$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/QjoBekL1B-T4HgJ1TfS4EWjTuyU.roa File: QjoBekL1B-T4HgJ1TfS4EWjTuyU.roa (raw, json) Hash identifier: oEEWjV0Ow5R7r7d91jPRcVCn4L1WXZyX2+F8jrUu0Lk= Subject key identifier: 42:3A:01:7A:42:F5:07:E4:F8:1E:02:75:4D:F4:B8:11:68:D3:BB:25 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0EF9 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QjoBekL1B-T4HgJ1TfS4EWjTuyU.roa Signing time: Tue 10 Jun 2025 11:16:43 +0000 ROA not before: Tue 10 Jun 2025 11:16:43 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.210.110.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3833 (0xef9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:16:43 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=423A017A42F507E4F81E02754DF4B81168D3BB25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b5:9d:0f:f6:a9:96:39:49:46:32:1b:f2:f0: 10:95:e6:67:bc:7c:3e:25:c4:95:fe:f8:88:8c:3b: a3:61:30:ff:f9:93:9e:89:be:5f:dd:f3:66:2d:e9: 68:09:81:18:3c:17:a7:3b:2f:1b:82:0a:db:8b:b1: 66:1d:c0:f0:05:30:14:56:6b:c4:0f:fd:5d:b2:83: bf:af:bb:9b:15:9c:57:cb:13:ed:f5:8a:f2:62:4e: 5a:75:78:20:96:ac:32:1e:f0:81:61:51:64:7d:6d: 1a:ae:6b:7e:07:d8:85:dd:96:d9:06:27:fa:9e:0a: 7f:00:bd:0b:2a:63:85:6c:52:ca:38:5b:c1:e3:33: c9:3d:92:39:c9:35:5d:7c:70:93:02:96:68:86:51: 66:35:fc:f0:1a:f9:4a:c9:97:df:82:67:a1:d2:bc: 47:dc:33:6e:30:5d:3c:5a:0d:fb:d0:67:4d:9c:33: af:af:15:1d:03:da:82:5d:cb:c1:fc:79:29:6d:5f: 87:aa:6e:01:4e:0a:48:54:be:6c:37:4a:a1:79:7d: 6e:f3:80:37:30:d5:37:9f:9f:eb:20:5e:7c:3e:da: 92:8c:ec:0a:e0:b6:56:d4:c9:3f:03:24:6c:27:28: 8e:3c:a9:eb:51:1f:33:74:b6:8e:b6:fa:67:15:a7: 13:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:3A:01:7A:42:F5:07:E4:F8:1E:02:75:4D:F4:B8:11:68:D3:BB:25 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QjoBekL1B-T4HgJ1TfS4EWjTuyU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.110.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:cc:31:e9:c0:b0:77:9e:fa:21:05:6e:cd:03:92:27:55:42: 78:49:ec:a1:b2:84:70:65:d5:96:63:87:df:30:c2:2f:e8:f1: cb:1b:43:6c:ad:a7:a8:7e:c9:1c:c2:b3:a0:42:1f:9e:be:45: 5a:c1:76:93:52:9f:13:fe:f1:b1:b2:c3:5b:da:36:af:39:ee: 1b:ba:39:6c:c4:a2:a1:ac:f2:95:01:a2:6d:22:64:7d:ca:0e: f3:3e:76:6f:80:b0:03:80:b4:26:5f:75:3b:20:8d:7e:18:fe: ec:b8:ff:da:80:86:74:31:f5:f8:9e:7a:d2:6f:d4:c5:14:e7: d8:86:b8:fd:9c:b3:4f:11:a8:ac:c5:8b:75:f2:62:8e:22:5f: 92:af:cd:ae:4a:6f:e1:16:1e:01:8a:81:57:d1:e8:4b:e4:17: ca:10:6a:69:4d:af:03:9e:ff:b5:35:64:d4:60:78:49:a6:10: be:3b:5b:21:16:a5:2b:26:b4:57:1b:16:3e:b1:dd:96:b0:61: 26:8f:13:59:08:b7:88:f1:47:b4:da:20:e1:d6:9f:78:2f:89: 18:a6:9c:f8:69:6f:e0:36:24:11:35:e2:51:bf:ee:9f:86:e0: b5:38:e8:bd:73:ff:5b:cb:c0:df:ac:d1:27:1c:93:d5:96:4e: d6:a6:79:73 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDvkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTE2NDNaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDQyM0EwMTdBNDJGNTA3 RTRGODFFMDI3NTRERjRCODExNjhEM0JCMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDotZ0P9qmWOUlGMhvy8BCV5me8fD4lxJX++IiMO6NhMP/5k56J vl/d82Yt6WgJgRg8F6c7LxuCCtuLsWYdwPAFMBRWa8QP/V2yg7+vu5sVnFfLE+31 ivJiTlp1eCCWrDIe8IFhUWR9bRqua34H2IXdltkGJ/qeCn8AvQsqY4VsUso4W8Hj M8k9kjnJNV18cJMClmiGUWY1/PAa+UrJl9+CZ6HSvEfcM24wXTxaDfvQZ02cM6+v FR0D2oJdy8H8eSltX4eqbgFOCkhUvmw3SqF5fW7zgDcw1Tefn+sgXnw+2pKM7Arg tlbUyT8DJGwnKI48qetRHzN0to62+mcVpxPXAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQjoBekL1B+T4HgJ1TfS4EWjTuyUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1Fqb0Jla0wxQi1UNEhnSjFUZlM0RVdqVHV5VS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHc0m4wDQYJKoZIhvcNAQELBQADggEBADrMMenAsHee+iEFbs0DkidVQnhJ 7KGyhHBl1ZZjh98wwi/o8csbQ2ytp6h+yRzCs6BCH56+RVrBdpNSnxP+8bGyw1va Nq857hu6OWzEoqGs8pUBom0iZH3KDvM+dm+AsAOAtCZfdTsgjX4Y/uy4/9qAhnQx 9fieetJv1MUU59iGuP2cs08RqKzFi3XyYo4iX5Kvza5Kb+EWHgGKgVfR6EvkF8oQ amlNrwOe/7U1ZNRgeEmmEL47WyEWpSsmtFcbFj6x3ZawYSaPE1kIt4jxR7TaIOHW n3gviRimnPhpb+A2JBE14lG/7p+G4LU46L1z/1vLwN+s0Scck9WWTtameXM= -----END CERTIFICATE-----Generated at Thu Jul 3 19:13:57 2025 by rpki-client