$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/C66l9tV8fF2iha5eftnnTb_ytnY.roa File: C66l9tV8fF2iha5eftnnTb_ytnY.roa (raw, json) Hash identifier: sXra1bJfqTWlIbpGnsISZJp+FoTUx3lVRANi+i9ngQM= Subject key identifier: 0B:AE:A5:F6:D5:7C:7C:5D:A2:85:AE:5E:7E:D9:E7:4D:BF:F2:B6:76 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0ED8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/C66l9tV8fF2iha5eftnnTb_ytnY.roa Signing time: Tue 10 Jun 2025 11:09:14 +0000 ROA not before: Tue 10 Jun 2025 11:09:14 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 27.230.56.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3800 (0xed8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:09:14 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=0BAEA5F6D57C7C5DA285AE5E7ED9E74DBFF2B676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:3e:52:90:86:b4:ae:4b:a9:03:c9:e1:8e:eb: 80:51:13:36:d7:29:65:00:c4:8d:83:9a:a4:3e:f9: 11:30:66:94:80:1d:5e:d4:ac:1e:36:ea:08:7a:ca: f9:c8:01:ab:e7:61:59:17:24:9a:f9:73:20:d9:41: 8d:ed:eb:0f:cf:1e:0c:c5:9d:91:79:dd:8b:f9:2f: 30:23:16:97:27:28:1f:58:a4:09:0a:52:49:6d:48: 67:15:a4:37:ba:ef:f4:eb:e8:65:98:e3:58:d2:b9: 38:3b:9e:46:36:97:e5:a6:45:76:79:33:10:eb:5f: d0:a8:89:c3:59:9e:d6:db:6a:bc:1c:90:5b:d4:e4: 51:e5:26:e7:c2:83:b8:7b:a2:43:c3:65:03:8b:16: 04:1c:5a:d4:d9:7c:0f:9c:61:02:b3:ed:05:f1:8e: 00:15:0f:ad:59:9e:dc:38:d3:fd:5e:01:ef:5c:cb: 30:c7:64:8e:f0:f3:ff:7f:e8:e7:19:ca:11:ba:fe: 7e:af:3f:a0:52:e3:e9:e4:32:a5:b4:e7:eb:31:43: fe:0f:8b:98:99:37:8c:8c:50:d2:d0:30:bc:c0:5f: d3:b8:ca:15:5f:1c:cc:bd:1e:ca:6f:cf:bc:46:c4: b5:6a:f9:37:55:79:e4:ce:7d:b0:9e:26:0f:b6:0d: c3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:AE:A5:F6:D5:7C:7C:5D:A2:85:AE:5E:7E:D9:E7:4D:BF:F2:B6:76 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/C66l9tV8fF2iha5eftnnTb_ytnY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.230.56.0/22 Signature Algorithm: sha256WithRSAEncryption 65:5e:0b:db:1e:3e:6a:d0:31:1e:8f:f0:34:a6:86:41:84:c5: 68:f0:b4:5d:81:d7:aa:62:6f:74:4b:9b:cf:c4:6e:4e:04:81: 45:ed:00:5f:b8:0d:0c:7a:e7:db:2c:8d:4b:8d:82:ad:8f:82: a6:51:0c:77:b5:de:c1:c1:ed:f0:06:33:b7:9a:01:5c:e7:95: e2:3b:c9:75:ec:fa:da:9e:af:7a:11:30:b9:e8:df:02:7e:e9: 07:71:3c:98:97:7c:a8:fe:0c:c5:e7:e2:d3:eb:63:61:5b:5f: 5f:7f:1b:fa:9d:35:3f:07:7d:c3:fc:89:df:2e:27:6e:b9:be: 13:0d:00:e6:91:0f:b4:55:b8:d0:41:c1:4a:0c:06:b7:d8:8a: fd:89:91:86:2c:f3:5e:2b:76:97:99:ab:bb:f6:cf:9c:9d:4f: b1:34:4a:5e:15:3c:25:1a:68:3c:2d:71:1e:f0:25:5f:ff:6b: 19:70:80:2b:c8:4c:b1:80:96:9c:f9:83:a7:00:01:8b:29:e4: ce:71:eb:1b:55:01:0e:16:64:c3:14:8a:42:46:17:24:7d:36: c3:ae:a5:ed:a8:00:8e:1c:ff:c5:03:5b:12:fb:5e:40:4f:3f: 90:bf:ea:f8:a8:2d:41:75:f1:ba:72:a7:8e:1e:96:20:97:a4: 17:30:08:e7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDtgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTA5MTRaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDBCQUVBNUY2RDU3QzdD NURBMjg1QUU1RTdFRDlFNzREQkZGMkI2NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDuPlKQhrSuS6kDyeGO64BREzbXKWUAxI2DmqQ++REwZpSAHV7U rB426gh6yvnIAavnYVkXJJr5cyDZQY3t6w/PHgzFnZF53Yv5LzAjFpcnKB9YpAkK UkltSGcVpDe67/Tr6GWY41jSuTg7nkY2l+WmRXZ5MxDrX9CoicNZntbbarwckFvU 5FHlJufCg7h7okPDZQOLFgQcWtTZfA+cYQKz7QXxjgAVD61Zntw40/1eAe9cyzDH ZI7w8/9/6OcZyhG6/n6vP6BS4+nkMqW05+sxQ/4Pi5iZN4yMUNLQMLzAX9O4yhVf HMy9Hspvz7xGxLVq+TdVeeTOfbCeJg+2DcNbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUC66l9tV8fF2iha5eftnnTb/ytnYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0M2Nmw5dFY4ZkYyaWhhNWVmdG5uVGJfeXRuWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIb5jgwDQYJKoZIhvcNAQELBQADggEBAGVeC9sePmrQMR6P8DSmhkGExWjw tF2B16pib3RLm8/Ebk4EgUXtAF+4DQx659ssjUuNgq2PgqZRDHe13sHB7fAGM7ea AVznleI7yXXs+tqer3oRMLno3wJ+6QdxPJiXfKj+DMXn4tPrY2FbX19/G/qdNT8H fcP8id8uJ265vhMNAOaRD7RVuNBBwUoMBrfYiv2JkYYs814rdpeZq7v2z5ydT7E0 Sl4VPCUaaDwtcR7wJV//axlwgCvITLGAlpz5g6cAAYsp5M5x6xtVAQ4WZMMUikJG FyR9NsOupe2oAI4c/8UDWxL7XkBPP5C/6vioLUF18bpyp44eliCXpBcwCOc= -----END CERTIFICATE-----Generated at Sun Jun 22 01:06:25 2025 by rpki-client