$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/SxTpW1OERo1Xrlpb9VC6-_I3hbk.roa File: SxTpW1OERo1Xrlpb9VC6-_I3hbk.roa (raw, json) Hash identifier: 3xIXXXWU8OyrhKL9CdhQBuzX0vE2dZO6pjSQ37ZVRAI= Subject key identifier: 4B:14:E9:5B:53:84:46:8D:57:AE:5A:5B:F5:50:BA:FB:F2:37:85:B9 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0EF5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/SxTpW1OERo1Xrlpb9VC6-_I3hbk.roa Signing time: Tue 10 Jun 2025 11:16:40 +0000 ROA not before: Tue 10 Jun 2025 11:16:40 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.210.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3829 (0xef5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:16:40 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=4B14E95B5384468D57AE5A5BF550BAFBF23785B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:68:0c:c1:4e:ed:38:81:b1:91:39:35:53:67: d3:17:e6:de:2a:80:04:c5:11:01:05:51:7d:c9:59: 4d:90:71:82:fe:14:eb:85:44:82:a3:d7:ea:1e:6f: 47:f1:67:30:f4:82:ee:92:d8:2e:c9:3b:fe:25:7a: 53:06:51:65:57:a5:87:06:5c:db:cd:cd:84:c9:64: 6b:95:7a:a5:3c:24:ca:3d:f9:6a:81:91:21:4d:f2: eb:a1:a7:be:f1:ee:8e:53:49:17:c9:42:65:45:41: db:01:67:aa:c2:25:ee:9a:23:57:eb:af:28:f4:69: 0a:eb:2a:cd:3f:81:c6:24:cb:30:24:7b:0d:d5:f8: 89:95:a1:3b:9d:16:bf:89:4d:06:9b:b6:88:7d:12: 76:76:ee:ea:30:d7:6b:35:5f:51:26:ec:55:04:c2: 73:2c:0b:25:43:47:a4:08:50:d6:02:73:b8:6b:16: 77:a3:ea:d3:15:3f:f7:72:b2:a4:15:9f:a5:c8:80: 75:64:09:77:2b:c5:f3:de:bb:c1:8a:dc:3d:c4:b5: ba:c2:1e:45:a7:c5:14:99:2a:5f:95:93:ea:46:07: f1:45:23:ac:5e:24:9b:5e:2d:01:e5:0b:f7:e8:f0: 2e:20:20:2c:83:db:b4:c6:df:99:36:1f:c0:b9:54: e4:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:14:E9:5B:53:84:46:8D:57:AE:5A:5B:F5:50:BA:FB:F2:37:85:B9 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/SxTpW1OERo1Xrlpb9VC6-_I3hbk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.29.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:3f:ce:f9:24:27:1b:4d:c2:14:8f:93:28:37:14:41:78:49: e9:b7:10:62:65:6f:9c:d7:df:63:ec:f4:4e:b8:96:73:f5:3d: 2f:c3:f8:fb:91:74:6d:a0:c4:81:8f:e8:5d:ae:d7:84:f2:28: 63:4c:47:3e:49:d4:f1:c8:03:da:4a:b1:b1:8b:f3:84:68:cc: d3:8f:cb:31:1a:28:4b:be:f9:7e:3a:ab:23:05:f7:3e:b7:29: 01:d7:52:da:74:c6:76:d5:c4:de:19:45:78:c8:5b:3e:5a:93: 8a:c1:de:af:ef:b2:19:a9:7e:35:4e:16:35:29:3a:a4:21:21: ff:7d:c7:65:df:c4:5d:40:75:1d:32:ee:79:a9:01:d8:06:42: 4f:3a:d8:9d:2a:27:73:b0:c0:db:79:65:f3:dd:34:34:31:8d: 5d:72:c7:f0:53:14:5b:0b:8b:10:70:82:8e:17:77:b1:15:1b: 6f:5b:a0:0d:a9:fd:5b:2b:7f:42:9a:1a:8f:2f:25:45:0e:bc: 02:01:eb:72:7a:71:c8:5e:de:99:ed:6f:65:f6:ae:99:7d:aa: a1:b3:69:84:a7:bf:9c:08:21:7e:58:c7:9b:c2:dd:9b:f7:1e: 05:6b:92:21:de:83:57:cd:d5:0e:dc:e7:3e:3b:e7:0d:15:07: 69:13:90:b0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDvUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTE2NDBaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDRCMTRFOTVCNTM4NDQ2 OEQ1N0FFNUE1QkY1NTBCQUZCRjIzNzg1QjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPaAzBTu04gbGROTVTZ9MX5t4qgATFEQEFUX3JWU2QcYL+FOuF RIKj1+oeb0fxZzD0gu6S2C7JO/4lelMGUWVXpYcGXNvNzYTJZGuVeqU8JMo9+WqB kSFN8uuhp77x7o5TSRfJQmVFQdsBZ6rCJe6aI1frryj0aQrrKs0/gcYkyzAkew3V +ImVoTudFr+JTQabtoh9EnZ27uow12s1X1Em7FUEwnMsCyVDR6QIUNYCc7hrFnej 6tMVP/dysqQVn6XIgHVkCXcrxfPeu8GK3D3EtbrCHkWnxRSZKl+Vk+pGB/FFI6xe JJteLQHlC/fo8C4gICyD27TG35k2H8C5VOT3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUSxTpW1OERo1Xrlpb9VC6+/I3hbkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1N4VHBXMU9FUm8xWHJscGI5VkM2LV9JM2hiay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADc0h0wDQYJKoZIhvcNAQELBQADggEBAA8/zvkkJxtNwhSPkyg3FEF4Sem3 EGJlb5zX32Ps9E64lnP1PS/D+PuRdG2gxIGP6F2u14TyKGNMRz5J1PHIA9pKsbGL 84RozNOPyzEaKEu++X46qyMF9z63KQHXUtp0xnbVxN4ZRXjIWz5ak4rB3q/vshmp fjVOFjUpOqQhIf99x2XfxF1AdR0y7nmpAdgGQk862J0qJ3OwwNt5ZfPdNDQxjV1y x/BTFFsLixBwgo4Xd7EVG29boA2p/Vsrf0KaGo8vJUUOvAIB63J6cche3pntb2X2 rpl9qqGzaYSnv5wIIX5Yx5vC3Zv3HgVrkiHeg1fN1Q7c5z475w0VB2kTkLA= -----END CERTIFICATE-----Generated at Thu Jul 3 19:16:22 2025 by rpki-client