$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/dFknddHVKUwJaL8QyUAdqwBZK0o.roa File: dFknddHVKUwJaL8QyUAdqwBZK0o.roa (raw, json) Hash identifier: igcCXjHgpFmifpQy86xWz8AqWETgVjTUz83EzaZqU2k= Subject key identifier: 74:59:27:75:D1:D5:29:4C:09:68:BF:10:C9:40:1D:AB:00:59:2B:4A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E4F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dFknddHVKUwJaL8QyUAdqwBZK0o.roa Signing time: Tue 10 Jun 2025 10:47:47 +0000 ROA not before: Tue 10 Jun 2025 10:47:47 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 49.103.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 14:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3663 (0xe4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:47:47 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=74592775D1D5294C0968BF10C9401DAB00592B4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:af:cb:b4:f5:f1:de:fc:7d:27:f2:bc:d4:6d: 51:4b:bd:94:8f:a0:63:2e:85:e4:02:d6:87:c7:48: 99:a1:f8:be:8b:a8:66:3b:4e:01:80:96:67:d5:7d: 60:c3:93:a6:f1:b2:92:db:1e:52:c5:7b:39:ab:15: 90:fd:b9:95:7e:c5:d4:ae:8f:aa:37:d0:94:8c:fb: 02:25:00:a3:eb:27:cf:ec:c8:01:22:bc:ec:35:0f: 25:f5:35:32:d6:58:be:87:f9:62:77:fb:d5:d5:ad: b9:a6:79:08:b2:75:88:ad:86:7f:ff:0c:ee:94:ea: 8b:06:b2:ea:4c:8d:1e:fc:30:33:4c:00:e0:23:00: 38:0d:67:a6:63:bc:8d:11:5e:0f:a2:21:2c:ba:09: c1:f4:92:a9:f8:e3:1c:c3:2a:ea:be:b1:21:09:b6: 41:51:07:07:32:f9:90:8d:28:30:30:92:dd:73:1e: b3:e5:4d:47:5f:c7:c7:85:63:cd:85:b1:b9:63:ef: 53:11:9c:04:dc:89:64:ed:52:6e:90:03:ad:47:81: 45:14:32:b7:c3:d1:e5:ec:d1:f2:ff:0c:e2:1e:43: 10:31:4a:18:54:96:e7:83:78:50:f0:c9:fa:5a:c0: fe:3a:a1:d8:96:bc:cc:a1:83:4a:95:52:8b:19:74: 4c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:59:27:75:D1:D5:29:4C:09:68:BF:10:C9:40:1D:AB:00:59:2B:4A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dFknddHVKUwJaL8QyUAdqwBZK0o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.103.19.0/24 Signature Algorithm: sha256WithRSAEncryption a4:98:36:02:10:f1:75:7e:f2:46:00:47:76:93:ee:1e:f4:50: cf:fe:c1:6b:11:21:5f:03:29:84:1b:2a:7a:01:66:7e:f1:c5: 07:88:28:90:45:b8:f6:e0:19:e8:a5:42:ef:a9:d3:a3:3d:51: 3c:c1:b3:e1:f6:af:61:88:c2:19:88:bc:52:1a:8e:56:a6:a0: 17:34:67:32:53:72:6d:2a:70:c5:79:66:5d:79:bc:50:0d:66: 8a:d4:ed:c2:e7:60:5a:80:9c:f6:bb:eb:2e:5c:ea:94:84:89: 20:80:af:88:02:d2:e2:37:83:a4:b6:ec:b2:07:69:af:1e:e3: e4:ab:95:5d:47:8d:0f:89:e8:47:1b:fb:9b:1f:72:96:66:e9: 07:ad:76:c2:c2:68:02:88:6d:05:11:03:c1:a4:fd:a5:38:3f: 0d:53:07:ee:11:38:af:a3:3c:b7:84:2f:21:79:f7:31:a0:39: 0c:c7:34:ef:fa:81:7a:ba:27:d0:e1:35:88:15:85:18:c6:0d: df:bd:97:43:b5:b7:6d:24:c3:0c:cc:bb:f2:b0:fb:77:43:0a: b8:43:5a:d7:39:8b:d9:44:34:0a:fd:78:35:0a:4e:1f:6c:71: e2:eb:81:bb:9f:ad:8d:08:0f:cc:d5:db:bf:bc:6e:20:47:16: 95:10:82:c3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDk8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDQ3NDdaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDc0NTkyNzc1RDFENTI5 NEMwOTY4QkYxMEM5NDAxREFCMDA1OTJCNEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnr8u09fHe/H0n8rzUbVFLvZSPoGMuheQC1ofHSJmh+L6LqGY7 TgGAlmfVfWDDk6bxspLbHlLFezmrFZD9uZV+xdSuj6o30JSM+wIlAKPrJ8/syAEi vOw1DyX1NTLWWL6H+WJ3+9XVrbmmeQiydYithn//DO6U6osGsupMjR78MDNMAOAj ADgNZ6ZjvI0RXg+iISy6CcH0kqn44xzDKuq+sSEJtkFRBwcy+ZCNKDAwkt1zHrPl TUdfx8eFY82Fsblj71MRnATciWTtUm6QA61HgUUUMrfD0eXs0fL/DOIeQxAxShhU lueDeFDwyfpawP46odiWvMyhg0qVUosZdEwfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUdFknddHVKUwJaL8QyUAdqwBZK0owHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2RGa25kZEhWS1V3SmFMOFF5VUFkcXdCWkswby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxZxMwDQYJKoZIhvcNAQELBQADggEBAKSYNgIQ8XV+8kYAR3aT7h70UM/+ wWsRIV8DKYQbKnoBZn7xxQeIKJBFuPbgGeilQu+p06M9UTzBs+H2r2GIwhmIvFIa jlamoBc0ZzJTcm0qcMV5Zl15vFANZorU7cLnYFqAnPa76y5c6pSEiSCAr4gC0uI3 g6S27LIHaa8e4+SrlV1HjQ+J6Ecb+5sfcpZm6QetdsLCaAKIbQURA8Gk/aU4Pw1T B+4ROK+jPLeELyF59zGgOQzHNO/6gXq6J9DhNYgVhRjGDd+9l0O1t20kwwzMu/Kw +3dDCrhDWtc5i9lENAr9eDUKTh9sceLrgbufrY0ID8zV27+8biBHFpUQgsM= -----END CERTIFICATE-----Generated at Sat Jun 21 16:55:28 2025 by rpki-client