$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/d9ThJCL7_mXkZg9yp88NMCJVc5k.roa File: d9ThJCL7_mXkZg9yp88NMCJVc5k.roa (raw, json) Hash identifier: 6f9touG4l1afJM+tysvvWK1MBgqu8gWiQpDXfxsKc/M= Subject key identifier: 77:D4:E1:24:22:FB:FE:65:E4:66:0F:72:A7:CF:0D:30:22:55:73:99 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F82 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/d9ThJCL7_mXkZg9yp88NMCJVc5k.roa Signing time: Tue 10 Jun 2025 11:36:12 +0000 ROA not before: Tue 10 Jun 2025 11:36:12 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 211.14.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 16:44:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3970 (0xf82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:36:12 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=77D4E12422FBFE65E4660F72A7CF0D3022557399 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:75:a3:33:70:64:a8:26:20:7d:75:1c:73:c1: 96:31:3b:77:5c:a8:8b:fd:f9:da:be:cd:19:01:5e: 01:02:2c:79:64:2a:74:96:43:28:0a:e7:8f:ab:16: e1:6b:ed:a4:95:02:d7:52:b3:0f:ac:17:f5:da:2d: ab:43:be:55:63:cd:f3:a5:5b:ab:71:42:6f:da:49: fb:48:71:0f:a8:38:8f:19:30:6d:3e:0c:07:ca:02: 33:b3:33:2a:e0:c6:70:30:88:74:4f:95:d1:57:f5: 24:23:4c:9f:71:c7:88:6b:34:3b:96:f2:ba:b7:c0: 2b:36:39:a9:fc:31:2c:b9:01:48:66:3d:4b:5d:95: 07:46:a9:f8:c6:d8:e6:65:72:d9:76:13:4a:9c:5a: b4:83:8e:bc:8a:91:2b:d4:54:a5:b8:b6:82:dc:59: e5:3a:cc:15:12:36:96:13:24:a4:ec:eb:6b:61:20: 1c:f1:aa:ed:b5:0c:43:9c:12:db:9c:91:16:7d:85: b6:98:ce:ce:ae:8e:4b:0b:87:2f:8c:fa:32:02:3d: a6:c1:35:77:df:be:d0:45:b9:fa:65:dd:10:85:f2: 71:dd:bd:41:e5:21:dd:74:67:a3:87:63:1b:14:6f: ca:30:34:3c:65:aa:23:2a:42:f1:92:11:9e:ff:35: 56:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:D4:E1:24:22:FB:FE:65:E4:66:0F:72:A7:CF:0D:30:22:55:73:99 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/d9ThJCL7_mXkZg9yp88NMCJVc5k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.124.0/22 Signature Algorithm: sha256WithRSAEncryption 38:60:42:41:44:ed:02:14:59:39:a0:f9:ad:16:9a:16:e7:6b: b3:b5:cc:b2:57:7f:d3:21:88:3e:42:a9:80:ea:4e:9d:f2:5f: f3:8b:6b:b5:11:75:49:27:02:d9:6f:e2:f6:2f:a5:da:66:80: 52:e0:45:60:83:be:21:f6:2c:6e:50:fc:ad:89:24:d2:b4:8f: 02:4d:a7:17:9a:15:94:8b:40:52:5e:c4:7f:a9:2e:9c:bd:bf: fe:cc:8f:4f:25:76:6a:70:9c:ab:a5:bd:94:18:24:76:5f:94: 9e:08:00:e6:3f:04:3a:87:87:73:ce:cd:6c:66:b0:41:0c:29: b0:f2:f5:90:a3:f9:83:0e:c4:dc:0a:0c:0f:91:c0:61:6c:7d: 41:41:50:7a:f0:a6:f9:d8:f8:59:20:59:04:3c:c9:1a:71:3a: ed:b8:95:86:2d:a0:f6:ed:bf:a6:f0:c0:0b:58:19:08:95:ab: bc:13:68:49:3e:ff:dd:c8:b9:cc:27:9c:fe:a6:af:df:9b:f4: 1a:1f:20:a1:b3:b2:30:e2:2d:4e:ce:c8:fe:e3:83:f7:f5:e7: 5e:d3:41:2e:e2:4a:01:c4:c5:7d:9b:ee:8a:72:e5:ce:09:1f: 41:97:53:52:2b:ca:d7:64:1b:a0:8d:0d:4a:79:ad:e3:c9:89: 0f:f5:c3:d0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD4IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTM2MTJaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDc3RDRFMTI0MjJGQkZF NjVFNDY2MEY3MkE3Q0YwRDMwMjI1NTczOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxdaMzcGSoJiB9dRxzwZYxO3dcqIv9+dq+zRkBXgECLHlkKnSW QygK54+rFuFr7aSVAtdSsw+sF/XaLatDvlVjzfOlW6txQm/aSftIcQ+oOI8ZMG0+ DAfKAjOzMyrgxnAwiHRPldFX9SQjTJ9xx4hrNDuW8rq3wCs2Oan8MSy5AUhmPUtd lQdGqfjG2OZlctl2E0qcWrSDjryKkSvUVKW4toLcWeU6zBUSNpYTJKTs62thIBzx qu21DEOcEtuckRZ9hbaYzs6ujksLhy+M+jICPabBNXffvtBFufpl3RCF8nHdvUHl Id10Z6OHYxsUb8owNDxlqiMqQvGSEZ7/NVZhAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUd9ThJCL7/mXkZg9yp88NMCJVc5kwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2Q5VGhKQ0w3X21Ya1pnOXlwODhOTUNKVmM1ay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALTDnwwDQYJKoZIhvcNAQELBQADggEBADhgQkFE7QIUWTmg+a0Wmhbna7O1 zLJXf9MhiD5CqYDqTp3yX/OLa7URdUknAtlv4vYvpdpmgFLgRWCDviH2LG5Q/K2J JNK0jwJNpxeaFZSLQFJexH+pLpy9v/7Mj08ldmpwnKulvZQYJHZflJ4IAOY/BDqH h3POzWxmsEEMKbDy9ZCj+YMOxNwKDA+RwGFsfUFBUHrwpvnY+FkgWQQ8yRpxOu24 lYYtoPbtv6bwwAtYGQiVq7wTaEk+/93IucwnnP6mr9+b9BofIKGzsjDiLU7OyP7j g/f1517TQS7iSgHExX2b7opy5c4JH0GXU1IrytdkG6CNDUp5rePJiQ/1w9A= -----END CERTIFICATE-----Generated at Sat Jun 21 19:42:32 2025 by rpki-client