$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/F3NpK5_5hi72wuV5EkFHrfBY0rw.roa File: F3NpK5_5hi72wuV5EkFHrfBY0rw.roa (raw, json) Hash identifier: jy1Up+nS6Nfy1FRwReTnKgY+GegIhGa5CZIJJjB5VN0= Subject key identifier: 17:73:69:2B:9F:F9:86:2E:F6:C2:E5:79:12:41:47:AD:F0:58:D2:BC Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0EBC Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/F3NpK5_5hi72wuV5EkFHrfBY0rw.roa Signing time: Tue 10 Jun 2025 11:04:57 +0000 ROA not before: Tue 10 Jun 2025 11:04:57 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.72.12.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 09:20:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3772 (0xebc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:04:57 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=1773692B9FF9862EF6C2E579124147ADF058D2BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2a:d4:af:63:67:96:33:ef:d1:d2:ba:da:e3: 91:8f:ca:e2:f8:17:ab:1e:f1:dd:83:3b:8c:d1:dd: b8:fd:6d:d9:d5:87:49:7e:c8:b0:5b:36:ce:fd:97: 68:5f:d0:ff:a8:4f:7c:8f:cc:5e:36:9c:ad:d8:f6: 17:28:23:ac:88:31:0b:c2:a8:30:c5:5e:12:07:e5: d9:31:95:77:11:8e:95:b6:db:e0:84:71:ef:1c:c6: d2:98:32:a0:84:f1:f7:1a:19:73:dc:4c:45:e3:19: b1:d4:37:09:d6:92:e0:7b:d7:30:59:8e:3d:f3:05: 7d:00:3a:60:29:9b:b5:15:8f:8e:91:1c:9a:b3:02: 49:52:83:e5:c3:8c:e3:db:96:90:4f:c0:81:18:48: ee:57:20:ad:18:80:1a:8f:c1:0c:f8:24:b6:e9:1d: 9e:e3:39:e1:c0:ba:f3:2a:e6:2f:26:6a:90:20:97: 22:bb:d7:d6:5d:ba:b1:b7:86:92:24:cc:03:e5:fa: d4:65:64:65:78:5b:07:7a:d6:65:99:18:b1:38:69: b6:09:ee:c9:34:d4:ba:3f:b1:9e:c8:6f:d0:66:c7: 5b:07:44:18:b0:f3:25:a7:b8:cc:b0:de:bc:42:fd: 79:10:2f:c3:4f:22:e3:74:fb:75:99:38:1d:7a:4e: 23:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:73:69:2B:9F:F9:86:2E:F6:C2:E5:79:12:41:47:AD:F0:58:D2:BC X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/F3NpK5_5hi72wuV5EkFHrfBY0rw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.12.0/23 Signature Algorithm: sha256WithRSAEncryption 84:75:67:a0:0b:e1:06:29:c4:72:cf:d6:52:10:cf:6c:6d:a4: cc:a3:ab:93:9a:9c:6d:0f:69:0a:2d:e8:65:22:cb:72:2c:99: 9e:7c:5e:e8:cc:3b:d2:7c:01:dd:27:d1:18:09:f5:6a:a2:56: ca:00:d5:d9:93:6a:31:32:0d:6a:c2:cf:22:0b:f9:de:76:58: d3:9d:12:4d:eb:eb:94:eb:58:67:46:04:36:6c:29:0e:1d:13: 36:c3:85:f5:c2:fc:8f:59:c7:87:42:3a:67:e8:d7:4c:dc:97: b1:73:60:a2:16:e2:e9:9b:71:8b:19:21:b0:10:13:a8:bb:8e: c0:19:c4:a6:ae:6e:fb:31:a3:d5:75:70:e8:f4:44:79:77:f2: 41:86:ae:4d:4f:35:ad:bf:55:b2:27:b4:66:b6:17:84:82:da: f4:69:b7:02:6f:23:b8:f9:51:fc:ca:74:09:ac:55:30:05:aa: 53:b0:2a:e6:46:21:bb:72:00:07:a3:6d:ca:4f:fa:fd:40:86: 34:61:3f:25:3e:fa:99:e1:bb:82:49:b0:95:e5:87:6c:64:d1: fd:12:61:46:b9:ff:47:02:10:44:07:bd:50:9b:59:6d:cc:83: 7d:9b:65:7c:6f:88:3a:7f:8f:47:23:99:d0:31:80:d6:7b:4e: 0c:a9:30:52 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDrwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTA0NTdaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDE3NzM2OTJCOUZGOTg2 MkVGNkMyRTU3OTEyNDE0N0FERjA1OEQyQkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyKtSvY2eWM+/R0rra45GPyuL4F6se8d2DO4zR3bj9bdnVh0l+ yLBbNs79l2hf0P+oT3yPzF42nK3Y9hcoI6yIMQvCqDDFXhIH5dkxlXcRjpW22+CE ce8cxtKYMqCE8fcaGXPcTEXjGbHUNwnWkuB71zBZjj3zBX0AOmApm7UVj46RHJqz AklSg+XDjOPblpBPwIEYSO5XIK0YgBqPwQz4JLbpHZ7jOeHAuvMq5i8mapAglyK7 19ZdurG3hpIkzAPl+tRlZGV4Wwd61mWZGLE4abYJ7sk01Lo/sZ7Ib9Bmx1sHRBiw 8yWnuMyw3rxC/XkQL8NPIuN0+3WZOB16TiM1AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUF3NpK5/5hi72wuV5EkFHrfBY0rwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0YzTnBLNV81aGk3Mnd1VjVFa0ZIcmZCWTBydy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBSAwwDQYJKoZIhvcNAQELBQADggEBAIR1Z6AL4QYpxHLP1lIQz2xtpMyj q5OanG0PaQot6GUiy3IsmZ58XujMO9J8Ad0n0RgJ9WqiVsoA1dmTajEyDWrCzyIL +d52WNOdEk3r65TrWGdGBDZsKQ4dEzbDhfXC/I9Zx4dCOmfo10zcl7FzYKIW4umb cYsZIbAQE6i7jsAZxKaubvsxo9V1cOj0RHl38kGGrk1PNa2/VbIntGa2F4SC2vRp twJvI7j5UfzKdAmsVTAFqlOwKuZGIbtyAAejbcpP+v1AhjRhPyU++pnhu4JJsJXl h2xk0f0SYUa5/0cCEEQHvVCbWW3Mg32bZXxviDp/j0cjmdAxgNZ7TgypMFI= -----END CERTIFICATE-----Generated at Fri Jun 20 11:38:46 2025 by rpki-client