$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Vn-qHkXuiYxVTTzAwe5zMETEmqU.roa File: Vn-qHkXuiYxVTTzAwe5zMETEmqU.roa (raw, json) Hash identifier: L9+5k3UPPqAYpJE1hsAwGru6VX8K8fsWRnEbtvnSoLY= Subject key identifier: 56:7F:AA:1E:45:EE:89:8C:55:4D:3C:C0:C1:EE:73:30:44:C4:9A:A5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0FBE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Vn-qHkXuiYxVTTzAwe5zMETEmqU.roa Signing time: Tue 10 Jun 2025 11:44:16 +0000 ROA not before: Tue 10 Jun 2025 11:44:16 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.67.232.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4030 (0xfbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:44:16 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=567FAA1E45EE898C554D3CC0C1EE733044C49AA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8e:26:cb:1e:d4:43:f6:33:96:41:e9:81:cf: 52:a0:12:4e:bc:ac:7c:f8:ec:95:c7:08:21:c2:d6: f9:4f:fc:b9:20:17:e8:bb:57:36:66:bd:c1:5e:e8: 22:48:c7:8b:d2:1a:6c:0a:cc:36:8e:80:11:6f:ae: 9c:89:73:95:28:67:42:61:25:fc:8a:0a:3d:b4:0f: d5:bd:36:48:10:45:a6:a7:65:35:09:04:ff:83:3c: 93:36:c7:21:86:85:c0:3d:f1:8d:0c:11:a4:12:85: 49:e6:fb:d8:35:14:d7:25:65:4d:03:1e:b8:d5:c0: 41:5b:41:48:36:b0:6c:fa:e2:18:db:d6:83:c2:ed: 86:91:27:10:4c:1c:95:b5:bb:46:43:0d:26:b4:38: 28:be:9c:91:63:9a:41:ca:8a:25:5e:db:7b:af:c1: 95:38:20:cf:01:42:ec:e4:83:ff:6d:6b:0c:ad:40: 22:1b:95:da:f2:46:cf:82:3d:da:05:7b:86:07:ce: 37:26:21:42:e7:75:1f:55:91:5d:85:d5:c3:19:d7: d3:44:03:7b:74:37:8b:a9:ad:34:1a:93:46:db:6a: 07:52:6d:28:d4:ef:7f:b6:38:0b:7b:b3:dd:3c:a9: b1:a2:79:88:a0:41:84:67:3b:e0:50:d7:65:42:5b: 6f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:7F:AA:1E:45:EE:89:8C:55:4D:3C:C0:C1:EE:73:30:44:C4:9A:A5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Vn-qHkXuiYxVTTzAwe5zMETEmqU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.67.232.0/23 Signature Algorithm: sha256WithRSAEncryption 54:69:7a:43:9d:8b:9d:ad:2c:91:de:7a:a9:89:cd:8a:0d:62: 67:56:2e:6a:8c:78:85:d0:07:3c:d5:63:a5:b9:66:55:2b:fd: 06:80:27:85:0b:7f:96:28:97:ca:e0:33:87:a8:13:82:1d:b6: 84:c7:8b:f5:24:f4:cb:cd:f5:9e:21:9c:3f:d3:c2:f6:c4:e7: 4e:3c:a8:53:38:5c:10:31:fa:85:40:3c:64:4b:52:03:25:11: f9:b7:6d:a5:4b:4e:db:97:0c:5e:d9:ed:b6:1a:83:20:c4:50: 11:4a:ce:88:f6:cf:a0:01:34:ba:46:27:53:42:77:26:6a:b7: ec:87:4c:72:51:1c:ad:d9:17:ad:9b:b6:7b:ae:13:7d:ee:85: af:b9:3e:37:63:ff:06:fc:2a:2e:d5:4c:62:1d:c9:a9:93:25: cc:46:f4:74:30:b9:1d:49:67:14:f3:9a:80:58:79:f7:dc:16: 32:9c:5a:34:e5:c1:be:ef:0f:ff:02:ae:da:03:e7:cf:fb:3a: 86:e2:9c:1b:77:3c:f0:2e:40:ba:67:0c:a1:68:94:f6:19:b2: 0e:81:fb:51:42:9b:67:b7:f4:f8:e5:6b:86:ab:68:8c:0b:b4: ae:d1:5b:a8:62:56:9c:e7:da:28:0f:4e:bd:c5:3f:f0:09:b8: 80:5a:99:17 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD74wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTQ0MTZaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDU2N0ZBQTFFNDVFRTg5 OEM1NTREM0NDMEMxRUU3MzMwNDRDNDlBQTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7jibLHtRD9jOWQemBz1KgEk68rHz47JXHCCHC1vlP/LkgF+i7 VzZmvcFe6CJIx4vSGmwKzDaOgBFvrpyJc5UoZ0JhJfyKCj20D9W9NkgQRaanZTUJ BP+DPJM2xyGGhcA98Y0MEaQShUnm+9g1FNclZU0DHrjVwEFbQUg2sGz64hjb1oPC 7YaRJxBMHJW1u0ZDDSa0OCi+nJFjmkHKiiVe23uvwZU4IM8BQuzkg/9tawytQCIb ldryRs+CPdoFe4YHzjcmIULndR9VkV2F1cMZ19NEA3t0N4uprTQak0bbagdSbSjU 73+2OAt7s908qbGieYigQYRnO+BQ12VCW2+lAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUVn+qHkXuiYxVTTzAwe5zMETEmqUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1ZuLXFIa1h1aVl4VlRUekF3ZTV6TUVURW1xVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBQ+gwDQYJKoZIhvcNAQELBQADggEBAFRpekOdi52tLJHeeqmJzYoNYmdW LmqMeIXQBzzVY6W5ZlUr/QaAJ4ULf5Yol8rgM4eoE4IdtoTHi/Uk9MvN9Z4hnD/T wvbE5048qFM4XBAx+oVAPGRLUgMlEfm3baVLTtuXDF7Z7bYagyDEUBFKzoj2z6AB NLpGJ1NCdyZqt+yHTHJRHK3ZF62btnuuE33uha+5Pjdj/wb8Ki7VTGIdyamTJcxG 9HQwuR1JZxTzmoBYeffcFjKcWjTlwb7vD/8CrtoD58/7OobinBt3PPAuQLpnDKFo lPYZsg6B+1FCm2e39Pjla4araIwLtK7RW6hiVpzn2igPTr3FP/AJuIBamRc= -----END CERTIFICATE-----Generated at Sun Jun 22 08:12:39 2025 by rpki-client