$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/uoECeXL30WDJGCPImpjkOK7wudA.roa File: uoECeXL30WDJGCPImpjkOK7wudA.roa (raw, json) Hash identifier: 8VmPSagC57PAf8lmFu2T6yvq1K2m1HiJVJIBgInvxds= Subject key identifier: BA:81:02:79:72:F7:D1:60:C9:18:23:C8:9A:98:E4:38:AE:F0:B9:D0 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F43 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/uoECeXL30WDJGCPImpjkOK7wudA.roa Signing time: Tue 10 Jun 2025 11:28:19 +0000 ROA not before: Tue 10 Jun 2025 11:28:19 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.67.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 15:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3907 (0xf43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:28:19 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=BA81027972F7D160C91823C89A98E438AEF0B9D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:52:d1:ae:48:9b:f4:11:57:ef:51:49:21:da: 94:4f:d5:f3:9c:48:ac:d1:5a:df:98:10:3b:30:bd: 50:fa:30:aa:3c:d9:49:c0:4f:50:78:ee:cb:30:e9: 79:ce:ff:f3:74:1c:7a:02:cb:70:e4:dc:76:2d:88: ca:61:5c:77:50:53:9d:5f:58:13:13:12:c3:fd:13: c4:b2:b5:3f:02:4f:99:a7:29:f3:48:a1:74:17:5d: f9:ce:2a:9b:d4:a0:41:1a:c2:d9:70:4b:e1:88:28: 9a:de:61:90:25:42:f2:d0:87:60:4c:5a:d4:ff:87: c4:fb:40:97:00:80:a6:81:ff:0c:39:30:95:a9:0d: 54:d2:ad:08:15:2e:66:4b:13:f6:7b:da:e9:66:af: 3e:67:46:d4:62:9f:84:06:6e:86:e2:2c:01:b6:89: 18:cd:de:c4:f6:6a:61:90:e7:3e:c5:f4:b1:a7:41: 66:79:42:d5:95:bd:38:21:8b:d5:11:3a:5f:fd:05: 77:8f:a9:7e:1d:2a:63:6f:de:c0:eb:9a:ad:a8:96: cb:60:2a:aa:63:10:f4:3f:e0:88:ca:b6:ab:03:b0: d1:47:af:c8:a9:97:56:0f:59:5e:79:60:97:54:1f: b9:5c:8f:bf:2c:e0:9d:7f:51:58:70:bc:80:1f:72: e0:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:81:02:79:72:F7:D1:60:C9:18:23:C8:9A:98:E4:38:AE:F0:B9:D0 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/uoECeXL30WDJGCPImpjkOK7wudA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.67.208.0/20 Signature Algorithm: sha256WithRSAEncryption 9b:6d:8d:f0:ca:0d:b5:b2:f5:cc:57:9b:95:92:6f:7a:c9:dc: db:f7:49:e5:fb:63:27:5b:53:90:61:f8:3d:ef:8e:ad:e5:46: 23:f5:bd:64:2c:6f:26:f6:a0:dd:c5:1a:92:4b:d8:83:5f:3e: 14:6a:66:82:b2:f6:c9:0f:3c:c0:f1:ca:5e:6e:19:7a:ac:5a: e0:e4:f0:6e:0c:7f:9c:d8:93:60:5b:fe:a4:ec:73:0e:c4:98: b3:ca:70:34:58:66:53:cb:20:59:04:af:d2:52:24:df:cb:c2: 93:c2:81:d1:ef:a0:66:d8:1c:21:38:9b:9c:20:95:b5:a8:a6: 42:ab:47:47:c1:0d:bf:45:cd:6c:bc:d9:fe:43:39:63:5b:5f: a6:9f:8d:a1:78:ab:31:ee:a4:41:c4:3e:37:8d:06:47:05:95: e8:76:bf:35:90:9f:cb:0f:2f:b7:95:27:f6:4b:1c:2e:70:62: da:08:9e:d2:7a:ba:9b:e5:7a:a5:ae:c0:a1:75:53:8f:17:e3: 63:1d:20:42:b8:69:da:4d:21:13:d9:61:4e:c7:70:64:86:47: a7:ca:65:99:8e:4f:d3:e1:96:73:7c:d0:da:cc:b8:0e:9c:8c: 40:3a:6b:fd:c3:3b:b1:62:ff:89:df:47:2c:54:75:cf:d2:71: 02:4d:06:d3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD0MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTI4MTlaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEJBODEwMjc5NzJGN0Qx NjBDOTE4MjNDODlBOThFNDM4QUVGMEI5RDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMUtGuSJv0EVfvUUkh2pRP1fOcSKzRWt+YEDswvVD6MKo82UnA T1B47ssw6XnO//N0HHoCy3Dk3HYtiMphXHdQU51fWBMTEsP9E8SytT8CT5mnKfNI oXQXXfnOKpvUoEEawtlwS+GIKJreYZAlQvLQh2BMWtT/h8T7QJcAgKaB/ww5MJWp DVTSrQgVLmZLE/Z72ulmrz5nRtRin4QGbobiLAG2iRjN3sT2amGQ5z7F9LGnQWZ5 QtWVvTghi9UROl/9BXePqX4dKmNv3sDrmq2olstgKqpjEPQ/4IjKtqsDsNFHr8ip l1YPWV55YJdUH7lcj78s4J1/UVhwvIAfcuAPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUuoECeXL30WDJGCPImpjkOK7wudAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3VvRUNlWEwzMFdESkdDUEltcGprT0s3d3VkQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBQ9AwDQYJKoZIhvcNAQELBQADggEBAJttjfDKDbWy9cxXm5WSb3rJ3Nv3 SeX7YydbU5Bh+D3vjq3lRiP1vWQsbyb2oN3FGpJL2INfPhRqZoKy9skPPMDxyl5u GXqsWuDk8G4Mf5zYk2Bb/qTscw7EmLPKcDRYZlPLIFkEr9JSJN/LwpPCgdHvoGbY HCE4m5wglbWopkKrR0fBDb9FzWy82f5DOWNbX6afjaF4qzHupEHEPjeNBkcFleh2 vzWQn8sPL7eVJ/ZLHC5wYtoIntJ6upvleqWuwKF1U48X42MdIEK4adpNIRPZYU7H cGSGR6fKZZmOT9PhlnN80NrMuA6cjEA6a/3DO7Fi/4nfRyxUdc/ScQJNBtM= -----END CERTIFICATE-----Generated at Sat Jun 21 18:31:05 2025 by rpki-client