$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30359/3yjo4gxM6foBmT4wIymOFDnamv4.roa File: 3yjo4gxM6foBmT4wIymOFDnamv4.roa (raw, json) Hash identifier: 50HesPqJHl0XWNJSxSOeBA+n/20KUdzyLAr5du3EeAc= Subject key identifier: DF:28:E8:E2:0C:4C:E9:FA:01:99:3E:30:23:29:8E:14:39:DA:9A:FE Certificate issuer: /CN=675815DB7349C2ACFBC48AA75306520050C26248 Certificate serial: 4A Authority key identifier: 67:58:15:DB:73:49:C2:AC:FB:C4:8A:A7:53:06:52:00:50:C2:62:48 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z1gV23NJwqz7xIqnUwZSAFDCYkg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30359/3yjo4gxM6foBmT4wIymOFDnamv4.roa Signing time: Tue 10 Jun 2025 10:50:59 +0000 ROA not before: Tue 10 Jun 2025 10:50:59 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 55898 IP address blocks: 2405:8500::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30359/Z1gV23NJwqz7xIqnUwZSAFDCYkg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30359/Z1gV23NJwqz7xIqnUwZSAFDCYkg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z1gV23NJwqz7xIqnUwZSAFDCYkg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=675815DB7349C2ACFBC48AA75306520050C26248 Validity Not Before: Jun 10 10:50:59 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=DF28E8E20C4CE9FA01993E3023298E1439DA9AFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:68:f8:a0:5c:39:90:03:60:23:26:dd:ea:b3: 43:96:9c:e0:4e:c0:03:fd:7b:e6:e2:ce:3a:d3:ea: 3e:42:5a:74:a0:44:d0:ba:62:92:d1:2f:dc:0c:6e: 4e:be:87:2a:7a:9c:61:7b:84:54:6a:68:ac:df:6b: af:fb:fe:78:fa:9d:d8:d2:02:f6:ec:a9:f7:4f:c3: e5:99:e8:40:30:5d:37:e8:18:60:1d:d2:23:14:f2: 89:ac:b5:da:05:d4:12:e9:d4:7e:32:7a:86:c4:70: 3d:3d:a6:e1:fb:36:de:53:94:d9:28:6f:7e:6f:d4: ea:69:80:58:f2:f4:7a:a8:ed:ab:fb:d7:12:4e:8a: 61:0a:c4:03:83:25:18:4c:48:af:6c:7c:fc:6b:6a: 0b:6f:2c:3a:99:c9:eb:69:38:39:3c:12:d2:9b:0f: 36:49:93:b4:5c:90:01:2e:cb:27:e8:f8:a8:29:0b: 4d:ab:41:2a:29:e7:2c:90:58:fe:e3:37:6a:79:7f: b7:3e:2f:91:d6:c6:76:58:7f:27:90:6a:c3:db:d8: 6e:36:e4:a0:9b:27:fb:84:bf:54:f3:5a:d6:d0:21: 95:3a:82:10:4a:10:e1:da:aa:49:c9:0e:6f:94:71: 89:51:3a:6b:1d:a8:a0:76:9d:92:c1:fb:00:0d:40: 3f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:28:E8:E2:0C:4C:E9:FA:01:99:3E:30:23:29:8E:14:39:DA:9A:FE X509v3 Authority Key Identifier: keyid:67:58:15:DB:73:49:C2:AC:FB:C4:8A:A7:53:06:52:00:50:C2:62:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30359/Z1gV23NJwqz7xIqnUwZSAFDCYkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Z1gV23NJwqz7xIqnUwZSAFDCYkg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30359/3yjo4gxM6foBmT4wIymOFDnamv4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:8500::/32 