$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/VijTbi4_9c042hW1MSQdiQBKlYo.roa File: VijTbi4_9c042hW1MSQdiQBKlYo.roa (raw, json) Hash identifier: eKkJNFROxdleXzvWN0eHdPpX+oshKIwWUHs7iQSbmDc= Subject key identifier: 56:28:D3:6E:2E:3F:F5:CD:38:DA:15:B5:31:24:1D:89:00:4A:95:8A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0FAF Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VijTbi4_9c042hW1MSQdiQBKlYo.roa Signing time: Tue 10 Jun 2025 11:44:09 +0000 ROA not before: Tue 10 Jun 2025 11:44:09 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.76.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 13:51:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4015 (0xfaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:44:09 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=5628D36E2E3FF5CD38DA15B531241D89004A958A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e8:b7:64:62:7c:8a:a0:82:e5:aa:62:c6:49: 3a:29:2c:1b:d0:b5:36:75:c9:bd:22:79:65:45:53: 72:dd:8f:21:0c:15:90:59:15:f7:68:a6:27:cc:53: cb:03:e6:44:ab:bc:af:7a:9e:ab:20:98:94:b2:ec: d0:ed:7b:46:39:aa:6a:5c:63:f8:20:5d:4b:cd:3f: 59:38:f5:72:cd:5c:c8:ef:c9:f8:76:e4:b3:80:99: 15:9d:00:82:4c:49:63:4a:b7:88:89:bb:17:55:c6: 84:ea:37:4d:ff:e0:fa:b2:47:4c:36:0b:4f:2d:8b: c0:8c:c6:d2:11:f1:c4:b7:3a:86:ff:b5:e2:d5:83: dd:5c:60:24:c0:0b:b9:1a:63:bd:0d:ce:0d:8f:7d: 0b:3e:70:aa:62:8d:9f:15:72:7d:d1:e8:1b:9d:9e: 53:11:e1:ae:e7:aa:8c:ec:1e:3f:4f:61:1f:29:5f: 58:39:18:d6:11:e8:4f:55:ca:af:38:02:47:f0:be: 00:ce:3b:6f:44:3b:96:96:21:a0:33:13:83:d9:e7: 6d:e8:4e:d5:e4:a4:6e:ce:83:d3:7e:59:ee:cf:4d: e5:e8:c9:34:9e:a8:72:db:6b:19:3d:a8:74:02:f6: a2:3e:75:0f:5c:80:ef:2d:f9:fe:33:2a:bb:1e:62: 8f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:28:D3:6E:2E:3F:F5:CD:38:DA:15:B5:31:24:1D:89:00:4A:95:8A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VijTbi4_9c042hW1MSQdiQBKlYo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.12.0/22 Signature Algorithm: sha256WithRSAEncryption 01:3a:48:58:62:c0:ee:1d:86:cf:1c:e0:49:28:b1:06:80:39: 61:5e:12:14:8b:97:06:94:17:9c:3e:a0:2b:e3:ba:7e:25:37: a8:0c:fc:cc:2f:25:01:41:c6:41:94:dc:7b:c9:b7:12:bd:f2: 88:61:0e:4e:39:24:f6:d4:0e:dd:78:a4:a0:64:be:40:8d:1e: c5:6f:c5:0f:54:d6:67:5a:7d:2a:59:2f:74:a7:e6:37:cf:0f: 66:33:d9:a5:13:c1:94:b2:90:82:06:6b:58:92:87:df:eb:4f: 8d:b6:d8:3b:6f:36:b8:82:ae:e0:9e:d3:fe:0e:be:29:59:4e: 4f:08:d5:dc:2a:ef:b9:68:97:11:43:44:70:2e:65:65:1c:22: e2:42:c0:70:e6:3c:37:40:2f:34:36:e4:d4:ef:50:ff:bc:c1: 7f:d5:00:cc:43:26:eb:63:34:b5:82:33:48:a4:fd:13:43:fc: e7:ad:3a:c0:87:12:cb:2e:c7:40:d4:74:6b:4a:6c:9c:5c:49: d0:de:4f:3b:51:be:f5:02:ed:51:82:6a:1f:b1:58:81:bc:2d: dd:a2:e8:ac:9f:da:4a:c0:af:f6:f8:06:0e:e2:10:3b:6e:c1: b6:55:6c:98:ff:47:f8:34:b0:24:5e:73:76:ab:02:8b:4b:85: bd:09:35:fa -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD68wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTQ0MDlaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDU2MjhEMzZFMkUzRkY1 Q0QzOERBMTVCNTMxMjQxRDg5MDA0QTk1OEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDi6LdkYnyKoILlqmLGSTopLBvQtTZ1yb0ieWVFU3LdjyEMFZBZ FfdopifMU8sD5kSrvK96nqsgmJSy7NDte0Y5qmpcY/ggXUvNP1k49XLNXMjvyfh2 5LOAmRWdAIJMSWNKt4iJuxdVxoTqN03/4PqyR0w2C08ti8CMxtIR8cS3Oob/teLV g91cYCTAC7kaY70Nzg2PfQs+cKpijZ8Vcn3R6BudnlMR4a7nqozsHj9PYR8pX1g5 GNYR6E9Vyq84AkfwvgDOO29EO5aWIaAzE4PZ523oTtXkpG7Og9N+We7PTeXoyTSe qHLbaxk9qHQC9qI+dQ9cgO8t+f4zKrseYo/pAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUVijTbi4/9c042hW1MSQdiQBKlYowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1ZpalRiaTRfOWMwNDJoVzFNU1FkaVFCS2xZby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTAwwDQYJKoZIhvcNAQELBQADggEBAAE6SFhiwO4dhs8c4EkosQaAOWFe EhSLlwaUF5w+oCvjun4lN6gM/MwvJQFBxkGU3HvJtxK98ohhDk45JPbUDt14pKBk vkCNHsVvxQ9U1mdafSpZL3Sn5jfPD2Yz2aUTwZSykIIGa1iSh9/rT4222DtvNriC ruCe0/4OvilZTk8I1dwq77lolxFDRHAuZWUcIuJCwHDmPDdALzQ25NTvUP+8wX/V AMxDJutjNLWCM0ik/RND/OetOsCHEssux0DUdGtKbJxcSdDeTztRvvUC7VGCah+x WIG8Ld2i6Kyf2krAr/b4Bg7iEDtuwbZVbJj/R/g0sCRec3arAotLhb0JNfo= -----END CERTIFICATE-----Generated at Sun Jun 22 16:49:02 2025 by rpki-client