$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/XumtHa93wXD6jDWzZc7idmpPV9A.roa File: XumtHa93wXD6jDWzZc7idmpPV9A.roa (raw, json) Hash identifier: KsI/pYJJF0Pzc7kZQEfxuxhrE/oZoEAOcXjTlCg0FLY= Subject key identifier: 5E:E9:AD:1D:AF:77:C1:70:FA:8C:35:B3:65:CE:E2:76:6A:4F:57:D0 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F7A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XumtHa93wXD6jDWzZc7idmpPV9A.roa Signing time: Tue 10 Jun 2025 11:32:39 +0000 ROA not before: Tue 10 Jun 2025 11:32:39 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 211.14.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 18:25:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3962 (0xf7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:32:39 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=5EE9AD1DAF77C170FA8C35B365CEE2766A4F57D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:81:f4:64:e1:d7:e4:98:55:40:2e:43:f7:38: 7c:85:e4:53:44:e4:69:eb:c7:c0:59:ea:1c:fb:07: b3:47:cb:f5:bc:a8:34:9a:ef:aa:2e:a5:83:9e:a1: 09:c4:20:c3:c5:dc:8a:37:03:27:ef:46:1c:f6:51: 76:77:23:49:cc:7a:87:c0:f5:51:c2:9f:e7:4c:3b: 33:3d:4e:af:d3:5d:bb:d1:8c:0c:07:06:8e:ec:f8: 8c:02:24:75:33:b7:df:05:f5:ad:30:83:85:26:45: 27:e3:88:16:a0:1c:fc:80:e5:f6:29:5c:c5:96:8b: bd:2a:a8:ed:10:86:3e:44:78:54:8b:a7:0f:a0:da: b5:55:5d:ee:a5:45:83:32:dc:e9:ce:e2:69:6d:6f: 9c:61:5a:29:8b:3d:c2:ba:22:b8:16:83:91:35:9e: f8:5e:29:8f:8f:a0:70:07:13:51:61:93:53:64:65: 32:b7:48:00:4e:95:83:4d:9f:4e:36:6f:f8:0c:a1: 06:29:cc:f9:c5:d3:70:55:4e:68:56:4b:16:68:45: 1a:28:e0:4a:d5:bb:41:11:e3:5d:6c:54:c3:fa:df: 94:ec:40:b0:6d:52:17:67:3f:ef:79:33:96:41:7a: 44:9d:9f:47:d1:6b:29:d8:48:64:81:41:fa:3e:58: 2d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:E9:AD:1D:AF:77:C1:70:FA:8C:35:B3:65:CE:E2:76:6A:4F:57:D0 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XumtHa93wXD6jDWzZc7idmpPV9A.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.119.0/24 Signature Algorithm: sha256WithRSAEncryption 51:e3:42:a2:6f:ad:c1:80:6a:45:21:ff:a5:52:ba:cf:3e:ad: fd:31:39:5d:3a:9f:1e:33:8c:a1:cd:4f:f1:99:82:f7:c1:17: 9b:71:66:36:f1:d4:3d:9d:79:c6:fb:ab:00:2e:23:2d:9d:8a: 84:f2:fc:a4:15:d2:05:e6:46:b2:d1:c8:a3:6a:81:47:40:d2: f7:af:b4:aa:34:b9:b3:5f:a1:02:6c:2d:0d:8b:86:72:79:02: 26:7b:ef:9a:75:bf:3e:ef:9d:1b:de:bb:a6:f2:ca:19:7c:b5: c5:8b:f6:9a:87:1a:4d:ee:e6:bc:82:e8:d8:6a:18:6e:0b:40: 0e:55:35:93:fa:10:b6:53:aa:99:ed:50:46:a5:1d:20:10:1d: 4b:d2:3f:a1:97:9e:d8:0a:99:b8:61:5b:8c:c9:69:f0:28:5d: ce:f3:12:18:13:6f:e8:f1:c2:8d:64:32:67:9e:c5:00:fe:bd: d8:fa:3e:0f:d7:05:ee:52:8f:ce:bc:94:f6:89:77:50:1c:bf: 17:e1:23:b8:54:eb:e0:43:2e:ce:3c:09:10:b1:96:ea:41:c8: cb:81:e1:88:aa:a6:8d:7c:56:8d:c9:c4:c7:59:ca:52:15:95: 59:c9:52:60:29:1d:47:f1:ab:d8:f7:2d:ee:23:e7:9e:19:15: df:56:52:1b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD3owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTMyMzlaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDVFRTlBRDFEQUY3N0Mx NzBGQThDMzVCMzY1Q0VFMjc2NkE0RjU3RDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzgfRk4dfkmFVALkP3OHyF5FNE5Gnrx8BZ6hz7B7NHy/W8qDSa 76oupYOeoQnEIMPF3Io3AyfvRhz2UXZ3I0nMeofA9VHCn+dMOzM9Tq/TXbvRjAwH Bo7s+IwCJHUzt98F9a0wg4UmRSfjiBagHPyA5fYpXMWWi70qqO0Qhj5EeFSLpw+g 2rVVXe6lRYMy3OnO4mltb5xhWimLPcK6IrgWg5E1nvheKY+PoHAHE1Fhk1NkZTK3 SABOlYNNn042b/gMoQYpzPnF03BVTmhWSxZoRRoo4ErVu0ER411sVMP635TsQLBt UhdnP+95M5ZBekSdn0fRaynYSGSBQfo+WC3zAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUXumtHa93wXD6jDWzZc7idmpPV9AwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1h1bXRIYTkzd1hENmpEV3paYzdpZG1wUFY5QS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADTDncwDQYJKoZIhvcNAQELBQADggEBAFHjQqJvrcGAakUh/6VSus8+rf0x OV06nx4zjKHNT/GZgvfBF5txZjbx1D2decb7qwAuIy2dioTy/KQV0gXmRrLRyKNq gUdA0vevtKo0ubNfoQJsLQ2LhnJ5AiZ775p1vz7vnRveu6byyhl8tcWL9pqHGk3u 5ryC6NhqGG4LQA5VNZP6ELZTqpntUEalHSAQHUvSP6GXntgKmbhhW4zJafAoXc7z EhgTb+jxwo1kMmeexQD+vdj6Pg/XBe5Sj868lPaJd1AcvxfhI7hU6+BDLs48CRCx lupByMuB4Yiqpo18Vo3JxMdZylIVlVnJUmApHUfxq9j3Le4j554ZFd9WUhs= -----END CERTIFICATE-----Generated at Sat Jun 21 20:21:48 2025 by rpki-client