$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/krk-X_B8yyjHyWrly3icFsA0yxE.roa File: krk-X_B8yyjHyWrly3icFsA0yxE.roa (raw, json) Hash identifier: 6ieIX+DhXdJeQRRmE66cRI9SZd5UdXTn9PSuci2TALk= Subject key identifier: 92:B9:3E:5F:F0:7C:CB:28:C7:C9:6A:E5:CB:78:9C:16:C0:34:CB:11 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F49 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/krk-X_B8yyjHyWrly3icFsA0yxE.roa Signing time: Tue 10 Jun 2025 11:28:22 +0000 ROA not before: Tue 10 Jun 2025 11:28:22 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.159.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 13:51:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3913 (0xf49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:28:22 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=92B93E5FF07CCB28C7C96AE5CB789C16C034CB11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6f:91:07:d1:49:df:ad:9e:cd:15:cc:91:2b: c5:2a:0c:1a:dc:90:30:d1:01:01:9d:e6:66:0d:d1: 5f:a3:b3:07:99:b5:bf:2e:2c:bd:0b:96:1d:85:7b: ad:8d:dd:1e:4a:a8:7c:31:b2:e9:5a:f5:92:a1:7b: 3a:42:e0:6e:e6:5a:b4:1a:b6:aa:9d:8a:c1:e7:11: da:5f:6e:84:a5:f6:0f:f1:a6:7c:fb:48:e1:c3:59: db:f9:54:59:13:b5:3a:91:3c:9d:fb:ab:08:92:3e: 01:87:6f:05:03:e1:1f:63:ed:fd:3b:70:6e:9f:26: 31:67:0b:7a:87:96:8f:5c:03:6d:d8:fe:8f:fd:59: 93:4d:7e:31:4a:b7:92:75:9d:12:16:6f:76:bb:07: ec:8d:a6:04:3d:44:f2:cd:de:b0:e2:64:76:89:77: a1:d3:17:54:43:12:19:14:29:89:a6:ba:37:a1:e5: 03:a1:8c:e7:66:23:27:b8:6b:9a:7d:30:ee:10:aa: 1f:d0:08:26:ce:3c:ef:b1:22:e7:15:94:ca:dc:08: 38:44:46:2b:5f:e3:86:cc:e5:e8:43:5c:df:7a:a2: 2f:f6:7d:db:8e:23:80:98:66:3d:a0:82:a1:52:5e: 5c:9d:a8:97:44:6d:b1:32:75:20:21:e9:80:6a:fb: ee:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:B9:3E:5F:F0:7C:CB:28:C7:C9:6A:E5:CB:78:9C:16:C0:34:CB:11 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/krk-X_B8yyjHyWrly3icFsA0yxE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.40.0/21 Signature Algorithm: sha256WithRSAEncryption a4:23:2d:1b:bc:52:2c:cd:86:f8:f7:b4:a8:6e:02:9b:36:36: 10:7d:05:d1:66:cc:71:4c:78:53:22:98:35:f8:8c:59:ea:e7: c7:c9:44:6a:2b:57:f6:c4:19:d1:0d:1e:1c:8a:1e:d5:a6:46: b1:e5:95:10:a4:f7:35:a9:79:42:e5:7f:9a:39:e0:05:3d:fc: bf:3a:dc:b6:f5:8c:1d:f7:45:78:00:d5:ae:2c:c2:b5:d4:5d: 6c:17:90:cb:5a:7d:23:89:b7:b9:0f:a0:0f:44:08:5f:36:8b: 04:21:32:96:fa:9b:db:80:30:65:c0:68:c7:2f:c0:c4:9d:7a: be:e1:65:02:cd:d8:31:06:2d:0f:d3:ab:91:06:f0:83:62:df: 5f:73:84:03:7b:26:24:0c:88:a7:ff:ca:d7:a2:99:40:40:3c: 3b:b9:76:14:29:6f:9f:c5:13:b5:99:77:cb:d5:fa:de:0f:41: 31:fe:f6:37:73:8c:54:1f:d8:7c:fa:77:71:c3:c3:5c:0d:4c: d5:e9:f1:bc:c1:73:8e:e4:dc:1c:16:e1:a3:f4:da:50:77:02: 60:b2:db:ad:21:92:93:c7:b3:af:d3:c4:3a:5b:a3:66:ba:f3: 58:cf:88:1c:8b:b1:8b:1a:e0:b3:0e:4d:8d:80:28:07:30:5b: 44:8a:74:fc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD0kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTI4MjJaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDkyQjkzRTVGRjA3Q0NC MjhDN0M5NkFFNUNCNzg5QzE2QzAzNENCMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMb5EH0UnfrZ7NFcyRK8UqDBrckDDRAQGd5mYN0V+jsweZtb8u LL0Llh2Fe62N3R5KqHwxsula9ZKhezpC4G7mWrQatqqdisHnEdpfboSl9g/xpnz7 SOHDWdv5VFkTtTqRPJ37qwiSPgGHbwUD4R9j7f07cG6fJjFnC3qHlo9cA23Y/o/9 WZNNfjFKt5J1nRIWb3a7B+yNpgQ9RPLN3rDiZHaJd6HTF1RDEhkUKYmmujeh5QOh jOdmIye4a5p9MO4Qqh/QCCbOPO+xIucVlMrcCDhERitf44bM5ehDXN96oi/2fduO I4CYZj2ggqFSXlydqJdEbbEydSAh6YBq++5fAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUkrk+X/B8yyjHyWrly3icFsA0yxEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2tyay1YX0I4eXlqSHlXcmx5M2ljRnNBMHl4RS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPcnygwDQYJKoZIhvcNAQELBQADggEBAKQjLRu8UizNhvj3tKhuAps2NhB9 BdFmzHFMeFMimDX4jFnq58fJRGorV/bEGdENHhyKHtWmRrHllRCk9zWpeULlf5o5 4AU9/L863Lb1jB33RXgA1a4swrXUXWwXkMtafSOJt7kPoA9ECF82iwQhMpb6m9uA MGXAaMcvwMSder7hZQLN2DEGLQ/Tq5EG8INi319zhAN7JiQMiKf/yteimUBAPDu5 dhQpb5/FE7WZd8vV+t4PQTH+9jdzjFQf2Hz6d3HDw1wNTNXp8bzBc47k3BwW4aP0 2lB3AmCy260hkpPHs6/TxDpbo2a681jPiByLsYsa4LMOTY2AKAcwW0SKdPw= -----END CERTIFICATE-----Generated at Sun Jun 22 16:48:50 2025 by rpki-client