$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/0tsxZppIECcNTozwNieRIxzlPXs.roa File: 0tsxZppIECcNTozwNieRIxzlPXs.roa (raw, json) Hash identifier: m50gSv/1uOMzP78/o0dCLlIqqQ6O+BlN8MzptuVQACE= Subject key identifier: D2:DB:31:66:9A:48:10:27:0D:4E:8C:F0:36:27:91:23:1C:E5:3D:7B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E8E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/0tsxZppIECcNTozwNieRIxzlPXs.roa Signing time: Tue 10 Jun 2025 10:56:53 +0000 ROA not before: Tue 10 Jun 2025 10:56:53 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 49.107.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3726 (0xe8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:56:53 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=D2DB31669A4810270D4E8CF0362791231CE53D7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:23:6f:0b:fd:c5:f4:68:f2:5e:d8:27:24:9d: 72:76:6f:91:45:dc:4e:1c:9f:47:6b:74:02:26:5b: 21:b7:2d:7d:da:b7:ad:31:19:19:35:94:52:2f:89: 21:40:ab:8f:bf:c1:9a:19:3f:3f:20:a6:4d:de:34: 42:f2:05:82:4c:e5:00:be:87:17:13:e4:68:9a:d9: 9a:7c:ee:4c:c1:62:82:47:6a:c6:64:b9:4c:aa:10: 3b:9a:32:b9:9c:55:04:46:ad:00:be:df:e0:9d:af: f3:c7:6c:7a:fa:d9:69:94:ef:0c:f7:2a:20:b3:fb: 93:5f:c4:c6:17:31:d7:91:24:51:ff:ba:d4:1c:6c: 8d:fc:fb:04:dc:2b:68:3e:4a:08:64:9e:c2:6e:8f: fd:a6:ce:ba:0d:e1:3c:91:91:77:c4:5d:d3:85:a0: 7c:1a:17:be:fa:5f:65:f9:f2:f5:7f:a8:86:59:a0: 41:d4:a9:4f:aa:58:3d:74:11:31:42:ac:7a:5d:cc: 24:53:51:f6:97:f7:a6:d0:c1:21:2c:94:65:02:21: 29:97:b8:30:18:bf:2d:a2:c3:f8:ff:76:4d:7a:f3: 9d:17:f1:e7:40:4f:7e:e5:91:61:f4:0d:62:22:0b: 68:16:4e:f0:09:65:73:8f:d7:cb:c8:c0:9d:2e:48: 9c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:DB:31:66:9A:48:10:27:0D:4E:8C:F0:36:27:91:23:1C:E5:3D:7B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/0tsxZppIECcNTozwNieRIxzlPXs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.107.0.0/18 Signature Algorithm: sha256WithRSAEncryption 38:df:78:4f:98:6d:ea:66:60:aa:59:2c:4f:d7:03:a4:80:e5: 20:4f:77:cb:c4:fc:9a:f3:8b:a8:c1:fd:23:9b:2d:d3:43:29: 11:02:3d:7a:34:22:06:8b:78:2a:9b:02:be:27:51:1e:b8:4f: 3f:71:43:b8:ca:b2:96:ba:6e:ec:bb:15:fb:4e:59:6d:4d:a0: bb:13:16:98:4e:95:30:bb:1f:6c:2a:b5:32:55:25:47:f1:77: b1:8e:f1:de:cf:b1:fb:f9:cc:c8:b3:82:e5:a6:8b:ab:fb:ac: de:91:0b:b1:2d:78:23:25:90:d0:ee:cb:7e:e7:1d:49:92:e1: 95:68:1d:bf:25:03:08:51:e8:6d:56:ac:dc:08:a1:a1:3e:0f: f1:9d:b5:0e:fc:6a:c4:3f:14:e8:90:ef:96:ac:84:e4:a1:db: 8f:ac:23:6f:fe:31:9c:f7:72:63:8f:a9:db:3e:23:fa:3e:4a: dc:6f:3a:b9:59:af:34:b0:87:8e:bd:5e:73:51:0f:70:d0:f9: dd:89:5f:b6:2e:3e:fb:fd:fa:cf:a9:a0:5c:f0:ce:18:94:62: 41:3e:1b:5e:bf:36:a0:da:8c:6a:ea:c4:6e:58:3a:6a:83:23: 81:0f:d3:e1:38:59:bf:26:31:69:e2:bc:2f:fa:35:c7:5b:94: 84:82:2f:01 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDo4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDU2NTNaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEQyREIzMTY2OUE0ODEw MjcwRDRFOENGMDM2Mjc5MTIzMUNFNTNEN0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHI28L/cX0aPJe2CcknXJ2b5FF3E4cn0drdAImWyG3LX3at60x GRk1lFIviSFAq4+/wZoZPz8gpk3eNELyBYJM5QC+hxcT5Gia2Zp87kzBYoJHasZk uUyqEDuaMrmcVQRGrQC+3+Cdr/PHbHr62WmU7wz3KiCz+5NfxMYXMdeRJFH/utQc bI38+wTcK2g+SghknsJuj/2mzroN4TyRkXfEXdOFoHwaF776X2X58vV/qIZZoEHU qU+qWD10ETFCrHpdzCRTUfaX96bQwSEslGUCISmXuDAYvy2iw/j/dk16850X8edA T37lkWH0DWIiC2gWTvAJZXOP18vIwJ0uSJyzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU0tsxZppIECcNTozwNieRIxzlPXswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzB0c3hacHBJRUNjTlRvendOaWVSSXh6bFBYcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYxawAwDQYJKoZIhvcNAQELBQADggEBADjfeE+YbepmYKpZLE/XA6SA5SBP d8vE/Jrzi6jB/SObLdNDKRECPXo0IgaLeCqbAr4nUR64Tz9xQ7jKspa6buy7FftO WW1NoLsTFphOlTC7H2wqtTJVJUfxd7GO8d7Psfv5zMizguWmi6v7rN6RC7EteCMl kNDuy37nHUmS4ZVoHb8lAwhR6G1WrNwIoaE+D/GdtQ78asQ/FOiQ75ashOSh24+s I2/+MZz3cmOPqds+I/o+StxvOrlZrzSwh469XnNRD3DQ+d2JX7YuPvv9+s+poFzw zhiUYkE+G16/NqDajGrqxG5YOmqDI4EP0+E4Wb8mMWnivC/6NcdblISCLwE= -----END CERTIFICATE-----Generated at Thu Jul 3 19:15:45 2025 by rpki-client