$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/2X5tW6-wH-o0d92DtdOLQRZ3vYs.roa File: 2X5tW6-wH-o0d92DtdOLQRZ3vYs.roa (raw, json) Hash identifier: /OuddcBWr6+UDik3Nc2JaomZQRByDlAZMblmtFIWKpE= Subject key identifier: D9:7E:6D:5B:AF:B0:1F:EA:34:77:DD:83:B5:D3:8B:41:16:77:BD:8B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E71 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2X5tW6-wH-o0d92DtdOLQRZ3vYs.roa Signing time: Tue 10 Jun 2025 10:53:31 +0000 ROA not before: Tue 10 Jun 2025 10:53:31 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.74.196.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:23:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3697 (0xe71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:53:31 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=D97E6D5BAFB01FEA3477DD83B5D38B411677BD8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:79:b3:76:8c:e4:8b:48:72:e2:6b:44:b7:13: ee:0a:a7:8b:97:fe:3b:1f:db:ee:36:ff:1d:db:0d: 58:94:99:de:8f:21:c4:2c:3b:c6:6d:8d:b2:fd:bb: 34:89:34:81:15:94:e4:63:5f:a0:3f:11:64:f6:40: 01:cc:6a:c0:40:46:ea:4a:b8:60:06:11:c8:c9:07: cf:ed:31:79:ec:57:b9:58:a2:a0:b7:2f:ab:94:c3: d2:4a:95:27:26:d7:f5:17:3a:64:d7:f4:b9:ef:a4: 25:b5:ff:ae:e7:51:32:97:7f:55:d0:58:9e:0d:c7: fe:71:a7:a8:d1:b9:c2:a7:45:d8:0c:cf:21:4a:26: 84:9a:b8:17:b7:57:13:7f:a8:20:be:db:57:46:6e: df:4e:37:66:ca:14:77:3c:8a:60:58:b3:19:83:51: ac:2f:7e:4d:e5:5f:7c:54:d8:48:d9:f9:93:bd:8e: 2f:c4:ab:91:d4:d5:a6:43:50:a8:6f:e0:cc:2a:da: 6e:c9:06:4f:61:48:58:a8:29:8c:90:d5:2d:11:18: 67:75:04:38:c9:55:06:7f:07:35:fc:9f:c2:bb:0e: 9a:31:04:30:54:56:88:56:3d:09:07:49:ae:e0:a2: cd:a7:32:ea:1a:7a:47:9a:59:d8:75:31:0f:a0:16: 36:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:7E:6D:5B:AF:B0:1F:EA:34:77:DD:83:B5:D3:8B:41:16:77:BD:8B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2X5tW6-wH-o0d92DtdOLQRZ3vYs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.74.196.0/23 Signature Algorithm: sha256WithRSAEncryption 07:48:10:57:f0:ee:18:c2:d2:3f:a0:56:db:73:f1:22:18:ef: 2e:de:39:3a:72:eb:75:e2:d1:ab:c7:4f:1f:82:da:57:a5:c3: 10:b7:45:07:c6:b8:98:1c:2e:18:c4:aa:ca:7b:f9:35:09:a3: 7a:a9:49:4c:e4:8b:00:24:e7:e7:f1:71:de:dd:4d:dc:20:1b: 4d:bf:e8:e1:93:81:a3:ff:c9:51:02:c5:b5:c2:f3:78:a9:51: 99:d3:d7:45:53:a7:2b:1f:42:f8:7b:42:3f:28:bb:7b:e9:f8: 99:16:ad:28:01:bc:30:d7:1d:a0:a7:4e:df:06:b0:26:99:4a: 1b:b6:17:29:5b:fb:62:b5:88:80:ca:72:ea:63:82:27:72:21: 26:e9:e7:ab:7e:e3:a7:c8:39:18:ad:1c:d5:8c:8d:55:2d:39: 4d:b4:45:10:95:f2:c9:de:c3:a8:17:70:6d:e2:0d:f7:0e:19: 41:61:79:32:27:35:1a:a0:9f:db:8a:d2:a9:29:8d:ee:a0:0c: a0:20:29:82:5f:30:8e:43:33:51:90:66:4d:b8:3a:d7:c0:b5: fd:39:8a:98:87:63:ce:e6:34:d4:14:1d:d4:fb:d5:d1:cb:9a: 69:cf:4a:84:22:17:d4:cb:a7:6c:b3:a7:da:3b:76:43:65:87: 26:e1:e7:09 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDnEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDUzMzFaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEQ5N0U2RDVCQUZCMDFG RUEzNDc3REQ4M0I1RDM4QjQxMTY3N0JEOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnebN2jOSLSHLia0S3E+4Kp4uX/jsf2+42/x3bDViUmd6PIcQs O8ZtjbL9uzSJNIEVlORjX6A/EWT2QAHMasBARupKuGAGEcjJB8/tMXnsV7lYoqC3 L6uUw9JKlScm1/UXOmTX9LnvpCW1/67nUTKXf1XQWJ4Nx/5xp6jRucKnRdgMzyFK JoSauBe3VxN/qCC+21dGbt9ON2bKFHc8imBYsxmDUawvfk3lX3xU2EjZ+ZO9ji/E q5HU1aZDUKhv4Mwq2m7JBk9hSFioKYyQ1S0RGGd1BDjJVQZ/BzX8n8K7DpoxBDBU VohWPQkHSa7gos2nMuoaekeaWdh1MQ+gFjb9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU2X5tW6+wH+o0d92DtdOLQRZ3vYswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzJYNXRXNi13SC1vMGQ5MkR0ZE9MUVJaM3ZZcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBSsQwDQYJKoZIhvcNAQELBQADggEBAAdIEFfw7hjC0j+gVttz8SIY7y7e OTpy63Xi0avHTx+C2lelwxC3RQfGuJgcLhjEqsp7+TUJo3qpSUzkiwAk5+fxcd7d TdwgG02/6OGTgaP/yVECxbXC83ipUZnT10VTpysfQvh7Qj8ou3vp+JkWrSgBvDDX HaCnTt8GsCaZShu2Fylb+2K1iIDKcupjgidyISbp56t+46fIORitHNWMjVUtOU20 RRCV8snew6gXcG3iDfcOGUFheTInNRqgn9uK0qkpje6gDKAgKYJfMI5DM1GQZk24 OtfAtf05ipiHY87mNNQUHdT71dHLmmnPSoQiF9TLp2yzp9o7dkNlhybh5wk= -----END CERTIFICATE-----Generated at Thu Jul 3 00:30:49 2025 by rpki-client