$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/y1ppKCalMCzPYOlNyQP7yyRFips.roa File: y1ppKCalMCzPYOlNyQP7yyRFips.roa (raw, json) Hash identifier: aPetljBRpvyivGXAu9o6VzGYk82cvGXxUyuC4CpGkko= Subject key identifier: CB:5A:69:28:26:A5:30:2C:CF:60:E9:4D:C9:03:FB:CB:24:45:8A:9B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0EE4 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/y1ppKCalMCzPYOlNyQP7yyRFips.roa Signing time: Tue 10 Jun 2025 11:12:32 +0000 ROA not before: Tue 10 Jun 2025 11:12:32 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.74.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 21:21:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3812 (0xee4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:12:32 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=CB5A692826A5302CCF60E94DC903FBCB24458A9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:7b:87:c0:bf:5b:8a:f4:c5:1e:6a:f8:9e:1c: 83:fc:18:65:19:95:5a:6b:e0:81:d8:93:8b:fd:2c: 66:52:e7:b0:f8:74:6a:63:4a:4f:3c:ba:11:07:6d: a7:dd:8e:46:6d:f6:c3:df:99:60:7c:8c:62:b9:20: 6f:62:54:3d:61:7b:9a:ff:ba:ea:4a:a6:77:e3:14: 61:38:01:3f:d7:83:94:bf:c7:2b:cc:62:19:19:96: 71:97:58:77:10:1c:ef:d8:54:d6:82:06:5f:39:54: 3c:81:58:1b:a2:7d:df:67:81:25:f3:05:0c:81:66: 6f:19:ec:69:56:ed:d6:03:b1:85:9b:9c:90:c2:a7: a5:0c:66:14:80:cd:60:f0:a3:89:46:92:41:84:ca: 55:b6:33:01:c1:d1:18:70:44:20:93:8b:17:45:dc: 42:17:c4:3a:a0:f9:fe:06:8f:6c:05:12:2a:96:38: 37:e4:64:d4:a6:b5:cb:9a:ed:01:7c:03:ee:cb:f0: 7f:93:47:87:99:58:92:03:fe:b0:09:0b:e8:04:8d: 20:2e:b9:4a:b9:3d:c3:ca:c2:c6:9a:72:b8:96:53: 0d:c4:46:2e:87:40:06:a1:f2:80:7e:ed:0c:87:45: f6:48:10:c2:6a:62:ac:54:d7:e1:47:0d:82:82:48: 60:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:5A:69:28:26:A5:30:2C:CF:60:E9:4D:C9:03:FB:CB:24:45:8A:9B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/y1ppKCalMCzPYOlNyQP7yyRFips.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.74.193.0/24 Signature Algorithm: sha256WithRSAEncryption b8:a3:be:3f:d1:2f:f4:fe:64:46:fc:c3:13:1c:ba:5c:7d:39: 7f:42:8b:7b:4a:65:fb:06:1b:28:04:c4:eb:f8:1c:05:38:64: ef:86:4d:b4:98:ba:44:5f:7e:91:20:d4:a3:80:53:37:60:c5: 5a:7b:fd:53:7c:88:18:94:95:f3:a0:84:e5:76:ca:2c:f9:26: dc:85:d2:b5:c4:25:e5:96:11:0b:d8:4f:05:c9:f6:4d:f7:00: 69:4c:2a:17:19:2d:18:fd:61:cc:6e:96:a2:30:fb:7c:62:4e: 9c:37:9f:34:ef:cb:3c:7a:3d:ab:5a:93:72:42:69:41:eb:75: 1d:0b:3a:b7:8f:43:43:57:a0:d7:f6:ad:5f:81:67:1e:3a:62: ec:8f:38:14:19:76:76:24:e8:46:03:f2:30:39:e3:cb:d7:b0: 21:fe:0f:9d:af:c6:a6:fe:dd:e7:f7:b8:5c:e7:4d:d2:49:f9: 57:79:70:75:a4:c5:a0:07:48:5a:02:11:34:24:f0:bc:97:49: 6d:d1:ff:de:5c:1f:f4:8f:e0:86:a4:d6:43:a9:70:3a:26:c5: c6:60:dc:dc:36:97:81:66:f3:71:8f:7b:af:26:f6:f2:7b:1d: 8d:89:fb:94:01:67:9d:f6:8e:b7:41:56:6e:da:e2:c1:27:44: 1b:6e:1d:4f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDuQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTEyMzJaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKENCNUE2OTI4MjZBNTMw MkNDRjYwRTk0REM5MDNGQkNCMjQ0NThBOUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDwe4fAv1uK9MUeavieHIP8GGUZlVpr4IHYk4v9LGZS57D4dGpj Sk88uhEHbafdjkZt9sPfmWB8jGK5IG9iVD1he5r/uupKpnfjFGE4AT/Xg5S/xyvM YhkZlnGXWHcQHO/YVNaCBl85VDyBWBuifd9ngSXzBQyBZm8Z7GlW7dYDsYWbnJDC p6UMZhSAzWDwo4lGkkGEylW2MwHB0RhwRCCTixdF3EIXxDqg+f4Gj2wFEiqWODfk ZNSmtcua7QF8A+7L8H+TR4eZWJID/rAJC+gEjSAuuUq5PcPKwsaacriWUw3ERi6H QAah8oB+7QyHRfZIEMJqYqxU1+FHDYKCSGADAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUy1ppKCalMCzPYOlNyQP7yyRFipswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3kxcHBLQ2FsTUN6UFlPbE55UVA3eXlSRmlwcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABSsEwDQYJKoZIhvcNAQELBQADggEBALijvj/RL/T+ZEb8wxMculx9OX9C i3tKZfsGGygExOv4HAU4ZO+GTbSYukRffpEg1KOAUzdgxVp7/VN8iBiUlfOghOV2 yiz5JtyF0rXEJeWWEQvYTwXJ9k33AGlMKhcZLRj9YcxulqIw+3xiTpw3nzTvyzx6 Patak3JCaUHrdR0LOrePQ0NXoNf2rV+BZx46YuyPOBQZdnYk6EYD8jA548vXsCH+ D52vxqb+3ef3uFznTdJJ+Vd5cHWkxaAHSFoCETQk8LyXSW3R/95cH/SP4Iak1kOp cDomxcZg3Nw2l4Fm83GPe68m9vJ7HY2J+5QBZ532jrdBVm7a4sEnRBtuHU8= -----END CERTIFICATE-----Generated at Tue Jun 17 01:28:32 2025 by rpki-client