$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/_LKb8MYN8Mb6vVIH7TPr-CpWxxE.roa File: _LKb8MYN8Mb6vVIH7TPr-CpWxxE.roa (raw, json) Hash identifier: SZB1Zj38jcRnjwOxXNX8yGvzZaxAvz4tW7apq38yybk= Subject key identifier: FC:B2:9B:F0:C6:0D:F0:C6:FA:BD:52:07:ED:33:EB:F8:2A:56:C7:11 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E83 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/_LKb8MYN8Mb6vVIH7TPr-CpWxxE.roa Signing time: Tue 10 Jun 2025 10:56:46 +0000 ROA not before: Tue 10 Jun 2025 10:56:46 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.79.164.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 10:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3715 (0xe83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:56:46 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=FCB29BF0C60DF0C6FABD5207ED33EBF82A56C711 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:00:c9:83:57:0b:45:d0:7c:14:7a:d0:22:7e: f4:3d:8f:61:b5:23:fa:30:96:93:2b:af:8c:ca:97: e1:d6:4f:2a:f1:35:17:0f:0f:c9:f0:fb:97:8d:a8: 91:78:21:7b:c7:38:a3:7f:9f:8b:c0:ba:28:90:db: ab:ed:45:b8:a4:91:42:7f:7c:08:3a:b2:79:c1:85: e9:5c:72:51:2b:f6:1f:1d:31:85:73:fa:99:70:fe: f3:d1:8c:cb:e2:4c:5b:6e:7e:f8:ef:df:33:58:47: 0d:7f:25:8c:14:fa:a4:70:b7:16:79:57:d0:cf:10: 0e:4d:71:81:47:b3:33:ca:86:01:6d:ea:b1:1c:aa: e4:66:a4:ef:dc:29:75:7e:10:f1:ab:df:8b:ed:26: 12:9c:8b:5d:46:c2:38:68:c0:a8:5d:a5:53:34:e2: d4:cc:d0:68:58:a7:35:35:af:1b:cd:21:07:24:cc: 9a:8e:7c:6a:a5:5e:b5:6e:a9:a9:e5:c2:cd:ba:1c: 22:65:e8:4c:0f:d7:bb:e3:8b:e5:d9:4d:9e:2d:15: 79:91:87:9b:ab:87:fd:d5:b5:d9:f5:17:80:7b:b6: 85:c3:5b:4b:ec:b8:64:56:87:97:0b:f1:f9:7b:1e: 79:c5:af:b1:f6:c8:d6:05:ab:fc:23:85:ef:cb:f8: 1d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:B2:9B:F0:C6:0D:F0:C6:FA:BD:52:07:ED:33:EB:F8:2A:56:C7:11 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/_LKb8MYN8Mb6vVIH7TPr-CpWxxE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.164.0/22 Signature Algorithm: sha256WithRSAEncryption 83:3c:da:59:a5:70:a9:18:19:4c:47:16:ca:5d:44:1b:f3:8e: a7:de:7c:59:9e:7a:57:0c:ee:96:ae:67:3d:1e:73:78:e1:39: ec:29:ad:d5:7d:c9:be:52:d6:be:dc:b8:be:2a:97:7d:10:8e: 3d:66:c9:28:19:41:81:67:c4:a0:e9:5f:78:fe:45:ea:5a:0d: ad:d7:fc:19:76:1d:b6:7d:68:d3:c4:91:4f:42:ec:5e:13:49: b7:49:b5:b0:43:e5:8d:30:f8:57:ed:b9:1d:dd:cc:8a:ef:bd: 7d:fd:e9:71:b4:82:10:a4:f5:f1:fb:22:63:ed:99:44:5b:5d: 4e:c1:74:81:3f:f1:4c:33:84:f4:a9:9c:df:22:43:a2:50:a7: 04:e6:04:a4:92:ec:56:92:8c:f9:bd:1a:85:d3:49:fc:12:1a: ed:d7:7d:e3:11:9f:79:d7:54:31:01:ba:4d:f7:9b:59:d3:53: 7e:72:51:b6:3d:73:8f:5a:d0:82:89:61:19:a1:b2:9f:7b:93: ac:a0:28:58:39:62:94:c9:f6:47:0c:ba:ed:52:94:15:32:17: d5:73:45:4a:84:f0:55:d3:49:42:e5:72:3e:24:1e:ae:27:c4: d7:6e:da:9f:86:14:78:08:d2:64:b9:55:48:92:ec:4a:03:89: 49:49:79:8a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDoMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDU2NDZaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEZDQjI5QkYwQzYwREYw QzZGQUJENTIwN0VEMzNFQkY4MkE1NkM3MTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMAMmDVwtF0HwUetAifvQ9j2G1I/owlpMrr4zKl+HWTyrxNRcP D8nw+5eNqJF4IXvHOKN/n4vAuiiQ26vtRbikkUJ/fAg6snnBhelcclEr9h8dMYVz +plw/vPRjMviTFtufvjv3zNYRw1/JYwU+qRwtxZ5V9DPEA5NcYFHszPKhgFt6rEc quRmpO/cKXV+EPGr34vtJhKci11GwjhowKhdpVM04tTM0GhYpzU1rxvNIQckzJqO fGqlXrVuqanlws26HCJl6EwP17vji+XZTZ4tFXmRh5urh/3Vtdn1F4B7toXDW0vs uGRWh5cL8fl7HnnFr7H2yNYFq/wjhe/L+B3/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU/LKb8MYN8Mb6vVIH7TPr+CpWxxEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L19MS2I4TVlOOE1iNnZWSUg3VFByLUNwV3h4RS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBT6QwDQYJKoZIhvcNAQELBQADggEBAIM82lmlcKkYGUxHFspdRBvzjqfe fFmeelcM7pauZz0ec3jhOewprdV9yb5S1r7cuL4ql30Qjj1mySgZQYFnxKDpX3j+ RepaDa3X/Bl2HbZ9aNPEkU9C7F4TSbdJtbBD5Y0w+FftuR3dzIrvvX396XG0ghCk 9fH7ImPtmURbXU7BdIE/8UwzhPSpnN8iQ6JQpwTmBKSS7FaSjPm9GoXTSfwSGu3X feMRn3nXVDEBuk33m1nTU35yUbY9c49a0IKJYRmhsp97k6ygKFg5YpTJ9kcMuu1S lBUyF9VzRUqE8FXTSULlcj4kHq4nxNdu2p+GFHgI0mS5VUiS7EoDiUlJeYo= -----END CERTIFICATE-----Generated at Sat Jun 21 13:38:31 2025 by rpki-client