$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/F70uo9MB3O7M9tkrLzOxRLvjL9k.roa File: F70uo9MB3O7M9tkrLzOxRLvjL9k.roa (raw, json) Hash identifier: JDicz5mekf2pM4Bz8v5K+0RfXYTMGkCGL2/5Z4M0FFY= Subject key identifier: 17:BD:2E:A3:D3:01:DC:EE:CC:F6:D9:2B:2F:33:B1:44:BB:E3:2F:D9 Certificate issuer: /CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Certificate serial: 77 Authority key identifier: F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/F70uo9MB3O7M9tkrLzOxRLvjL9k.roa Signing time: Tue 10 Jun 2025 11:12:36 +0000 ROA not before: Tue 10 Jun 2025 11:12:36 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 148.67.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Validity Not Before: Jun 10 11:12:36 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=17BD2EA3D301DCEECCF6D92B2F33B144BBE32FD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1f:e9:07:c6:16:c4:a5:2a:ff:ea:ae:00:d8: 02:7f:93:9e:d5:d3:41:79:ce:0b:fd:ac:20:73:ed: 20:0f:8b:fe:b6:8a:e0:45:73:a6:43:9e:92:4f:65: c5:28:ce:56:c8:ca:18:ef:11:a4:c0:05:ed:7c:13: 9c:fb:dc:ba:16:64:3d:9b:f5:bd:33:f1:e8:af:e5: 5a:4a:e3:2d:b1:7f:ab:b1:8c:da:03:4a:03:be:73: e3:60:12:1e:db:c0:c7:3e:3c:7d:df:e9:00:76:22: ff:78:91:35:af:c0:73:5f:b2:20:66:d4:b8:52:45: 02:2d:f1:95:3e:e4:ce:a7:69:be:25:63:cf:d5:db: 94:51:c8:08:2b:d2:ed:13:7f:4d:c9:10:3a:b8:a6: b2:09:5c:0a:01:e6:bd:e7:25:36:5a:85:3b:b8:d7: 7b:74:a0:9c:48:ec:2e:df:51:66:9a:af:01:f4:d3: 4a:a5:d7:32:ff:a3:6b:92:ee:1c:68:2b:63:db:b4: eb:19:b9:96:4a:e6:bd:d9:e3:34:57:38:e1:69:df: 35:f1:73:fa:cd:93:d6:da:8d:d8:de:a4:c8:63:d3: e1:a8:07:43:f0:f1:67:94:eb:80:cc:4a:7c:ce:e4: 1d:17:0a:77:6a:3f:97:c3:bf:5b:c3:78:aa:a2:1c: 6f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:BD:2E:A3:D3:01:DC:EE:CC:F6:D9:2B:2F:33:B1:44:BB:E3:2F:D9 X509v3 Authority Key Identifier: keyid:F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/F70uo9MB3O7M9tkrLzOxRLvjL9k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 148.67.0.0/17 Signature Algorithm: sha256WithRSAEncryption 6b:e2:d3:5d:1e:89:cc:01:25:fe:b2:3c:0a:1a:c5:e9:4f:9e: 7a:79:ed:c0:46:86:44:d6:f9:af:a4:dc:b0:ac:3d:46:b5:64: 57:14:70:a2:9f:1f:4e:df:7d:1b:b2:a2:58:1d:14:61:70:3d: 6d:01:67:1a:32:b9:18:c4:3a:8c:c0:99:59:fc:2c:21:17:ce: a9:bf:60:a6:36:2e:68:7c:15:71:fb:47:62:f2:0f:47:47:4c: 7b:ad:69:26:c2:ea:af:54:80:ce:04:78:bd:43:44:42:57:56: 10:92:f9:4a:0b:d9:9b:81:fa:e0:82:2f:df:74:07:a2:84:47: 5f:0a:31:20:b5:6a:40:35:20:47:fc:a6:1f:6c:a3:ce:a6:88: 9d:53:49:ad:48:69:99:58:c4:6f:26:7d:b8:d6:8c:75:b7:95: 51:77:28:20:c7:9e:30:88:cf:b8:d1:2b:66:95:62:65:e1:f9: e7:bb:b6:34:69:b8:9e:6e:ee:d6:a5:0d:61:25:62:21:fc:87: 4d:f4:b8:85:f8:50:bc:c7:50:1a:a3:38:1d:16:6f:e3:eb:0d: 4a:29:c2:e0:3d:4b:12:e6:0c:e8:55:e1:df:29:70:b1:07:4e: fa:4e:ef:78:e7:44:a3:62:7d:91:0c:44:05:58:37:87:29:ac: 17:d2:6d:5a -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBdzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGODlF MEYxNUMxRTIwRTE5MUFBRjE3Mjg4RjZFMzBGRjAxODY5QTZFMB4XDTI1MDYxMDEx MTIzNloXDTI2MDUyMzA5NTEwMFowMzExMC8GA1UEAxMoMTdCRDJFQTNEMzAxRENF RUNDRjZEOTJCMkYzM0IxNDRCQkUzMkZEOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANEf6QfGFsSlKv/qrgDYAn+TntXTQXnOC/2sIHPtIA+L/raK4EVz pkOekk9lxSjOVsjKGO8RpMAF7XwTnPvcuhZkPZv1vTPx6K/lWkrjLbF/q7GM2gNK A75z42ASHtvAxz48fd/pAHYi/3iRNa/Ac1+yIGbUuFJFAi3xlT7kzqdpviVjz9Xb lFHICCvS7RN/TckQOrimsglcCgHmveclNlqFO7jXe3SgnEjsLt9RZpqvAfTTSqXX Mv+ja5LuHGgrY9u06xm5lkrmvdnjNFc44WnfNfFz+s2T1tqN2N6kyGPT4agHQ/Dx Z5TrgMxKfM7kHRcKd2o/l8O/W8N4qqIcbycCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQXvS6j0wHc7sz22SsvM7FEu+Mv2TAfBgNVHSMEGDAWgBT4ng8VweIOGRqvFyiP bjD/AYaabjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA5Ly1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dHR21tNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLy1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dH R21tNC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDkvRjcwdW85TUIzTzdNOXRrckx6T3hSTHZqTDlrLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEB5RDADANBgkqhkiG9w0BAQsFAAOCAQEAa+LTXR6JzAEl/rI8ChrF6U+eennt wEaGRNb5r6TcsKw9RrVkVxRwop8fTt99G7KiWB0UYXA9bQFnGjK5GMQ6jMCZWfws IRfOqb9gpjYuaHwVcftHYvIPR0dMe61pJsLqr1SAzgR4vUNEQldWEJL5SgvZm4H6 4IIv33QHooRHXwoxILVqQDUgR/ymH2yjzqaInVNJrUhpmVjEbyZ9uNaMdbeVUXco IMeeMIjPuNErZpViZeH557u2NGm4nm7u1qUNYSViIfyHTfS4hfhQvMdQGqM4HRZv 4+sNSinC4D1LEuYM6FXh3ylwsQdO+k7veOdEo2J9kQxEBVg3hymsF9JtWg== -----END CERTIFICATE-----Generated at Thu Jul 3 11:27:07 2025 by rpki-client