$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/PF4JYGC5btUBkPeFa3mT3FjSCwo.roa File: PF4JYGC5btUBkPeFa3mT3FjSCwo.roa (raw, json) Hash identifier: ER51mG7D2qqdAz62Xn6VtixM7PIOGpZXgMW6CaKatVY= Subject key identifier: 3C:5E:09:60:60:B9:6E:D5:01:90:F7:85:6B:79:93:DC:58:D2:0B:0A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0FAC Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PF4JYGC5btUBkPeFa3mT3FjSCwo.roa Signing time: Tue 10 Jun 2025 11:40:40 +0000 ROA not before: Tue 10 Jun 2025 11:40:40 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.159.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4012 (0xfac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:40:40 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=3C5E096060B96ED50190F7856B7993DC58D20B0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:99:a4:c7:41:db:b9:df:7e:2b:6a:35:ef:f2: a5:05:2a:66:ea:41:0d:4f:69:96:0f:2b:9c:23:8b: 14:c0:12:53:1e:f4:94:b8:e0:7e:8e:b6:3d:29:50: ec:2c:f1:cf:67:f0:60:db:33:37:12:22:8c:49:40: 1f:54:5e:46:34:4d:4c:62:bd:d6:d6:7b:70:10:7e: 33:e7:6b:84:80:99:41:0f:39:82:b2:37:f7:c0:e3: 26:e9:63:14:d5:13:13:db:d8:67:bf:ce:7a:0d:f6: e0:7a:da:c7:59:37:c0:49:2a:e3:47:6a:c0:e3:09: eb:02:c4:fb:7d:6c:a3:3f:2e:e8:1e:0a:4c:55:b2: d2:b7:4e:ac:7e:20:b1:7a:44:f0:e9:54:a2:09:45: 11:31:e3:1c:2f:a8:68:2f:a7:3f:d8:52:3e:54:db: ef:9e:14:83:28:ce:31:d8:e7:26:cb:63:73:31:dd: 97:77:df:f0:d4:6a:00:ab:42:3c:91:84:cc:68:7b: e0:08:07:c9:b7:b6:f3:1d:8b:6f:ea:7d:26:4f:df: ba:61:9e:63:83:eb:1e:48:22:00:85:0c:55:0d:cd: c3:61:02:ca:48:6f:3c:ec:24:37:42:5e:0f:7f:24: 8a:8c:bd:bf:d3:08:92:ed:e7:76:af:9a:69:0d:a8: 76:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:5E:09:60:60:B9:6E:D5:01:90:F7:85:6B:79:93:DC:58:D2:0B:0A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PF4JYGC5btUBkPeFa3mT3FjSCwo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.96.0/19 Signature Algorithm: sha256WithRSAEncryption da:e8:c4:30:64:96:fb:e8:5a:18:69:52:e1:f3:cb:bf:91:e1: 58:20:39:eb:15:d8:97:8a:fa:46:56:25:f7:c5:b2:cf:57:39: fe:a2:66:44:35:b7:91:a2:20:48:7a:ff:0e:2a:40:c0:3e:81: d1:54:8d:a5:d4:e3:93:c8:88:6b:a1:10:c1:2d:4f:c8:9c:0b: 34:37:dc:86:e5:10:4e:e5:02:68:5f:d6:58:61:74:90:89:96: 32:d8:92:55:0e:fa:d8:99:b1:de:c5:a7:4c:86:f3:59:11:f0: bd:b1:68:04:67:32:82:c1:78:24:ad:6f:ea:1b:db:03:27:12: 30:40:07:58:f6:ce:7b:b3:bd:60:ed:34:87:a2:77:5b:5d:d0: e8:c5:4b:dc:59:37:0f:8c:97:df:ae:15:81:60:99:b4:94:6d: 79:aa:bf:0e:1d:7e:33:87:dc:44:09:67:66:b3:52:51:4b:4d: 66:df:71:92:8a:f2:bf:b6:68:66:57:74:6e:bc:9f:ba:b4:d4: 74:7c:fe:e1:69:88:5b:dd:00:f8:fa:1c:79:87:10:a2:13:2c: 4a:ed:1f:92:f2:25:95:fc:e9:b1:85:bb:17:a2:be:02:6e:9b: 69:e4:a2:98:5b:41:25:c7:41:98:f7:9f:7e:9b:1e:e7:5b:16: c7:de:c1:11 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD6wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTQwNDBaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDNDNUUwOTYwNjBCOTZF RDUwMTkwRjc4NTZCNzk5M0RDNThEMjBCMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFmaTHQdu5334rajXv8qUFKmbqQQ1PaZYPK5wjixTAElMe9JS4 4H6Otj0pUOws8c9n8GDbMzcSIoxJQB9UXkY0TUxivdbWe3AQfjPna4SAmUEPOYKy N/fA4ybpYxTVExPb2Ge/znoN9uB62sdZN8BJKuNHasDjCesCxPt9bKM/LugeCkxV stK3Tqx+ILF6RPDpVKIJRREx4xwvqGgvpz/YUj5U2++eFIMozjHY5ybLY3Mx3Zd3 3/DUagCrQjyRhMxoe+AIB8m3tvMdi2/qfSZP37phnmOD6x5IIgCFDFUNzcNhAspI bzzsJDdCXg9/JIqMvb/TCJLt53avmmkNqHbfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUPF4JYGC5btUBkPeFa3mT3FjSCwowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1BGNEpZR0M1YnRVQmtQZUZhM21UM0ZqU0N3by5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXcn2AwDQYJKoZIhvcNAQELBQADggEBANroxDBklvvoWhhpUuHzy7+R4Vgg OesV2JeK+kZWJffFss9XOf6iZkQ1t5GiIEh6/w4qQMA+gdFUjaXU45PIiGuhEMEt T8icCzQ33IblEE7lAmhf1lhhdJCJljLYklUO+tiZsd7Fp0yG81kR8L2xaARnMoLB eCStb+ob2wMnEjBAB1j2znuzvWDtNIeid1td0OjFS9xZNw+Ml9+uFYFgmbSUbXmq vw4dfjOH3EQJZ2azUlFLTWbfcZKK8r+2aGZXdG68n7q01HR8/uFpiFvdAPj6HHmH EKITLErtH5LyJZX86bGFuxeivgJum2nkophbQSXHQZj3n36bHudbFsfewRE= -----END CERTIFICATE-----Generated at Sun Jun 22 05:07:20 2025 by rpki-client