$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/onJaoX1sTgLY5VK1PxhpRN3em_U.roa File: onJaoX1sTgLY5VK1PxhpRN3em_U.roa (raw, json) Hash identifier: 5SyrNTcZTurBw3xs+eHAEUVXoTwJHMECMno7DP6EZhs= Subject key identifier: A2:72:5A:A1:7D:6C:4E:02:D8:E5:52:B5:3F:18:69:44:DD:DE:9B:F5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E93 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/onJaoX1sTgLY5VK1PxhpRN3em_U.roa Signing time: Tue 10 Jun 2025 10:56:56 +0000 ROA not before: Tue 10 Jun 2025 10:56:56 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.159.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3731 (0xe93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:56:56 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=A2725AA17D6C4E02D8E552B53F186944DDDE9BF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4f:61:5a:19:ff:e7:b4:b2:96:51:97:6e:75: 49:38:6e:73:b4:f0:90:9d:5d:16:12:4d:f4:b7:81: ce:4f:50:2f:9c:ef:7a:fa:2b:26:fd:69:e0:96:28: f2:73:67:2d:5c:e0:1a:43:1b:cf:81:30:3e:66:16: 05:26:65:af:3d:ed:82:46:5b:51:51:64:3b:e0:8b: 2f:b9:8f:a8:c5:ba:a9:b1:7f:45:7a:7b:7f:48:52: 22:5a:60:66:d1:a5:76:05:25:48:08:e8:31:81:ed: 9f:46:76:2a:eb:f3:32:d5:d8:6a:94:e5:5c:21:ac: 83:95:d3:c3:6b:43:aa:30:c0:01:cc:cb:c3:18:cd: 3d:38:05:c4:e8:94:31:85:88:b8:7f:6c:a6:93:66: 69:bd:89:eb:f0:2b:a7:1c:9d:df:d6:7d:ff:6f:fc: 9a:9d:de:b0:6a:e8:c9:94:bf:0e:02:6c:3f:d2:d8: 00:9a:bf:ab:d6:68:bb:55:6a:8b:30:c8:13:e5:6f: eb:ce:94:e1:ab:f6:15:2e:80:68:8b:2b:0c:f3:42: e1:92:15:4f:50:9c:a6:81:c4:a5:08:41:9e:42:1d: 5f:71:70:df:5f:5b:dc:01:2f:de:2e:d1:99:04:3b: 20:d4:dd:7d:7a:f2:a8:6b:90:35:56:c1:6d:dc:c3: 1b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:72:5A:A1:7D:6C:4E:02:D8:E5:52:B5:3F:18:69:44:DD:DE:9B:F5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/onJaoX1sTgLY5VK1PxhpRN3em_U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.231.0/24 Signature Algorithm: sha256WithRSAEncryption 76:fb:73:2a:31:04:88:c8:21:17:56:50:a4:d0:b5:b9:8b:33: a2:d8:af:d0:48:5c:4b:33:63:d9:c9:14:d4:b1:27:b1:f8:31: 76:30:05:ca:8e:89:8d:ea:65:90:65:97:72:c9:30:91:2d:5f: b6:c6:ec:e5:12:4c:2e:70:6b:6d:f2:f8:fd:2d:c2:48:f7:2b: 8e:30:a9:c1:e2:b1:b5:78:79:c1:95:5d:18:66:b9:d1:9c:ee: 62:c5:77:df:62:03:4f:07:ab:f2:c4:8e:79:2a:a1:1d:d8:e3: b5:50:24:eb:c8:99:9c:60:14:af:65:7e:69:3c:aa:e6:e3:6d: 5e:fb:07:62:6a:c5:c6:f5:8d:64:7b:bd:1b:27:e3:0c:67:73: 93:6c:ca:0a:74:e7:79:22:ca:e4:21:4d:6a:f8:27:00:37:68: 8d:c7:03:9f:52:a5:62:a3:78:33:2e:55:6e:83:eb:aa:23:82: 97:53:3f:5e:e2:89:fe:0c:60:f9:2e:ee:60:db:ba:10:ac:a1: bf:49:34:cc:02:67:14:4c:9c:b6:b5:8a:ad:16:7c:a2:9b:bf: 31:17:e6:58:73:7b:85:59:14:51:b1:ed:13:58:5e:18:04:fc: 75:80:e1:e2:3e:df:88:27:98:d2:8b:a8:38:49:03:20:97:90: be:e4:79:75 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDpMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDU2NTZaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEEyNzI1QUExN0Q2QzRF MDJEOEU1NTJCNTNGMTg2OTQ0RERERTlCRjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQT2FaGf/ntLKWUZdudUk4bnO08JCdXRYSTfS3gc5PUC+c73r6 Kyb9aeCWKPJzZy1c4BpDG8+BMD5mFgUmZa897YJGW1FRZDvgiy+5j6jFuqmxf0V6 e39IUiJaYGbRpXYFJUgI6DGB7Z9Gdirr8zLV2GqU5VwhrIOV08NrQ6owwAHMy8MY zT04BcTolDGFiLh/bKaTZmm9ievwK6ccnd/Wff9v/Jqd3rBq6MmUvw4CbD/S2ACa v6vWaLtVaoswyBPlb+vOlOGr9hUugGiLKwzzQuGSFU9QnKaBxKUIQZ5CHV9xcN9f W9wBL94u0ZkEOyDU3X168qhrkDVWwW3cwxvVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUonJaoX1sTgLY5VK1PxhpRN3em/UwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L29uSmFvWDFzVGdMWTVWSzFQeGhwUk4zZW1fVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADcn+cwDQYJKoZIhvcNAQELBQADggEBAHb7cyoxBIjIIRdWUKTQtbmLM6LY r9BIXEszY9nJFNSxJ7H4MXYwBcqOiY3qZZBll3LJMJEtX7bG7OUSTC5wa23y+P0t wkj3K44wqcHisbV4ecGVXRhmudGc7mLFd99iA08Hq/LEjnkqoR3Y47VQJOvImZxg FK9lfmk8qubjbV77B2Jqxcb1jWR7vRsn4wxnc5Nsygp053kiyuQhTWr4JwA3aI3H A59SpWKjeDMuVW6D66ojgpdTP17iif4MYPku7mDbuhCsob9JNMwCZxRMnLa1iq0W fKKbvzEX5lhze4VZFFGx7RNYXhgE/HWA4eI+34gnmNKLqDhJAyCXkL7keXU= -----END CERTIFICATE-----Generated at Sun Jun 22 00:48:45 2025 by rpki-client