$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ASifplgR-8FkRLdyHxfjp5galbA.roa File: ASifplgR-8FkRLdyHxfjp5galbA.roa (raw, json) Hash identifier: R4dIPwr4yX2t/pKZZisozQyc1ZL4Zg+yAXmdMcrjs8Q= Subject key identifier: 01:28:9F:A6:58:11:FB:C1:64:44:B7:72:1F:17:E3:A7:98:1A:95:B0 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F68 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ASifplgR-8FkRLdyHxfjp5galbA.roa Signing time: Tue 10 Jun 2025 11:32:30 +0000 ROA not before: Tue 10 Jun 2025 11:32:30 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.72.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3944 (0xf68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:32:30 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=01289FA65811FBC16444B7721F17E3A7981A95B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:54:07:db:48:43:64:4e:7c:02:b2:46:9e:c8: e2:74:f8:74:32:a7:c7:d0:3d:25:3d:a2:09:05:10: e3:b5:75:79:4b:7a:cd:29:a0:19:18:d1:59:7d:a5: 4d:fe:11:cd:29:34:e2:b1:4a:48:94:84:c2:cf:dd: 6f:ef:96:8c:46:cf:1b:d5:ad:ea:17:02:f2:5c:78: 8e:36:fc:a3:c0:69:9b:6e:64:10:f5:ee:09:b8:02: 43:3e:11:56:05:f8:3d:f4:ff:36:ff:68:da:a5:d1: be:56:04:c4:c3:fe:2a:69:40:fa:b5:e3:f4:49:2f: ee:19:66:aa:f3:d3:8d:f5:f5:c9:50:07:ad:30:be: 3e:4c:27:0f:cb:68:80:7d:a4:91:c4:21:1b:ef:ff: 24:53:02:2b:70:e5:ad:e6:f7:46:a3:26:77:a6:04: 1f:2f:c0:a0:2f:44:2f:2c:ca:b6:c3:fe:19:fa:a3: 75:23:df:1e:42:02:bd:a4:a5:b1:39:82:ef:a2:f5: 73:d3:e9:87:f2:c8:0c:d5:65:c5:93:96:9d:03:4a: 03:7f:64:04:76:be:cb:21:b5:53:22:18:f5:29:07: b4:17:8f:a9:83:6e:59:a7:bc:f9:13:6b:97:5c:3c: c9:c3:64:d8:02:16:9a:b4:55:7f:f1:97:85:db:b5: 2b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:28:9F:A6:58:11:FB:C1:64:44:B7:72:1F:17:E3:A7:98:1A:95:B0 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ASifplgR-8FkRLdyHxfjp5galbA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.10.0/24 Signature Algorithm: sha256WithRSAEncryption e0:05:69:c2:c3:69:58:03:72:4e:a2:7c:22:3e:e6:0b:24:5f: da:eb:4c:15:cf:64:fe:c4:5b:01:e1:2a:d5:08:4b:f6:e1:85: 93:d3:b4:ce:19:c2:01:91:c2:f6:81:26:df:56:0f:cf:05:5b: 39:2d:e8:7b:f2:99:ad:64:e8:8e:59:2a:ed:6e:9a:c6:84:13: 38:9c:3a:42:ad:8b:c1:3f:9a:c5:cc:75:aa:ca:ca:a6:17:92: 91:3f:4f:28:8b:79:09:73:2e:67:6c:0c:3f:15:9f:d6:1e:2b: 5e:d0:e3:45:c9:61:12:17:df:1a:50:5c:ac:00:87:de:ab:3c: 24:3c:0e:c6:f7:c2:ab:13:bc:34:ea:8d:9b:a8:4a:29:9b:26: 3f:b3:b3:a0:3b:2b:0b:73:68:07:22:8f:0c:19:c1:cc:af:35: db:e8:a1:02:79:2a:10:6e:f4:a1:5d:a3:79:df:1e:3b:8d:3c: 83:9b:44:79:e1:12:4e:7d:ee:2a:1c:38:88:ca:14:30:80:80: e1:c3:9d:24:03:76:de:e7:00:b6:f4:f3:21:46:90:d7:74:04: 56:71:b7:11:36:3a:3a:4e:2c:b7:18:53:12:0a:b5:95:bf:45: 80:a6:d2:6e:ef:ba:c2:66:eb:23:26:1b:ed:6b:86:fa:c3:68: 45:36:ef:0d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD2gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTMyMzBaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDAxMjg5RkE2NTgxMUZC QzE2NDQ0Qjc3MjFGMTdFM0E3OTgxQTk1QjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoVAfbSENkTnwCskaeyOJ0+HQyp8fQPSU9ogkFEOO1dXlLes0p oBkY0Vl9pU3+Ec0pNOKxSkiUhMLP3W/vloxGzxvVreoXAvJceI42/KPAaZtuZBD1 7gm4AkM+EVYF+D30/zb/aNql0b5WBMTD/ippQPq14/RJL+4ZZqrz04319clQB60w vj5MJw/LaIB9pJHEIRvv/yRTAitw5a3m90ajJnemBB8vwKAvRC8syrbD/hn6o3Uj 3x5CAr2kpbE5gu+i9XPT6YfyyAzVZcWTlp0DSgN/ZAR2vsshtVMiGPUpB7QXj6mD blmnvPkTa5dcPMnDZNgCFpq0VX/xl4XbtSu/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUASifplgR+8FkRLdyHxfjp5galbAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0FTaWZwbGdSLThGa1JMZHlIeGZqcDVnYWxiQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABSAowDQYJKoZIhvcNAQELBQADggEBAOAFacLDaVgDck6ifCI+5gskX9rr TBXPZP7EWwHhKtUIS/bhhZPTtM4ZwgGRwvaBJt9WD88FWzkt6Hvyma1k6I5ZKu1u msaEEzicOkKti8E/msXMdarKyqYXkpE/TyiLeQlzLmdsDD8Vn9YeK17Q40XJYRIX 3xpQXKwAh96rPCQ8Dsb3wqsTvDTqjZuoSimbJj+zs6A7KwtzaAcijwwZwcyvNdvo oQJ5KhBu9KFdo3nfHjuNPIObRHnhEk597iocOIjKFDCAgOHDnSQDdt7nALb08yFG kNd0BFZxtxE2OjpOLLcYUxIKtZW/RYCm0m7vusJm6yMmG+1rhvrDaEU27w0= -----END CERTIFICATE-----Generated at Sun Jun 22 00:32:30 2025 by rpki-client