$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/BGHGviEcqiaM3TzTb_3ugECe6H4.roa File: BGHGviEcqiaM3TzTb_3ugECe6H4.roa (raw, json) Hash identifier: a8B8jfglh7HJMrCdJl6q4vyARu8FARmpsFWjm16vS6A= Subject key identifier: 04:61:C6:BE:21:1C:AA:26:8C:DD:3C:D3:6F:FD:EE:80:40:9E:E8:7E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E51 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BGHGviEcqiaM3TzTb_3ugECe6H4.roa Signing time: Tue 10 Jun 2025 10:47:49 +0000 ROA not before: Tue 10 Jun 2025 10:47:49 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.74.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3665 (0xe51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:47:49 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=0461C6BE211CAA268CDD3CD36FFDEE80409EE87E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:53:c2:c3:d3:55:6c:33:f8:83:df:23:0a:d4: 8c:09:a9:df:7d:fb:19:c4:99:d2:1c:ad:00:c8:00: 9e:d3:15:d0:9a:03:97:5a:4b:5c:0a:85:47:a3:3c: b3:ea:34:be:e3:ba:c6:16:4f:60:fe:d3:c0:e5:40: 9b:19:20:6c:65:63:fd:17:3b:41:23:bc:6d:3d:4a: 45:93:18:e4:1a:51:a2:61:66:4a:34:28:af:b3:01: a7:c9:90:93:06:0d:57:87:21:1b:ab:01:57:7d:3a: 1a:c2:cb:79:35:4f:ac:7d:40:dc:d8:28:af:c9:88: eb:8f:c3:31:36:4a:f4:d4:1c:59:16:1a:b6:52:ae: 5c:bf:5f:52:8e:26:df:c8:1b:85:11:76:4c:e0:0f: 85:e3:fc:10:32:e6:36:c9:31:c9:cc:5d:4d:2f:78: 0b:1c:9d:9b:77:25:74:67:a6:cc:5a:dd:57:ed:98: 63:98:7a:eb:63:10:ed:a0:97:15:cf:ff:41:7a:dc: 19:67:e1:56:a2:2a:e8:4a:01:63:3a:0c:45:30:e4: 92:3e:d4:b7:8d:41:ac:98:c1:08:20:57:a2:25:2c: b0:4c:93:a4:57:73:5e:d2:5c:66:89:3c:70:7a:a2: 8b:f7:49:b4:30:f4:a8:35:82:5e:62:bf:22:7d:62: 27:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:61:C6:BE:21:1C:AA:26:8C:DD:3C:D3:6F:FD:EE:80:40:9E:E8:7E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BGHGviEcqiaM3TzTb_3ugECe6H4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.74.32.0/19 Signature Algorithm: sha256WithRSAEncryption 59:f1:a3:bd:d8:ef:98:80:45:39:7d:51:ec:45:48:64:4b:7a: 49:8e:dc:c8:cb:97:3e:c8:f6:c6:1f:19:3e:60:3a:f7:16:5b: 63:e3:9a:0e:f3:9b:77:3e:b0:3a:ec:4f:f4:d8:e7:6e:49:df: 5a:fd:c2:36:52:58:e6:0c:87:a0:d9:6c:6d:b3:07:51:c0:50: cd:5c:ce:bb:9f:da:a8:1f:88:98:b0:5b:8c:55:29:4e:04:55: bb:85:d4:94:19:d2:a3:e1:29:44:28:3e:7a:c5:1b:13:be:51: 34:cf:af:97:5f:bf:f4:b8:35:46:70:34:66:18:07:52:f0:08: 82:e6:6d:c0:48:d9:34:98:7c:62:ae:05:ae:7b:9c:94:97:74: e2:94:53:8d:c0:f0:49:35:07:31:ec:62:46:da:9d:2c:30:14: 29:18:18:bb:bd:e2:7a:d1:24:5e:99:3b:10:81:97:57:27:b0: 57:31:dd:a1:10:97:99:35:df:5f:23:28:04:7a:ec:b1:12:f7: 1a:e6:d9:74:67:76:b9:a3:8b:02:87:f3:33:15:d2:93:92:eb: b8:50:f9:87:ed:79:9d:f3:af:48:18:56:e1:5a:17:f3:7a:75: 48:90:c9:8a:af:99:8e:10:2f:81:1e:93:3c:e2:1c:52:8b:c7: 0d:67:1a:37 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDlEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDQ3NDlaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDA0NjFDNkJFMjExQ0FB MjY4Q0REM0NEMzZGRkRFRTgwNDA5RUU4N0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUU8LD01VsM/iD3yMK1IwJqd99+xnEmdIcrQDIAJ7TFdCaA5da S1wKhUejPLPqNL7jusYWT2D+08DlQJsZIGxlY/0XO0EjvG09SkWTGOQaUaJhZko0 KK+zAafJkJMGDVeHIRurAVd9OhrCy3k1T6x9QNzYKK/JiOuPwzE2SvTUHFkWGrZS rly/X1KOJt/IG4URdkzgD4Xj/BAy5jbJMcnMXU0veAscnZt3JXRnpsxa3VftmGOY eutjEO2glxXP/0F63Bln4VaiKuhKAWM6DEUw5JI+1LeNQayYwQggV6IlLLBMk6RX c17SXGaJPHB6oov3SbQw9Kg1gl5ivyJ9YiePAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUBGHGviEcqiaM3TzTb/3ugECe6H4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0JHSEd2aUVjcWlhTTNUelRiXzN1Z0VDZTZINC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUBSiAwDQYJKoZIhvcNAQELBQADggEBAFnxo73Y75iARTl9UexFSGRLekmO 3MjLlz7I9sYfGT5gOvcWW2Pjmg7zm3c+sDrsT/TY525J31r9wjZSWOYMh6DZbG2z B1HAUM1czruf2qgfiJiwW4xVKU4EVbuF1JQZ0qPhKUQoPnrFGxO+UTTPr5dfv/S4 NUZwNGYYB1LwCILmbcBI2TSYfGKuBa57nJSXdOKUU43A8Ek1BzHsYkbanSwwFCkY GLu94nrRJF6ZOxCBl1cnsFcx3aEQl5k1318jKAR67LES9xrm2XRndrmjiwKH8zMV 0pOS67hQ+YfteZ3zr0gYVuFaF/N6dUiQyYqvmY4QL4EekzziHFKLxw1nGjc= -----END CERTIFICATE-----Generated at Sun Jun 22 09:09:42 2025 by rpki-client