$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/F58ZiJD7AO1TXOQAc5ty18U2i9o.roa File: F58ZiJD7AO1TXOQAc5ty18U2i9o.roa (raw, json) Hash identifier: HZjIh3Mtvy2Tzp1L9H5KKTA9/YhOhm0eGQf1ceQIApI= Subject key identifier: 17:9F:19:88:90:FB:00:ED:53:5C:E4:00:73:9B:72:D7:C5:36:8B:DA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E86 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/F58ZiJD7AO1TXOQAc5ty18U2i9o.roa Signing time: Tue 10 Jun 2025 10:56:48 +0000 ROA not before: Tue 10 Jun 2025 10:56:48 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.210.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 12:41:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3718 (0xe86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:56:48 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=179F198890FB00ED535CE400739B72D7C5368BDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:78:d4:17:08:ff:4c:46:c9:0c:e1:0a:a3:e8: 9b:cd:74:24:5b:42:c1:09:81:c7:4c:ea:8f:93:1d: 2b:80:99:38:e7:ed:63:ac:cd:ef:9f:e5:20:87:7a: 5c:3e:01:21:18:69:6b:da:08:ee:ed:ed:b5:9f:1d: b6:49:22:5f:e6:48:13:3f:0d:89:76:82:d7:24:0b: 14:7c:bf:e9:2f:03:28:0c:8c:2d:6c:d9:8b:00:f5: c2:55:36:27:6b:9d:26:25:1f:b5:a1:00:76:b2:e7: 07:f7:ce:06:d5:d9:74:a2:3a:bc:db:c2:bc:67:0a: e5:1c:81:f1:99:bf:03:d3:eb:76:8f:1f:1e:ce:2d: 9e:a9:f1:5a:d6:b0:9c:2a:cc:40:2a:21:0c:51:3b: ca:b0:64:83:a2:43:be:94:73:b8:3b:72:cc:a1:4d: 01:dc:8c:c4:bb:7c:09:84:62:ec:14:2d:f5:d9:31: db:69:67:6d:1c:cb:60:ae:9e:46:87:3a:af:38:62: 21:d8:df:68:f9:b9:9e:55:56:44:dd:96:f3:0c:c4: 6d:4a:92:a1:e8:9b:0b:67:7d:58:a0:7f:3f:20:51: 7f:0d:48:85:20:f2:6b:00:e0:62:7a:89:ec:80:eb: cc:5f:c3:41:ed:2d:57:e0:f6:89:c1:39:bb:8d:53: 12:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:9F:19:88:90:FB:00:ED:53:5C:E4:00:73:9B:72:D7:C5:36:8B:DA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/F58ZiJD7AO1TXOQAc5ty18U2i9o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.69.0/24 Signature Algorithm: sha256WithRSAEncryption b5:c3:23:c0:66:bf:65:e0:2f:b8:1c:5c:57:8b:fd:df:9f:f8: 5a:06:af:7a:0e:66:59:aa:e5:57:f5:ab:20:fc:6c:e4:eb:1d: 10:21:c9:8a:19:57:81:23:44:7e:5b:e1:6f:a2:bc:b1:c8:84: d8:09:9e:50:3e:53:ef:85:21:2e:fa:23:05:a9:1d:61:e4:94: a5:7a:84:dd:be:d2:ad:b5:27:df:66:5b:71:0e:7c:71:4e:59: 4a:07:54:47:a6:38:fd:78:41:bb:57:c8:45:fe:d2:dd:40:14: 71:cc:be:19:77:11:e3:57:bb:e2:07:21:b2:24:33:5c:c2:fc: ac:34:7b:f8:97:77:8f:ae:60:58:35:5b:17:5c:80:37:91:ec: e4:f9:d4:f4:b9:e7:26:26:05:6f:58:01:8c:2e:5c:7d:9f:a4: a4:47:d8:38:6e:1f:8b:7b:5f:87:86:52:95:6c:d0:c9:de:3b: 3c:5f:1d:7f:51:1e:a3:68:63:f2:ca:91:40:45:9d:7f:c6:03: 64:56:5f:42:10:f5:d9:91:82:4b:0d:67:6a:3f:87:1a:c0:4e: bb:73:62:cf:48:ad:c5:13:a0:32:fd:8e:5c:6f:9a:a9:84:23: 0d:91:04:e0:14:cb:72:5e:46:48:d6:ef:94:37:67:29:00:ce: fa:f1:32:52 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDoYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDU2NDhaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDE3OUYxOTg4OTBGQjAw RUQ1MzVDRTQwMDczOUI3MkQ3QzUzNjhCREEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBeNQXCP9MRskM4Qqj6JvNdCRbQsEJgcdM6o+THSuAmTjn7WOs ze+f5SCHelw+ASEYaWvaCO7t7bWfHbZJIl/mSBM/DYl2gtckCxR8v+kvAygMjC1s 2YsA9cJVNidrnSYlH7WhAHay5wf3zgbV2XSiOrzbwrxnCuUcgfGZvwPT63aPHx7O LZ6p8VrWsJwqzEAqIQxRO8qwZIOiQ76Uc7g7csyhTQHcjMS7fAmEYuwULfXZMdtp Z20cy2CunkaHOq84YiHY32j5uZ5VVkTdlvMMxG1KkqHomwtnfVigfz8gUX8NSIUg 8msA4GJ6ieyA68xfw0HtLVfg9onBObuNUxK9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUF58ZiJD7AO1TXOQAc5ty18U2i9owHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0Y1OFppSkQ3QU8xVFhPUUFjNXR5MThVMmk5by5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADc0kUwDQYJKoZIhvcNAQELBQADggEBALXDI8Bmv2XgL7gcXFeL/d+f+FoG r3oOZlmq5Vf1qyD8bOTrHRAhyYoZV4EjRH5b4W+ivLHIhNgJnlA+U++FIS76IwWp HWHklKV6hN2+0q21J99mW3EOfHFOWUoHVEemOP14QbtXyEX+0t1AFHHMvhl3EeNX u+IHIbIkM1zC/Kw0e/iXd4+uYFg1WxdcgDeR7OT51PS55yYmBW9YAYwuXH2fpKRH 2DhuH4t7X4eGUpVs0MneOzxfHX9RHqNoY/LKkUBFnX/GA2RWX0IQ9dmRgksNZ2o/ hxrATrtzYs9IrcUToDL9jlxvmqmEIw2RBOAUy3JeRkjW75Q3ZykAzvrxMlI= -----END CERTIFICATE-----Generated at Sun Jun 22 15:02:13 2025 by rpki-client