$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NkUTwIh_Y7B4-WGuDjgwn97yZDQ.roa File: NkUTwIh_Y7B4-WGuDjgwn97yZDQ.roa (raw, json) Hash identifier: R/2OpaFluylBkskaIpJ6hgy2BM0UZXojFcKSFQOQO5o= Subject key identifier: 36:45:13:C0:88:7F:63:B0:78:F9:61:AE:0E:38:30:9F:DE:F2:64:34 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0EB6 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NkUTwIh_Y7B4-WGuDjgwn97yZDQ.roa Signing time: Tue 10 Jun 2025 11:04:52 +0000 ROA not before: Tue 10 Jun 2025 11:04:52 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 110.158.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 16:44:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3766 (0xeb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:04:52 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=364513C0887F63B078F961AE0E38309FDEF26434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4b:2c:4c:8e:82:8f:bb:60:ff:73:d6:da:a1: 84:7b:89:4b:d8:65:eb:20:c2:84:0b:c7:7c:8c:ae: 20:1a:c1:95:df:3c:50:44:39:ff:35:e7:50:c4:12: ca:34:0c:26:6a:e1:e2:72:77:05:3d:21:e7:09:8c: a5:64:f0:ac:75:d7:ed:58:c5:6d:db:0f:54:20:7d: e5:56:6e:ed:48:d5:f0:18:1d:ff:1e:90:e0:78:81: 6b:3a:b9:08:5d:d2:72:bb:d4:a6:94:2e:8e:27:ae: 1f:b6:1a:ba:36:09:50:cd:e3:66:8f:ad:b7:b1:b5: 2a:af:f0:31:44:3f:1e:88:d5:5e:f6:65:45:77:61: 40:58:bc:4a:5a:8c:e2:0c:f8:0d:ad:a2:2e:54:cd: ea:ad:53:75:e5:ae:e4:fb:d8:90:f3:83:c3:08:c7: 4c:27:4e:97:9b:cc:3e:5d:5f:14:fd:ac:c2:45:76: 3c:64:04:df:1c:ad:6d:c5:31:f2:a3:e2:a7:f4:44: ee:f2:0a:48:8c:a3:93:15:5c:0b:52:ae:b2:7e:ac: 08:60:d8:e7:51:65:f5:46:40:96:c8:33:26:16:4c: 38:04:06:02:9b:a8:92:61:db:f3:27:ad:15:ff:fc: dc:3a:cd:eb:a5:d4:f2:e0:db:47:62:d2:8f:a2:d5: 2d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:45:13:C0:88:7F:63:B0:78:F9:61:AE:0E:38:30:9F:DE:F2:64:34 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NkUTwIh_Y7B4-WGuDjgwn97yZDQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.158.224.0/19 Signature Algorithm: sha256WithRSAEncryption 2b:99:fb:5d:2a:e8:99:2e:4a:03:90:0b:95:4f:89:eb:b2:29: cd:b9:ec:08:a0:59:c9:20:0f:ff:46:7f:a1:b3:2b:86:c2:57: 32:9c:42:4d:03:98:2b:cb:44:70:7c:ea:b5:02:c8:93:e7:36: dd:ff:b0:3e:ef:31:d6:6d:54:f1:3b:9c:ea:0f:c3:34:7e:da: 1e:10:97:c4:20:1f:49:1d:ca:68:58:5a:0a:c8:52:e3:34:88: b8:c4:ab:d2:c1:22:91:86:e8:04:cb:8d:c6:38:c4:35:ad:1d: 17:18:a2:a9:79:62:6b:2f:4a:8a:d4:63:bd:3b:26:ea:d7:29: 7a:70:df:ab:4b:d7:af:2a:ff:62:fb:86:57:1e:4b:a0:ac:44: 32:ea:99:9f:27:98:16:32:4a:87:a5:1b:72:31:3c:f1:c5:10: 2e:b9:70:f3:72:26:2c:8a:c1:46:bf:60:db:41:c2:f4:90:1f: bc:28:62:14:71:58:39:bd:97:2d:ed:03:01:22:85:9e:83:5d: 88:f9:c9:1a:0d:e5:dc:9b:0e:4e:7d:b5:77:3c:e7:8f:32:26: ea:fc:9d:06:14:41:2f:78:48:71:9e:ed:23:87:e8:53:6e:61: 91:1e:d5:60:3a:59:a1:d0:a7:81:bd:f3:cc:ba:86:d0:19:07: d0:ee:fa:6d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDrYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTA0NTJaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDM2NDUxM0MwODg3RjYz QjA3OEY5NjFBRTBFMzgzMDlGREVGMjY0MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6SyxMjoKPu2D/c9baoYR7iUvYZesgwoQLx3yMriAawZXfPFBE Of8151DEEso0DCZq4eJydwU9IecJjKVk8Kx11+1YxW3bD1QgfeVWbu1I1fAYHf8e kOB4gWs6uQhd0nK71KaULo4nrh+2Gro2CVDN42aPrbextSqv8DFEPx6I1V72ZUV3 YUBYvEpajOIM+A2toi5UzeqtU3XlruT72JDzg8MIx0wnTpebzD5dXxT9rMJFdjxk BN8crW3FMfKj4qf0RO7yCkiMo5MVXAtSrrJ+rAhg2OdRZfVGQJbIMyYWTDgEBgKb qJJh2/MnrRX//Nw6zeul1PLg20di0o+i1S0VAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUNkUTwIh/Y7B4+WGuDjgwn97yZDQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L05rVVR3SWhfWTdCNC1XR3VEamd3bjk3eVpEUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVunuAwDQYJKoZIhvcNAQELBQADggEBACuZ+10q6JkuSgOQC5VPieuyKc25 7AigWckgD/9Gf6GzK4bCVzKcQk0DmCvLRHB86rUCyJPnNt3/sD7vMdZtVPE7nOoP wzR+2h4Ql8QgH0kdymhYWgrIUuM0iLjEq9LBIpGG6ATLjcY4xDWtHRcYoql5Ymsv SorUY707JurXKXpw36tL168q/2L7hlceS6CsRDLqmZ8nmBYySoelG3IxPPHFEC65 cPNyJiyKwUa/YNtBwvSQH7woYhRxWDm9ly3tAwEihZ6DXYj5yRoN5dybDk59tXc8 548yJur8nQYUQS94SHGe7SOH6FNuYZEe1WA6WaHQp4G988y6htAZB9Du+m0= -----END CERTIFICATE-----Generated at Sat Jun 21 18:52:36 2025 by rpki-client