$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NhU3uABgMDs9Aif3X-2MxEnu3yk.roa File: NhU3uABgMDs9Aif3X-2MxEnu3yk.roa (raw, json) Hash identifier: wJW3l1vGSdyWyJqWew8lLfXKtqyfjdmkSkBeAzbYK+U= Subject key identifier: 36:15:37:B8:00:60:30:3B:3D:02:27:F7:5F:ED:8C:C4:49:EE:DF:29 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E6E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NhU3uABgMDs9Aif3X-2MxEnu3yk.roa Signing time: Tue 10 Jun 2025 10:53:29 +0000 ROA not before: Tue 10 Jun 2025 10:53:29 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 183.72.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3694 (0xe6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:53:29 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=361537B80060303B3D0227F75FED8CC449EEDF29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:97:0b:ff:f2:26:8d:24:0e:7c:a1:6c:7b:74: cf:04:a3:b0:2a:f9:3e:4a:93:cc:1b:c9:82:39:d9: 3e:83:38:35:62:9a:2d:b9:b9:c0:ce:37:a6:53:f4: cc:51:4c:24:60:9d:d9:3b:87:b2:02:67:cf:c5:9c: 77:d6:a6:a2:ef:31:9d:48:36:c4:ae:96:aa:07:68: 5e:f3:a0:5f:c4:26:d3:22:36:4b:c2:19:ca:cf:09: fd:df:f0:20:23:12:a9:a6:37:d5:19:fc:2a:a1:10: bc:c5:ce:39:63:2c:f4:cf:10:0b:54:60:79:20:75: 1a:ac:48:23:19:bf:76:02:3f:70:c0:ac:33:4d:6a: 53:81:06:a6:e4:c8:13:5b:c6:84:5d:5d:92:07:2b: 97:b4:3b:dd:c2:7e:66:95:80:f5:57:bc:bb:bc:63: c3:02:30:f5:34:d3:cf:b3:96:fb:39:1c:d3:1b:41: 9e:b2:5a:42:99:24:33:8f:f3:31:4b:a2:ff:a8:f9: cc:26:b5:b1:23:86:cc:6c:ac:32:25:d4:85:32:e7: 42:e9:f8:f9:2e:3e:88:47:b7:11:2c:2f:27:9c:2b: d5:76:2e:78:46:43:3b:83:9a:de:96:4a:ba:fd:95: 4f:97:93:d0:90:f9:ca:ec:c0:63:b0:e7:b7:c2:c4: ed:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:15:37:B8:00:60:30:3B:3D:02:27:F7:5F:ED:8C:C4:49:EE:DF:29 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NhU3uABgMDs9Aif3X-2MxEnu3yk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 183.72.0.0/17 Signature Algorithm: sha256WithRSAEncryption d9:01:28:92:5a:e6:17:14:a5:22:de:32:ad:4f:99:f9:5f:2c: 21:a1:43:6d:9f:70:36:be:f1:d2:25:5e:40:86:f3:64:7e:61: db:73:42:45:5c:bd:ec:88:17:35:35:a5:72:d3:52:11:6a:dd: 71:2d:80:cf:31:61:0f:14:9e:36:73:9b:bf:91:c3:b5:ec:7a: de:66:9c:c2:9a:53:6c:ac:3e:3a:79:ae:ef:d3:1e:86:3b:e0: 67:a9:f6:ee:fa:6e:79:84:1f:7d:c4:26:87:de:c4:2d:96:11: 18:aa:c5:45:22:30:18:c7:00:2b:ac:5e:52:4d:46:b5:05:d2: c2:c8:59:72:eb:fc:95:fc:19:13:c6:ae:b0:32:b7:84:04:23: 18:26:86:81:70:31:a3:29:e3:56:ce:66:ff:75:ad:7c:45:59: 26:9c:dc:26:c7:43:89:b9:78:2b:61:32:e6:89:81:54:9f:ca: 90:ec:28:8c:c1:80:59:f3:db:4f:eb:52:eb:b4:53:26:7b:6e: 65:3f:d7:1a:73:26:cd:00:72:d7:d4:ef:08:1d:22:39:c9:65: 7c:4f:aa:96:53:5d:71:a2:14:09:e7:68:78:66:c7:3e:ab:0c: 21:3e:f6:a6:70:94:20:85:28:34:e4:c0:10:74:20:39:36:3c: 41:4c:20:c3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDm4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDUzMjlaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDM2MTUzN0I4MDA2MDMw M0IzRDAyMjdGNzVGRUQ4Q0M0NDlFRURGMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQlwv/8iaNJA58oWx7dM8Eo7Aq+T5Kk8wbyYI52T6DODVimi25 ucDON6ZT9MxRTCRgndk7h7ICZ8/FnHfWpqLvMZ1INsSulqoHaF7zoF/EJtMiNkvC GcrPCf3f8CAjEqmmN9UZ/CqhELzFzjljLPTPEAtUYHkgdRqsSCMZv3YCP3DArDNN alOBBqbkyBNbxoRdXZIHK5e0O93CfmaVgPVXvLu8Y8MCMPU008+zlvs5HNMbQZ6y WkKZJDOP8zFLov+o+cwmtbEjhsxsrDIl1IUy50Lp+PkuPohHtxEsLyecK9V2LnhG QzuDmt6WSrr9lU+Xk9CQ+crswGOw57fCxO19AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUNhU3uABgMDs9Aif3X+2MxEnu3ykwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L05oVTN1QUJnTURzOUFpZjNYLTJNeEVudTN5ay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAe3SAAwDQYJKoZIhvcNAQELBQADggEBANkBKJJa5hcUpSLeMq1PmflfLCGh Q22fcDa+8dIlXkCG82R+YdtzQkVcveyIFzU1pXLTUhFq3XEtgM8xYQ8UnjZzm7+R w7Xset5mnMKaU2ysPjp5ru/THoY74Gep9u76bnmEH33EJofexC2WERiqxUUiMBjH ACusXlJNRrUF0sLIWXLr/JX8GRPGrrAyt4QEIxgmhoFwMaMp41bOZv91rXxFWSac 3CbHQ4m5eCthMuaJgVSfypDsKIzBgFnz20/rUuu0UyZ7bmU/1xpzJs0ActfU7wgd IjnJZXxPqpZTXXGiFAnnaHhmxz6rDCE+9qZwlCCFKDTkwBB0IDk2PEFMIMM= -----END CERTIFICATE-----Generated at Sun Jun 22 06:15:59 2025 by rpki-client