$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/LZGmobGevDNQhGaqPFJYZGzlLag.roa File: LZGmobGevDNQhGaqPFJYZGzlLag.roa (raw, json) Hash identifier: 9ovzjL9a4rI+R6df/Y8qdaFEQOyE92C8ICKnUOqIHtw= Subject key identifier: 2D:91:A6:A1:B1:9E:BC:33:50:84:66:AA:3C:52:58:64:6C:E5:2D:A8 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E8D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LZGmobGevDNQhGaqPFJYZGzlLag.roa Signing time: Tue 10 Jun 2025 10:56:53 +0000 ROA not before: Tue 10 Jun 2025 10:56:53 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.210.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3725 (0xe8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:56:53 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=2D91A6A1B19EBC33508466AA3C5258646CE52DA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6b:de:e0:6d:20:c6:a5:c9:ab:70:5d:05:db: 16:a3:4c:6e:60:b1:9d:90:d1:2d:a9:6b:f9:14:4d: b9:75:2d:3a:4e:25:62:ed:8c:37:7e:de:24:93:73: 7a:68:7c:54:52:aa:f4:b0:5e:e2:f1:75:08:dc:88: b6:e7:d2:02:9c:e1:0d:df:5c:52:a6:0e:e3:25:8a: 31:a4:34:5e:55:15:c2:d2:72:07:18:11:05:67:d1: cb:4e:70:11:00:ef:8e:c8:08:b1:cd:ab:11:1b:2e: 6e:ac:50:44:5d:97:43:82:b3:84:7e:eb:d5:7b:13: 8b:f1:32:b9:db:40:d8:0b:79:03:77:da:89:7d:28: fe:d1:ab:de:6f:7d:0d:49:73:1f:7e:86:3a:95:43: db:f6:60:77:25:24:ea:9c:65:e7:98:c5:38:90:90: 18:1c:06:d8:79:5d:cf:e4:4d:24:42:f1:b5:52:f7: 44:b1:f6:18:df:20:2d:64:da:8a:45:a1:fd:e3:e4: c2:56:b8:2c:e0:2a:99:1e:ef:2e:3b:6d:8f:7e:92: 43:3c:c8:8b:85:da:60:49:d6:bf:25:23:9b:c6:28: 38:5a:29:ea:df:dc:ae:fe:a4:3e:3e:e0:21:d7:a1: 26:14:b0:81:26:ec:cc:f4:b2:ae:86:df:a1:9e:47: 73:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:91:A6:A1:B1:9E:BC:33:50:84:66:AA:3C:52:58:64:6C:E5:2D:A8 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LZGmobGevDNQhGaqPFJYZGzlLag.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.40.0/21 Signature Algorithm: sha256WithRSAEncryption d1:24:ad:27:57:b1:bf:ae:0c:31:44:1e:c6:89:3b:26:84:88: 23:ca:51:26:2a:8c:a0:ac:16:7b:4c:1b:1c:34:f1:db:11:39: 44:75:9e:53:f6:57:fd:88:df:fd:88:b5:ed:d4:48:2c:b0:dd: a2:ae:37:25:36:56:69:59:5d:bf:39:33:04:a1:c5:46:ac:a6: 71:e9:cf:e9:6b:47:9b:10:4a:64:63:34:25:1e:d6:65:40:25: 4a:ec:cd:6b:ae:b3:ac:0e:5d:74:61:92:24:38:8e:74:d8:8c: 42:1c:8e:03:fb:c3:cd:32:db:c8:7d:b3:b8:b2:99:1d:00:1f: b7:a2:30:7a:54:75:47:2c:d2:3d:3e:91:4e:d3:c9:8c:8d:a9: 2c:55:8e:d4:e1:c5:e4:04:69:db:5f:21:99:b4:6e:59:fb:7a: 8a:96:cf:c7:88:ca:71:cc:4d:07:72:aa:0c:4f:ff:77:f6:0c: 57:0a:f4:72:02:5f:2e:3e:a1:c2:86:e7:7c:57:b2:6d:15:06: a2:c2:57:de:22:e0:7b:b5:8d:60:50:c5:72:db:62:d4:26:bc: 9c:43:44:d4:9f:90:6f:cd:a2:4f:76:66:4b:73:97:5d:e6:f3: 60:eb:aa:63:fd:24:37:5a:12:1e:91:f6:02:c4:e5:5f:46:fb: 6a:43:82:72 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDo0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDU2NTNaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDJEOTFBNkExQjE5RUJD MzM1MDg0NjZBQTNDNTI1ODY0NkNFNTJEQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6a97gbSDGpcmrcF0F2xajTG5gsZ2Q0S2pa/kUTbl1LTpOJWLt jDd+3iSTc3pofFRSqvSwXuLxdQjciLbn0gKc4Q3fXFKmDuMlijGkNF5VFcLScgcY EQVn0ctOcBEA747ICLHNqxEbLm6sUERdl0OCs4R+69V7E4vxMrnbQNgLeQN32ol9 KP7Rq95vfQ1Jcx9+hjqVQ9v2YHclJOqcZeeYxTiQkBgcBth5Xc/kTSRC8bVS90Sx 9hjfIC1k2opFof3j5MJWuCzgKpke7y47bY9+kkM8yIuF2mBJ1r8lI5vGKDhaKerf 3K7+pD4+4CHXoSYUsIEm7Mz0sq6G36GeR3NFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQULZGmobGevDNQhGaqPFJYZGzlLagwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0xaR21vYkdldkROUWhHYXFQRkpZWkd6bExhZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPc0igwDQYJKoZIhvcNAQELBQADggEBANEkrSdXsb+uDDFEHsaJOyaEiCPK USYqjKCsFntMGxw08dsROUR1nlP2V/2I3/2Ite3USCyw3aKuNyU2VmlZXb85MwSh xUaspnHpz+lrR5sQSmRjNCUe1mVAJUrszWuus6wOXXRhkiQ4jnTYjEIcjgP7w80y 28h9s7iymR0AH7eiMHpUdUcs0j0+kU7TyYyNqSxVjtThxeQEadtfIZm0bln7eoqW z8eIynHMTQdyqgxP/3f2DFcK9HICXy4+ocKG53xXsm0VBqLCV94i4Hu1jWBQxXLb YtQmvJxDRNSfkG/Nok92Zktzl13m82DrqmP9JDdaEh6R9gLE5V9G+2pDgnI= -----END CERTIFICATE-----Generated at Fri Jul 4 01:33:58 2025 by rpki-client