$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ht6hOmXBccSteGwec1GphXo3LO8.roa File: ht6hOmXBccSteGwec1GphXo3LO8.roa (raw, json) Hash identifier: 48Gr96cU0Ri8DgGbO15orUHwYkz1+1nX4HKXM1u5LYA= Subject key identifier: 86:DE:A1:3A:65:C1:71:C4:AD:78:6C:1E:73:51:A9:85:7A:37:2C:EF Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0EF8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ht6hOmXBccSteGwec1GphXo3LO8.roa Signing time: Tue 10 Jun 2025 11:16:42 +0000 ROA not before: Tue 10 Jun 2025 11:16:42 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 49.108.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3832 (0xef8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:16:42 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=86DEA13A65C171C4AD786C1E7351A9857A372CEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3a:26:36:17:e7:ab:8d:c7:46:51:e9:e0:93: 1c:d4:d9:61:13:a7:35:30:19:60:fb:ef:4c:08:0c: a6:40:19:a2:63:26:2d:62:cf:49:6d:65:21:f0:7e: 7e:e7:71:0d:8e:95:aa:c2:21:47:a0:4e:8d:c5:8d: 52:1a:4d:68:67:21:e1:ef:57:c3:d3:03:26:e1:23: 4e:55:11:2b:60:a3:e6:53:f6:9e:c6:57:8e:3f:34: c0:b0:9d:15:90:a2:a6:6d:3a:3c:5a:32:c1:1c:8c: 21:25:8c:f8:1a:75:f5:12:90:eb:90:d4:3c:84:bc: 75:80:89:f6:72:d2:6e:3c:aa:7e:a8:1f:c2:44:be: d7:82:3c:e5:98:b2:58:42:cd:18:40:42:29:32:55: 97:72:86:2b:4d:45:ab:25:47:3b:9c:00:b7:95:bc: 2f:26:86:c0:41:23:94:a9:ec:d5:8f:cb:9b:e7:d1: e5:85:b2:0b:ac:38:02:36:37:b7:d0:36:de:9a:96: c9:e6:3b:c2:76:18:63:1a:ff:ec:2d:f5:86:75:91: dd:99:ed:d5:10:d1:1d:ed:20:e2:50:83:91:ba:20: ef:15:88:3d:84:ec:ad:41:d6:34:ee:78:78:0e:4b: 55:c7:ab:fa:0f:c9:a5:b1:fb:8e:60:b1:f8:6c:51: 2b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:DE:A1:3A:65:C1:71:C4:AD:78:6C:1E:73:51:A9:85:7A:37:2C:EF X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ht6hOmXBccSteGwec1GphXo3LO8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.108.241.0/24 Signature Algorithm: sha256WithRSAEncryption 31:f8:89:c2:e6:1b:bf:f8:b0:54:08:c7:1e:1f:fc:4c:83:74: c1:14:a1:33:58:36:a4:b8:60:51:b8:92:cc:f3:6f:c8:fe:6c: ad:3c:78:77:49:50:24:4c:e7:10:e4:b9:9c:1a:cb:c5:69:f2: 3e:b3:7e:e1:fe:42:d2:71:19:c7:a1:b4:75:80:be:5c:e8:1f: ba:45:6c:34:eb:bb:40:e4:21:5a:66:5b:4d:71:b4:69:c1:85: b3:d0:6a:de:27:14:05:26:37:c6:3f:99:6d:a2:85:23:bd:54: 2b:d9:f5:f6:5a:a7:6f:5b:64:24:2d:34:ea:5b:c2:74:d9:05: a7:21:6f:5c:89:6d:b0:4b:11:70:b3:56:07:d2:98:4e:77:58: 2d:87:7d:29:9a:7e:33:35:7f:cb:85:75:cc:90:15:5c:1c:47: 28:f3:f6:40:f2:68:63:28:b7:9c:58:6f:d1:bb:59:c7:15:23: 61:44:94:af:4f:7f:7e:49:f3:3a:81:8a:5e:5e:79:43:b3:59: 61:37:4e:04:1b:d2:04:3a:7e:d4:76:ba:89:64:ae:aa:4b:0f: 23:9c:c4:6c:47:98:e2:a8:32:14:8d:e1:c1:e0:55:39:41:89: 99:5f:fe:ca:1e:69:5a:47:cf:7f:b3:5f:dd:11:45:88:09:4b: 12:08:ce:b8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDvgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTE2NDJaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDg2REVBMTNBNjVDMTcx QzRBRDc4NkMxRTczNTFBOTg1N0EzNzJDRUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9OiY2F+erjcdGUengkxzU2WETpzUwGWD770wIDKZAGaJjJi1i z0ltZSHwfn7ncQ2OlarCIUegTo3FjVIaTWhnIeHvV8PTAybhI05VEStgo+ZT9p7G V44/NMCwnRWQoqZtOjxaMsEcjCEljPgadfUSkOuQ1DyEvHWAifZy0m48qn6oH8JE vteCPOWYslhCzRhAQikyVZdyhitNRaslRzucALeVvC8mhsBBI5Sp7NWPy5vn0eWF sgusOAI2N7fQNt6alsnmO8J2GGMa/+wt9YZ1kd2Z7dUQ0R3tIOJQg5G6IO8ViD2E 7K1B1jTueHgOS1XHq/oPyaWx+45gsfhsUStrAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUht6hOmXBccSteGwec1GphXo3LO8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2h0NmhPbVhCY2NTdGVHd2VjMUdwaFhvM0xPOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxbPEwDQYJKoZIhvcNAQELBQADggEBADH4icLmG7/4sFQIxx4f/EyDdMEU oTNYNqS4YFG4kszzb8j+bK08eHdJUCRM5xDkuZway8Vp8j6zfuH+QtJxGcehtHWA vlzoH7pFbDTru0DkIVpmW01xtGnBhbPQat4nFAUmN8Y/mW2ihSO9VCvZ9fZap29b ZCQtNOpbwnTZBachb1yJbbBLEXCzVgfSmE53WC2HfSmafjM1f8uFdcyQFVwcRyjz 9kDyaGMot5xYb9G7WccVI2FElK9Pf35J8zqBil5eeUOzWWE3TgQb0gQ6ftR2uolk rqpLDyOcxGxHmOKoMhSN4cHgVTlBiZlf/soeaVpHz3+zX90RRYgJSxIIzrg= -----END CERTIFICATE-----Generated at Sat Jun 21 11:23:30 2025 by rpki-client