$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/vdVvU-hDrUMW9wK5XgrrjjlIleI.roa File: vdVvU-hDrUMW9wK5XgrrjjlIleI.roa (raw, json) Hash identifier: q3FG6GPvfZqZocDkCVlHzSf6Vkd7gzbh8riWx6o91pM= Subject key identifier: BD:D5:6F:53:E8:43:AD:43:16:F7:02:B9:5E:0A:EB:8E:39:48:95:E2 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F67 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vdVvU-hDrUMW9wK5XgrrjjlIleI.roa Signing time: Tue 10 Jun 2025 11:32:29 +0000 ROA not before: Tue 10 Jun 2025 11:32:29 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.72.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3943 (0xf67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:32:29 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=BDD56F53E843AD4316F702B95E0AEB8E394895E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3c:8e:99:6b:b6:60:a2:04:7a:3e:e8:cc:5a: 8e:ad:3a:13:95:71:42:bb:d3:69:7a:88:92:0a:4f: d7:1b:e0:3d:25:c7:2e:1a:36:3a:d6:21:86:2c:5b: f3:c4:0a:87:9a:b3:33:7f:36:09:5b:89:5c:c2:ec: 24:30:f6:0e:f7:90:a7:83:71:36:f5:8b:34:82:19: 75:1a:a8:76:87:39:2c:f0:1d:06:69:5a:2b:cc:64: 9a:44:78:46:03:9a:28:cf:be:d5:f7:7d:05:a1:e5: 7b:e1:4e:61:a1:d3:fd:76:e3:1f:c1:59:98:6f:81: a0:67:d5:1f:57:1f:2e:91:3f:1d:1f:2f:f2:45:8b: 0d:e4:e9:e7:b0:4c:36:8d:37:95:d1:23:b6:41:7c: e5:66:a3:5b:7e:3b:6c:ff:8f:2a:4a:5c:79:70:e8: 51:dc:34:c2:46:f3:eb:07:66:db:96:0a:78:60:e1: 44:48:99:5f:89:45:d5:12:2c:28:18:d1:a7:59:5b: 55:c8:00:04:93:1f:8f:8b:62:e3:3c:f6:53:fb:14: 37:0f:19:af:2b:5b:0f:93:ca:ac:06:6a:c9:15:66: 3f:bd:ef:91:24:f8:87:34:14:fa:60:02:69:9e:e5: b0:99:b9:d6:b2:fd:07:d4:30:22:32:d8:5e:ad:38: 5e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:D5:6F:53:E8:43:AD:43:16:F7:02:B9:5E:0A:EB:8E:39:48:95:E2 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vdVvU-hDrUMW9wK5XgrrjjlIleI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.64.0/19 Signature Algorithm: sha256WithRSAEncryption ae:08:c3:7f:c0:50:00:a7:8c:0b:bf:a6:00:d5:01:7a:48:88: 64:06:68:20:fd:a7:35:03:c7:e9:1d:2f:e6:59:bf:14:5e:a1: 05:01:2c:c0:19:42:70:1c:a0:ec:e8:12:98:8c:04:46:05:d5: d2:d6:70:95:38:b2:21:69:27:56:57:44:17:31:24:ac:a9:a2: c6:ff:0b:6e:90:49:6c:0d:52:f9:91:c2:6e:16:5b:57:1a:e8: 2e:29:e7:e7:af:fa:d8:58:c1:f3:f4:98:0e:92:b8:f1:41:f9: 10:61:b9:fb:7a:73:a2:31:7d:a7:da:1d:95:ff:f1:14:21:f4: 00:7f:58:d8:56:c9:c2:ef:dc:9a:44:63:f8:98:79:08:9c:42: 84:bb:3a:ae:1c:4f:52:c8:2f:1b:0a:27:9e:47:d1:bc:69:f2: e5:4e:dc:bb:de:b5:3f:99:87:de:a5:7c:88:ad:8a:0a:a0:53: ef:f2:77:0d:46:3a:8d:1d:ff:2a:d1:87:e3:a6:88:b0:48:ec: 95:dd:77:ed:0c:c9:76:5d:cd:2f:36:69:63:7d:ea:35:af:1c: a8:1f:e1:e6:23:04:a8:93:24:5e:ef:bc:bf:87:83:ef:3b:e8: 9a:52:f3:23:5a:a7:7d:33:0e:85:da:31:12:d8:4f:3e:77:c6: 64:51:e4:e6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD2cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTMyMjlaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEJERDU2RjUzRTg0M0FE NDMxNkY3MDJCOTVFMEFFQjhFMzk0ODk1RTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrPI6Za7ZgogR6PujMWo6tOhOVcUK702l6iJIKT9cb4D0lxy4a NjrWIYYsW/PECoeaszN/NglbiVzC7CQw9g73kKeDcTb1izSCGXUaqHaHOSzwHQZp WivMZJpEeEYDmijPvtX3fQWh5XvhTmGh0/124x/BWZhvgaBn1R9XHy6RPx0fL/JF iw3k6eewTDaNN5XRI7ZBfOVmo1t+O2z/jypKXHlw6FHcNMJG8+sHZtuWCnhg4URI mV+JRdUSLCgY0adZW1XIAASTH4+LYuM89lP7FDcPGa8rWw+TyqwGaskVZj+975Ek +Ic0FPpgAmme5bCZuday/QfUMCIy2F6tOF4NAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUvdVvU+hDrUMW9wK5XgrrjjlIleIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3ZkVnZVLWhEclVNVzl3SzVYZ3JyampsSWxlSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUBSEAwDQYJKoZIhvcNAQELBQADggEBAK4Iw3/AUACnjAu/pgDVAXpIiGQG aCD9pzUDx+kdL+ZZvxReoQUBLMAZQnAcoOzoEpiMBEYF1dLWcJU4siFpJ1ZXRBcx JKyposb/C26QSWwNUvmRwm4WW1ca6C4p5+ev+thYwfP0mA6SuPFB+RBhuft6c6Ix fafaHZX/8RQh9AB/WNhWycLv3JpEY/iYeQicQoS7Oq4cT1LILxsKJ55H0bxp8uVO 3LvetT+Zh96lfIitigqgU+/ydw1GOo0d/yrRh+OmiLBI7JXdd+0MyXZdzS82aWN9 6jWvHKgf4eYjBKiTJF7vvL+Hg+876JpS8yNap30zDoXaMRLYTz53xmRR5OY= -----END CERTIFICATE-----Generated at Sun Jun 22 03:57:34 2025 by rpki-client