$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Wh58dme-_BmMbDT1RiGPGE92L8U.roa File: Wh58dme-_BmMbDT1RiGPGE92L8U.roa (raw, json) Hash identifier: cD+wc4nTtZq5jnGCzumcC/riB0s4YgheRDnV4gwSWIU= Subject key identifier: 5A:1E:7C:76:67:BE:FC:19:8C:6C:34:F5:46:21:8F:18:4F:76:2F:C5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E69 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Wh58dme-_BmMbDT1RiGPGE92L8U.roa Signing time: Tue 10 Jun 2025 10:53:25 +0000 ROA not before: Tue 10 Jun 2025 10:53:25 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.210.60.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3689 (0xe69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:53:25 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=5A1E7C7667BEFC198C6C34F546218F184F762FC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fb:9d:ec:57:3f:3e:7c:39:4d:6f:3b:93:69: f0:be:57:d0:ef:b4:51:52:27:e8:23:74:d3:e5:2e: 90:66:13:cd:4f:45:d2:4c:82:70:ef:09:71:d2:ee: 4f:a5:a2:ea:d0:f7:83:e8:9c:4e:5e:50:72:45:b4: bb:58:3d:95:ab:15:76:24:7c:a2:1d:fd:2a:9a:3d: 45:76:4a:0f:e1:51:fb:03:d7:1e:b5:ab:3a:75:7f: 59:73:ba:f6:d6:f8:4c:73:4b:14:1a:49:1f:fb:41: bb:80:55:a9:6a:bf:03:69:b7:2e:e4:5d:45:5f:9f: c4:fe:94:84:e9:c6:7c:b1:fd:df:2c:7e:03:bb:6a: c3:61:39:e0:79:ac:27:70:a1:22:2e:38:ca:14:0a: be:23:d6:51:a5:15:8d:f6:ea:dd:03:90:8e:6f:07: 5b:4a:aa:4c:86:53:de:fe:a9:29:1c:b3:64:a6:88: 77:b6:ad:50:97:b6:1d:51:4a:6f:18:3b:9d:01:e5: dd:3c:56:88:1d:88:31:2f:fa:53:31:20:25:15:a6: 49:2e:29:70:d4:ce:61:56:d6:8e:b0:cd:8d:12:ee: db:34:40:0b:b4:64:25:0f:a6:b2:34:b8:e6:04:48: 26:bb:c5:3e:f2:f4:47:1b:df:0f:5e:b9:55:5e:4b: eb:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:1E:7C:76:67:BE:FC:19:8C:6C:34:F5:46:21:8F:18:4F:76:2F:C5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Wh58dme-_BmMbDT1RiGPGE92L8U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.60.0/23 Signature Algorithm: sha256WithRSAEncryption a4:44:67:ef:7c:78:ef:aa:a1:11:b5:d9:55:3d:a9:6b:78:62: 29:95:3c:8c:d4:c3:fc:a7:b2:ca:03:ba:d2:f8:9a:87:2a:a1: dd:80:ca:d1:e9:18:51:41:35:ac:19:16:c6:21:69:02:51:fc: e9:2c:57:68:94:6b:e5:c6:a2:ea:3f:fa:39:5a:e9:43:b5:61: fc:55:03:30:e5:7f:3c:ba:00:8d:52:6e:94:26:0c:a8:09:55: 0d:32:50:ab:58:94:c9:20:94:c1:e2:0c:ec:c1:87:bf:2d:e8: 27:a1:b7:29:11:f0:45:3e:8b:87:fc:67:02:d1:08:9a:00:47: c2:23:fd:d2:00:f4:5b:42:94:c8:22:f7:4d:e6:4d:bb:8f:3c: 0a:02:32:df:1e:93:66:c6:21:75:ef:69:a0:60:90:93:2f:8b: 90:2d:90:8d:48:3e:24:d8:7d:3b:a2:be:d3:d0:ca:d9:a7:62: 1b:21:fa:89:80:c8:f7:e1:5e:c7:5f:38:c6:9b:5b:b8:a1:79: 6d:d1:4c:49:90:af:e0:a2:f1:f3:78:c3:ce:4a:4a:80:3e:f9: c3:0b:0b:8f:eb:9d:52:3b:68:93:17:a1:0c:f3:6d:65:45:6f: e9:95:a5:3a:11:d5:1a:85:48:d3:cc:24:42:3c:b0:c6:64:13: c5:04:c0:85 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDmkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDUzMjVaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDVBMUU3Qzc2NjdCRUZD MTk4QzZDMzRGNTQ2MjE4RjE4NEY3NjJGQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDc+53sVz8+fDlNbzuTafC+V9DvtFFSJ+gjdNPlLpBmE81PRdJM gnDvCXHS7k+lourQ94PonE5eUHJFtLtYPZWrFXYkfKId/SqaPUV2Sg/hUfsD1x61 qzp1f1lzuvbW+ExzSxQaSR/7QbuAValqvwNpty7kXUVfn8T+lITpxnyx/d8sfgO7 asNhOeB5rCdwoSIuOMoUCr4j1lGlFY326t0DkI5vB1tKqkyGU97+qSkcs2SmiHe2 rVCXth1RSm8YO50B5d08VogdiDEv+lMxICUVpkkuKXDUzmFW1o6wzY0S7ts0QAu0 ZCUPprI0uOYESCa7xT7y9Ecb3w9euVVeS+urAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUWh58dme+/BmMbDT1RiGPGE92L8UwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1doNThkbWUtX0JtTWJEVDFSaUdQR0U5Mkw4VS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHc0jwwDQYJKoZIhvcNAQELBQADggEBAKREZ+98eO+qoRG12VU9qWt4YimV PIzUw/ynssoDutL4mocqod2AytHpGFFBNawZFsYhaQJR/OksV2iUa+XGouo/+jla 6UO1YfxVAzDlfzy6AI1SbpQmDKgJVQ0yUKtYlMkglMHiDOzBh78t6CehtykR8EU+ i4f8ZwLRCJoAR8Ij/dIA9FtClMgi903mTbuPPAoCMt8ek2bGIXXvaaBgkJMvi5At kI1IPiTYfTuivtPQytmnYhsh+omAyPfhXsdfOMabW7iheW3RTEmQr+Ci8fN4w85K SoA++cMLC4/rnVI7aJMXoQzzbWVFb+mVpToR1RqFSNPMJEI8sMZkE8UEwIU= -----END CERTIFICATE-----Generated at Thu Jul 3 19:22:58 2025 by rpki-client