$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/MWiIhbYRTvu402naSMXeXP-11IY.roa File: MWiIhbYRTvu402naSMXeXP-11IY.roa (raw, json) Hash identifier: heF5aisgUs/D4TKfpfloaQD+MJidempg5EfxLmxnRyE= Subject key identifier: 31:68:88:85:B6:11:4E:FB:B8:D3:69:DA:48:C5:DE:5C:FF:B5:D4:86 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E5D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MWiIhbYRTvu402naSMXeXP-11IY.roa Signing time: Tue 10 Jun 2025 10:47:54 +0000 ROA not before: Tue 10 Jun 2025 10:47:54 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 27.230.48.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3677 (0xe5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:47:54 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=31688885B6114EFBB8D369DA48C5DE5CFFB5D486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4d:38:7c:31:1f:88:79:46:b9:a1:ab:af:e6: 91:4a:52:6c:31:ec:05:a9:60:01:66:a0:42:ce:f0: 69:18:04:ca:2a:24:e5:d6:23:7e:3b:4b:d7:cf:de: 94:ab:0b:e7:58:ba:0a:9c:e8:ea:22:b9:ac:1d:ad: 31:96:39:c1:17:97:49:33:cd:7d:5f:a0:59:9b:19: 5c:dc:da:65:0f:3b:da:cf:c2:09:26:9f:2a:f8:82: 10:f2:05:c3:62:f1:d4:f7:47:3b:d7:ac:46:f9:78: 2d:43:8a:5b:ec:0c:d9:6a:a9:29:4d:3d:7d:1d:3c: 4f:aa:42:f6:58:78:19:74:a8:49:ac:15:3f:4c:0f: e4:82:e5:3f:e2:df:9a:06:fa:ee:e1:90:d5:a9:d0: f2:91:5d:7e:10:1a:28:d0:11:07:e8:7b:aa:a3:6f: e9:a5:12:c1:fe:2b:65:c6:cb:59:6e:26:49:b0:66: 47:d7:12:0b:77:7f:ad:48:3f:56:b8:e7:27:74:68: 74:65:81:31:41:d6:bf:a2:54:5b:0e:4a:78:4a:c8: 4c:db:0a:ac:6b:1d:8a:a2:f8:b8:ca:6f:0a:99:98: 67:71:78:4c:fb:e9:bc:3b:21:a8:d0:98:b1:8a:11: 10:e0:bd:68:3c:f6:5d:f2:c5:b7:25:28:91:5e:5d: b6:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:68:88:85:B6:11:4E:FB:B8:D3:69:DA:48:C5:DE:5C:FF:B5:D4:86 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MWiIhbYRTvu402naSMXeXP-11IY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.230.48.0/23 Signature Algorithm: sha256WithRSAEncryption b9:32:d1:6f:f8:a2:ff:cc:65:74:63:c1:87:c8:94:cb:7f:9b: 1c:f4:ca:b0:d8:cc:8f:bc:af:49:c7:c7:cc:b5:45:61:ad:e0: fd:09:5a:6c:a0:74:89:4f:e5:a3:f5:f4:55:6f:d3:06:bc:e8: 34:7e:a6:16:52:3b:38:2b:5e:a8:a4:f7:28:c0:85:0b:39:a2: 40:c4:83:aa:11:6c:83:69:af:e0:27:c9:f1:e9:e3:99:4c:41: d2:37:fe:52:ed:e1:ed:6b:1b:35:a8:3f:91:85:53:52:7b:5d: ab:a1:07:42:69:24:a6:a7:20:be:32:80:a6:8c:bf:cf:f7:d6: 5f:3b:93:e1:a7:af:fd:33:09:d3:85:dc:07:47:c9:c4:49:01: ec:6d:ae:9d:cb:fc:b2:1d:c6:a1:c1:79:dc:88:14:7a:e2:b6: 62:fb:3d:7d:88:1f:51:21:35:74:94:27:96:f3:76:ea:8a:64: 50:ab:27:c8:e1:39:af:48:a3:91:db:73:da:b9:e2:79:ad:40: 4a:af:e2:1f:37:53:16:56:bf:19:09:d0:5b:c5:de:21:7e:d4: 7d:65:b6:a8:c0:72:5f:e4:62:a2:2f:54:03:f6:d8:6b:af:ab: 77:4d:1c:3b:ca:eb:1a:5b:8a:95:f9:3b:8c:35:3d:8a:51:04: 5f:df:c8:a2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDl0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDQ3NTRaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDMxNjg4ODg1QjYxMTRF RkJCOEQzNjlEQTQ4QzVERTVDRkZCNUQ0ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOTTh8MR+IeUa5oauv5pFKUmwx7AWpYAFmoELO8GkYBMoqJOXW I347S9fP3pSrC+dYugqc6OoiuawdrTGWOcEXl0kzzX1foFmbGVzc2mUPO9rPwgkm nyr4ghDyBcNi8dT3RzvXrEb5eC1DilvsDNlqqSlNPX0dPE+qQvZYeBl0qEmsFT9M D+SC5T/i35oG+u7hkNWp0PKRXX4QGijQEQfoe6qjb+mlEsH+K2XGy1luJkmwZkfX Egt3f61IP1a45yd0aHRlgTFB1r+iVFsOSnhKyEzbCqxrHYqi+LjKbwqZmGdxeEz7 6bw7IajQmLGKERDgvWg89l3yxbclKJFeXbbvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUMWiIhbYRTvu402naSMXeXP+11IYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L01XaUloYllSVHZ1NDAybmFTTVhlWFAtMTFJWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEb5jAwDQYJKoZIhvcNAQELBQADggEBALky0W/4ov/MZXRjwYfIlMt/mxz0 yrDYzI+8r0nHx8y1RWGt4P0JWmygdIlP5aP19FVv0wa86DR+phZSOzgrXqik9yjA hQs5okDEg6oRbINpr+AnyfHp45lMQdI3/lLt4e1rGzWoP5GFU1J7XauhB0JpJKan IL4ygKaMv8/31l87k+Gnr/0zCdOF3AdHycRJAextrp3L/LIdxqHBedyIFHritmL7 PX2IH1EhNXSUJ5bzduqKZFCrJ8jhOa9Io5Hbc9q54nmtQEqv4h83UxZWvxkJ0FvF 3iF+1H1ltqjAcl/kYqIvVAP22Guvq3dNHDvK6xpbipX5O4w1PYpRBF/fyKI= -----END CERTIFICATE-----Generated at Sun Jun 22 01:06:03 2025 by rpki-client