$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/OkwFynaNL_y-AxjvXSZVOD6_6Ro.roa File: OkwFynaNL_y-AxjvXSZVOD6_6Ro.roa (raw, json) Hash identifier: tGXlKkcYbNr3EZ+m+cuIWuMPzx8QF//JqqyN4aUXE4U= Subject key identifier: 3A:4C:05:CA:76:8D:2F:FC:BE:03:18:EF:5D:26:55:38:3E:BF:E9:1A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F1D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/OkwFynaNL_y-AxjvXSZVOD6_6Ro.roa Signing time: Tue 10 Jun 2025 11:20:21 +0000 ROA not before: Tue 10 Jun 2025 11:20:21 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 61.195.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3869 (0xf1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:20:21 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=3A4C05CA768D2FFCBE0318EF5D2655383EBFE91A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:30:07:73:09:4b:93:25:7f:b5:36:f8:fb:8c: 9e:a2:11:3f:08:ca:3b:7b:3f:30:7e:45:2d:25:d2: 2e:aa:d7:6e:8d:44:2c:9f:d1:d0:37:73:d0:fb:50: 59:04:23:91:e6:f7:30:bb:0c:49:4a:48:9c:fe:74: 8b:ca:ff:47:18:c4:ed:58:bd:b1:43:8d:f4:27:2c: a4:6b:76:bb:9b:2c:8a:d9:2a:9a:19:d6:e3:a1:c8: e0:b8:d2:9c:a2:77:cb:f5:c9:dd:a6:6a:31:58:36: d5:2b:a1:ba:d5:08:b0:fa:4c:46:46:f1:f3:88:3b: 49:b9:aa:b6:35:9a:ba:67:a8:25:c3:9e:c8:e8:4b: 81:b7:5e:10:fb:c8:80:bb:c3:20:fb:cf:f7:ff:90: c1:39:1d:c8:e9:05:98:8e:34:c7:93:e3:e7:a4:e6: c3:4e:94:0d:f5:35:a2:4c:c8:03:c5:97:b1:14:e9: 86:17:2a:02:d0:1d:c5:dd:e5:2f:3f:28:b2:72:14: 76:6e:84:61:35:0b:b6:63:48:1d:fb:bf:20:0e:47: f9:90:f0:ee:24:9c:2f:a8:13:54:84:5e:cc:16:39: 52:53:86:61:8b:9a:9b:8c:48:1c:fd:c5:84:58:4d: 65:50:38:9c:fd:ec:11:66:d6:dd:90:22:04:2f:dd: 38:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:4C:05:CA:76:8D:2F:FC:BE:03:18:EF:5D:26:55:38:3E:BF:E9:1A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/OkwFynaNL_y-AxjvXSZVOD6_6Ro.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.195.216.0/22 Signature Algorithm: sha256WithRSAEncryption c8:ef:13:90:4d:a8:f6:6e:ef:f1:db:e7:48:7e:f5:6f:4e:52: cd:fb:4e:7d:63:e4:86:04:29:b2:a1:29:4d:17:94:24:d0:bc: d4:b6:8b:06:c7:c7:7a:2c:a1:74:65:1e:06:ba:fa:f5:30:30: b1:de:0e:3c:01:24:6d:3b:c4:38:cc:66:87:c2:e2:05:78:7b: dc:cf:4a:49:10:96:8c:e9:04:6d:c9:47:9a:42:80:98:82:bf: 32:e2:da:46:27:fa:78:56:ff:1c:15:29:87:13:f2:30:74:a9: 12:b0:6d:4d:51:a2:79:65:8b:2e:6c:a8:dc:e8:21:7c:9a:d6: 02:4c:39:53:1c:49:8b:84:fa:b7:ce:d5:40:1a:dd:4c:0f:29: 2c:84:75:4c:0e:0b:69:75:a5:8b:dc:d6:be:bb:15:d9:3a:25: 9e:96:30:af:24:32:b4:92:f0:7d:ae:66:00:34:c4:f6:0b:b6: 9b:d8:ae:13:1c:03:ba:3a:20:54:49:22:0f:1f:da:7e:3a:cf: ee:74:23:06:9e:e1:c7:43:50:49:d3:02:2f:30:ec:eb:d7:e8: ed:04:bd:70:13:13:40:95:de:5c:0d:64:d3:b3:18:36:1f:db: ad:03:67:8d:72:07:58:90:ca:c5:87:c8:07:43:f9:ab:a5:2f: db:c7:f9:21 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDx0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTIwMjFaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDNBNEMwNUNBNzY4RDJG RkNCRTAzMThFRjVEMjY1NTM4M0VCRkU5MUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3MAdzCUuTJX+1Nvj7jJ6iET8Iyjt7PzB+RS0l0i6q126NRCyf 0dA3c9D7UFkEI5Hm9zC7DElKSJz+dIvK/0cYxO1YvbFDjfQnLKRrdrubLIrZKpoZ 1uOhyOC40pyid8v1yd2majFYNtUrobrVCLD6TEZG8fOIO0m5qrY1mrpnqCXDnsjo S4G3XhD7yIC7wyD7z/f/kME5HcjpBZiONMeT4+ek5sNOlA31NaJMyAPFl7EU6YYX KgLQHcXd5S8/KLJyFHZuhGE1C7ZjSB37vyAOR/mQ8O4knC+oE1SEXswWOVJThmGL mpuMSBz9xYRYTWVQOJz97BFm1t2QIgQv3Tj7AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUOkwFynaNL/y+AxjvXSZVOD6/6RowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L09rd0Z5bmFOTF95LUF4anZYU1pWT0Q2XzZSby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI9w9gwDQYJKoZIhvcNAQELBQADggEBAMjvE5BNqPZu7/Hb50h+9W9OUs37 Tn1j5IYEKbKhKU0XlCTQvNS2iwbHx3osoXRlHga6+vUwMLHeDjwBJG07xDjMZofC 4gV4e9zPSkkQlozpBG3JR5pCgJiCvzLi2kYn+nhW/xwVKYcT8jB0qRKwbU1Ronll iy5sqNzoIXya1gJMOVMcSYuE+rfO1UAa3UwPKSyEdUwOC2l1pYvc1r67Fdk6JZ6W MK8kMrSS8H2uZgA0xPYLtpvYrhMcA7o6IFRJIg8f2n46z+50Iwae4cdDUEnTAi8w 7OvX6O0EvXATE0CV3lwNZNOzGDYf260DZ41yB1iQysWHyAdD+aulL9vH+SE= -----END CERTIFICATE-----Generated at Thu Jul 3 15:50:41 2025 by rpki-client