$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/nUEJXQgYMFamcqmRHwrYVOY1-vQ.roa File: nUEJXQgYMFamcqmRHwrYVOY1-vQ.roa (raw, json) Hash identifier: L06OXhNECQ1M4nu3dIQOpl0hNC4S+4LVIZ94iYEvGNM= Subject key identifier: 9D:41:09:5D:08:18:30:56:A6:72:A9:91:1F:0A:D8:54:E6:35:FA:F4 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0EE5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nUEJXQgYMFamcqmRHwrYVOY1-vQ.roa Signing time: Tue 10 Jun 2025 11:12:33 +0000 ROA not before: Tue 10 Jun 2025 11:12:33 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 211.14.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 13:51:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3813 (0xee5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:12:33 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=9D41095D08183056A672A9911F0AD854E635FAF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:53:60:9c:50:95:cb:52:de:51:cc:59:3a:60: 54:ef:67:f8:28:de:67:dc:7a:a1:b6:2d:94:aa:2b: 2b:8e:f2:67:36:2e:eb:4d:89:ca:fc:e4:55:15:09: 1b:db:97:b1:91:88:e8:53:d6:04:d9:02:e6:39:4d: ee:98:ba:70:9e:19:35:b7:ca:a8:0a:22:6b:5d:b7: 85:bd:a7:e9:26:91:f6:0e:c6:a9:6a:00:b5:7a:b7: f9:01:d5:95:91:2c:aa:0e:94:c4:d4:e1:3c:1d:eb: 80:3a:a1:40:1b:68:c0:2b:f5:5b:5c:64:91:3c:63: a6:b1:bc:16:f1:d1:39:d1:b6:aa:22:2e:88:2f:93: d8:a1:ce:90:6e:95:91:81:7d:13:07:d1:26:66:da: 26:fb:b0:27:ad:f3:f2:58:e9:8a:11:fa:51:02:c0: ab:af:b2:52:6a:7c:ff:18:6f:d1:7c:56:09:f9:18: c4:af:b3:9c:0a:6a:4f:7d:3e:dc:5c:d9:f1:2d:3e: 0c:9d:49:b0:c1:df:1e:b3:c7:07:e4:f0:c8:ab:d8: 89:c5:e4:17:72:0d:67:ba:66:81:11:a0:50:fe:40: 1e:62:0b:f2:0e:73:69:41:e6:2c:bd:c9:41:67:43: 01:5c:8c:a9:39:70:4f:01:41:a5:82:61:23:aa:e2: 26:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:41:09:5D:08:18:30:56:A6:72:A9:91:1F:0A:D8:54:E6:35:FA:F4 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nUEJXQgYMFamcqmRHwrYVOY1-vQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.117.0/24 Signature Algorithm: sha256WithRSAEncryption af:a5:02:fb:5a:c5:5b:a8:5d:9d:15:47:0b:b2:6e:e0:4d:ec: 69:9d:d3:67:9b:85:fd:98:24:33:d9:47:7c:c7:07:c2:6f:04: 86:1d:f2:4c:97:0f:a9:75:b1:fe:d5:07:86:51:c5:16:67:84: 30:25:b8:50:fb:2b:cd:59:20:86:93:51:81:a0:08:54:55:88: 5f:be:b9:1e:31:cc:55:81:cc:d4:71:ef:2d:01:36:32:f0:7b: 7f:12:05:cc:ed:33:45:76:50:27:c2:9f:df:af:5d:61:db:4b: c3:12:08:c3:31:37:dd:c8:ac:53:5d:35:cd:68:15:4f:ee:91: a4:1b:21:66:cc:36:13:59:53:82:9c:fa:71:a5:79:90:1c:2f: 7e:bd:89:80:b3:a1:9a:c8:e1:12:1d:bc:5d:a3:f5:21:8d:a2: 78:1b:b3:37:3d:0d:b2:bb:ac:d6:26:9a:08:47:a4:77:d5:9a: c9:05:db:80:49:7d:2e:03:45:37:20:bf:93:49:40:cc:e8:ab: db:27:3d:a1:3f:e2:b7:b2:e2:ab:18:d3:9b:77:2c:ca:73:6e: 99:ab:ab:25:2d:79:92:e1:21:99:02:2e:5e:fa:95:13:bd:4e: ba:a3:8a:84:ab:fd:84:b1:b7:e3:ae:5e:73:f0:8e:83:68:16: 54:70:99:f0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDuUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTEyMzNaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDlENDEwOTVEMDgxODMw NTZBNjcyQTk5MTFGMEFEODU0RTYzNUZBRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdU2CcUJXLUt5RzFk6YFTvZ/go3mfceqG2LZSqKyuO8mc2LutN icr85FUVCRvbl7GRiOhT1gTZAuY5Te6YunCeGTW3yqgKImtdt4W9p+kmkfYOxqlq ALV6t/kB1ZWRLKoOlMTU4Twd64A6oUAbaMAr9VtcZJE8Y6axvBbx0TnRtqoiLogv k9ihzpBulZGBfRMH0SZm2ib7sCet8/JY6YoR+lECwKuvslJqfP8Yb9F8Vgn5GMSv s5wKak99Ptxc2fEtPgydSbDB3x6zxwfk8Mir2InF5BdyDWe6ZoERoFD+QB5iC/IO c2lB5iy9yUFnQwFcjKk5cE8BQaWCYSOq4iY/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUnUEJXQgYMFamcqmRHwrYVOY1+vQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L25VRUpYUWdZTUZhbWNxbVJId3JZVk9ZMS12US5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADTDnUwDQYJKoZIhvcNAQELBQADggEBAK+lAvtaxVuoXZ0VRwuybuBN7Gmd 02ebhf2YJDPZR3zHB8JvBIYd8kyXD6l1sf7VB4ZRxRZnhDAluFD7K81ZIIaTUYGg CFRViF++uR4xzFWBzNRx7y0BNjLwe38SBcztM0V2UCfCn9+vXWHbS8MSCMMxN93I rFNdNc1oFU/ukaQbIWbMNhNZU4Kc+nGleZAcL369iYCzoZrI4RIdvF2j9SGNongb szc9DbK7rNYmmghHpHfVmskF24BJfS4DRTcgv5NJQMzoq9snPaE/4rey4qsY05t3 LMpzbpmrqyUteZLhIZkCLl76lRO9TrqjioSr/YSxt+OuXnPwjoNoFlRwmfA= -----END CERTIFICATE-----Generated at Sun Jun 22 16:49:02 2025 by rpki-client