$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/nf11A8fuwWwh862w4WDGWUMhKHA.roa File: nf11A8fuwWwh862w4WDGWUMhKHA.roa (raw, json) Hash identifier: 1PVOmlhzKPgk9E+sp1HEPp0iFQo6Htma0ikG75cbClE= Subject key identifier: 9D:FD:75:03:C7:EE:C1:6C:21:F3:AD:B0:E1:60:C6:59:43:21:28:70 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F3E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nf11A8fuwWwh862w4WDGWUMhKHA.roa Signing time: Tue 10 Jun 2025 11:24:40 +0000 ROA not before: Tue 10 Jun 2025 11:24:40 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.72.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 12:41:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3902 (0xf3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:24:40 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=9DFD7503C7EEC16C21F3ADB0E160C65943212870 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5c:21:59:ee:58:ae:aa:60:34:62:7a:cb:6c: d2:7b:e5:9e:7a:3e:da:5b:ee:aa:1d:de:24:bd:60: 22:93:2f:57:41:7f:17:e6:64:1f:a0:33:cd:2a:a9: 94:93:f7:45:96:f8:6e:22:97:dc:d3:e8:20:e0:48: e6:07:0c:2c:a5:1f:eb:d5:2b:ac:c1:87:11:41:14: 0d:5c:15:a3:9f:f7:c4:ab:b4:0a:70:85:36:47:22: df:de:d4:49:ce:1c:e7:a9:98:0b:30:43:cd:d7:ff: ba:1f:9d:ef:fa:d1:49:5d:eb:66:46:1a:43:02:18: 3c:3a:77:79:36:9e:a8:c4:94:77:c9:2d:cd:06:f7: b9:cc:65:f7:65:71:cd:40:04:70:69:25:e5:5f:52: fa:68:4e:d7:d1:0a:bb:38:47:4f:f8:e9:53:22:53: 42:55:b3:b6:0b:23:7f:19:c6:40:4b:22:4c:59:d0: 1d:83:aa:c6:d5:e9:2d:c0:75:95:17:04:98:cf:3a: fc:a4:9f:1e:7c:99:1e:b2:93:be:ca:ba:52:4b:15: e4:f4:38:d7:dc:78:bf:f8:96:3a:40:46:0c:e3:cb: 2d:e6:57:04:66:4f:d9:e5:16:86:7a:c0:a3:12:2b: b2:6d:1b:3d:21:ea:2b:fa:2f:15:0a:55:31:db:c8: a3:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:FD:75:03:C7:EE:C1:6C:21:F3:AD:B0:E1:60:C6:59:43:21:28:70 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nf11A8fuwWwh862w4WDGWUMhKHA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.24.0/21 Signature Algorithm: sha256WithRSAEncryption c5:e8:22:e4:9f:3e:47:00:f4:d5:87:e8:a8:42:c5:03:a4:61: 80:99:76:d0:27:c1:50:a7:8e:ad:09:11:d0:37:04:20:de:ef: 80:4a:28:2a:1b:70:22:c5:7f:48:fe:e5:9b:f6:fb:45:f1:fe: 89:f3:fe:db:0f:c0:bb:39:97:9a:b1:0d:50:75:3b:7f:42:2a: f5:62:8d:1e:eb:ee:59:08:38:a7:a5:95:2f:52:dc:9b:ea:f3: ac:3e:36:41:67:87:28:48:51:5b:fb:44:ba:94:82:0c:46:a2: fa:d5:1c:ae:eb:b6:fc:a8:aa:a1:32:cc:9e:57:c7:f6:0c:f9: 42:64:7b:b1:63:bc:d3:52:28:80:7b:3e:89:25:da:e2:18:f8: 98:04:5f:23:16:4d:6b:a7:fd:90:9f:f4:25:09:dc:38:11:b7: c0:7a:df:0b:8c:8a:c7:85:d2:b5:ae:3f:d3:8e:99:0d:1a:8d: 7d:9f:5c:26:03:4e:6e:7e:36:dd:3b:c1:f5:52:63:9c:00:91: 2b:ec:99:e9:c9:25:4d:ea:89:ca:44:17:b8:cb:f7:89:9e:31: 86:1d:f1:6f:f6:68:93:69:59:2a:10:1a:5a:4e:02:ad:e9:9d: 8d:59:75:e1:41:a4:81:0d:09:d2:92:64:da:50:6d:58:6b:42: 87:01:9f:6c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDz4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTI0NDBaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDlERkQ3NTAzQzdFRUMx NkMyMUYzQURCMEUxNjBDNjU5NDMyMTI4NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDXCFZ7liuqmA0YnrLbNJ75Z56Ptpb7qod3iS9YCKTL1dBfxfm ZB+gM80qqZST90WW+G4il9zT6CDgSOYHDCylH+vVK6zBhxFBFA1cFaOf98SrtApw hTZHIt/e1EnOHOepmAswQ83X/7ofne/60Uld62ZGGkMCGDw6d3k2nqjElHfJLc0G 97nMZfdlcc1ABHBpJeVfUvpoTtfRCrs4R0/46VMiU0JVs7YLI38ZxkBLIkxZ0B2D qsbV6S3AdZUXBJjPOvyknx58mR6yk77KulJLFeT0ONfceL/4ljpARgzjyy3mVwRm T9nlFoZ6wKMSK7JtGz0h6iv6LxUKVTHbyKN5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUnf11A8fuwWwh862w4WDGWUMhKHAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L25mMTFBOGZ1d1d3aDg2Mnc0V0RHV1VNaEtIQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBSBgwDQYJKoZIhvcNAQELBQADggEBAMXoIuSfPkcA9NWH6KhCxQOkYYCZ dtAnwVCnjq0JEdA3BCDe74BKKCobcCLFf0j+5Zv2+0Xx/onz/tsPwLs5l5qxDVB1 O39CKvVijR7r7lkIOKellS9S3Jvq86w+NkFnhyhIUVv7RLqUggxGovrVHK7rtvyo qqEyzJ5Xx/YM+UJke7FjvNNSKIB7Pokl2uIY+JgEXyMWTWun/ZCf9CUJ3DgRt8B6 3wuMiseF0rWuP9OOmQ0ajX2fXCYDTm5+Nt07wfVSY5wAkSvsmenJJU3qicpEF7jL 94meMYYd8W/2aJNpWSoQGlpOAq3pnY1ZdeFBpIENCdKSZNpQbVhrQocBn2w= -----END CERTIFICATE-----Generated at Sun Jun 22 14:48:55 2025 by rpki-client