$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/LZblzPHHNHTWtoSorM6ner5Cifw.roa File: LZblzPHHNHTWtoSorM6ner5Cifw.roa (raw, json) Hash identifier: KaZf8C5c69tcLjaysput91Yu5NdqdjB0wfHK0vdck00= Subject key identifier: 2D:96:E5:CC:F1:C7:34:74:D6:B6:84:A8:AC:CE:A7:7A:BE:42:89:FC Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F33 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LZblzPHHNHTWtoSorM6ner5Cifw.roa Signing time: Tue 10 Jun 2025 11:24:34 +0000 ROA not before: Tue 10 Jun 2025 11:24:34 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 49.100.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3891 (0xf33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:24:34 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=2D96E5CCF1C73474D6B684A8ACCEA77ABE4289FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a3:4a:45:55:05:f3:f1:73:0c:48:eb:c4:46: 2d:11:e1:4d:5c:f4:27:42:06:ff:82:4a:3c:f3:81: a5:d0:8e:b4:56:a2:fd:7d:0e:37:55:86:64:25:e2: fe:ef:17:78:d1:78:0f:7f:9d:0b:91:b8:fa:0c:6f: 26:22:13:29:ef:a2:24:92:0d:c4:fe:a1:de:bf:f3: db:10:d1:5c:da:d4:14:01:7a:19:f6:18:07:5b:7e: 49:ac:1f:52:e1:99:52:55:69:8a:53:26:ba:f5:64: b9:73:93:96:1d:80:05:3a:c6:f1:d7:48:60:cc:23: 52:37:da:f7:1d:03:66:09:b7:bd:f5:e5:d5:c8:31: 3f:2d:53:f2:22:78:fa:cf:f8:d4:d7:6d:71:3c:9e: 1e:03:35:18:18:e7:4c:c6:0d:b2:df:c2:ee:6b:12: 06:99:57:5b:bf:64:f9:62:fe:ac:39:9d:aa:71:28: 47:cb:a8:10:0f:3c:11:10:5d:09:6c:64:13:8a:7a: 9f:0e:90:87:d5:e6:b3:8a:ac:64:46:e4:21:e1:d3: 8c:7d:a0:38:95:03:83:82:46:d1:f5:52:a5:cf:5c: c3:c2:0e:ec:a7:7f:b2:39:76:11:d2:4b:a2:ae:ff: fa:cd:28:b4:7e:bf:91:0c:a4:79:a4:99:8c:1d:7c: f1:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:96:E5:CC:F1:C7:34:74:D6:B6:84:A8:AC:CE:A7:7A:BE:42:89:FC X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LZblzPHHNHTWtoSorM6ner5Cifw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.100.176.0/20 Signature Algorithm: sha256WithRSAEncryption 18:03:d4:c4:e9:69:f1:18:78:fd:21:2a:cd:4a:d4:64:00:46: 84:5e:36:f6:b1:12:be:7a:94:fb:05:12:60:5a:e8:ba:52:f0: 85:ff:c7:3e:3a:12:59:6e:b5:dd:39:f1:65:92:88:67:c8:75: 0e:e9:36:1f:74:de:2a:14:e5:3d:cb:2c:89:1f:ba:bf:d2:b0: 76:f3:fc:d6:05:0a:c7:71:1b:fb:31:eb:15:dc:32:8a:89:14: 93:9a:46:6e:cd:d5:ce:e9:2f:95:dd:6e:f0:c0:c0:c7:58:5e: 12:0b:f7:e2:27:07:b2:c1:ae:a6:2d:f2:84:ba:f1:40:41:7d: 36:9a:70:3a:b7:df:0a:a3:70:43:ef:64:7f:58:14:fc:33:a8: 3c:26:34:6a:1f:ba:4d:33:45:a6:67:90:2b:c9:00:27:23:83: 9c:d9:34:63:5a:e1:12:b6:c7:85:d1:66:31:33:ca:be:0b:dc: c9:7f:a5:5c:88:f0:7e:84:f5:c9:86:c5:5f:59:9f:42:38:c6: 72:4f:e4:0c:2b:1c:b6:ba:69:92:c0:ba:ac:20:d2:5b:ed:04: ed:53:6f:08:c7:5f:6d:4e:40:c2:9e:74:67:c1:f8:aa:bd:37: d1:a8:ae:3d:a4:2b:e9:69:de:41:5f:b3:30:b4:92:2b:71:2f: 86:a8:97:6c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDzMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTI0MzRaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDJEOTZFNUNDRjFDNzM0 NzRENkI2ODRBOEFDQ0VBNzdBQkU0Mjg5RkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuo0pFVQXz8XMMSOvERi0R4U1c9CdCBv+CSjzzgaXQjrRWov19 DjdVhmQl4v7vF3jReA9/nQuRuPoMbyYiEynvoiSSDcT+od6/89sQ0Vza1BQBehn2 GAdbfkmsH1LhmVJVaYpTJrr1ZLlzk5YdgAU6xvHXSGDMI1I32vcdA2YJt7315dXI MT8tU/IiePrP+NTXbXE8nh4DNRgY50zGDbLfwu5rEgaZV1u/ZPli/qw5napxKEfL qBAPPBEQXQlsZBOKep8OkIfV5rOKrGRG5CHh04x9oDiVA4OCRtH1UqXPXMPCDuyn f7I5dhHSS6Ku//rNKLR+v5EMpHmkmYwdfPFPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQULZblzPHHNHTWtoSorM6ner5CifwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0xaYmx6UEhITkhUV3RvU29yTTZuZXI1Q2lmdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQxZLAwDQYJKoZIhvcNAQELBQADggEBABgD1MTpafEYeP0hKs1K1GQARoRe NvaxEr56lPsFEmBa6LpS8IX/xz46Ellutd058WWSiGfIdQ7pNh903ioU5T3LLIkf ur/SsHbz/NYFCsdxG/sx6xXcMoqJFJOaRm7N1c7pL5XdbvDAwMdYXhIL9+InB7LB rqYt8oS68UBBfTaacDq33wqjcEPvZH9YFPwzqDwmNGofuk0zRaZnkCvJACcjg5zZ NGNa4RK2x4XRZjEzyr4L3Ml/pVyI8H6E9cmGxV9Zn0I4xnJP5AwrHLa6aZLAuqwg 0lvtBO1TbwjHX21OQMKedGfB+Kq9N9Gorj2kK+lp3kFfszC0kitxL4aol2w= -----END CERTIFICATE-----Generated at Thu Jul 3 12:25:47 2025 by rpki-client