$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NT00UhC1KymT0bium1qv2YlVtPo.roa File: NT00UhC1KymT0bium1qv2YlVtPo.roa (raw, json) Hash identifier: tQUzQZQvlLMTlIshYdrRJASb6WLiilrqBpNBddEuoPE= Subject key identifier: 35:3D:34:52:10:B5:2B:29:93:D1:B8:AE:9B:5A:AF:D9:89:55:B4:FA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0EE1 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NT00UhC1KymT0bium1qv2YlVtPo.roa Signing time: Tue 10 Jun 2025 11:12:30 +0000 ROA not before: Tue 10 Jun 2025 11:12:30 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 211.14.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3809 (0xee1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:12:30 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=353D345210B52B2993D1B8AE9B5AAFD98955B4FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4f:dc:21:a2:1f:08:f2:2c:57:bc:fa:0d:7f: 3d:c1:9a:7c:28:d3:44:39:40:96:90:5c:bb:ee:40: d5:be:32:13:f3:aa:24:30:7d:06:ee:14:ea:c9:d6: 5c:07:53:e0:bd:e4:5d:26:88:c1:b1:64:ce:55:a3: 98:21:e1:a5:8d:d7:00:14:95:90:30:4d:7b:0d:39: 27:f0:ba:42:1c:69:2c:76:63:f4:fd:06:e9:32:ac: c9:7c:e7:bb:89:27:68:90:f3:a6:05:aa:a7:18:c3: 57:7b:ac:62:81:10:ed:d8:d3:50:a4:fe:c7:3f:97: a4:be:22:d1:c3:3f:6d:3e:a8:56:65:36:c4:84:12: da:a6:0d:fa:ab:8d:11:4f:ac:16:bb:2f:1c:d9:34: 64:25:b6:bc:d0:85:f1:82:1e:87:b5:43:9f:59:23: 7a:66:20:d6:28:2b:14:11:49:fe:b7:4c:15:fd:f0: bf:3e:6d:91:52:08:00:bc:47:ee:9f:80:15:6f:f9: 4f:66:2a:36:c4:61:10:4c:8a:57:b9:cf:95:4e:6a: af:45:21:e6:61:0c:0c:69:b6:80:54:58:13:dd:44: e0:7a:65:32:4c:7e:49:57:ea:61:d3:9d:6b:1f:e2: 49:21:e0:a7:5d:56:20:0a:79:83:a0:13:ec:73:d6: 15:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:3D:34:52:10:B5:2B:29:93:D1:B8:AE:9B:5A:AF:D9:89:55:B4:FA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NT00UhC1KymT0bium1qv2YlVtPo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.96.0/22 Signature Algorithm: sha256WithRSAEncryption b9:f1:a1:0a:52:da:d9:2b:5f:2d:c8:c0:88:df:aa:8f:2f:50: 27:36:8a:ed:de:a1:c6:db:19:75:54:bb:d1:c2:aa:58:47:dd: 11:2e:70:d8:40:4c:30:20:31:ca:18:b0:d2:31:03:02:9c:18: 4b:f0:0b:a6:7b:f9:0e:94:83:8a:1d:f4:62:06:57:73:6a:b0: 6f:78:7e:96:28:39:4c:2d:ec:ab:e2:a1:73:e0:32:21:30:a1: 3d:37:5a:50:57:50:0d:b2:52:76:47:02:62:c5:12:b0:98:64: 7f:70:99:2d:70:4c:60:66:e0:d8:5b:10:98:8b:ec:d4:36:15: ca:5f:4e:ad:39:82:ae:b5:97:39:18:c7:ab:15:17:27:35:60: de:ae:5a:d9:71:90:bf:a2:e3:9d:bd:18:9c:da:30:f1:62:12: e6:d5:16:17:05:f0:47:c0:6b:d9:87:dc:d8:0d:16:95:35:eb: f8:66:4d:01:c7:14:40:39:cf:65:fb:e7:63:f0:68:b1:cc:1e: 31:cf:8b:d3:11:71:f1:b2:57:5e:5b:6b:cb:2f:82:bf:35:47: 13:ed:5b:0e:bc:ef:02:5b:40:d0:ab:70:8f:b0:3b:44:c5:d7: bb:60:e5:39:45:56:d8:88:5e:6f:3f:9b:d7:b1:75:7e:72:61: 8c:b6:0a:c1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDuEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTEyMzBaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDM1M0QzNDUyMTBCNTJC Mjk5M0QxQjhBRTlCNUFBRkQ5ODk1NUI0RkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyT9whoh8I8ixXvPoNfz3Bmnwo00Q5QJaQXLvuQNW+MhPzqiQw fQbuFOrJ1lwHU+C95F0miMGxZM5Vo5gh4aWN1wAUlZAwTXsNOSfwukIcaSx2Y/T9 BukyrMl857uJJ2iQ86YFqqcYw1d7rGKBEO3Y01Ck/sc/l6S+ItHDP20+qFZlNsSE EtqmDfqrjRFPrBa7LxzZNGQltrzQhfGCHoe1Q59ZI3pmINYoKxQRSf63TBX98L8+ bZFSCAC8R+6fgBVv+U9mKjbEYRBMile5z5VOaq9FIeZhDAxptoBUWBPdROB6ZTJM fklX6mHTnWsf4kkh4KddViAKeYOgE+xz1hUBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUNT00UhC1KymT0bium1qv2YlVtPowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L05UMDBVaEMxS3ltVDBiaXVtMXF2MllsVnRQby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALTDmAwDQYJKoZIhvcNAQELBQADggEBALnxoQpS2tkrXy3IwIjfqo8vUCc2 iu3eocbbGXVUu9HCqlhH3REucNhATDAgMcoYsNIxAwKcGEvwC6Z7+Q6Ug4od9GIG V3NqsG94fpYoOUwt7KvioXPgMiEwoT03WlBXUA2yUnZHAmLFErCYZH9wmS1wTGBm 4NhbEJiL7NQ2FcpfTq05gq61lzkYx6sVFyc1YN6uWtlxkL+i4529GJzaMPFiEubV FhcF8EfAa9mH3NgNFpU16/hmTQHHFEA5z2X752PwaLHMHjHPi9MRcfGyV15ba8sv gr81RxPtWw687wJbQNCrcI+wO0TF17tg5TlFVtiIXm8/m9exdX5yYYy2CsE= -----END CERTIFICATE-----Generated at Sun Jun 22 11:09:09 2025 by rpki-client