$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/hZjMeo35Wg1ARTVhm5TeGPYepZs.roa File: hZjMeo35Wg1ARTVhm5TeGPYepZs.roa (raw, json) Hash identifier: lcrPE5KX6c6Nt693UkSpilp4BsHkHdk80eq7Z+RkLFw= Subject key identifier: 85:98:CC:7A:8D:F9:5A:0D:40:45:35:61:9B:94:DE:18:F6:1E:A5:9B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0EC9 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hZjMeo35Wg1ARTVhm5TeGPYepZs.roa Signing time: Tue 10 Jun 2025 11:09:01 +0000 ROA not before: Tue 10 Jun 2025 11:09:01 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 49.102.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3785 (0xec9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:09:01 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=8598CC7A8DF95A0D404535619B94DE18F61EA59B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5f:95:dd:a0:3e:0f:07:96:62:4f:32:d6:65: 0e:0e:f0:5d:ba:d8:83:89:b5:05:84:f7:e4:6b:01: 41:a7:64:19:8f:7f:41:6f:b1:9e:6b:dc:1f:97:a9: 8d:88:e4:90:b3:41:0b:68:08:26:e7:69:69:f4:91: dd:4b:45:ea:8a:3c:cc:09:e6:12:7c:39:36:db:7d: 0f:8f:a8:bc:6e:56:ec:a9:5d:49:97:4e:b5:4b:fe: 52:d6:59:ce:15:93:81:82:e3:e3:5f:97:1f:43:14: 23:f1:a2:87:f5:de:5d:25:71:a8:be:9f:56:74:43: 46:48:25:b0:da:b2:7c:20:aa:a6:16:20:d4:54:c0: b4:69:d5:e1:bf:87:4b:60:24:1d:46:51:25:ee:57: 01:80:79:35:2a:df:4a:98:7d:e9:85:c0:2c:c1:d5: e1:d9:86:45:c6:00:67:17:82:62:26:c0:f8:59:d0: 1d:07:43:1d:fd:b4:95:82:26:f4:98:3d:d6:fd:08: 90:cb:c2:41:22:61:84:94:fc:53:e5:e2:52:74:a9: 28:a6:9b:dd:4d:22:18:5f:fb:76:80:96:10:8d:b9: eb:a3:be:a1:d3:bc:3f:53:11:53:63:a4:e7:3f:6f: 78:e4:15:a1:b3:fe:18:f6:72:51:d3:82:96:15:fc: d9:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:98:CC:7A:8D:F9:5A:0D:40:45:35:61:9B:94:DE:18:F6:1E:A5:9B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hZjMeo35Wg1ARTVhm5TeGPYepZs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.102.156.0/24 Signature Algorithm: sha256WithRSAEncryption b2:6b:63:03:2b:22:78:e7:60:3e:99:79:36:b3:b1:c2:e0:87: 44:e7:48:27:18:c1:e4:27:05:20:d2:a8:e9:b3:20:b1:0e:5b: 44:11:17:0f:5a:49:ec:c0:af:e3:ab:2b:4f:4f:dd:c7:f2:9f: e3:96:dc:38:a5:82:9b:0e:1e:85:53:27:de:fd:5a:88:bd:77: f6:e9:04:9d:0c:23:46:64:ff:bd:e0:38:f7:c1:4f:2f:a9:68: 0d:d1:cd:44:0f:5f:c2:1a:b9:af:7a:7f:d1:bb:70:e9:38:c1: ce:9a:8a:83:e7:ac:7a:4c:0c:bd:cc:02:f5:aa:be:41:60:45: 56:ea:f5:10:af:f4:bc:e9:d5:ec:d5:e9:79:d5:0f:28:32:b4: a0:c6:b0:31:1b:28:4d:b6:25:c8:d7:b1:df:fe:d5:6b:cc:75: c0:41:92:9a:82:22:54:82:c9:5c:91:b3:92:17:5c:bd:88:b7: 8d:6d:6f:15:45:2d:75:65:b5:4c:c4:51:a8:e3:03:cd:ae:4f: e0:cc:ec:b5:08:95:33:c0:b6:a5:06:28:84:3b:75:3e:d6:01: d0:85:96:78:51:76:86:18:95:d4:93:53:3f:ed:f1:74:5a:bf: 9c:ed:c4:03:22:ee:47:fd:cd:0a:08:59:9f:a1:3f:b0:b6:57: a5:17:29:c4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDskwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTA5MDFaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDg1OThDQzdBOERGOTVB MEQ0MDQ1MzU2MTlCOTRERTE4RjYxRUE1OUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7X5XdoD4PB5ZiTzLWZQ4O8F262IOJtQWE9+RrAUGnZBmPf0Fv sZ5r3B+XqY2I5JCzQQtoCCbnaWn0kd1LReqKPMwJ5hJ8OTbbfQ+PqLxuVuypXUmX TrVL/lLWWc4Vk4GC4+Nflx9DFCPxoof13l0lcai+n1Z0Q0ZIJbDasnwgqqYWINRU wLRp1eG/h0tgJB1GUSXuVwGAeTUq30qYfemFwCzB1eHZhkXGAGcXgmImwPhZ0B0H Qx39tJWCJvSYPdb9CJDLwkEiYYSU/FPl4lJ0qSimm91NIhhf+3aAlhCNueujvqHT vD9TEVNjpOc/b3jkFaGz/hj2clHTgpYV/NlPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUhZjMeo35Wg1ARTVhm5TeGPYepZswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2haak1lbzM1V2cxQVJUVmhtNVRlR1BZZXBacy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxZpwwDQYJKoZIhvcNAQELBQADggEBALJrYwMrInjnYD6ZeTazscLgh0Tn SCcYweQnBSDSqOmzILEOW0QRFw9aSezAr+OrK09P3cfyn+OW3DilgpsOHoVTJ979 Woi9d/bpBJ0MI0Zk/73gOPfBTy+paA3RzUQPX8Iaua96f9G7cOk4wc6aioPnrHpM DL3MAvWqvkFgRVbq9RCv9Lzp1ezV6XnVDygytKDGsDEbKE22JcjXsd/+1WvMdcBB kpqCIlSCyVyRs5IXXL2It41tbxVFLXVltUzEUajjA82uT+DM7LUIlTPAtqUGKIQ7 dT7WAdCFlnhRdoYYldSTUz/t8XRav5ztxAMi7kf9zQoIWZ+hP7C2V6UXKcQ= -----END CERTIFICATE-----Generated at Sun Jun 22 05:12:53 2025 by rpki-client