$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/vKdiZcog8kmTE2HhZN-iBkhdDdY.roa File: vKdiZcog8kmTE2HhZN-iBkhdDdY.roa (raw, json) Hash identifier: VUqNqc1+NafOEe07/HZTuRKHjh3HN56q+/tKUBw1c8k= Subject key identifier: BC:A7:62:65:CA:20:F2:49:93:13:61:E1:64:DF:A2:06:48:5D:0D:D6 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F94 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vKdiZcog8kmTE2HhZN-iBkhdDdY.roa Signing time: Tue 10 Jun 2025 11:36:22 +0000 ROA not before: Tue 10 Jun 2025 11:36:22 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 110.162.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3988 (0xf94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:36:22 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=BCA76265CA20F249931361E164DFA206485D0DD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ee:09:78:a8:73:8b:34:8d:fb:2e:57:28:46: 53:1e:d4:7f:23:7d:ed:91:67:cc:90:8e:3e:81:60: 12:3e:55:b7:7a:82:1d:a9:f6:fc:08:83:2f:01:22: 6c:a9:92:6d:6c:12:62:07:ef:f8:eb:c6:ad:ba:02: 99:8c:97:ac:84:61:bd:56:5d:af:a6:51:b2:df:e5: 56:a5:24:fe:a1:e7:2e:12:bd:b7:88:d5:e7:01:df: f8:e9:03:a7:67:91:8d:69:a8:bc:34:62:e9:5d:cd: bc:9d:0f:1d:7f:e3:ec:d7:62:af:84:92:8c:b9:f1: 52:fb:f3:3e:2d:77:3e:a4:9d:cd:3d:40:05:c2:12: 86:fc:4d:6a:26:51:63:69:1e:95:76:f2:f3:59:85: 47:68:ba:b8:8d:3e:2f:f6:b9:89:1c:49:d2:a5:90: 18:3d:a5:fc:2a:71:fb:55:16:3b:f7:d9:d7:a6:0c: 91:df:ed:af:ac:4f:88:9e:76:61:32:f4:71:cf:aa: 0d:9e:b6:89:55:70:d4:4c:d1:aa:74:ca:18:03:8e: d7:ef:91:0a:f4:fd:2a:6f:df:6f:07:8e:a7:7b:5a: 6e:83:dc:b9:62:df:3c:7c:92:57:db:18:8f:06:5f: 2b:20:ab:c6:71:60:8c:e2:4e:ed:6f:aa:79:3f:f4: d3:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:A7:62:65:CA:20:F2:49:93:13:61:E1:64:DF:A2:06:48:5D:0D:D6 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vKdiZcog8kmTE2HhZN-iBkhdDdY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.162.128.0/18 Signature Algorithm: sha256WithRSAEncryption 20:7e:a7:22:38:e7:3e:8f:f0:dd:8e:20:ad:5c:3e:eb:c6:5c: a8:71:0c:05:3c:b1:a4:1c:d1:07:2b:6a:b9:60:7d:45:c4:ec: 3e:30:18:40:e6:33:79:3f:32:83:b8:e0:7a:60:cd:7b:49:a1: 11:15:6a:39:50:53:2a:63:10:6d:ca:a5:ca:a6:9b:09:17:43: 96:2b:24:37:db:99:8b:20:d7:c9:25:82:da:63:9e:bd:52:42: e7:cf:3c:da:52:2e:71:ff:c7:26:3e:b2:d9:a9:61:69:e3:09: 4a:f2:da:57:f2:a4:cb:49:bd:76:88:cb:f4:dc:d1:7c:b8:c3: b1:54:45:8f:e4:40:14:86:39:20:d4:0f:cb:27:5c:cc:92:cc: 98:a7:20:dc:0c:3a:ce:48:d8:3d:5d:93:52:3a:09:59:e2:8c: 7e:90:20:c0:7e:df:d9:ec:29:92:58:36:8d:65:5c:3f:01:53: 8d:88:8e:a3:aa:db:01:40:5e:ec:64:e4:ea:fe:d0:24:29:c9: 60:cf:a8:8e:8b:05:b5:5c:05:d3:a7:55:08:82:2f:7d:72:e2: 3e:1c:46:ec:09:fd:0e:56:00:4a:06:69:b7:00:16:93:e6:b4: cd:20:57:17:06:47:30:8c:a5:c2:d4:d5:9e:85:0a:57:0a:a3: c2:1a:2c:85 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD5QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTM2MjJaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEJDQTc2MjY1Q0EyMEYy NDk5MzEzNjFFMTY0REZBMjA2NDg1RDBERDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC47gl4qHOLNI37LlcoRlMe1H8jfe2RZ8yQjj6BYBI+Vbd6gh2p 9vwIgy8BImypkm1sEmIH7/jrxq26ApmMl6yEYb1WXa+mUbLf5ValJP6h5y4SvbeI 1ecB3/jpA6dnkY1pqLw0YuldzbydDx1/4+zXYq+Ekoy58VL78z4tdz6knc09QAXC Eob8TWomUWNpHpV28vNZhUdouriNPi/2uYkcSdKlkBg9pfwqcftVFjv32demDJHf 7a+sT4iedmEy9HHPqg2etolVcNRM0ap0yhgDjtfvkQr0/Spv328Hjqd7Wm6D3Lli 3zx8klfbGI8GXysgq8ZxYIziTu1vqnk/9NNxAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUvKdiZcog8kmTE2HhZN+iBkhdDdYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3ZLZGlaY29nOGttVEUySGhaTi1pQmtoZERkWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZuooAwDQYJKoZIhvcNAQELBQADggEBACB+pyI45z6P8N2OIK1cPuvGXKhx DAU8saQc0QcrarlgfUXE7D4wGEDmM3k/MoO44HpgzXtJoREVajlQUypjEG3Kpcqm mwkXQ5YrJDfbmYsg18klgtpjnr1SQufPPNpSLnH/xyY+stmpYWnjCUry2lfypMtJ vXaIy/Tc0Xy4w7FURY/kQBSGOSDUD8snXMySzJinINwMOs5I2D1dk1I6CVnijH6Q IMB+39nsKZJYNo1lXD8BU42IjqOq2wFAXuxk5Or+0CQpyWDPqI6LBbVcBdOnVQiC L31y4j4cRuwJ/Q5WAEoGabcAFpPmtM0gVxcGRzCMpcLU1Z6FClcKo8IaLIU= -----END CERTIFICATE-----Generated at Sun Jun 22 01:06:05 2025 by rpki-client