$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/A_ZMLN1U2rQH-VtRPjR_xcVx2yI.roa File: A_ZMLN1U2rQH-VtRPjR_xcVx2yI.roa (raw, json) Hash identifier: 1Y6RTc+i5kkW48o+TP6BA/tW7FD70CW57CI5h4gR91I= Subject key identifier: 03:F6:4C:2C:DD:54:DA:B4:07:F9:5B:51:3E:34:7F:C5:C5:71:DB:22 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E7B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/A_ZMLN1U2rQH-VtRPjR_xcVx2yI.roa Signing time: Tue 10 Jun 2025 10:53:36 +0000 ROA not before: Tue 10 Jun 2025 10:53:36 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.66.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 15:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3707 (0xe7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:53:36 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=03F64C2CDD54DAB407F95B513E347FC5C571DB22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:21:b1:4b:30:1d:a2:9c:a4:d3:22:82:fe:41: 18:9e:e7:74:f1:0d:1c:21:d0:6b:10:67:7f:09:6a: 16:a5:e8:8b:cb:9d:f5:90:77:5c:27:08:f4:75:ad: 79:3e:1b:3a:e3:a2:8c:08:f8:5b:51:36:b4:dc:10: e9:1c:ed:83:51:f3:a0:8f:50:fd:c9:8a:d1:6e:f4: c8:2d:cd:1b:4d:47:56:09:ea:b3:4b:86:92:0e:41: 9d:aa:05:b5:7e:55:98:d7:7c:11:02:4c:19:4f:03: 17:de:d2:2d:0d:49:45:00:91:01:b3:9f:d5:5d:3a: 3e:04:28:25:5b:9a:0b:54:1a:80:11:8c:10:52:b5: 37:2f:92:e7:01:96:9a:2b:64:20:dd:a4:ef:5d:42: bc:68:c7:03:ad:bf:95:e7:b1:61:a1:c4:e9:75:08: de:4e:f6:a6:e1:78:79:01:61:a1:f6:e1:6c:70:2d: f9:8f:b8:06:c9:e1:75:bf:e6:37:b6:75:6d:2c:6d: 8f:1a:0e:73:87:b7:cc:90:b0:f6:0e:ca:20:5f:d5: bb:eb:4e:7f:f5:fb:12:91:ea:93:91:4b:57:96:b0: c5:15:ac:81:c8:12:5c:66:c6:95:64:6c:d5:2b:3c: ab:80:b1:9d:4c:9a:11:56:ac:14:ae:c4:0f:9e:8a: 96:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:F6:4C:2C:DD:54:DA:B4:07:F9:5B:51:3E:34:7F:C5:C5:71:DB:22 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/A_ZMLN1U2rQH-VtRPjR_xcVx2yI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.112.0/21 Signature Algorithm: sha256WithRSAEncryption 54:63:9a:c5:02:da:01:b9:18:1c:fe:7d:a0:1a:75:f5:86:d7: 97:85:17:30:3d:52:f6:a6:75:e0:58:1c:60:31:73:8f:d6:05: dd:b0:4f:20:ef:07:e6:91:83:a0:dd:aa:4a:bc:d5:b9:50:4f: 13:9f:1d:28:3f:2a:0a:9e:de:ea:42:aa:a4:f1:bb:0f:94:8e: 64:f1:23:f2:ee:e6:af:97:95:3c:c8:37:35:bb:2d:12:56:ed: 51:9b:51:40:8f:9b:dc:70:24:5c:57:d5:49:64:4a:63:57:bf: f6:83:ed:7c:04:53:0e:b9:2e:66:82:47:03:24:ca:c6:82:40: 36:3c:13:bd:9e:12:8c:2e:4f:38:22:22:69:f0:5b:6f:fa:d5: 87:74:2f:76:f1:1c:76:81:44:e3:df:9c:e4:92:a9:33:63:bc: 86:54:d4:20:34:f4:4d:8c:c3:bb:17:d1:35:cf:1a:bd:5e:d4: 01:dd:ec:8a:e4:6a:13:61:c1:d6:c2:75:45:d1:e4:a8:bd:44: ad:06:85:75:ab:ee:1a:e6:02:a2:73:02:2f:4f:6d:4a:b4:06: 2d:2e:64:c8:d2:a4:5f:9d:e2:d2:86:db:f8:f6:60:93:cb:2a: 9a:0f:82:02:4c:af:90:d6:17:94:ac:19:c7:c3:0b:8f:c4:21: 31:e7:13:27 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDnswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDUzMzZaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDAzRjY0QzJDREQ1NERB QjQwN0Y5NUI1MTNFMzQ3RkM1QzU3MURCMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1IbFLMB2inKTTIoL+QRie53TxDRwh0GsQZ38Jahal6IvLnfWQ d1wnCPR1rXk+GzrjoowI+FtRNrTcEOkc7YNR86CPUP3JitFu9MgtzRtNR1YJ6rNL hpIOQZ2qBbV+VZjXfBECTBlPAxfe0i0NSUUAkQGzn9VdOj4EKCVbmgtUGoARjBBS tTcvkucBlporZCDdpO9dQrxoxwOtv5XnsWGhxOl1CN5O9qbheHkBYaH24WxwLfmP uAbJ4XW/5je2dW0sbY8aDnOHt8yQsPYOyiBf1bvrTn/1+xKR6pORS1eWsMUVrIHI ElxmxpVkbNUrPKuAsZ1MmhFWrBSuxA+eipb1AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUA/ZMLN1U2rQH+VtRPjR/xcVx2yIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0FfWk1MTjFVMnJRSC1WdFJQalJfeGNWeDJ5SS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBQnAwDQYJKoZIhvcNAQELBQADggEBAFRjmsUC2gG5GBz+faAadfWG15eF FzA9UvamdeBYHGAxc4/WBd2wTyDvB+aRg6Ddqkq81blQTxOfHSg/Kgqe3upCqqTx uw+UjmTxI/Lu5q+XlTzINzW7LRJW7VGbUUCPm9xwJFxX1UlkSmNXv/aD7XwEUw65 LmaCRwMkysaCQDY8E72eEowuTzgiImnwW2/61Yd0L3bxHHaBROPfnOSSqTNjvIZU 1CA09E2Mw7sX0TXPGr1e1AHd7IrkahNhwdbCdUXR5Ki9RK0GhXWr7hrmAqJzAi9P bUq0Bi0uZMjSpF+d4tKG2/j2YJPLKpoPggJMr5DWF5SsGcfDC4/EITHnEyc= -----END CERTIFICATE-----Generated at Sat Jun 21 18:35:49 2025 by rpki-client