$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/cXlOLftHFNzEwazKriqI3o1lN-M.roa File: cXlOLftHFNzEwazKriqI3o1lN-M.roa (raw, json) Hash identifier: Up+MXux3Tpc4y8BxJtNDL9upmgk3boV6XYmiEJM8HwA= Subject key identifier: 71:79:4E:2D:FB:47:14:DC:C4:C1:AC:CA:AE:2A:88:DE:8D:65:37:E3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E3D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cXlOLftHFNzEwazKriqI3o1lN-M.roa Signing time: Sun 01 Jun 2025 01:30:15 +0000 ROA not before: Sun 01 Jun 2025 01:30:15 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.75.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 15:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3645 (0xe3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 1 01:30:15 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=71794E2DFB4714DCC4C1ACCAAE2A88DE8D6537E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f9:f6:55:85:e4:49:d5:cc:c1:43:85:47:e5: 8d:4a:1a:03:ea:b9:13:a6:c0:1a:27:35:42:db:22: 95:69:13:6a:ae:5e:f6:b9:b7:9c:93:37:63:74:fd: 79:07:65:08:c0:2f:bf:35:b0:5b:4f:88:1b:04:6f: f2:f8:e1:79:23:8d:87:a7:f2:67:88:38:14:18:80: 82:43:82:ed:6b:50:e1:fe:c6:66:69:e8:0c:2a:df: 72:16:8f:37:d1:6d:d2:16:61:b6:8c:0a:4e:35:60: e5:73:4f:2f:33:a2:9d:4f:05:5e:22:93:2c:bd:ef: e0:e9:35:9e:70:c7:68:c0:6f:7b:63:b6:f6:70:24: 4f:93:b2:19:6a:a0:af:fb:5d:b4:1c:1c:cf:e1:3a: 88:c1:d1:75:5d:c1:30:2e:bc:e0:cd:99:5a:27:09: 35:26:a6:61:d7:6d:57:3c:a6:00:94:9b:be:72:62: 87:9a:70:f5:51:48:0a:44:3a:20:f6:f3:4b:66:66: 3f:8c:fb:18:62:7b:fd:f2:a2:3b:b6:ff:3a:b7:4e: cc:74:44:6f:32:5e:e0:14:71:e8:3d:40:69:9f:3f: e6:f1:4f:ac:de:db:fb:ab:7f:4d:d8:e5:52:49:51: d1:a6:c1:76:e0:02:1b:15:36:c7:56:6c:f3:95:81: 49:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:79:4E:2D:FB:47:14:DC:C4:C1:AC:CA:AE:2A:88:DE:8D:65:37:E3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cXlOLftHFNzEwazKriqI3o1lN-M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.96.0/20 Signature Algorithm: sha256WithRSAEncryption a2:81:82:ae:50:d4:3d:03:77:b1:91:8f:04:8b:7f:f7:53:2e: 08:a8:cf:da:ce:9f:be:ff:ab:ec:06:5c:a2:da:05:94:62:50: 16:ec:b0:9e:15:8a:cc:b0:bf:46:9a:82:6b:fc:ad:b6:d6:39: bc:38:09:3a:6a:5c:39:19:1e:d8:ef:63:60:60:63:57:78:2f: 83:a1:e1:2d:2a:39:54:c0:2b:d4:ad:8a:d5:96:b7:fd:f2:eb: 4c:0a:f0:ac:8a:48:cc:7b:e1:b5:aa:25:98:8b:14:f6:ce:78: 1c:f8:b7:18:ba:cd:c2:ca:c8:45:03:43:3f:61:28:7e:8c:c8: 25:8e:e5:1e:67:b8:72:86:61:dc:fe:da:3c:cb:83:0e:f3:6a: 8b:58:21:ff:8f:f3:ae:2b:cc:1a:43:b8:0a:6a:96:71:af:45: ef:38:dc:d6:0e:a2:2b:b8:f1:13:41:b9:85:b9:7b:62:6a:f8: ee:38:cf:52:65:26:c7:e3:99:7a:43:af:ef:72:99:cf:5c:83: ee:20:e9:71:6a:66:e5:42:c6:29:dd:87:ad:be:b1:72:5d:37: 10:54:de:d0:3a:5b:7d:7c:94:5e:4b:1d:cd:64:83:50:df:52: 2c:cf:1f:3d:bf:85:06:88:ee:b0:c8:ca:4a:6c:83:e8:64:6c: e2:78:9c:12 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDj0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MDEw MTMwMTVaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDcxNzk0RTJERkI0NzE0 RENDNEMxQUNDQUFFMkE4OERFOEQ2NTM3RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDO+fZVheRJ1czBQ4VH5Y1KGgPquROmwBonNULbIpVpE2quXva5 t5yTN2N0/XkHZQjAL781sFtPiBsEb/L44XkjjYen8meIOBQYgIJDgu1rUOH+xmZp 6Awq33IWjzfRbdIWYbaMCk41YOVzTy8zop1PBV4ikyy97+DpNZ5wx2jAb3tjtvZw JE+TshlqoK/7XbQcHM/hOojB0XVdwTAuvODNmVonCTUmpmHXbVc8pgCUm75yYoea cPVRSApEOiD280tmZj+M+xhie/3yoju2/zq3Tsx0RG8yXuAUceg9QGmfP+bxT6ze 2/urf03Y5VJJUdGmwXbgAhsVNsdWbPOVgUk5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUcXlOLftHFNzEwazKriqI3o1lN+MwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2NYbE9MZnRIRk56RXdhektyaXFJM28xbE4tTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBS2AwDQYJKoZIhvcNAQELBQADggEBAKKBgq5Q1D0Dd7GRjwSLf/dTLgio z9rOn77/q+wGXKLaBZRiUBbssJ4Visywv0aagmv8rbbWObw4CTpqXDkZHtjvY2Bg Y1d4L4Oh4S0qOVTAK9StitWWt/3y60wK8KyKSMx74bWqJZiLFPbOeBz4txi6zcLK yEUDQz9hKH6MyCWO5R5nuHKGYdz+2jzLgw7zaotYIf+P864rzBpDuApqlnGvRe84 3NYOoiu48RNBuYW5e2Jq+O44z1JlJsfjmXpDr+9ymc9cg+4g6XFqZuVCxindh62+ sXJdNxBU3tA6W318lF5LHc1kg1DfUizPHz2/hQaI7rDIykpsg+hkbOJ4nBI= -----END CERTIFICATE-----Generated at Sat Jun 21 18:38:41 2025 by rpki-client