$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/E4tTrznXvL-A5vMn-sYKXAenaS0.roa File: E4tTrznXvL-A5vMn-sYKXAenaS0.roa (raw, json) Hash identifier: H0gNXz+TQ1u/nKSDlM2KmnZJSYZAUVOS4snzcsNgN7Q= Subject key identifier: 13:8B:53:AF:39:D7:BC:BF:80:E6:F3:27:FA:C6:0A:5C:07:A7:69:2D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E7E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/E4tTrznXvL-A5vMn-sYKXAenaS0.roa Signing time: Tue 10 Jun 2025 10:56:44 +0000 ROA not before: Tue 10 Jun 2025 10:56:44 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 183.73.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3710 (0xe7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:56:44 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=138B53AF39D7BCBF80E6F327FAC60A5C07A7692D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:21:be:b6:bd:eb:63:21:7b:e7:1e:91:f9:f6: e0:ae:47:a9:84:df:92:aa:16:a8:5f:38:76:13:64: 14:d7:10:8d:c3:54:f1:95:88:82:1c:20:74:e0:a8: 6e:3b:e2:a0:d5:8c:8b:7e:75:71:b3:ac:43:51:db: 76:63:10:c4:47:be:ba:b5:0d:69:92:13:c9:ab:5f: 39:d7:47:4d:ee:75:f5:15:82:4f:79:40:b6:e4:fe: db:95:a6:74:37:70:2c:84:40:b4:89:67:55:c3:77: 44:2c:53:16:dc:65:7e:12:f3:6b:bc:d2:3e:04:5a: 4b:67:0f:08:ff:cb:64:20:1f:5b:bc:5d:46:62:f2: a5:61:f7:3b:2d:e5:22:38:17:4a:11:d4:26:0f:48: 6a:c6:9c:c8:26:78:0d:39:57:71:7c:76:41:2a:58: e7:aa:cd:05:6e:03:47:bc:25:44:b6:74:eb:54:96: a9:1d:c6:a9:90:ef:f0:ae:09:98:3b:05:80:ba:cd: ce:5e:19:35:f8:99:7f:56:79:e3:c3:99:14:11:6d: dc:6e:44:fc:ae:a1:23:46:0a:b0:0c:5a:c9:98:4a: 42:30:54:6c:f8:0c:bf:b9:58:5e:11:41:dc:db:67: 54:f7:53:fb:08:34:fa:4c:3f:7e:a7:45:70:d8:b0: d8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:8B:53:AF:39:D7:BC:BF:80:E6:F3:27:FA:C6:0A:5C:07:A7:69:2D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/E4tTrznXvL-A5vMn-sYKXAenaS0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 183.73.29.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:f2:26:57:b6:5b:70:f6:f8:be:7c:e7:3e:12:76:2f:2b:b1: 00:3f:c4:b0:70:f0:21:53:a4:0d:78:cb:af:25:ec:f3:7b:78: b0:b3:37:02:c0:7e:2b:e5:fb:3e:d2:cc:64:c6:b9:7a:df:24: 33:ea:1f:33:9b:b1:d0:07:75:3f:10:b0:67:2d:ff:06:34:2d: 76:f6:42:e7:ad:b2:d1:14:78:79:53:7c:ef:fb:51:f1:12:bf: 34:ec:20:94:79:42:90:ec:47:d0:1c:ca:54:6f:af:b3:df:eb: aa:1f:48:35:8c:f2:9e:d9:b2:bd:ea:f9:cc:92:a2:7c:24:f8: bf:21:97:49:5b:11:75:3c:85:3f:70:7e:2e:03:54:69:cd:03: c3:ac:16:6e:d6:3d:ed:27:a6:6b:9a:81:a0:f3:53:01:36:f7: ea:09:7d:d8:51:5e:aa:dd:0f:29:fd:7b:12:67:53:99:bb:fb: 49:dd:96:3e:2f:8f:98:d9:bb:06:af:68:d7:69:db:7f:25:cb: 20:4c:83:41:c0:a4:60:c8:c1:18:29:33:a8:95:48:f8:24:b8: d9:8e:02:aa:0c:35:7b:e0:b5:2d:fb:a8:ab:dc:74:01:e7:8f: 63:46:ee:64:9b:90:9e:3c:fe:fa:72:d9:21:65:d4:26:1e:d3: e5:93:08:2a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDn4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDU2NDRaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDEzOEI1M0FGMzlEN0JD QkY4MEU2RjMyN0ZBQzYwQTVDMDdBNzY5MkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFIb62vetjIXvnHpH59uCuR6mE35KqFqhfOHYTZBTXEI3DVPGV iIIcIHTgqG474qDVjIt+dXGzrENR23ZjEMRHvrq1DWmSE8mrXznXR03udfUVgk95 QLbk/tuVpnQ3cCyEQLSJZ1XDd0QsUxbcZX4S82u80j4EWktnDwj/y2QgH1u8XUZi 8qVh9zst5SI4F0oR1CYPSGrGnMgmeA05V3F8dkEqWOeqzQVuA0e8JUS2dOtUlqkd xqmQ7/CuCZg7BYC6zc5eGTX4mX9WeePDmRQRbdxuRPyuoSNGCrAMWsmYSkIwVGz4 DL+5WF4RQdzbZ1T3U/sINPpMP36nRXDYsNidAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUE4tTrznXvL+A5vMn+sYKXAenaS0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0U0dFRyem5YdkwtQTV2TW4tc1lLWEFlbmFTMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAC3SR0wDQYJKoZIhvcNAQELBQADggEBAG3yJle2W3D2+L585z4Sdi8rsQA/ xLBw8CFTpA14y68l7PN7eLCzNwLAfivl+z7SzGTGuXrfJDPqHzObsdAHdT8QsGct /wY0LXb2QuetstEUeHlTfO/7UfESvzTsIJR5QpDsR9AcylRvr7Pf66ofSDWM8p7Z sr3q+cySonwk+L8hl0lbEXU8hT9wfi4DVGnNA8OsFm7WPe0npmuagaDzUwE29+oJ fdhRXqrdDyn9exJnU5m7+0ndlj4vj5jZuwavaNdp238lyyBMg0HApGDIwRgpM6iV SPgkuNmOAqoMNXvgtS37qKvcdAHnj2NG7mSbkJ48/vpy2SFl1CYe0+WTCCo= -----END CERTIFICATE-----Generated at Sun Jun 22 13:44:26 2025 by rpki-client