$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/XQy2s2QStesSO_ibBsTSIc6unHk.roa File: XQy2s2QStesSO_ibBsTSIc6unHk.roa (raw, json) Hash identifier: T8GQ7eRYUjRltCN7OEW9BDuSFMHIq5doxc0mrRD89sQ= Subject key identifier: 5D:0C:B6:B3:64:12:B5:EB:12:3B:F8:9B:06:C4:D2:21:CE:AE:9C:79 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E60 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XQy2s2QStesSO_ibBsTSIc6unHk.roa Signing time: Tue 10 Jun 2025 10:47:56 +0000 ROA not before: Tue 10 Jun 2025 10:47:56 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.67.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 05:44:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3680 (0xe60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:47:56 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=5D0CB6B36412B5EB123BF89B06C4D221CEAE9C79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7f:41:1d:3e:fc:f6:fd:ae:1f:84:0f:1e:d0: 5f:02:8e:a9:f9:a5:01:c2:82:6b:6c:cc:4f:c1:00: c5:e5:13:33:d9:7f:94:40:30:01:70:28:f0:f0:d6: 8b:c3:fa:e5:57:95:85:ca:50:2f:cf:65:4c:61:9f: 05:05:a5:9a:3d:0d:b0:03:c6:cb:27:b8:17:19:20: 6d:b8:a3:90:50:d9:49:4a:16:4a:fe:3a:45:46:f8: aa:49:01:a6:b9:93:7e:1f:92:39:fc:4c:79:fb:1b: 55:4f:8c:c6:f8:e4:5e:1c:88:fd:d4:e9:5b:7f:a1: 96:52:c3:c8:ee:ef:a9:df:6a:e2:25:c6:42:b0:df: 2a:c4:a2:6c:0a:e3:77:05:2a:df:08:ad:78:4b:6c: 2d:1a:18:d4:84:6e:72:e6:57:51:5e:93:77:85:18: 89:67:1a:35:b7:18:e4:7e:4a:55:b3:ba:23:b0:1c: 9f:a2:20:54:d4:12:cd:fa:8f:8d:38:ab:ad:87:63: ce:61:c8:a1:6e:16:e1:78:44:e9:20:ba:1b:ba:90: fc:fd:05:d6:f9:0e:7c:ba:11:75:16:1b:2c:cb:23: 09:4a:8c:65:dd:23:c4:d1:b1:2a:91:c3:64:ca:1e: 74:e5:72:6a:fa:49:e0:4f:e9:af:cf:25:7c:53:f7: 99:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:0C:B6:B3:64:12:B5:EB:12:3B:F8:9B:06:C4:D2:21:CE:AE:9C:79 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XQy2s2QStesSO_ibBsTSIc6unHk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.67.236.0/24 Signature Algorithm: sha256WithRSAEncryption 27:7e:f1:1f:77:3a:57:39:09:62:23:df:bb:c7:c1:30:32:88: 96:f4:ab:2a:a4:6f:79:93:f6:30:0e:90:7e:8a:1f:24:33:3a: a1:d4:fd:c6:a6:c7:e2:f9:45:d2:a4:de:a2:e8:07:e6:3b:52: c4:ba:ac:03:e8:ef:9e:c7:21:97:32:25:9c:93:42:02:b2:ab: 3b:05:65:6b:c8:e5:f0:3d:3a:a8:19:1e:7f:c9:71:64:81:6e: 18:88:f2:2d:b1:01:36:fb:57:e2:d9:13:54:a3:b9:33:79:80: f0:21:ca:83:e1:66:a6:00:53:2f:35:5f:10:b0:eb:31:8a:21: d4:77:da:4a:7b:e2:a9:ef:ac:f7:1d:0d:22:b5:57:f4:9a:10: 38:a6:5e:b7:e3:e1:5a:86:9d:4f:f1:53:55:9d:08:5b:ce:f8: b9:91:34:67:01:58:e8:40:3c:39:0d:f3:93:82:f4:25:b6:fd: a4:b5:23:04:db:bd:4e:88:80:7c:7d:97:96:cc:71:96:37:5a: 76:0c:1b:c0:3a:07:91:dc:a2:c1:51:46:13:58:0e:02:b5:01: 63:35:44:4d:75:71:d2:09:fc:81:f1:03:1c:f1:3b:d3:ab:f7: 6d:1a:68:b6:c9:bd:47:fd:a7:74:09:2d:db:0f:07:b2:fb:74: f2:5b:d0:35 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDmAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDQ3NTZaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDVEMENCNkIzNjQxMkI1 RUIxMjNCRjg5QjA2QzREMjIxQ0VBRTlDNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsf0EdPvz2/a4fhA8e0F8Cjqn5pQHCgmtszE/BAMXlEzPZf5RA MAFwKPDw1ovD+uVXlYXKUC/PZUxhnwUFpZo9DbADxssnuBcZIG24o5BQ2UlKFkr+ OkVG+KpJAaa5k34fkjn8THn7G1VPjMb45F4ciP3U6Vt/oZZSw8ju76nfauIlxkKw 3yrEomwK43cFKt8IrXhLbC0aGNSEbnLmV1Fek3eFGIlnGjW3GOR+SlWzuiOwHJ+i IFTUEs36j404q62HY85hyKFuFuF4ROkguhu6kPz9Bdb5Dny6EXUWGyzLIwlKjGXd I8TRsSqRw2TKHnTlcmr6SeBP6a/PJXxT95mXAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUXQy2s2QStesSO/ibBsTSIc6unHkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1hReTJzMlFTdGVzU09faWJCc1RTSWM2dW5Iay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABQ+wwDQYJKoZIhvcNAQELBQADggEBACd+8R93Olc5CWIj37vHwTAyiJb0 qyqkb3mT9jAOkH6KHyQzOqHU/camx+L5RdKk3qLoB+Y7UsS6rAPo757HIZcyJZyT QgKyqzsFZWvI5fA9OqgZHn/JcWSBbhiI8i2xATb7V+LZE1SjuTN5gPAhyoPhZqYA Uy81XxCw6zGKIdR32kp74qnvrPcdDSK1V/SaEDimXrfj4VqGnU/xU1WdCFvO+LmR NGcBWOhAPDkN85OC9CW2/aS1IwTbvU6IgHx9l5bMcZY3WnYMG8A6B5HcosFRRhNY DgK1AWM1RE11cdIJ/IHxAxzxO9Or920aaLbJvUf9p3QJLdsPB7L7dPJb0DU= -----END CERTIFICATE-----Generated at Fri Jun 20 07:59:59 2025 by rpki-client