$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KJuWhpDWaCqZpYJGokXZg43yg8E.roa File: KJuWhpDWaCqZpYJGokXZg43yg8E.roa (raw, json) Hash identifier: 4PGm90Ct3BqPeUM9aLjYBDxcaE/r3MVt3cYpxoFLewo= Subject key identifier: 28:9B:96:86:90:D6:68:2A:99:A5:82:46:A2:45:D9:83:8D:F2:83:C1 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0FB9 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KJuWhpDWaCqZpYJGokXZg43yg8E.roa Signing time: Tue 10 Jun 2025 11:44:14 +0000 ROA not before: Tue 10 Jun 2025 11:44:14 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 110.158.188.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4025 (0xfb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:44:14 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=289B968690D6682A99A58246A245D9838DF283C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:31:bd:73:7b:f7:42:66:b7:eb:1e:b0:80:48: 45:01:84:06:2a:57:75:96:78:b2:11:4b:97:09:db: 73:01:c0:87:0e:96:5c:cc:60:7b:49:97:74:ef:11: a7:39:05:b4:91:1a:90:88:25:e5:24:1d:f7:99:3a: 56:4e:d4:3a:e5:87:b9:ad:73:5b:99:ff:c2:86:9a: 62:b0:ce:e9:31:8b:b2:70:45:e3:d2:35:80:52:b4: ac:e7:26:48:d0:b8:6c:ee:59:3d:05:6d:5c:1f:dd: e8:96:b0:7d:59:13:8c:14:76:5a:e2:c4:95:b6:ee: 1d:20:c0:a4:fd:83:d0:8e:d1:01:75:00:91:4e:3d: 7d:6d:3d:25:42:28:03:2f:fe:92:bc:cf:87:5e:23: 0d:9d:dc:cd:08:0b:e7:cc:09:ca:a1:4c:d5:bf:0f: ea:48:4a:3d:05:71:4c:a9:1b:27:65:2d:ef:4e:a4: 3c:c0:0e:35:10:31:4c:c4:5d:44:4e:8c:10:48:25: e7:2f:9f:b5:51:30:aa:a8:e1:50:b8:2f:b9:de:4c: 6d:9e:f9:92:fa:ba:59:98:02:a1:99:5b:96:91:6c: ba:5e:7b:e9:7a:8c:c7:e8:50:b6:de:0c:b5:93:3b: 7b:6c:cb:14:5c:1f:e4:dc:f6:2b:82:dd:b4:0e:6a: f7:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:9B:96:86:90:D6:68:2A:99:A5:82:46:A2:45:D9:83:8D:F2:83:C1 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KJuWhpDWaCqZpYJGokXZg43yg8E.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.158.188.0/23 Signature Algorithm: sha256WithRSAEncryption c5:52:a7:c0:93:d5:d9:07:8b:b8:25:26:dd:55:03:f6:67:50: f4:f7:e8:41:5e:25:fc:cf:be:fb:96:3d:93:9f:f0:ec:6e:6e: fa:cb:28:e1:2b:48:c8:b8:5a:f7:4b:84:c4:de:6a:2c:4c:7b: f3:d9:15:03:02:ff:93:83:58:7a:f2:4e:05:d8:10:76:97:f1: 86:66:ac:f0:76:bf:b4:0e:f0:0b:9c:93:79:3c:ed:55:15:04: 6d:f9:17:0e:8f:c9:ea:eb:21:cc:9b:f5:92:83:73:ef:13:f0: f4:17:55:c6:3f:ed:b0:0d:7e:ae:7c:89:4a:53:cf:c5:25:e7: c8:16:93:a5:a5:d9:eb:f7:1e:91:cc:86:43:dc:1e:1d:ef:8f: be:b4:d3:92:c6:98:4c:0a:dc:4c:fa:cb:31:fd:d5:99:86:88: ad:6d:af:66:14:d6:e9:9e:6d:46:e0:e7:2b:8b:67:cb:cf:4b: f5:83:04:d9:9c:4b:1e:ce:7f:12:73:7a:ae:17:ab:b8:f4:dd: 1e:11:3a:ce:ec:95:70:d6:72:6a:07:6e:ef:11:59:ba:fd:d6: 23:05:ec:05:c3:b8:08:64:fb:45:91:1a:82:20:ed:50:01:e7: cb:09:91:13:ea:41:9c:40:06:08:5d:2e:79:de:19:3e:12:28: fc:45:80:e9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD7kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTQ0MTRaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDI4OUI5Njg2OTBENjY4 MkE5OUE1ODI0NkEyNDVEOTgzOERGMjgzQzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6Mb1ze/dCZrfrHrCASEUBhAYqV3WWeLIRS5cJ23MBwIcOllzM YHtJl3TvEac5BbSRGpCIJeUkHfeZOlZO1Drlh7mtc1uZ/8KGmmKwzukxi7JwRePS NYBStKznJkjQuGzuWT0FbVwf3eiWsH1ZE4wUdlrixJW27h0gwKT9g9CO0QF1AJFO PX1tPSVCKAMv/pK8z4deIw2d3M0IC+fMCcqhTNW/D+pISj0FcUypGydlLe9OpDzA DjUQMUzEXUROjBBIJecvn7VRMKqo4VC4L7neTG2e+ZL6ulmYAqGZW5aRbLpee+l6 jMfoULbeDLWTO3tsyxRcH+Tc9iuC3bQOavcLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKJuWhpDWaCqZpYJGokXZg43yg8EwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0tKdVdocERXYUNxWnBZSkdva1haZzQzeWc4RS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFunrwwDQYJKoZIhvcNAQELBQADggEBAMVSp8CT1dkHi7glJt1VA/ZnUPT3 6EFeJfzPvvuWPZOf8OxubvrLKOErSMi4WvdLhMTeaixMe/PZFQMC/5ODWHryTgXY EHaX8YZmrPB2v7QO8Auck3k87VUVBG35Fw6PyerrIcyb9ZKDc+8T8PQXVcY/7bAN fq58iUpTz8Ul58gWk6Wl2ev3HpHMhkPcHh3vj76005LGmEwK3Ez6yzH91ZmGiK1t r2YU1umebUbg5yuLZ8vPS/WDBNmcSx7OfxJzeq4Xq7j03R4ROs7slXDWcmoHbu8R Wbr91iMF7AXDuAhk+0WRGoIg7VAB58sJkRPqQZxABghdLnneGT4SKPxFgOk= -----END CERTIFICATE-----Generated at Sun Jun 22 01:04:25 2025 by rpki-client