$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/2qq2fmZNW6C_UYew6YZZNAySrkU.roa File: 2qq2fmZNW6C_UYew6YZZNAySrkU.roa (raw, json) Hash identifier: J4iWeCvhDKHT5N7w9Hv0blRfSGD4X/ProqRaTetWdEo= Subject key identifier: DA:AA:B6:7E:66:4D:5B:A0:BF:51:87:B0:E9:86:59:34:0C:92:AE:45 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0EB8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2qq2fmZNW6C_UYew6YZZNAySrkU.roa Signing time: Tue 10 Jun 2025 11:04:54 +0000 ROA not before: Tue 10 Jun 2025 11:04:54 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 219.122.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3768 (0xeb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:04:54 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=DAAAB67E664D5BA0BF5187B0E98659340C92AE45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c5:f0:51:46:ff:79:d8:d7:d8:b3:31:b1:60: 92:85:dd:6b:8b:00:04:4d:e6:5e:2a:5c:84:19:45: b2:d3:d4:9f:98:7d:dc:68:d4:11:cb:ef:98:91:2a: 92:cb:e3:c3:0d:39:dc:b9:92:d8:95:71:c3:c9:c0: b3:10:5f:cf:f1:91:dc:ac:3e:ee:25:cc:c9:47:6e: d7:39:7e:b6:49:37:bb:98:71:d4:71:ed:f8:ae:40: 32:af:7e:6d:f1:50:f4:61:21:34:80:63:e6:11:c0: 28:3a:57:03:5c:d4:ce:cd:98:37:33:8d:e2:79:1e: b6:c4:5a:63:4a:b8:ac:28:4c:b9:3a:f8:a9:16:ba: 32:3e:ee:dd:b0:c4:38:12:bd:e5:93:96:d1:17:23: 48:0d:c5:58:5b:c7:72:40:91:af:e2:36:f3:f6:5a: 1c:4d:5d:18:ed:db:da:dd:2d:76:e4:35:6d:c2:44: 7b:8b:66:c6:73:a5:ac:40:f7:4c:5a:bd:a9:8e:65: 69:56:95:ff:d2:77:da:4e:7d:a7:c3:ac:d7:e9:82: 06:38:f4:63:77:46:c3:4f:52:d4:40:9d:d6:47:da: bc:f9:e0:56:69:3c:70:50:1a:0e:44:01:59:24:a9: 2c:fa:d8:ab:6b:ed:ba:e1:98:b0:13:13:d6:22:04: 22:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:AA:B6:7E:66:4D:5B:A0:BF:51:87:B0:E9:86:59:34:0C:92:AE:45 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2qq2fmZNW6C_UYew6YZZNAySrkU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.122.76.0/22 Signature Algorithm: sha256WithRSAEncryption 27:ca:8e:83:9a:3d:75:de:e8:30:bc:c6:82:e1:1d:e3:58:a7: 9d:cb:24:c5:ea:e0:1e:a8:0d:ce:bf:8f:d1:ae:5f:70:5d:12: 0e:64:02:4b:a9:b9:06:83:b4:22:6c:4a:2f:d1:f5:a3:57:8d: ef:8c:0d:4e:28:a6:1d:23:19:b6:5a:49:89:23:33:c0:a4:1f: ee:15:c1:ba:33:90:03:12:4e:07:bb:b9:73:74:f8:72:8b:53: c7:b8:ba:80:21:9b:ea:49:f5:18:53:fb:ed:68:75:05:95:3b: d5:7f:7c:38:e1:ee:05:3e:df:a6:70:66:6e:7d:13:4b:0e:b1: a0:32:8b:76:ef:bf:ab:05:07:02:2a:43:d1:09:9d:00:20:73: 21:7d:09:9b:db:f4:8d:5d:d9:13:95:6d:bc:0f:2d:5d:a1:49: aa:de:75:0e:91:de:a2:c0:55:57:13:87:f5:63:0b:7a:78:70: 15:2d:33:ef:7e:34:0e:09:47:fc:1e:46:98:fc:52:49:f8:e5: 9f:92:98:6b:39:58:4c:2c:46:2f:9b:56:4b:35:cc:81:d8:fe: fc:74:09:e4:7a:ef:11:ff:1b:e4:e1:32:4f:e8:86:be:87:88: cd:f4:69:b9:8f:01:1d:5a:2d:49:78:c8:c4:6d:71:f0:51:1c: a6:51:c8:b7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDrgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTA0NTRaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKERBQUFCNjdFNjY0RDVC QTBCRjUxODdCMEU5ODY1OTM0MEM5MkFFNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1xfBRRv952NfYszGxYJKF3WuLAARN5l4qXIQZRbLT1J+Yfdxo 1BHL75iRKpLL48MNOdy5ktiVccPJwLMQX8/xkdysPu4lzMlHbtc5frZJN7uYcdRx 7fiuQDKvfm3xUPRhITSAY+YRwCg6VwNc1M7NmDczjeJ5HrbEWmNKuKwoTLk6+KkW ujI+7t2wxDgSveWTltEXI0gNxVhbx3JAka/iNvP2WhxNXRjt29rdLXbkNW3CRHuL ZsZzpaxA90xavamOZWlWlf/Sd9pOfafDrNfpggY49GN3RsNPUtRAndZH2rz54FZp PHBQGg5EAVkkqSz62Ktr7brhmLATE9YiBCLjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU2qq2fmZNW6C/UYew6YZZNAySrkUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzJxcTJmbVpOVzZDX1VZZXc2WVpaTkF5U3JrVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALbekwwDQYJKoZIhvcNAQELBQADggEBACfKjoOaPXXe6DC8xoLhHeNYp53L JMXq4B6oDc6/j9GuX3BdEg5kAkupuQaDtCJsSi/R9aNXje+MDU4oph0jGbZaSYkj M8CkH+4VwbozkAMSTge7uXN0+HKLU8e4uoAhm+pJ9RhT++1odQWVO9V/fDjh7gU+ 36ZwZm59E0sOsaAyi3bvv6sFBwIqQ9EJnQAgcyF9CZvb9I1d2ROVbbwPLV2hSare dQ6R3qLAVVcTh/VjC3p4cBUtM+9+NA4JR/weRpj8Ukn45Z+SmGs5WEwsRi+bVks1 zIHY/vx0CeR67xH/G+ThMk/ohr6HiM30abmPAR1aLUl4yMRtcfBRHKZRyLc= -----END CERTIFICATE-----Generated at Fri Jul 4 12:52:21 2025 by rpki-client