$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/tS7qW7cfNmuua0c033IH0Uwqtns.roa File: tS7qW7cfNmuua0c033IH0Uwqtns.roa (raw, json) Hash identifier: XPNVLQfHb1rn3lsH9h9jM2vir6xz1tcr8cqYA6tBZ1U= Subject key identifier: B5:2E:EA:5B:B7:1F:36:6B:AE:6B:47:34:DF:72:07:D1:4C:2A:B6:7B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E80 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tS7qW7cfNmuua0c033IH0Uwqtns.roa Signing time: Tue 10 Jun 2025 10:56:45 +0000 ROA not before: Tue 10 Jun 2025 10:56:45 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.74.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3712 (0xe80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:56:45 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=B52EEA5BB71F366BAE6B4734DF7207D14C2AB67B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e0:dc:f1:e3:76:64:7c:6b:da:53:dc:a0:a6: 2d:0e:0f:e4:aa:f5:9b:8e:b6:06:d4:fb:64:60:7e: 37:d1:c7:73:e5:57:f6:8c:10:72:93:2e:b9:83:19: 96:1c:a3:55:06:28:db:20:f5:2d:04:3b:53:3e:b7: 17:93:95:7b:1a:3d:81:8c:a3:84:c7:78:de:ad:47: 2f:17:f3:d0:28:8c:60:ee:b7:d0:6f:e3:7b:01:01: c2:76:c9:14:e7:4a:ff:df:ce:7b:66:24:c9:81:61: ad:3b:55:5e:b2:00:c4:70:ad:32:39:ab:16:66:ee: 07:e1:57:02:8b:d1:38:02:5f:81:03:73:8d:8f:7a: 5d:39:f8:2e:ed:67:a7:fc:aa:67:14:62:75:9d:eb: 5e:80:32:54:66:41:89:8d:34:fa:6f:bf:9b:1d:a4: ae:96:16:d4:67:3b:0a:26:dd:05:5a:89:ac:bd:22: 8f:52:4b:fc:3d:3f:9a:69:4a:f5:a9:a6:0f:7b:d0: 9f:b8:ec:a2:cd:4b:28:d1:b1:da:e3:1e:db:3c:07: bf:95:bb:e2:41:44:e0:59:fe:0c:15:af:4e:c3:8e: 84:30:85:14:44:8f:02:a7:bd:d1:59:1b:1c:f1:6c: fb:6c:f3:91:cf:ee:38:8e:76:76:44:ec:f5:54:8b: d1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:2E:EA:5B:B7:1F:36:6B:AE:6B:47:34:DF:72:07:D1:4C:2A:B6:7B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tS7qW7cfNmuua0c033IH0Uwqtns.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.74.64.0/19 Signature Algorithm: sha256WithRSAEncryption 68:6f:7b:b9:79:c1:2a:11:7a:44:87:fa:06:1e:20:ba:23:21: 1f:29:f6:d9:49:1a:e7:8d:a4:93:45:37:7f:52:3c:b3:ad:f6: 4f:e8:3c:d7:e7:e7:8b:58:48:24:fa:1a:73:df:65:a8:f8:98: af:97:86:2b:23:fe:2e:b6:c8:ce:fd:4e:06:dc:c5:26:ae:eb: 57:79:0b:18:d9:8a:a2:e8:f5:87:9e:4b:33:17:f5:99:a0:9b: 43:f7:61:69:6b:0a:30:10:52:16:a0:81:55:33:9c:7c:bf:84: 76:b7:00:e5:4e:22:66:69:6a:21:69:ee:c6:d8:44:bb:01:de: df:e1:24:e0:c6:9d:97:d1:2f:32:e1:40:b3:3f:29:e4:50:b2: 72:71:33:7f:73:f0:be:f9:a3:b2:ba:ff:f8:1f:d2:a4:90:0a: 15:e6:a5:a8:41:d5:f2:c9:bd:bd:3b:bb:7f:16:a5:07:7b:01: 83:21:49:b4:d0:77:80:ff:db:01:dd:ee:80:f7:dc:a0:35:2c: d4:8e:47:f5:52:1a:5f:60:dc:18:12:e3:de:7e:99:af:98:8e: e6:50:98:62:29:de:ec:99:ac:05:6d:e0:3e:84:e9:94:e4:a7: ea:74:d6:f5:a4:a0:23:52:e1:4d:0c:69:ea:63:cb:37:3d:61: 0c:a1:94:0a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDoAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDU2NDVaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEI1MkVFQTVCQjcxRjM2 NkJBRTZCNDczNERGNzIwN0QxNEMyQUI2N0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDF4Nzx43ZkfGvaU9ygpi0OD+Sq9ZuOtgbU+2RgfjfRx3PlV/aM EHKTLrmDGZYco1UGKNsg9S0EO1M+txeTlXsaPYGMo4THeN6tRy8X89AojGDut9Bv 43sBAcJ2yRTnSv/fzntmJMmBYa07VV6yAMRwrTI5qxZm7gfhVwKL0TgCX4EDc42P el05+C7tZ6f8qmcUYnWd616AMlRmQYmNNPpvv5sdpK6WFtRnOwom3QVaiay9Io9S S/w9P5ppSvWppg970J+47KLNSyjRsdrjHts8B7+Vu+JBROBZ/gwVr07DjoQwhRRE jwKnvdFZGxzxbPts85HP7jiOdnZE7PVUi9GzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUtS7qW7cfNmuua0c033IH0UwqtnswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3RTN3FXN2NmTm11dWEwYzAzM0lIMFV3cXRucy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUBSkAwDQYJKoZIhvcNAQELBQADggEBAGhve7l5wSoRekSH+gYeILojIR8p 9tlJGueNpJNFN39SPLOt9k/oPNfn54tYSCT6GnPfZaj4mK+Xhisj/i62yM79Tgbc xSau61d5CxjZiqLo9YeeSzMX9Zmgm0P3YWlrCjAQUhaggVUznHy/hHa3AOVOImZp aiFp7sbYRLsB3t/hJODGnZfRLzLhQLM/KeRQsnJxM39z8L75o7K6//gf0qSQChXm pahB1fLJvb07u38WpQd7AYMhSbTQd4D/2wHd7oD33KA1LNSOR/VSGl9g3BgS495+ ma+YjuZQmGIp3uyZrAVt4D6E6ZTkp+p01vWkoCNS4U0Maepjyzc9YQyhlAo= -----END CERTIFICATE-----Generated at Sat Jun 21 22:48:45 2025 by rpki-client