$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/wZUDxYHWMwMjjShPunwmF12OqKE.roa File: wZUDxYHWMwMjjShPunwmF12OqKE.roa (raw, json) Hash identifier: bX9pFah1hrP8UgLCtQQCqLyq6RQogWqVkfqGr1rTH1Y= Subject key identifier: C1:95:03:C5:81:D6:33:03:23:8D:28:4F:BA:7C:26:17:5D:8E:A8:A1 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F21 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/wZUDxYHWMwMjjShPunwmF12OqKE.roa Signing time: Tue 10 Jun 2025 11:20:23 +0000 ROA not before: Tue 10 Jun 2025 11:20:23 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 27.230.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 21:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3873 (0xf21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:20:23 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=C19503C581D63303238D284FBA7C26175D8EA8A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:97:7e:26:88:06:db:b8:47:a4:e7:f3:ed:23: 14:57:be:49:d9:d6:b7:90:f7:76:ff:57:a9:ea:84: a8:b9:3f:0f:c7:f4:54:c8:f7:75:35:02:3f:45:19: a8:ac:e6:ff:a1:b9:d0:06:0a:26:b3:ea:13:14:ac: 0b:6e:f9:72:c8:9d:d5:74:8b:e5:75:34:0e:63:f6: 31:82:50:dc:54:f8:0d:5f:24:19:e5:ca:ae:d6:47: b1:b1:8c:88:2f:db:0a:0e:0f:71:f6:b2:54:23:6d: f2:5c:59:0a:ee:d1:0c:81:34:96:f3:a6:39:51:37: a1:2a:ed:90:40:8b:1e:f1:0f:05:c7:58:d7:2f:ec: b4:74:03:0b:b1:65:e1:75:26:4f:fa:03:b3:0a:8f: 11:8c:6d:98:60:28:f1:6c:14:d9:a9:e6:2d:01:5f: 52:d2:3a:1a:23:de:21:1e:24:d3:7e:c2:f4:20:c4: dd:49:26:7b:28:ef:49:4b:05:e7:a3:38:d5:62:bb: b1:79:fd:4a:27:ef:c3:1f:38:c8:79:2e:56:b1:dc: ca:07:78:8d:34:89:70:32:ff:06:98:d3:2e:0c:ae: fd:28:a4:c9:49:6d:0f:fa:7e:94:47:3e:e4:52:0e: 54:26:f1:cb:7c:54:88:3f:03:8c:20:91:03:5d:02: 57:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:95:03:C5:81:D6:33:03:23:8D:28:4F:BA:7C:26:17:5D:8E:A8:A1 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/wZUDxYHWMwMjjShPunwmF12OqKE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.230.144.0/20 Signature Algorithm: sha256WithRSAEncryption a0:1d:2d:26:46:0d:65:6b:77:ef:db:04:57:c1:fe:f5:49:e6: c0:be:01:d7:b9:81:fb:da:be:27:43:3e:82:86:ff:f1:17:38: 2e:50:90:da:fc:b2:41:f2:c1:18:3a:1d:ef:cb:e8:04:43:ee: 3a:2d:9c:bd:14:cd:70:d0:be:46:7a:10:b0:f8:e1:95:ea:3b: be:94:18:04:ca:6d:70:85:21:d5:11:3f:19:bc:6f:3c:9a:09: 88:a7:68:4a:7d:35:d0:45:d6:dc:ec:0c:88:75:d3:c7:07:5e: 13:e3:db:b1:53:ee:3e:0f:73:37:e4:a2:e0:51:e2:db:fb:9e: 28:df:86:8b:43:6d:59:f2:72:6e:e1:57:24:c6:ea:e9:d7:06: 4f:f9:92:d5:d8:6e:ab:ba:01:54:3c:f7:70:3d:4b:ed:fb:d6: 0c:e5:c1:2f:ee:50:ea:8a:f9:92:f6:e7:47:f3:0f:ca:1c:f7: 07:76:65:5c:af:01:ef:aa:a4:1d:c1:c5:91:d2:b2:c7:63:57: 8b:bc:44:eb:4c:82:cd:83:6d:d4:6e:66:9f:32:21:81:fe:c6: e3:35:4f:15:04:40:3c:d0:a9:30:0a:d8:b3:46:26:c1:87:4e: d5:9e:ff:a6:d1:d0:64:aa:3a:63:c6:73:91:d4:21:2d:bf:df: d9:bb:af:bc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDyEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTIwMjNaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEMxOTUwM0M1ODFENjMz MDMyMzhEMjg0RkJBN0MyNjE3NUQ4RUE4QTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDql34miAbbuEek5/PtIxRXvknZ1reQ93b/V6nqhKi5Pw/H9FTI 93U1Aj9FGais5v+hudAGCiaz6hMUrAtu+XLIndV0i+V1NA5j9jGCUNxU+A1fJBnl yq7WR7GxjIgv2woOD3H2slQjbfJcWQru0QyBNJbzpjlRN6Eq7ZBAix7xDwXHWNcv 7LR0AwuxZeF1Jk/6A7MKjxGMbZhgKPFsFNmp5i0BX1LSOhoj3iEeJNN+wvQgxN1J Jnso70lLBeejONViu7F5/Uon78MfOMh5Llax3MoHeI00iXAy/waY0y4Mrv0opMlJ bQ/6fpRHPuRSDlQm8ct8VIg/A4wgkQNdAlf5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUwZUDxYHWMwMjjShPunwmF12OqKEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3daVUR4WUhXTXdNampTaFB1bndtRjEyT3FLRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQb5pAwDQYJKoZIhvcNAQELBQADggEBAKAdLSZGDWVrd+/bBFfB/vVJ5sC+ Ade5gfvavidDPoKG//EXOC5QkNr8skHywRg6He/L6ARD7jotnL0UzXDQvkZ6ELD4 4ZXqO76UGATKbXCFIdURPxm8bzyaCYinaEp9NdBF1tzsDIh108cHXhPj27FT7j4P czfkouBR4tv7nijfhotDbVnycm7hVyTG6unXBk/5ktXYbqu6AVQ893A9S+371gzl wS/uUOqK+ZL250fzD8oc9wd2ZVyvAe+qpB3BxZHSssdjV4u8ROtMgs2DbdRuZp8y IYH+xuM1TxUEQDzQqTAK2LNGJsGHTtWe/6bR0GSqOmPGc5HUIS2/39m7r7w= -----END CERTIFICATE-----Generated at Sat Jun 21 23:28:02 2025 by rpki-client