$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/gnnT96YJxc50yByXt92UntMD9XE.roa File: gnnT96YJxc50yByXt92UntMD9XE.roa (raw, json) Hash identifier: 71d9G2HmZx7adDF5Vnjj0mxUz5TpWIbH/WXVewwHUec= Subject key identifier: 82:79:D3:F7:A6:09:C5:CE:74:C8:1C:97:B7:DD:94:9E:D3:03:F5:71 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E9B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/gnnT96YJxc50yByXt92UntMD9XE.roa Signing time: Tue 10 Jun 2025 11:00:33 +0000 ROA not before: Tue 10 Jun 2025 11:00:33 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.72.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 12:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3739 (0xe9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:00:33 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=8279D3F7A609C5CE74C81C97B7DD949ED303F571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6c:1e:cc:8a:e5:80:3d:d2:28:39:b7:2d:8f: 16:f3:e9:91:99:1b:99:9b:59:f2:d5:c2:fd:15:c7: ac:21:c4:22:10:73:3b:a5:ab:bf:8d:39:33:a3:0e: b2:df:2e:1d:67:8f:85:d9:ab:dc:0b:28:d2:7b:90: a4:3c:08:25:5c:93:b5:d9:fc:45:df:a5:09:75:70: 15:e5:af:f1:52:00:a9:24:11:69:0a:af:55:9d:3a: 61:79:31:1d:4b:cd:5e:4f:09:10:d1:e8:7b:18:3b: d9:e0:07:60:07:02:93:cf:ab:05:90:29:fd:18:36: b9:f4:bd:f6:92:45:4e:a0:0d:35:17:ea:cb:fa:79: f5:73:da:48:59:bf:60:0d:99:ba:e8:18:21:43:55: 4e:20:42:1c:22:c0:c8:5b:9b:fb:6c:07:ea:0f:0e: 41:63:a5:21:f6:58:20:7e:e0:09:f0:3f:90:06:30: 3d:19:9e:84:ab:1e:0f:99:c9:0c:47:f0:04:70:09: 42:47:fa:a1:00:2a:92:fd:c7:a3:b9:9d:57:80:20: 04:03:51:56:13:5a:f4:52:2b:e7:c1:3b:67:61:a2: b7:8b:9f:80:c5:24:4d:f5:f9:88:1e:43:10:bd:2c: c2:36:22:e4:c2:78:ed:5a:c9:bc:ab:a4:36:30:e7: 75:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:79:D3:F7:A6:09:C5:CE:74:C8:1C:97:B7:DD:94:9E:D3:03:F5:71 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/gnnT96YJxc50yByXt92UntMD9XE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.160.0/19 Signature Algorithm: sha256WithRSAEncryption 97:26:2f:3e:36:51:d2:66:84:58:ba:64:14:3f:7c:b5:4b:44: 32:ba:6e:70:0e:78:90:0b:8b:f2:63:8c:26:a6:0c:6b:95:4b: 5c:73:ab:9f:31:4e:00:bd:74:cc:94:b9:c2:81:70:11:57:74: d4:f8:a9:77:97:73:84:c1:fb:d9:ca:40:8b:79:11:2d:15:40: 03:b6:9b:ae:fc:f9:88:a5:a9:14:09:e0:fb:58:7e:f8:10:da: 6b:61:41:5f:33:af:25:a5:f9:1a:44:d7:9b:d5:d8:a5:40:47: 4f:97:ba:fb:3e:34:d2:31:fd:1b:6c:10:d5:ff:11:16:70:79: 68:05:15:13:7f:25:7d:3e:63:a8:5f:ba:82:22:1c:ca:99:63: ce:d2:80:b8:7e:fd:0e:05:88:df:06:98:55:70:8e:f8:45:37: 88:f2:3e:82:f6:88:85:fe:b1:80:ee:7c:8e:8d:cf:3f:74:bc: da:2c:d0:94:a9:53:af:03:1f:06:38:6f:a9:c5:8a:dc:ee:89: 37:0d:ef:00:58:2d:9e:8f:01:8a:a1:01:95:fc:29:49:ec:e9: 9b:4d:9c:0a:c3:52:2f:40:3f:1d:3a:08:a9:a7:c1:a4:03:d9: 57:08:01:0b:e1:6f:76:77:42:ff:a5:e8:35:66:3f:16:3b:d2: ce:93:c3:c1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDpswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTAwMzNaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDgyNzlEM0Y3QTYwOUM1 Q0U3NEM4MUM5N0I3REQ5NDlFRDMwM0Y1NzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFbB7MiuWAPdIoObctjxbz6ZGZG5mbWfLVwv0Vx6whxCIQczul q7+NOTOjDrLfLh1nj4XZq9wLKNJ7kKQ8CCVck7XZ/EXfpQl1cBXlr/FSAKkkEWkK r1WdOmF5MR1LzV5PCRDR6HsYO9ngB2AHApPPqwWQKf0YNrn0vfaSRU6gDTUX6sv6 efVz2khZv2ANmbroGCFDVU4gQhwiwMhbm/tsB+oPDkFjpSH2WCB+4AnwP5AGMD0Z noSrHg+ZyQxH8ARwCUJH+qEAKpL9x6O5nVeAIAQDUVYTWvRSK+fBO2dhoreLn4DF JE31+YgeQxC9LMI2IuTCeO1aybyrpDYw53XBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUgnnT96YJxc50yByXt92UntMD9XEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2dublQ5NllKeGM1MHlCeVh0OTJVbnRNRDlYRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUBSKAwDQYJKoZIhvcNAQELBQADggEBAJcmLz42UdJmhFi6ZBQ/fLVLRDK6 bnAOeJALi/JjjCamDGuVS1xzq58xTgC9dMyUucKBcBFXdNT4qXeXc4TB+9nKQIt5 ES0VQAO2m678+YilqRQJ4PtYfvgQ2mthQV8zryWl+RpE15vV2KVAR0+Xuvs+NNIx /RtsENX/ERZweWgFFRN/JX0+Y6hfuoIiHMqZY87SgLh+/Q4FiN8GmFVwjvhFN4jy PoL2iIX+sYDufI6Nzz90vNos0JSpU68DHwY4b6nFitzuiTcN7wBYLZ6PAYqhAZX8 KUns6ZtNnArDUi9APx06CKmnwaQD2VcIAQvhb3Z3Qv+l6DVmPxY70s6Tw8E= -----END CERTIFICATE-----Generated at Wed Nov 5 13:53:09 2025 by rpki-client