$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/aDhwj6-18HD7RgYSMHIGYFt6kVs.roa File: aDhwj6-18HD7RgYSMHIGYFt6kVs.roa (raw, json) Hash identifier: HsSc+tWDHIij9eNgMqeOfgeNnbtOHvC8sGg6+5CY15E= Subject key identifier: 68:38:70:8F:AF:B5:F0:70:FB:46:06:12:30:72:06:60:5B:7A:91:5B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E5A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aDhwj6-18HD7RgYSMHIGYFt6kVs.roa Signing time: Tue 10 Jun 2025 10:47:53 +0000 ROA not before: Tue 10 Jun 2025 10:47:53 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.66.68.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3674 (0xe5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:47:53 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=6838708FAFB5F070FB460612307206605B7A915B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c5:5c:5b:9f:e1:06:c2:c8:9c:b4:0f:25:5c: 1d:f0:c2:c8:73:61:09:86:f2:9b:04:c2:cd:6f:28: 62:99:1b:3b:59:65:6b:cf:e5:4d:8a:c4:bf:b2:f4: a6:22:1d:98:f3:87:01:f0:f2:56:48:8d:75:6c:ef: bf:1d:ff:80:aa:d3:c5:81:ce:1e:f2:e7:ac:03:19: 2c:b7:4b:00:66:e5:7c:7e:e9:2b:c5:fa:a0:db:bc: 5c:48:aa:28:0e:76:bf:3b:b3:59:0c:80:01:1e:85: 59:77:84:b8:55:e7:37:bd:76:5b:ba:36:07:77:8c: 77:0f:ef:f0:6f:d2:0b:3b:cc:c6:eb:6d:c4:3f:fd: 47:7f:82:92:c9:04:c8:7d:7c:4d:03:3c:94:44:f7: 8d:e1:97:7b:d2:80:9d:15:37:1b:b5:2f:3e:79:fc: d1:4b:cd:0e:b1:cf:58:f8:49:79:93:84:90:2c:94: c1:5d:00:1d:c6:ab:a7:c1:23:2e:11:eb:39:4f:c5: 9f:9f:94:d4:0f:50:9d:53:06:da:a9:d8:6e:1f:62: c4:6d:a5:42:d0:28:ee:e7:6b:7a:52:cc:12:d6:ad: b4:02:70:9f:dd:3b:e3:6b:0e:28:ed:10:c5:6d:8f: b3:c1:1f:6a:f4:70:61:b6:79:7a:3d:75:b2:35:55: d1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:38:70:8F:AF:B5:F0:70:FB:46:06:12:30:72:06:60:5B:7A:91:5B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aDhwj6-18HD7RgYSMHIGYFt6kVs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.68.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:2b:6f:fb:57:ef:81:51:b9:4c:e4:92:2b:0f:56:b4:64:cb: 2a:d6:85:16:1b:53:60:63:e5:0e:6b:d9:dd:fb:7c:77:a6:a7: a5:33:a7:22:43:0e:62:b2:b1:bc:24:89:13:3c:6e:2a:dd:4d: 76:c9:7e:67:ce:3e:ef:06:dd:06:6f:1f:22:b1:b4:47:fc:d7: 58:68:48:df:82:51:52:fd:3d:1e:b3:de:12:13:91:df:f0:30: d5:56:45:d2:21:47:d5:6e:ea:f4:6d:b5:cc:a0:89:ee:49:ba: fb:bf:e0:86:7f:8e:ed:e9:49:ad:cb:af:39:72:de:13:bd:49: 05:8f:25:84:7a:f8:69:80:5e:5c:e8:05:06:4e:66:26:d0:ff: db:f9:1f:58:53:c6:a3:48:27:00:57:fe:bc:23:fd:a2:2e:5b: 80:7a:41:c4:75:a8:c2:17:7f:8d:15:c0:b0:5a:cf:87:5d:12: 4b:d5:c3:55:89:fe:fb:51:20:dc:d5:00:9b:59:ee:f1:1b:6a: 33:23:23:f2:03:a0:bb:6e:04:2c:60:74:2b:27:a5:78:5f:10: f6:c9:29:45:7c:07:48:56:c1:9d:d7:20:0d:6c:cf:c3:0b:e1: aa:ec:17:d1:1f:91:bd:81:19:cc:19:87:03:f8:9b:c9:e2:01: 1b:52:c9:2b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDlowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDQ3NTNaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDY4Mzg3MDhGQUZCNUYw NzBGQjQ2MDYxMjMwNzIwNjYwNUI3QTkxNUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvxVxbn+EGwsictA8lXB3wwshzYQmG8psEws1vKGKZGztZZWvP 5U2KxL+y9KYiHZjzhwHw8lZIjXVs778d/4Cq08WBzh7y56wDGSy3SwBm5Xx+6SvF +qDbvFxIqigOdr87s1kMgAEehVl3hLhV5ze9dlu6Ngd3jHcP7/Bv0gs7zMbrbcQ/ /Ud/gpLJBMh9fE0DPJRE943hl3vSgJ0VNxu1Lz55/NFLzQ6xz1j4SXmThJAslMFd AB3Gq6fBIy4R6zlPxZ+flNQPUJ1TBtqp2G4fYsRtpULQKO7na3pSzBLWrbQCcJ/d O+NrDijtEMVtj7PBH2r0cGG2eXo9dbI1VdHhAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUaDhwj6+18HD7RgYSMHIGYFt6kVswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2FEaHdqNi0xOEhEN1JnWVNNSElHWUZ0NmtWcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBQkQwDQYJKoZIhvcNAQELBQADggEBAI8rb/tX74FRuUzkkisPVrRkyyrW hRYbU2Bj5Q5r2d37fHemp6UzpyJDDmKysbwkiRM8birdTXbJfmfOPu8G3QZvHyKx tEf811hoSN+CUVL9PR6z3hITkd/wMNVWRdIhR9Vu6vRttcygie5Juvu/4IZ/ju3p Sa3Lrzly3hO9SQWPJYR6+GmAXlzoBQZOZibQ/9v5H1hTxqNIJwBX/rwj/aIuW4B6 QcR1qMIXf40VwLBaz4ddEkvVw1WJ/vtRINzVAJtZ7vEbajMjI/IDoLtuBCxgdCsn pXhfEPbJKUV8B0hWwZ3XIA1sz8ML4arsF9Efkb2BGcwZhwP4m8niARtSySs= -----END CERTIFICATE-----Generated at Sat Jun 21 23:27:07 2025 by rpki-client