Signature Algorithm: sha256WithRSAEncryption 85:a9:46:4a:4b:76:99:3b:f9:bc:a5:5a:33:f9:03:34:50:d7: 4f:cf:a9:86:d8:a9:5c:58:e3:a7:ee:97:a7:fd:f3:b3:9b:1a: e0:b5:d7:34:1d:fc:d2:34:27:2b:17:06:e5:56:e7:0f:22:91: 1c:6e:00:2c:67:44:3e:99:45:fd:47:22:41:b1:8e:25:c0:b8: f9:eb:6e:db:85:77:7f:61:c8:b1:1b:c5:b6:6a:4b:28:19:ec: c1:11:01:30:56:a6:f1:48:f9:54:c2:d4:50:74:a5:0a:5b:27: d4:7f:c9:5b:6a:c0:73:42:d6:0b:d4:b2:b7:14:15:b1:8d:9c: a3:b4:ed:51:60:75:df:43:3c:35:9a:7d:fb:55:e3:d8:64:8e: b3:46:4b:b6:c5:15:d2:13:11:43:83:0d:8f:ce:30:cf:a6:ad: 7a:b5:59:4d:de:20:c8:af:a4:84:81:89:6b:5f:81:f1:11:42: ff:2e:ed:f7:63:fb:bd:85:61:20:8e:61:ce:2e:5e:74:35:25: d8:97:4e:2b:25:dd:37:f6:15:59:c9:03:21:16:62:9c:99:2b: fa:8f:f3:ef:2f:51:18:2a:67:0c:55:88:19:e0:88:94:14:44: 60:f3:3c:5f:ca:d4:32:a0:42:6e:ce:df:6f:c3:c4:e1:57:2c: 95:73:fc:8d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBSjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2NzU4 MTVEQjczNDlDMkFDRkJDNDhBQTc1MzA2NTIwMDUwQzI2MjQ4MB4XDTI1MDYxMDEw NTA1OVoXDTI2MDUyMzA5NTEwMFowMzExMC8GA1UEAxMoREYyOEU4RTIwQzRDRTlG QTAxOTkzRTMwMjMyOThFMTQzOURBOUFGRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKdo+KBcOZADYCMm3eqzQ5ac4E7AA/175uLOOtPqPkJadKBE0Lpi ktEv3AxuTr6HKnqcYXuEVGporN9rr/v+ePqd2NIC9uyp90/D5ZnoQDBdN+gYYB3S IxTyiay12gXUEunUfjJ6hsRwPT2m4fs23lOU2Shvfm/U6mmAWPL0eqjtq/vXEk6K YQrEA4MlGExIr2x8/GtqC28sOpnJ62k4OTwS0psPNkmTtFyQAS7LJ+j4qCkLTatB KinnLJBY/uM3anl/tz4vkdbGdlh/J5Bqw9vYbjbkoJsn+4S/VPNa1tAhlTqCEEoQ 4dqqSckOb5RxiVE6ax2ooHadksH7AA1APw0CAwEAAaOCAikwggIlMB0GA1UdDgQW BBTfKOjiDEzp+gGZPjAjKY4UOdqa/jAfBgNVHSMEGDAWgBRnWBXbc0nCrPvEiqdT BlIAUMJiSDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAzNTkvWjFnVjIzTkp3cXo3eElxblV3WlNBRkRDWWtnLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWjFnVjIzTkp3cXo3eElxblV3WlNB RkRDWWtnLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMzU5LzN5am80Z3hNNmZvQm1UNHdJeW1PRkRuYW12NC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkBYUAMA0GCSqGSIb3DQEBCwUAA4IBAQCFqUZKS3aZO/m8pVoz+QM0 UNdPz6mG2KlcWOOn7pen/fOzmxrgtdc0HfzSNCcrFwblVucPIpEcbgAsZ0Q+mUX9 RyJBsY4lwLj5627bhXd/YcixG8W2aksoGezBEQEwVqbxSPlUwtRQdKUKWyfUf8lb asBzQtYL1LK3FBWxjZyjtO1RYHXfQzw1mn37VePYZI6zRku2xRXSExFDgw2PzjDP pq16tVlN3iDIr6SEgYlrX4HxEUL/Lu33Y/u9hWEgjmHOLl50NSXYl04rJd039hVZ yQMhFmKcmSv6j/PvL1EYKmcMVYgZ4IiUFERg8zxfytQyoEJuzt9vw8ThVyyVc/yN -----END CERTIFICATE-----Generated at Sat Jul 5 19:56:07 2025 by rpki-client