$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KOw1QglhCoKIBk7SbokfPnlsgJw.roa File: KOw1QglhCoKIBk7SbokfPnlsgJw.roa (raw, json) Hash identifier: JpyUbTk8kUX/qkP+NHv/gIGzoVslrG35esRX3jRME8g= Subject key identifier: 28:EC:35:42:09:61:0A:82:88:06:4E:D2:6E:89:1F:3E:79:6C:80:9C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F0B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KOw1QglhCoKIBk7SbokfPnlsgJw.roa Signing time: Tue 10 Jun 2025 11:16:53 +0000 ROA not before: Tue 10 Jun 2025 11:16:53 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 110.158.190.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 13:51:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3851 (0xf0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:16:53 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=28EC354209610A8288064ED26E891F3E796C809C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:db:08:c5:1d:36:3b:a7:d4:5a:37:d9:ca:9b: 3e:40:c2:c6:96:d9:e8:fd:37:a8:09:6c:e4:86:e0: 52:47:6a:c9:ce:4f:d5:fd:05:ea:59:05:ec:b7:1a: a6:03:6e:21:bd:26:7d:6a:36:11:e9:7d:96:09:41: 75:9f:af:2b:ed:dc:83:c9:2b:14:ad:d5:ec:1c:50: 0d:87:2b:e6:5a:20:00:69:5c:d3:28:38:18:fe:90: b2:f8:73:9a:97:c6:40:bb:9f:73:56:fa:3f:c0:16: aa:dd:40:2d:31:d3:35:11:e5:fd:61:c5:5b:68:08: c5:66:a3:f4:1f:82:d6:6b:ff:49:2e:42:ba:66:39: 94:4b:f9:d6:84:fb:65:e9:e0:78:b5:5d:0d:0b:da: 6a:40:26:98:e4:0a:81:00:b2:b6:a7:24:49:64:e3: be:55:4c:01:c8:f1:17:d4:e5:a0:20:8c:3d:a5:43: 8d:dd:3d:79:4b:82:91:43:c6:00:b4:2f:a1:66:e0: dc:76:3d:a9:9c:12:d0:ec:46:2e:a8:45:8e:7c:2a: 7b:4b:17:39:48:dd:a1:da:16:c8:3a:42:0c:d3:4c: bb:23:f6:02:2c:dc:b0:d6:92:97:84:9c:50:df:be: d7:f7:0e:88:e4:22:31:0f:40:f2:79:55:f3:3c:46: 1c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:EC:35:42:09:61:0A:82:88:06:4E:D2:6E:89:1F:3E:79:6C:80:9C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KOw1QglhCoKIBk7SbokfPnlsgJw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.158.190.0/23 Signature Algorithm: sha256WithRSAEncryption 44:3a:57:96:3a:f0:40:6c:d5:72:e3:ce:c7:89:1d:1c:fe:96: 6d:b0:62:cd:08:fb:43:77:e6:40:70:87:dd:75:f6:83:1d:6c: 22:b9:ab:92:69:24:44:98:f2:51:8a:af:4a:cc:3d:c7:28:f1: e0:0f:0b:55:78:d7:5a:bb:c3:59:d4:a1:0d:9f:6b:15:30:77: aa:86:bc:c3:7a:34:c6:b1:89:6e:af:ea:bc:4f:53:75:32:ef: 89:32:6d:41:e1:03:04:3a:06:48:4a:38:f9:98:13:82:71:fb: f2:a1:0e:3d:77:f4:ef:04:15:ab:33:9f:5d:a4:4f:15:df:16: 3a:e8:67:43:98:74:94:b0:af:b6:42:d7:ac:36:b9:df:0e:78: f9:e6:25:21:f8:48:f0:ad:2b:49:29:5e:8a:8d:ad:b9:a5:71: af:a6:93:3b:43:fe:48:83:73:fd:db:0a:42:36:b9:2c:bd:6a: 5f:a3:c1:6e:b2:12:8c:da:05:69:e1:f0:72:15:2f:1e:73:e4: be:2d:8b:e9:25:22:77:73:a8:78:35:65:20:b9:df:76:94:fe: d3:fd:27:0c:c9:13:9d:5f:52:5e:80:83:eb:5b:17:35:50:b0: 42:2d:ac:1e:a3:40:9b:f3:71:13:91:0f:9d:b7:55:ad:12:fc: e8:65:0c:db -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDwswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTE2NTNaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDI4RUMzNTQyMDk2MTBB ODI4ODA2NEVEMjZFODkxRjNFNzk2QzgwOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDN2wjFHTY7p9RaN9nKmz5AwsaW2ej9N6gJbOSG4FJHasnOT9X9 BepZBey3GqYDbiG9Jn1qNhHpfZYJQXWfryvt3IPJKxSt1ewcUA2HK+ZaIABpXNMo OBj+kLL4c5qXxkC7n3NW+j/AFqrdQC0x0zUR5f1hxVtoCMVmo/QfgtZr/0kuQrpm OZRL+daE+2Xp4Hi1XQ0L2mpAJpjkCoEAsranJElk475VTAHI8RfU5aAgjD2lQ43d PXlLgpFDxgC0L6Fm4Nx2PamcEtDsRi6oRY58KntLFzlI3aHaFsg6QgzTTLsj9gIs 3LDWkpeEnFDfvtf3DojkIjEPQPJ5VfM8RhzHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKOw1QglhCoKIBk7SbokfPnlsgJwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0tPdzFRZ2xoQ29LSUJrN1Nib2tmUG5sc2dKdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFunr4wDQYJKoZIhvcNAQELBQADggEBAEQ6V5Y68EBs1XLjzseJHRz+lm2w Ys0I+0N35kBwh9119oMdbCK5q5JpJESY8lGKr0rMPcco8eAPC1V411q7w1nUoQ2f axUwd6qGvMN6NMaxiW6v6rxPU3Uy74kybUHhAwQ6BkhKOPmYE4Jx+/KhDj139O8E Faszn12kTxXfFjroZ0OYdJSwr7ZC16w2ud8OePnmJSH4SPCtK0kpXoqNrbmlca+m kztD/kiDc/3bCkI2uSy9al+jwW6yEozaBWnh8HIVLx5z5L4ti+klIndzqHg1ZSC5 33aU/tP9JwzJE51fUl6Ag+tbFzVQsEItrB6jQJvzcRORD523Va0S/OhlDNs= -----END CERTIFICATE-----Generated at Sun Jun 22 15:38:19 2025 by rpki-client