$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KGkutTacps4UnpbBH9xYlw6HPKo.roa File: KGkutTacps4UnpbBH9xYlw6HPKo.roa (raw, json) Hash identifier: xMX++1CoEwTGcACabKzr3ExVsasEdJMNgv0KYYRhyCk= Subject key identifier: 28:69:2E:B5:36:9C:A6:CE:14:9E:96:C1:1F:DC:58:97:0E:87:3C:AA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F7F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KGkutTacps4UnpbBH9xYlw6HPKo.roa Signing time: Tue 10 Jun 2025 11:36:10 +0000 ROA not before: Tue 10 Jun 2025 11:36:10 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.67.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 15:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3967 (0xf7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:36:10 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=28692EB5369CA6CE149E96C11FDC58970E873CAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:bf:54:9a:ec:64:99:71:a6:d6:8d:89:09:80: d7:f1:e3:61:d8:d6:86:5f:96:ab:ef:d3:89:8b:c9: 56:77:05:34:24:92:7d:94:00:96:82:2b:c9:44:84: 51:84:bb:d6:f7:71:f4:7e:2a:b3:c0:91:b3:36:6d: c4:9b:25:aa:5b:b4:e6:2d:3d:53:6c:62:4c:ce:12: 30:87:54:b3:2d:e7:56:91:8a:8a:13:e6:74:59:b7: 53:d2:9e:fe:7e:6c:78:e6:dc:9d:46:03:90:27:4d: 41:03:da:ca:a9:3d:1a:74:41:8b:b6:de:f4:48:3a: 07:4c:23:ea:df:a8:97:c5:3e:d4:e0:f9:7e:ce:a7: 92:15:7c:bc:37:05:9b:48:b2:80:a9:c0:b1:e7:15: d3:c1:75:18:b4:a0:4e:79:01:98:2e:89:0e:72:77: 75:d9:b0:a8:6f:28:35:28:56:2e:ca:a4:05:80:22: 46:cc:8b:a0:d7:e9:dd:36:42:74:3a:22:c8:b8:0a: d1:51:eb:cf:44:8a:56:14:c8:73:5c:87:97:77:96: 78:c7:47:74:14:5f:ee:2a:10:54:19:00:11:69:b6: 02:83:db:20:f0:66:57:4a:48:58:e4:44:3c:0f:41: 67:cf:81:6c:8e:9f:36:0b:53:2e:1b:dd:0d:fc:23: 20:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:69:2E:B5:36:9C:A6:CE:14:9E:96:C1:1F:DC:58:97:0E:87:3C:AA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KGkutTacps4UnpbBH9xYlw6HPKo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.67.240.0/21 Signature Algorithm: sha256WithRSAEncryption be:a0:46:9f:0b:a5:ea:d2:df:e5:ca:36:89:5d:e3:02:47:82: a0:8f:80:7a:85:98:ae:9d:07:2f:07:b5:95:65:00:c4:a7:2b: 66:9f:8a:fd:79:68:91:9a:59:34:e6:96:95:69:81:03:50:e0: 70:1f:43:10:8c:7d:ff:5c:e6:9b:17:25:31:90:bf:25:3c:c4: 40:9b:fc:5e:94:a9:b6:28:e8:fa:47:22:94:4e:ad:fe:a5:d2: 72:9c:e7:9b:0f:b5:bc:b3:b1:52:40:d9:55:63:f8:7e:43:16: 0f:18:76:35:97:89:a6:68:13:b1:da:fd:ff:38:91:f6:2b:8d: 6a:5e:27:d4:ed:74:ab:f3:22:ac:be:75:5d:92:fc:39:d1:e0: 6c:40:53:ed:1c:7e:fd:f8:dd:03:d2:48:98:0d:d3:00:32:15: 86:9a:4c:60:0a:9d:64:02:9c:e0:c5:3c:85:ba:2d:3b:5b:96: 45:7e:bb:0b:dd:7b:e6:4e:2b:ce:d0:24:59:9e:0b:10:39:39: 81:e0:71:44:f4:e0:9c:da:fa:e7:93:7f:ea:7e:0a:41:e7:9c: f2:ad:57:49:9d:eb:32:c8:65:77:ea:9b:07:bb:71:94:c9:74: 3d:bf:8a:c1:01:f0:79:90:aa:f6:8c:ed:17:f7:63:bb:35:5b: db:99:2c:26 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD38wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTM2MTBaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDI4NjkyRUI1MzY5Q0E2 Q0UxNDlFOTZDMTFGREM1ODk3MEU4NzNDQUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnv1Sa7GSZcabWjYkJgNfx42HY1oZflqvv04mLyVZ3BTQkkn2U AJaCK8lEhFGEu9b3cfR+KrPAkbM2bcSbJapbtOYtPVNsYkzOEjCHVLMt51aRiooT 5nRZt1PSnv5+bHjm3J1GA5AnTUED2sqpPRp0QYu23vRIOgdMI+rfqJfFPtTg+X7O p5IVfLw3BZtIsoCpwLHnFdPBdRi0oE55AZguiQ5yd3XZsKhvKDUoVi7KpAWAIkbM i6DX6d02QnQ6Isi4CtFR689EilYUyHNch5d3lnjHR3QUX+4qEFQZABFptgKD2yDw ZldKSFjkRDwPQWfPgWyOnzYLUy4b3Q38IyBXAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKGkutTacps4UnpbBH9xYlw6HPKowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0tHa3V0VGFjcHM0VW5wYkJIOXhZbHc2SFBLby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBQ/AwDQYJKoZIhvcNAQELBQADggEBAL6gRp8LperS3+XKNold4wJHgqCP gHqFmK6dBy8HtZVlAMSnK2afiv15aJGaWTTmlpVpgQNQ4HAfQxCMff9c5psXJTGQ vyU8xECb/F6UqbYo6PpHIpROrf6l0nKc55sPtbyzsVJA2VVj+H5DFg8YdjWXiaZo E7Ha/f84kfYrjWpeJ9TtdKvzIqy+dV2S/DnR4GxAU+0cfv343QPSSJgN0wAyFYaa TGAKnWQCnODFPIW6LTtblkV+uwvde+ZOK87QJFmeCxA5OYHgcUT04Jza+ueTf+p+ CkHnnPKtV0md6zLIZXfqmwe7cZTJdD2/isEB8HmQqvaM7Rf3Y7s1W9uZLCY= -----END CERTIFICATE-----Generated at Sat Jun 21 17:33:45 2025 by rpki-client