$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/waxpJKmtxKm4UnZf3CQ4LZQLu4c.roa File: waxpJKmtxKm4UnZf3CQ4LZQLu4c.roa (raw, json) Hash identifier: p0PqIjSAG9j8xBzVsP56kz4HptzQwp4g8VL5bZH2Wh0= Subject key identifier: C1:AC:69:24:A9:AD:C4:A9:B8:52:76:5F:DC:24:38:2D:94:0B:BB:87 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F50 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/waxpJKmtxKm4UnZf3CQ4LZQLu4c.roa Signing time: Tue 10 Jun 2025 11:28:27 +0000 ROA not before: Tue 10 Jun 2025 11:28:27 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.159.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Jun 2025 12:41:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3920 (0xf50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:28:27 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=C1AC6924A9ADC4A9B852765FDC24382D940BBB87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:52:b1:b7:b1:3e:40:f4:6e:91:54:46:37:2b: 47:cb:03:45:8c:72:fa:dc:49:21:e0:1c:71:5e:6b: a9:dd:26:be:33:d5:b9:7b:54:8d:37:f7:a2:36:ce: 97:0b:a9:95:76:99:85:1f:2b:e0:02:20:af:10:30: fa:61:7c:2e:8c:25:56:0e:2e:41:cb:ee:a1:2b:24: db:e0:1c:08:2d:72:f8:22:e2:7a:c2:c1:91:2a:96: 55:3d:fc:06:c9:6b:78:aa:2e:d9:6e:de:64:4e:16: c6:bc:e0:a2:68:5c:15:03:33:3f:93:f7:79:79:a8: 9e:31:2e:64:36:20:02:1f:d0:7e:21:12:05:15:a3: 05:d5:66:6e:f4:22:48:b8:0d:33:c0:8f:bd:cb:d5: 37:21:58:79:9f:b0:fe:3c:3e:ce:d8:cf:68:1c:36: c5:d2:7b:e1:14:b3:b4:e9:6b:ab:a9:39:64:e6:7e: 0d:11:26:10:3e:bb:9f:94:0f:ce:30:4a:e8:5b:92: 17:01:53:d2:30:a8:6f:24:7b:0f:e4:b0:be:9e:b3: a5:d3:61:17:77:c5:2c:e0:51:f5:36:af:1d:b3:dd: be:d1:4b:b0:1d:f4:ec:77:6e:e8:37:c6:f9:10:05: 40:6b:17:2e:f0:a6:55:0d:95:9c:5c:61:22:2c:5c: 40:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:AC:69:24:A9:AD:C4:A9:B8:52:76:5F:DC:24:38:2D:94:0B:BB:87 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/waxpJKmtxKm4UnZf3CQ4LZQLu4c.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.238.0/24 Signature Algorithm: sha256WithRSAEncryption c1:29:4c:63:de:6a:51:e6:68:6f:d1:ad:3b:e4:6c:b6:82:5c: 72:26:8e:3b:9d:ca:fd:77:1c:6a:f1:3c:4a:3b:69:7d:8f:d2: 3b:8a:01:29:cf:e2:eb:e1:11:3a:0c:35:ff:e0:4e:dc:de:91: 57:0c:de:67:4e:71:13:b7:1b:9a:cd:36:3d:8d:14:4e:27:26: 19:05:3d:1e:f5:d0:0a:1b:64:f4:48:6e:ab:1f:a6:b8:f0:f4: b1:df:59:02:97:0e:f8:84:d3:e6:9c:dd:30:be:71:a7:97:d3: 9f:04:9d:d0:ef:92:bb:93:ee:33:c6:66:95:90:21:aa:e6:14: c0:b2:55:dd:87:72:0a:8e:b6:d5:12:aa:4e:44:48:ab:57:48: 87:49:67:68:1f:bd:6e:2b:30:3b:96:9c:d9:8a:1b:24:da:f0: 21:47:f5:4a:c2:b8:ad:9d:9a:ae:bb:c1:60:70:6e:fa:00:dd: 41:fc:fb:41:0d:d2:28:6c:ef:19:6d:19:f8:25:0a:d8:e1:08: 96:58:3c:a7:8c:12:e5:c4:05:4c:e9:19:fa:24:46:97:9f:63: a4:14:e9:9e:a5:6e:2f:c7:7b:b2:8f:74:69:de:68:ba:e3:bd: f9:2e:b8:45:ba:fb:e4:3e:18:4e:01:3a:76:c6:da:0e:45:7f: 28:6a:b4:37 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD1AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTI4MjdaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEMxQUM2OTI0QTlBREM0 QTlCODUyNzY1RkRDMjQzODJEOTQwQkJCODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9UrG3sT5A9G6RVEY3K0fLA0WMcvrcSSHgHHFea6ndJr4z1bl7 VI0396I2zpcLqZV2mYUfK+ACIK8QMPphfC6MJVYOLkHL7qErJNvgHAgtcvgi4nrC wZEqllU9/AbJa3iqLtlu3mROFsa84KJoXBUDMz+T93l5qJ4xLmQ2IAIf0H4hEgUV owXVZm70Iki4DTPAj73L1TchWHmfsP48Ps7Yz2gcNsXSe+EUs7Tpa6upOWTmfg0R JhA+u5+UD84wSuhbkhcBU9IwqG8kew/ksL6es6XTYRd3xSzgUfU2rx2z3b7RS7Ad 9Ox3bug3xvkQBUBrFy7wplUNlZxcYSIsXEALAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUwaxpJKmtxKm4UnZf3CQ4LZQLu4cwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3dheHBKS210eEttNFVuWmYzQ1E0TFpRTHU0Yy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADcn+4wDQYJKoZIhvcNAQELBQADggEBAMEpTGPealHmaG/RrTvkbLaCXHIm jjudyv13HGrxPEo7aX2P0juKASnP4uvhEToMNf/gTtzekVcM3mdOcRO3G5rNNj2N FE4nJhkFPR710AobZPRIbqsfprjw9LHfWQKXDviE0+ac3TC+caeX058EndDvkruT 7jPGZpWQIarmFMCyVd2HcgqOttUSqk5ESKtXSIdJZ2gfvW4rMDuWnNmKGyTa8CFH 9UrCuK2dmq67wWBwbvoA3UH8+0EN0ihs7xltGfglCtjhCJZYPKeMEuXEBUzpGfok RpefY6QU6Z6lbi/He7KPdGneaLrjvfkuuEW6++Q+GE4BOnbG2g5FfyhqtDc= -----END CERTIFICATE-----Generated at Sun Jun 22 14:40:18 2025 by rpki-client