$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/R02VQNvHeoJXWshxnZPjeugp3YA.roa File: R02VQNvHeoJXWshxnZPjeugp3YA.roa (raw, json) Hash identifier: nketaYGCGHLK1Gv868mFGfIH/DqCeEEs1wCfPxHoshY= Subject key identifier: 47:4D:95:40:DB:C7:7A:82:57:5A:C8:71:9D:93:E3:7A:E8:29:DD:80 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0EA1 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/R02VQNvHeoJXWshxnZPjeugp3YA.roa Signing time: Tue 10 Jun 2025 11:00:37 +0000 ROA not before: Tue 10 Jun 2025 11:00:37 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.76.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 09:20:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3745 (0xea1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:00:37 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=474D9540DBC77A82575AC8719D93E37AE829DD80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:fc:13:82:b3:5a:1a:6d:33:4c:9f:47:86:3c: b2:8e:91:08:2d:22:3f:f1:4a:55:f2:16:fc:15:22: 87:08:28:9a:24:dc:c3:c8:24:21:40:56:11:18:4d: 06:67:f5:b2:b1:e8:8e:e3:f3:97:6b:80:3d:a3:02: cf:53:e5:b2:8a:13:eb:13:30:ad:a4:81:98:38:ef: de:5d:2e:d5:28:fe:6f:c0:7d:e1:f4:53:21:f0:79: d5:82:4a:72:f1:de:0b:18:8b:82:d2:cc:a1:84:61: f1:32:65:71:f6:99:82:c0:93:b2:7a:ab:47:82:27: db:95:ae:f8:c2:8c:69:dd:f0:7a:69:e3:87:6c:e8: 58:3d:be:dc:7d:09:68:01:32:68:7c:51:3b:77:25: e2:02:f1:e3:fd:62:9b:e1:b3:f2:39:4c:46:d9:9b: b3:9f:81:d1:50:c9:87:56:12:bd:3b:d0:09:ed:83: ba:ed:b4:cf:d5:87:1c:ab:a2:d9:7f:76:62:e7:70: 89:24:3e:e0:c4:91:9c:f7:4a:29:1a:f3:bb:6d:3c: 62:2b:86:fa:ba:97:18:bd:66:59:67:47:26:98:03: f8:fd:a1:87:e1:dd:3d:98:39:4a:6d:07:2f:d5:45: 67:7f:f4:87:4b:04:50:cb:10:28:a4:63:1e:f0:da: ea:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:4D:95:40:DB:C7:7A:82:57:5A:C8:71:9D:93:E3:7A:E8:29:DD:80 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/R02VQNvHeoJXWshxnZPjeugp3YA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.32.0/20 Signature Algorithm: sha256WithRSAEncryption 3a:ed:b6:0c:46:96:90:bc:42:6a:c5:fa:56:e1:d8:70:e0:2f: bf:6e:ab:e9:2d:28:8b:7b:00:35:b8:b1:80:db:56:ba:27:e3: 71:68:7f:02:a5:f0:44:8b:da:ae:c2:46:e9:ce:bd:69:1b:67: d3:1c:34:72:90:79:ac:4a:a9:65:b8:49:51:14:9b:17:1c:44: 9e:85:80:68:f1:23:da:f1:d2:6f:0b:f6:36:e4:e1:47:53:d0: 54:62:d7:e7:fc:c6:2b:0b:8a:91:61:66:72:aa:9f:d5:2a:c8: 38:f2:43:f8:e9:54:be:1b:99:d0:12:1d:d4:9e:b0:6f:43:57: 04:51:43:59:a4:83:bd:a0:ee:a7:7f:2a:41:39:b5:d8:33:93: 32:32:0c:db:d0:b4:05:43:e2:39:e9:44:13:58:c1:3e:23:38: c0:30:4c:24:c4:9a:01:33:52:91:82:90:b9:c7:8d:60:ee:14: c2:de:96:9a:ac:3a:48:14:fe:73:72:1a:30:15:12:27:b8:c5: 76:f7:b1:41:df:3f:d1:f9:c5:97:49:6e:96:68:d4:75:b0:03: 32:c6:aa:c7:e4:96:ea:36:fc:f9:a3:48:07:ac:50:c4:c2:76: 13:98:a9:25:99:9f:4d:45:c8:5e:ed:80:7b:85:e7:45:f4:4d: 0e:54:07:a3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDqEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTAwMzdaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDQ3NEQ5NTQwREJDNzdB ODI1NzVBQzg3MTlEOTNFMzdBRTgyOUREODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCm/BOCs1oabTNMn0eGPLKOkQgtIj/xSlXyFvwVIocIKJok3MPI JCFAVhEYTQZn9bKx6I7j85drgD2jAs9T5bKKE+sTMK2kgZg4795dLtUo/m/AfeH0 UyHwedWCSnLx3gsYi4LSzKGEYfEyZXH2mYLAk7J6q0eCJ9uVrvjCjGnd8Hpp44ds 6Fg9vtx9CWgBMmh8UTt3JeIC8eP9Ypvhs/I5TEbZm7OfgdFQyYdWEr070Antg7rt tM/Vhxyrotl/dmLncIkkPuDEkZz3Sika87ttPGIrhvq6lxi9ZllnRyaYA/j9oYfh 3T2YOUptBy/VRWd/9IdLBFDLECikYx7w2uqNAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUR02VQNvHeoJXWshxnZPjeugp3YAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1IwMlZRTnZIZW9KWFdzaHhuWlBqZXVncDNZQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBTCAwDQYJKoZIhvcNAQELBQADggEBADrttgxGlpC8QmrF+lbh2HDgL79u q+ktKIt7ADW4sYDbVron43FofwKl8ESL2q7CRunOvWkbZ9McNHKQeaxKqWW4SVEU mxccRJ6FgGjxI9rx0m8L9jbk4UdT0FRi1+f8xisLipFhZnKqn9UqyDjyQ/jpVL4b mdASHdSesG9DVwRRQ1mkg72g7qd/KkE5tdgzkzIyDNvQtAVD4jnpRBNYwT4jOMAw TCTEmgEzUpGCkLnHjWDuFMLelpqsOkgU/nNyGjAVEie4xXb3sUHfP9H5xZdJbpZo 1HWwAzLGqsfkluo2/PmjSAesUMTCdhOYqSWZn01FyF7tgHuF50X0TQ5UB6M= -----END CERTIFICATE-----Generated at Fri Jun 20 12:43:22 2025 by rpki-client