$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/EExSwfLUJWGAitwaGesdglvzbJQ.roa File: EExSwfLUJWGAitwaGesdglvzbJQ.roa (raw, json) Hash identifier: yRUmygpDTkCPZH2cXur4fNA0DbwGAR4yjzfOG4TcbO0= Subject key identifier: 10:4C:52:C1:F2:D4:25:61:80:8A:DC:1A:19:EB:1D:82:5B:F3:6C:94 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0FBF Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/EExSwfLUJWGAitwaGesdglvzbJQ.roa Signing time: Tue 10 Jun 2025 11:44:17 +0000 ROA not before: Tue 10 Jun 2025 11:44:17 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.210.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 21:26:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4031 (0xfbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:44:17 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=104C52C1F2D42561808ADC1A19EB1D825BF36C94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:70:1d:8f:e1:3f:e2:e2:b0:69:02:47:46:0f: 10:a0:c9:c7:92:62:6e:38:f1:a1:df:6b:ef:cc:db: 32:60:b2:a5:48:f0:9a:5a:13:22:0e:7a:0a:bf:62: a6:b6:fe:11:ed:ad:11:15:08:88:8c:46:8c:76:34: a9:2c:3c:f9:40:63:36:29:f2:aa:d3:be:e5:c7:9c: f8:2e:aa:be:27:fd:95:5b:96:5a:79:da:67:c4:dc: 48:e5:8d:44:d8:97:83:4d:e6:4b:aa:9a:ed:a6:51: 6a:1d:59:37:9d:c4:b8:0f:08:e1:20:90:09:5d:2a: f0:cd:48:da:d9:26:a9:64:fd:fb:3b:4c:3d:50:1e: 16:d1:20:33:97:01:ec:fb:a7:da:e8:d2:06:fe:5e: 3d:ce:2f:4c:7f:7f:db:90:f0:de:fa:1c:d3:cc:3e: cf:e1:2d:75:45:eb:53:2b:40:95:6b:8d:29:2d:56: cb:6c:fc:e9:a3:57:6a:6f:2a:30:74:8e:eb:d8:a9: 27:b4:4b:43:80:64:9d:fe:cc:4e:ec:ef:c9:23:9d: b2:d6:38:cb:c0:be:ec:13:63:5c:42:c7:83:89:66: 7e:f5:58:45:07:50:ff:55:61:33:d2:16:34:87:c9: a2:36:0c:32:9d:72:e9:26:84:f3:93:81:8d:3a:bb: 7f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:4C:52:C1:F2:D4:25:61:80:8A:DC:1A:19:EB:1D:82:5B:F3:6C:94 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/EExSwfLUJWGAitwaGesdglvzbJQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.30.0/24 Signature Algorithm: sha256WithRSAEncryption 07:5b:7d:ed:43:69:07:d0:ce:57:f4:b3:f0:80:d5:38:ac:85: 9d:52:a6:97:10:53:f0:22:b6:25:e3:0e:d1:59:3f:3b:ee:f0: 3c:4b:f0:a0:3b:f8:38:67:68:1a:f2:cd:f3:94:f8:c3:31:f0: c7:16:23:89:ca:df:da:e5:4e:b5:6e:8f:ce:b0:03:f3:fa:8a: 74:7b:69:49:59:51:63:94:84:9f:70:76:5e:2d:42:59:55:5a: b7:09:50:eb:b5:5e:79:e2:4c:49:52:11:23:c2:a0:da:a9:5d: 3b:38:5b:ca:54:04:c1:fe:2c:82:60:48:ae:39:7c:db:79:56: f2:aa:ae:2b:b7:9c:0f:bc:12:33:69:8e:e4:8e:c0:67:1b:6a: 51:66:ea:ff:ae:3f:3d:d4:5a:75:0f:db:a9:a0:23:5a:b7:ae: 99:28:d9:a2:eb:9e:60:1e:28:3a:97:17:80:19:35:a1:29:3a: 55:02:62:62:fe:db:39:fb:57:8e:45:b0:68:58:38:08:d8:f6: 32:eb:a5:f5:df:6b:b6:44:49:f7:d8:89:7a:93:f4:98:03:29: 33:08:98:d2:e7:5b:a1:97:2e:63:25:53:b7:26:57:94:11:0f: 71:c0:75:46:e3:69:0a:fc:79:b8:4b:2b:67:31:be:1f:4f:9d: 9d:0e:f4:be -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD78wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTQ0MTdaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDEwNEM1MkMxRjJENDI1 NjE4MDhBREMxQTE5RUIxRDgyNUJGMzZDOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqcB2P4T/i4rBpAkdGDxCgyceSYm448aHfa+/M2zJgsqVI8Jpa EyIOegq/Yqa2/hHtrREVCIiMRox2NKksPPlAYzYp8qrTvuXHnPguqr4n/ZVbllp5 2mfE3EjljUTYl4NN5kuqmu2mUWodWTedxLgPCOEgkAldKvDNSNrZJqlk/fs7TD1Q HhbRIDOXAez7p9ro0gb+Xj3OL0x/f9uQ8N76HNPMPs/hLXVF61MrQJVrjSktVsts /OmjV2pvKjB0juvYqSe0S0OAZJ3+zE7s78kjnbLWOMvAvuwTY1xCx4OJZn71WEUH UP9VYTPSFjSHyaI2DDKdcukmhPOTgY06u39FAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUEExSwfLUJWGAitwaGesdglvzbJQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0VFeFN3ZkxVSldHQWl0d2FHZXNkZ2x2emJKUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADc0h4wDQYJKoZIhvcNAQELBQADggEBAAdbfe1DaQfQzlf0s/CA1TishZ1S ppcQU/AitiXjDtFZPzvu8DxL8KA7+DhnaBryzfOU+MMx8McWI4nK39rlTrVuj86w A/P6inR7aUlZUWOUhJ9wdl4tQllVWrcJUOu1XnniTElSESPCoNqpXTs4W8pUBMH+ LIJgSK45fNt5VvKqriu3nA+8EjNpjuSOwGcbalFm6v+uPz3UWnUP26mgI1q3rpko 2aLrnmAeKDqXF4AZNaEpOlUCYmL+2zn7V45FsGhYOAjY9jLrpfXfa7ZESffYiXqT 9JgDKTMImNLnW6GXLmMlU7cmV5QRD3HAdUbjaQr8ebhLK2cxvh9PnZ0O9L4= -----END CERTIFICATE-----Generated at Sat Jun 21 03:28:01 2025 by rpki-client