$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/UrOWwMZMeNu-YGYvVSvwFXbsCDQ.roa File: UrOWwMZMeNu-YGYvVSvwFXbsCDQ.roa (raw, json) Hash identifier: +Sf9h0vQhiI00PVPuq27vkJsWB8Th0R8tm6iti3M8Jo= Subject key identifier: 52:B3:96:C0:C6:4C:78:DB:BE:60:66:2F:55:2B:F0:15:76:EC:08:34 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0FA3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UrOWwMZMeNu-YGYvVSvwFXbsCDQ.roa Signing time: Tue 10 Jun 2025 11:40:35 +0000 ROA not before: Tue 10 Jun 2025 11:40:35 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 27.230.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4003 (0xfa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:40:35 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=52B396C0C64C78DBBE60662F552BF01576EC0834 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:61:3f:ff:e5:c7:24:b0:97:dd:c1:bd:fb:45: 49:a3:43:68:ab:ec:50:ec:cd:c3:91:1a:b1:90:c0: 92:c6:33:9c:c4:fb:51:a7:f3:42:55:34:e1:c1:9a: 22:6e:89:a8:97:13:0c:c5:d7:37:a8:eb:10:92:7b: 4c:c3:2e:80:20:64:98:57:50:e5:cc:b0:a9:6c:cd: 87:01:36:dc:82:7d:34:32:64:e9:3f:c4:b6:0e:cb: 42:af:fa:d5:94:fa:e9:e7:2c:93:3a:4e:79:ef:ea: d3:00:0c:9a:66:a1:3c:3e:c5:7c:7d:dc:a7:c3:5c: af:3b:48:52:52:b1:1e:1c:cc:cb:e2:b7:2c:42:e4: 89:84:28:0c:4c:92:35:8b:52:12:fc:15:88:9a:b6: b1:0c:a9:01:40:40:24:81:8f:af:26:af:28:35:4b: 53:c8:96:ea:bc:33:fa:12:09:49:71:ba:39:96:27: 5d:02:14:a4:a5:dd:4e:c7:39:77:c7:65:d2:ab:13: 0e:f4:ab:95:5d:39:e7:9f:54:9e:8a:4e:98:ba:3e: 2d:04:bb:52:cd:22:75:b8:1a:e2:f5:d0:35:c0:2f: 59:d6:6f:05:a1:de:df:1b:fa:72:6b:e1:c5:c2:a3: 6a:82:95:08:53:25:38:2f:35:bd:0d:76:13:02:c3: 80:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:B3:96:C0:C6:4C:78:DB:BE:60:66:2F:55:2B:F0:15:76:EC:08:34 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UrOWwMZMeNu-YGYvVSvwFXbsCDQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.230.72.0/21 Signature Algorithm: sha256WithRSAEncryption 89:9b:cb:84:51:b6:ab:97:4f:01:08:43:c4:ca:e7:75:75:7a: f8:03:da:18:ec:fb:24:47:ca:d2:a5:3f:70:0d:23:29:50:ac: 54:b2:41:34:0d:6e:cb:d6:03:4c:23:c1:78:0c:97:51:f0:f8: 01:5f:55:2a:9a:e6:44:e2:ef:c4:d4:2d:fa:38:15:fc:42:f4: 5a:52:2b:1a:6f:46:e4:07:63:bd:28:88:46:07:87:e3:5e:c6: ce:88:c3:bf:bb:1b:dc:64:10:9f:0f:11:83:85:43:37:4d:ad: d4:a4:96:89:4a:97:4f:e7:10:f4:28:49:c3:75:1d:90:c6:4a: 58:24:3c:c3:3d:29:4e:19:7b:cc:7e:8c:68:54:a9:02:1c:72: 02:98:38:89:cc:24:8d:3a:f9:95:38:c4:8c:e6:72:eb:ff:8c: 1f:87:99:9b:2c:a8:5f:38:29:02:61:12:3e:57:77:15:d7:7c: 79:ea:06:d5:ac:fa:f1:bf:1d:43:40:e3:4a:0f:9b:43:ce:48: 7d:01:25:e3:89:3b:b3:31:1d:09:d3:b2:f0:a4:8d:0c:41:cd: ad:56:55:90:6a:75:5e:de:47:8d:9a:4d:f1:e7:01:2a:7b:89: 91:7f:37:3d:8e:5f:54:1d:e8:c3:64:97:da:1c:fd:8d:e0:f7: fd:dd:e5:12 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD6MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTQwMzVaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDUyQjM5NkMwQzY0Qzc4 REJCRTYwNjYyRjU1MkJGMDE1NzZFQzA4MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbYT//5ccksJfdwb37RUmjQ2ir7FDszcORGrGQwJLGM5zE+1Gn 80JVNOHBmiJuiaiXEwzF1zeo6xCSe0zDLoAgZJhXUOXMsKlszYcBNtyCfTQyZOk/ xLYOy0Kv+tWU+unnLJM6Tnnv6tMADJpmoTw+xXx93KfDXK87SFJSsR4czMvityxC 5ImEKAxMkjWLUhL8FYiatrEMqQFAQCSBj68mryg1S1PIluq8M/oSCUlxujmWJ10C FKSl3U7HOXfHZdKrEw70q5VdOeefVJ6KTpi6Pi0Eu1LNInW4GuL10DXAL1nWbwWh 3t8b+nJr4cXCo2qClQhTJTgvNb0NdhMCw4BDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUUrOWwMZMeNu+YGYvVSvwFXbsCDQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1VyT1d3TVpNZU51LVlHWXZWU3Z3Rlhic0NEUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMb5kgwDQYJKoZIhvcNAQELBQADggEBAImby4RRtquXTwEIQ8TK53V1evgD 2hjs+yRHytKlP3ANIylQrFSyQTQNbsvWA0wjwXgMl1Hw+AFfVSqa5kTi78TULfo4 FfxC9FpSKxpvRuQHY70oiEYHh+Nexs6Iw7+7G9xkEJ8PEYOFQzdNrdSklolKl0/n EPQoScN1HZDGSlgkPMM9KU4Ze8x+jGhUqQIccgKYOInMJI06+ZU4xIzmcuv/jB+H mZssqF84KQJhEj5XdxXXfHnqBtWs+vG/HUNA40oPm0POSH0BJeOJO7MxHQnTsvCk jQxBza1WVZBqdV7eR42aTfHnASp7iZF/Nz2OX1Qd6MNkl9oc/Y3g9/3d5RI= -----END CERTIFICATE-----Generated at Sun Jun 22 01:08:25 2025 by rpki-client