$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/QCPbfg0k8pwE4eUZ9KF191ovic4.roa File: QCPbfg0k8pwE4eUZ9KF191ovic4.roa (raw, json) Hash identifier: JVwj+x7U5HGxkVTY3PfYq/ipcUpBfaP8PojOKXFhmvY= Subject key identifier: 40:23:DB:7E:0D:24:F2:9C:04:E1:E5:19:F4:A1:75:F7:5A:2F:89:CE Certificate issuer: /CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Certificate serial: 76 Authority key identifier: F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QCPbfg0k8pwE4eUZ9KF191ovic4.roa Signing time: Tue 10 Jun 2025 11:09:04 +0000 ROA not before: Tue 10 Jun 2025 11:09:04 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 158.199.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Validity Not Before: Jun 10 11:09:04 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=4023DB7E0D24F29C04E1E519F4A175F75A2F89CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d7:76:d0:b5:a2:d6:2b:ad:15:e8:6a:9d:a8: 74:58:ed:d2:df:c4:ad:fb:21:f4:36:d7:a9:41:e8: 93:3f:0e:1c:d9:c5:1f:dd:ce:f9:24:ca:25:8b:62: e2:bb:62:8c:33:af:83:44:de:e6:16:50:e5:91:d6: 86:02:98:dd:59:49:0e:91:4a:76:0f:a5:d1:d7:16: a4:c9:75:44:80:69:e2:3e:66:18:b8:c6:f2:f4:d2: 16:e4:71:fa:51:c8:f3:0d:fe:e6:e7:4e:ff:5b:44: 0f:c5:fa:ef:6a:ae:14:31:46:82:1a:5a:d4:e0:71: 78:c5:0c:76:84:08:0f:a2:7d:f8:a8:19:f8:88:fa: 2e:b8:57:35:3f:04:1c:c6:7e:73:ad:62:0b:a8:2b: f2:d6:f7:49:d4:43:f9:38:ca:b7:c7:36:08:96:a3: 8c:8b:ab:13:2a:a2:e9:a7:3a:4f:70:77:07:6d:81: f5:74:a3:78:c6:18:50:be:42:34:38:34:a2:fc:af: 79:ab:36:a9:87:a1:8d:9e:26:f5:2d:ec:37:78:43: 48:a9:4e:03:1e:b2:c0:6d:dd:05:80:1c:3b:fa:98: 35:e1:11:e6:ec:74:87:53:d0:38:64:b5:28:12:e6: 56:28:45:13:dc:88:6a:31:6c:81:1c:78:8e:fa:3e: 12:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:23:DB:7E:0D:24:F2:9C:04:E1:E5:19:F4:A1:75:F7:5A:2F:89:CE X509v3 Authority Key Identifier: keyid:F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QCPbfg0k8pwE4eUZ9KF191ovic4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 158.199.32.0/20 Signature Algorithm: sha256WithRSAEncryption 90:27:e0:80:f2:f5:4b:29:f9:79:4d:6f:e3:ae:ef:85:a7:55: 46:88:c6:46:a4:47:f5:b6:ee:02:8a:b2:94:35:da:f4:d7:e6: cc:3b:0c:d7:09:e1:16:cc:76:e9:a4:43:2a:1d:17:97:36:f8: 38:7b:a8:9b:09:21:fd:d0:8a:c1:7f:c8:a3:5b:76:a0:bd:c2: d9:40:66:e4:21:c8:5a:62:db:86:f9:06:ee:ff:dd:87:a3:c0: 88:1d:0e:b6:93:00:ec:1f:b5:53:14:b5:bf:aa:41:34:2d:9d: e2:71:ee:08:d4:a8:ec:3e:51:54:5a:38:25:a8:69:a8:13:94: 4c:5f:65:cf:04:be:47:b9:0a:e0:df:47:2d:b4:43:28:3e:fb: 66:45:59:d3:53:e1:d4:4a:c8:83:b4:e6:3a:e3:a9:de:d7:da: 08:21:79:6d:55:85:71:55:81:f6:f4:25:9a:97:2e:b4:19:b2: a0:bb:2d:97:ce:66:0e:93:99:f4:70:e8:86:99:b4:d0:0f:7b: f2:fd:85:4b:f3:9e:d4:64:18:a4:10:c6:41:37:b3:98:ce:b9: 86:cd:e2:42:b3:59:24:2a:97:48:f0:48:4b:4b:67:bd:45:25: ae:12:fb:14:71:da:d6:55:8f:6b:93:ce:48:8c:6e:a9:77:cf: d6:f2:4d:ab -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBdjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGODlF MEYxNUMxRTIwRTE5MUFBRjE3Mjg4RjZFMzBGRjAxODY5QTZFMB4XDTI1MDYxMDEx MDkwNFoXDTI2MDUyMzA5NTEwMFowMzExMC8GA1UEAxMoNDAyM0RCN0UwRDI0RjI5 QzA0RTFFNTE5RjRBMTc1Rjc1QTJGODlDRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMXXdtC1otYrrRXoap2odFjt0t/Erfsh9DbXqUHokz8OHNnFH93O +STKJYti4rtijDOvg0Te5hZQ5ZHWhgKY3VlJDpFKdg+l0dcWpMl1RIBp4j5mGLjG 8vTSFuRx+lHI8w3+5udO/1tED8X672quFDFGghpa1OBxeMUMdoQID6J9+KgZ+Ij6 LrhXNT8EHMZ+c61iC6gr8tb3SdRD+TjKt8c2CJajjIurEyqi6ac6T3B3B22B9XSj eMYYUL5CNDg0ovyveas2qYehjZ4m9S3sN3hDSKlOAx6ywG3dBYAcO/qYNeER5ux0 h1PQOGS1KBLmVihFE9yIajFsgRx4jvo+ElMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRAI9t+DSTynATh5Rn0oXX3Wi+JzjAfBgNVHSMEGDAWgBT4ng8VweIOGRqvFyiP bjD/AYaabjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA5Ly1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dHR21tNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLy1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dH R21tNC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDkvUUNQYmZnMGs4cHdFNGVVWjlLRjE5MW92aWM0LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBJ7HIDANBgkqhkiG9w0BAQsFAAOCAQEAkCfggPL1Syn5eU1v467vhadVRojG RqRH9bbuAoqylDXa9NfmzDsM1wnhFsx26aRDKh0Xlzb4OHuomwkh/dCKwX/Io1t2 oL3C2UBm5CHIWmLbhvkG7v/dh6PAiB0OtpMA7B+1UxS1v6pBNC2d4nHuCNSo7D5R VFo4JahpqBOUTF9lzwS+R7kK4N9HLbRDKD77ZkVZ01Ph1ErIg7TmOuOp3tfaCCF5 bVWFcVWB9vQlmpcutBmyoLstl85mDpOZ9HDohpm00A978v2FS/Oe1GQYpBDGQTez mM65hs3iQrNZJCqXSPBIS0tnvUUlrhL7FHHa1lWPa5POSIxuqXfP1vJNqw== -----END CERTIFICATE-----Generated at Sat Jun 21 07:17:29 2025 by rpki-client