5IWJnPLuU9Be8acYHupzFULVP2UGp 0M8rhxdCHo7WSgfr4T4Ql0Xbi/80LjgdhepKYET4QPR1oY2UgbGhxpBhM/Pqy17a Wc2+hi/Z/A9k2FTPuCBJa1qUXnwZQWDO93q0aSN4QqJRj2nl57ZCbgnF7sc= -----END CERTIFICATE-----Generated at Sun Jun 22 08:07:02 2025 by rpki-client