$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/c_Nyr8q0O666oNQQEScIZCYU1B8.roa File: c_Nyr8q0O666oNQQEScIZCYU1B8.roa (raw, json) Hash identifier: xc9zCLR6bZbZ6tE+iPPhwFbEZbObnL+MFJX6gwGFtAI= Subject key identifier: 73:F3:72:AF:CA:B4:3B:AE:BA:A0:D4:10:11:27:08:64:26:14:D4:1F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0EB7 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/c_Nyr8q0O666oNQQEScIZCYU1B8.roa Signing time: Tue 10 Jun 2025 11:04:53 +0000 ROA not before: Tue 10 Jun 2025 11:04:53 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.66.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 14:58:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3767 (0xeb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:04:53 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=73F372AFCAB43BAEBAA0D410112708642614D41F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2c:86:db:bb:46:a2:61:ee:8c:74:25:49:bc: b9:58:1c:0f:6a:13:2b:84:90:98:ce:34:b2:51:76: 7e:66:aa:95:0c:70:48:a5:30:27:39:b2:5e:21:46: 43:ec:d5:71:f7:17:13:ae:af:b9:6b:92:54:8c:0a: 23:90:38:b7:52:38:a8:73:f6:a4:e8:0c:c8:18:53: ce:ec:8b:68:9d:7f:03:bf:31:bb:e9:f1:1b:6f:f4: d5:04:87:7a:e3:8b:28:e7:88:6e:d3:fe:55:7f:3a: d1:38:06:8d:1c:00:65:c8:07:56:93:db:d5:07:65: 4f:fd:9b:8a:01:a5:9d:db:24:8a:3f:d6:a8:bc:9c: 10:3f:67:9e:b6:59:88:dc:e2:2c:0b:ba:0e:07:27: 6c:8d:fb:0e:82:91:bb:61:b3:5a:33:ce:d0:0f:1e: de:06:75:9a:59:f7:78:73:db:0a:c4:4b:1b:0f:99: 75:99:44:13:02:ca:45:6d:ff:29:57:0a:0e:d2:3c: e7:b1:c8:db:25:a7:b7:3d:40:26:9d:26:2e:8b:a0: 73:cd:a3:a7:79:d3:53:bf:52:51:96:1f:56:64:69: b7:7e:bf:90:a4:10:b4:20:57:f6:98:bc:5c:ab:e3: 30:41:e3:c6:63:4e:69:5a:0c:d2:bf:03:0b:4c:1f: 88:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:F3:72:AF:CA:B4:3B:AE:BA:A0:D4:10:11:27:08:64:26:14:D4:1F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/c_Nyr8q0O666oNQQEScIZCYU1B8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.24.0/22 Signature Algorithm: sha256WithRSAEncryption 0b:0f:ba:cc:aa:de:d0:b8:aa:65:6e:06:8e:46:64:0c:9a:75: d7:ca:b4:c3:ff:ba:5b:2a:fc:a0:84:8f:e9:55:04:6b:74:eb: 41:30:23:3c:6b:ed:cf:96:17:b0:ef:5f:73:72:d6:ac:e7:93: 0f:af:76:30:3e:e8:c4:8f:69:36:68:7d:89:e5:9d:c4:77:f9: e9:c8:6b:a1:f1:e5:d7:7f:cb:a3:aa:0d:e4:5e:08:cb:7b:92: 93:85:38:e1:5c:0f:23:49:06:0f:9f:19:5d:04:d8:8d:1e:69: 94:89:ee:b7:f0:44:a8:b7:18:70:20:52:26:41:b5:18:9d:fa: d5:49:b5:6f:49:8b:fc:9a:2e:a7:08:c5:fd:6c:7f:10:4c:37: b7:f2:18:ca:c0:bc:e3:53:dd:d6:da:0a:f8:45:99:ac:12:3b: aa:8f:ce:57:8b:ec:bb:25:db:61:55:54:5d:f8:e7:34:d7:96: e4:bd:0c:e4:ed:47:8a:41:ca:61:a1:6c:17:7f:f4:28:74:50: a1:e0:ce:96:ea:9e:c8:13:1f:7f:5f:d2:0d:a9:ac:54:23:51: b8:ab:f3:e6:10:14:46:bf:35:ea:89:a3:36:4f:db:64:50:b1: 33:f8:67:96:e2:6f:53:e9:40:3d:92:50:72:77:e9:b6:14:80: 88:51:2a:97 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDrcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTA0NTNaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDczRjM3MkFGQ0FCNDNC QUVCQUEwRDQxMDExMjcwODY0MjYxNEQ0MUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTLIbbu0aiYe6MdCVJvLlYHA9qEyuEkJjONLJRdn5mqpUMcEil MCc5sl4hRkPs1XH3FxOur7lrklSMCiOQOLdSOKhz9qToDMgYU87si2idfwO/Mbvp 8Rtv9NUEh3rjiyjniG7T/lV/OtE4Bo0cAGXIB1aT29UHZU/9m4oBpZ3bJIo/1qi8 nBA/Z562WYjc4iwLug4HJ2yN+w6Ckbths1ozztAPHt4GdZpZ93hz2wrESxsPmXWZ RBMCykVt/ylXCg7SPOexyNslp7c9QCadJi6LoHPNo6d501O/UlGWH1Zkabd+v5Ck ELQgV/aYvFyr4zBB48ZjTmlaDNK/AwtMH4hzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUc/Nyr8q0O666oNQQEScIZCYU1B8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2NfTnlyOHEwTzY2Nm9OUVFFU2NJWkNZVTFCOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBQhgwDQYJKoZIhvcNAQELBQADggEBAAsPusyq3tC4qmVuBo5GZAyaddfK tMP/ulsq/KCEj+lVBGt060EwIzxr7c+WF7DvX3Ny1qznkw+vdjA+6MSPaTZofYnl ncR3+enIa6Hx5dd/y6OqDeReCMt7kpOFOOFcDyNJBg+fGV0E2I0eaZSJ7rfwRKi3 GHAgUiZBtRid+tVJtW9Ji/yaLqcIxf1sfxBMN7fyGMrAvONT3dbaCvhFmawSO6qP zleL7Lsl22FVVF345zTXluS9DOTtR4pBymGhbBd/9Ch0UKHgzpbqnsgTH39f0g2p rFQjUbir8+YQFEa/NeqJozZP22RQsTP4Z5bib1PpQD2SUHJ36bYUgIhRKpc= -----END CERTIFICATE-----Generated at Wed Nov 5 17:19:31 2025 by rpki-client