$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/YmLI7mJWXdrkmdXHvKY53QY6_s8.roa File: YmLI7mJWXdrkmdXHvKY53QY6_s8.roa (raw, json) Hash identifier: rkNvceqt+hy2Arx5LQUQOkLltU1RO1GRVkHT5V68wxo= Subject key identifier: 62:62:C8:EE:62:56:5D:DA:E4:99:D5:C7:BC:A6:39:DD:06:3A:FE:CF Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F16 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YmLI7mJWXdrkmdXHvKY53QY6_s8.roa Signing time: Tue 10 Jun 2025 11:20:15 +0000 ROA not before: Tue 10 Jun 2025 11:20:15 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.67.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3862 (0xf16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:20:15 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=6262C8EE62565DDAE499D5C7BCA639DD063AFECF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3c:b0:91:c8:be:35:69:22:ec:f7:79:a5:7f: 6b:82:12:8b:e8:b1:53:55:d7:d5:bb:cd:d5:54:a4: 69:e5:b6:c0:4b:c0:4e:71:e6:14:7b:85:ae:e8:93: 80:b1:fe:4f:7e:51:39:51:d4:52:1b:ed:67:6d:cf: a0:b0:7d:38:c6:70:97:79:c7:b6:f3:dc:f5:db:1c: f8:a3:81:3b:f7:d9:4e:29:99:da:aa:0e:7e:a8:71: 27:8e:4d:02:7e:00:bb:35:38:de:79:10:52:8d:12: 4a:86:d4:c3:62:5e:67:6b:72:40:47:54:50:32:92: 36:3f:da:da:c9:1c:4a:6a:b3:0d:37:2f:d9:f5:46: b4:93:d2:13:e1:ab:50:c1:7f:b6:e9:20:47:0d:8e: 84:58:52:99:5e:65:52:f4:15:ef:a5:1f:d1:1c:7c: d1:85:c2:6a:e9:b8:39:4e:6d:04:51:49:1c:bf:9b: 41:82:08:c5:64:d7:b4:d6:f9:29:3b:da:00:fc:38: 6a:a1:f0:c4:20:ba:a3:17:61:19:8e:c6:be:a9:c6: 22:34:be:49:82:4c:4c:0f:06:9f:ab:9e:be:e4:da: c2:ef:30:29:a4:d8:90:2d:f9:15:15:bd:41:0c:c3: 50:d5:e1:f4:63:ba:34:6c:d6:0f:cc:f1:89:f0:5e: 4a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:62:C8:EE:62:56:5D:DA:E4:99:D5:C7:BC:A6:39:DD:06:3A:FE:CF X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YmLI7mJWXdrkmdXHvKY53QY6_s8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.67.128.0/19 Signature Algorithm: sha256WithRSAEncryption 96:4a:4a:f0:2d:3b:4b:4f:bf:70:d7:14:20:ac:7d:09:c7:84: 31:76:a6:84:79:62:34:bf:e4:1a:60:d9:4a:30:ab:91:60:df: ca:38:c5:4c:3c:5a:46:4f:3a:47:e0:25:3c:91:1f:64:f5:8a: ce:38:9b:48:e3:a3:1f:82:21:fe:5a:41:e0:58:e1:48:31:74: fe:7d:a1:07:69:e0:53:f8:4e:cc:59:27:66:05:ab:cf:a6:1e: 36:bd:77:b7:87:56:02:8a:aa:9a:84:f1:d9:4a:9e:64:44:90: 36:22:83:32:b4:1e:f9:97:da:72:2e:03:46:86:5a:cc:b2:fb: d1:9c:95:1b:af:4e:8a:fb:e4:b2:cb:6e:c4:69:04:b8:66:67: ee:43:97:f5:91:ae:d5:1f:77:af:e8:e6:ca:ba:90:81:99:76: 1e:35:92:df:ea:9e:fc:90:56:a7:9c:27:cb:5d:bf:4a:25:13: d8:59:37:85:78:00:df:c3:02:ce:0f:92:1c:2d:e8:af:ca:16: 42:82:88:1d:e6:81:c5:a8:a7:fa:b9:32:d9:a9:b6:d1:9d:0e: d9:a6:ad:ec:40:d0:a8:55:b1:9a:59:30:f8:8f:88:82:d5:5e: 24:51:ab:52:22:54:33:49:22:80:4e:d8:35:30:35:d2:ec:99: 0e:01:54:35 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDxYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTIwMTVaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDYyNjJDOEVFNjI1NjVE REFFNDk5RDVDN0JDQTYzOUREMDYzQUZFQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8PLCRyL41aSLs93mlf2uCEovosVNV19W7zdVUpGnltsBLwE5x 5hR7ha7ok4Cx/k9+UTlR1FIb7Wdtz6CwfTjGcJd5x7bz3PXbHPijgTv32U4pmdqq Dn6ocSeOTQJ+ALs1ON55EFKNEkqG1MNiXmdrckBHVFAykjY/2trJHEpqsw03L9n1 RrST0hPhq1DBf7bpIEcNjoRYUpleZVL0Fe+lH9EcfNGFwmrpuDlObQRRSRy/m0GC CMVk17TW+Sk72gD8OGqh8MQguqMXYRmOxr6pxiI0vkmCTEwPBp+rnr7k2sLvMCmk 2JAt+RUVvUEMw1DV4fRjujRs1g/M8YnwXkoxAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYmLI7mJWXdrkmdXHvKY53QY6/s8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1ltTEk3bUpXWGRya21kWEh2S1k1M1FZNl9zOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUBQ4AwDQYJKoZIhvcNAQELBQADggEBAJZKSvAtO0tPv3DXFCCsfQnHhDF2 poR5YjS/5Bpg2Uowq5Fg38o4xUw8WkZPOkfgJTyRH2T1is44m0jjox+CIf5aQeBY 4UgxdP59oQdp4FP4TsxZJ2YFq8+mHja9d7eHVgKKqpqE8dlKnmREkDYigzK0HvmX 2nIuA0aGWsyy+9GclRuvTor75LLLbsRpBLhmZ+5Dl/WRrtUfd6/o5sq6kIGZdh41 kt/qnvyQVqecJ8tdv0olE9hZN4V4AN/DAs4Pkhwt6K/KFkKCiB3mgcWop/q5Mtmp ttGdDtmmrexA0KhVsZpZMPiPiILVXiRRq1IiVDNJIoBO2DUwNdLsmQ4BVDU= -----END CERTIFICATE-----Generated at Sun Jun 22 09:30:17 2025 by rpki-client