$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/iYh8GUoZCrvK4qZ3SSj1NEyaOwc.roa File: iYh8GUoZCrvK4qZ3SSj1NEyaOwc.roa (raw, json) Hash identifier: SV4JItWMZxTrxdtDyfQq4QgOSxGMiLtDMgBoEvfQ1Vs= Subject key identifier: 89:88:7C:19:4A:19:0A:BB:CA:E2:A6:77:49:28:F5:34:4C:9A:3B:07 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0EDA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iYh8GUoZCrvK4qZ3SSj1NEyaOwc.roa Signing time: Tue 10 Jun 2025 11:09:14 +0000 ROA not before: Tue 10 Jun 2025 11:09:14 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 49.106.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3802 (0xeda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:09:14 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=89887C194A190ABBCAE2A6774928F5344C9A3B07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:16:4c:0c:5f:60:ef:45:0e:38:be:ef:4f:13: 44:48:85:e9:97:53:02:67:b5:82:e4:ea:e4:d5:85: b0:f9:17:ac:57:3a:61:6f:16:81:96:1b:74:ad:a0: 4d:0d:4a:52:cf:df:b0:d8:f7:b6:2b:5e:c4:1a:e1: 32:ea:f1:48:fc:48:4c:df:20:27:d0:53:16:d2:e3: 10:b6:7d:ac:b4:4e:a8:09:01:8b:37:1c:fc:85:21: a2:aa:43:38:f1:c9:09:51:ba:3c:37:eb:b3:8f:4b: 15:07:6f:42:db:e1:6c:9f:44:18:57:31:74:33:2d: 38:b2:e3:af:2e:81:9d:c7:63:21:a9:12:d5:47:80: 48:9f:e5:f8:f1:14:d9:e1:22:3b:06:4b:9f:58:51: c7:11:cb:87:df:50:3a:83:1f:ba:75:ed:ec:f5:7e: bc:4c:3a:a9:7b:7e:0e:d0:e3:f4:94:42:27:36:4e: 96:41:4a:09:a4:b4:ce:d7:9c:07:ef:9d:e8:5b:b2: c5:40:f3:98:b9:92:d7:18:8b:48:86:86:0b:c8:20: 15:17:97:2c:71:20:88:c5:ba:d5:1e:36:25:9f:17: bc:b5:b5:c6:f9:57:8e:66:9e:b1:94:96:e2:a9:a8: 19:8d:7f:e0:2f:94:38:9e:9a:d6:0d:11:74:11:54: ae:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:88:7C:19:4A:19:0A:BB:CA:E2:A6:77:49:28:F5:34:4C:9A:3B:07 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iYh8GUoZCrvK4qZ3SSj1NEyaOwc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.186.0/24 Signature Algorithm: sha256WithRSAEncryption 20:c1:14:b4:17:ad:91:3e:f8:12:6f:95:64:2d:33:ac:fd:bf: 98:eb:7e:bd:dc:70:fc:0f:e8:57:b0:2d:00:2a:c7:e9:ae:28: 2b:89:56:36:fc:2f:45:f4:97:96:b9:0b:06:64:7f:f9:5f:27: d0:1b:7d:12:3c:da:a9:1e:25:34:5b:fd:53:fa:0d:b4:41:c0: 70:a1:7e:bb:fd:7c:9c:01:7f:6f:cf:f3:43:83:d6:b9:1e:25: af:ac:78:73:fa:df:ce:3f:de:30:c7:ee:41:ee:11:cf:3d:33: 9a:b9:42:66:34:68:8c:d6:70:0c:14:79:a2:c5:64:84:dd:da: b7:7d:15:87:df:1f:12:1b:55:c2:6d:d8:87:bf:c6:65:c0:65: 14:4f:64:4c:cc:2b:e5:7a:a6:96:c6:fe:d2:4c:ea:6c:bd:48: 62:fd:de:f0:e7:17:d6:63:28:e9:16:ab:d7:69:8a:ec:52:67: 16:48:ff:86:b1:b5:da:40:42:80:07:bd:7f:79:d5:66:00:03: 67:56:2d:0f:c2:ee:43:af:d6:95:1c:9c:c6:80:7e:6f:61:b3: 46:8e:cc:ae:7a:fe:de:9a:81:f0:50:f4:72:e9:5b:a5:14:7d: 97:bf:c5:0f:25:32:ea:3c:5f:f8:9e:0b:ae:83:64:2b:e8:2a: 3e:c0:2c:ca -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDtowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTA5MTRaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDg5ODg3QzE5NEExOTBB QkJDQUUyQTY3NzQ5MjhGNTM0NEM5QTNCMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5FkwMX2DvRQ44vu9PE0RIhemXUwJntYLk6uTVhbD5F6xXOmFv FoGWG3StoE0NSlLP37DY97YrXsQa4TLq8Uj8SEzfICfQUxbS4xC2fay0TqgJAYs3 HPyFIaKqQzjxyQlRujw367OPSxUHb0Lb4WyfRBhXMXQzLTiy468ugZ3HYyGpEtVH gEif5fjxFNnhIjsGS59YUccRy4ffUDqDH7p17ez1frxMOql7fg7Q4/SUQic2TpZB SgmktM7XnAfvnehbssVA85i5ktcYi0iGhgvIIBUXlyxxIIjFutUeNiWfF7y1tcb5 V45mnrGUluKpqBmNf+AvlDiemtYNEXQRVK7HAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUiYh8GUoZCrvK4qZ3SSj1NEyaOwcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2lZaDhHVW9aQ3J2SzRxWjNTU2oxTkV5YU93Yy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxarowDQYJKoZIhvcNAQELBQADggEBACDBFLQXrZE++BJvlWQtM6z9v5jr fr3ccPwP6FewLQAqx+muKCuJVjb8L0X0l5a5CwZkf/lfJ9AbfRI82qkeJTRb/VP6 DbRBwHChfrv9fJwBf2/P80OD1rkeJa+seHP6384/3jDH7kHuEc89M5q5QmY0aIzW cAwUeaLFZITd2rd9FYffHxIbVcJt2Ie/xmXAZRRPZEzMK+V6ppbG/tJM6my9SGL9 3vDnF9ZjKOkWq9dpiuxSZxZI/4axtdpAQoAHvX951WYAA2dWLQ/C7kOv1pUcnMaA fm9hs0aOzK56/t6agfBQ9HLpW6UUfZe/xQ8lMuo8X/ieC66DZCvoKj7ALMo= -----END CERTIFICATE-----Generated at Sun Jun 22 06:09:57 2025 by rpki-client