$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/eKlZWTVY8jDq8SkOohRN51WasPc.roa File: eKlZWTVY8jDq8SkOohRN51WasPc.roa (raw, json) Hash identifier: 0mlf+uKw9AfMK/e1Aay47E7srrP6Gi6YqQ4jmP+HPIY= Subject key identifier: 78:A9:59:59:35:58:F2:30:EA:F1:29:0E:A2:14:4D:E7:55:9A:B0:F7 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E6C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/eKlZWTVY8jDq8SkOohRN51WasPc.roa Signing time: Tue 10 Jun 2025 10:53:27 +0000 ROA not before: Tue 10 Jun 2025 10:53:27 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.159.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3692 (0xe6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:53:27 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=78A959593558F230EAF1290EA2144DE7559AB0F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e4:6b:b0:d4:aa:ef:d2:b9:78:0f:ed:8c:10: 9d:9e:28:13:58:b9:e8:1d:f9:bb:6f:44:15:82:d2: 97:9f:a9:27:84:1e:50:d7:70:74:4d:a9:63:4a:67: 0b:a6:b8:63:0b:38:ea:b6:e7:4d:17:4e:ef:b6:d9: 97:70:05:e7:d7:4f:4c:84:00:20:4c:f1:78:90:83: a8:6d:a7:31:db:e7:f8:54:00:0a:57:98:34:1f:3e: 11:50:10:84:d6:a8:73:2e:88:c4:5d:b0:79:97:09: 31:a9:4e:c8:b0:cc:ea:d1:6a:e6:99:3c:13:01:a9: 14:62:28:11:07:59:75:b5:65:a5:0b:8a:a9:bb:0a: ee:41:ed:aa:eb:23:cf:fa:bb:7f:86:0e:51:ba:0d: 24:47:6a:26:ef:a3:fb:20:46:12:09:6e:6b:9b:16: 5f:5f:96:f5:c2:7a:a9:7c:1e:9d:8a:f2:ef:af:57: b5:69:ad:01:0f:f0:b4:92:fe:56:5a:40:b4:ad:09: 34:1e:00:ef:03:b4:c0:0e:27:5e:eb:cf:e3:3e:35: 7c:d4:61:79:97:86:72:6c:04:a2:ee:ee:f9:12:66: 48:10:f9:40:43:79:e7:d2:61:2f:f3:6f:d7:38:c0: bf:01:9b:e1:3f:8c:61:86:28:68:3f:43:28:ad:46: c8:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:A9:59:59:35:58:F2:30:EA:F1:29:0E:A2:14:4D:E7:55:9A:B0:F7 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/eKlZWTVY8jDq8SkOohRN51WasPc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.232.0/24 Signature Algorithm: sha256WithRSAEncryption 84:71:4b:cb:31:90:e4:e2:62:4a:db:93:d6:48:a8:f6:fb:98: bf:25:ff:49:b3:05:bd:03:eb:1d:e4:3a:07:a7:ba:92:dc:6e: f3:b9:99:a2:8d:49:15:2a:7c:ad:1f:48:21:3d:57:dc:a8:a5: 7b:ff:74:5d:ea:ff:0d:7d:53:66:b2:be:b9:74:b0:be:d0:55: 3f:0e:8e:2a:32:43:af:fd:05:5b:f9:98:69:79:c0:77:b4:aa: 2d:eb:ac:12:a6:4b:0a:4c:63:ef:1d:1f:0d:a8:01:ef:96:50: e1:b1:17:fd:7d:fb:70:ff:77:a0:53:45:86:57:fd:97:23:b5: 39:68:f9:9f:32:81:3c:b0:9f:b4:e0:00:48:83:d6:a3:30:22: 5d:d6:e3:0d:76:ee:f8:3a:5f:e4:c9:db:2d:69:d1:ec:44:af: ce:73:77:c1:6a:9e:0d:99:87:b1:dc:94:83:53:6e:cd:98:6c: 36:04:e0:db:52:03:4d:2e:e4:3d:94:75:03:0b:8c:bb:dd:a6: 12:36:95:00:c1:0d:20:93:52:98:9d:49:fa:b4:d7:2b:24:1b: 61:e9:8b:2c:eb:0f:16:84:cb:62:a1:68:b9:3c:4b:e2:a2:71: 34:1d:07:19:1b:f6:5d:6f:41:5f:da:43:12:82:3e:29:94:6d: 3c:85:e4:4f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDmwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDUzMjdaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDc4QTk1OTU5MzU1OEYy MzBFQUYxMjkwRUEyMTQ0REU3NTU5QUIwRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCy5Guw1Krv0rl4D+2MEJ2eKBNYuegd+btvRBWC0pefqSeEHlDX cHRNqWNKZwumuGMLOOq2500XTu+22ZdwBefXT0yEACBM8XiQg6htpzHb5/hUAApX mDQfPhFQEITWqHMuiMRdsHmXCTGpTsiwzOrRauaZPBMBqRRiKBEHWXW1ZaULiqm7 Cu5B7arrI8/6u3+GDlG6DSRHaibvo/sgRhIJbmubFl9flvXCeql8Hp2K8u+vV7Vp rQEP8LSS/lZaQLStCTQeAO8DtMAOJ17rz+M+NXzUYXmXhnJsBKLu7vkSZkgQ+UBD eefSYS/zb9c4wL8Bm+E/jGGGKGg/QyitRsgjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUeKlZWTVY8jDq8SkOohRN51WasPcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2VLbFpXVFZZOGpEcThTa09vaFJONTFXYXNQYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADcn+gwDQYJKoZIhvcNAQELBQADggEBAIRxS8sxkOTiYkrbk9ZIqPb7mL8l /0mzBb0D6x3kOgenupLcbvO5maKNSRUqfK0fSCE9V9yopXv/dF3q/w19U2ayvrl0 sL7QVT8OjioyQ6/9BVv5mGl5wHe0qi3rrBKmSwpMY+8dHw2oAe+WUOGxF/19+3D/ d6BTRYZX/ZcjtTlo+Z8ygTywn7TgAEiD1qMwIl3W4w127vg6X+TJ2y1p0exEr85z d8Fqng2Zh7HclINTbs2YbDYE4NtSA00u5D2UdQMLjLvdphI2lQDBDSCTUpidSfq0 1yskG2HpiyzrDxaEy2KhaLk8S+KicTQdBxkb9l1vQV/aQxKCPimUbTyF5E8= -----END CERTIFICATE-----Generated at Sun Jun 22 04:00:36 2025 by rpki-client