$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/YF0iZ8gozhasLCWVjosVo9HFyDg.roa File: YF0iZ8gozhasLCWVjosVo9HFyDg.roa (raw, json) Hash identifier: 93m2Hk+FaJvrS3v/68iAC2kZPgNAcGUaVVQ1RZmBnOE= Subject key identifier: 60:5D:22:67:C8:28:CE:16:AC:2C:25:95:8E:8B:15:A3:D1:C5:C8:38 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0ED9 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YF0iZ8gozhasLCWVjosVo9HFyDg.roa Signing time: Tue 10 Jun 2025 11:09:14 +0000 ROA not before: Tue 10 Jun 2025 11:09:14 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.159.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3801 (0xed9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:09:14 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=605D2267C828CE16AC2C25958E8B15A3D1C5C838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:27:3c:57:1c:96:24:a3:e1:91:45:24:de:9f: 8c:89:27:fe:0b:c4:c3:df:2a:9c:bb:2c:95:50:09: 38:12:e5:39:89:28:a3:a0:4d:71:e8:fc:e0:1f:81: c3:ee:8c:d9:d8:a7:26:85:67:17:10:50:3f:d8:1b: d2:91:8f:10:ab:34:9b:c1:78:7e:3e:c4:a0:08:7e: 1c:60:36:4c:6b:36:1c:c8:8f:62:0d:a9:91:fd:d3: ac:25:3b:13:e9:22:52:0a:ff:0c:83:4d:32:4d:db: e4:f7:43:eb:82:c8:8e:b5:9d:c8:30:d2:8c:1f:42: ac:a9:40:1c:e1:2e:aa:15:83:93:c4:1e:00:4e:71: 04:9c:e2:1b:2e:7c:d1:68:09:93:c1:c9:96:ce:b2: 4f:df:50:d9:bc:aa:f7:77:16:20:55:e5:a5:41:38: e7:f2:1e:1f:d0:12:5d:c1:10:7b:87:5e:cb:64:dd: 95:b3:66:a4:24:7f:bc:62:ac:73:87:be:5f:9d:6a: eb:1a:42:cf:79:bf:9c:b7:20:2e:27:05:5d:a9:25: d4:f9:3e:d9:07:ba:93:4d:70:cb:33:25:e7:4b:1e: 53:cf:55:a7:7a:32:1a:73:b6:10:3f:64:19:5b:38: d8:46:0f:ad:65:3e:f3:8b:09:4e:35:0c:d8:d6:73: cc:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:5D:22:67:C8:28:CE:16:AC:2C:25:95:8E:8B:15:A3:D1:C5:C8:38 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YF0iZ8gozhasLCWVjosVo9HFyDg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.212.0/22 Signature Algorithm: sha256WithRSAEncryption cd:31:0c:a1:a6:d2:87:79:b6:9e:ef:54:b6:02:93:58:80:90: 0c:c0:2b:84:91:e4:cb:7f:87:ac:a3:78:bd:32:c7:1e:b1:ba: 3b:a9:0e:1a:bc:e4:70:80:03:8e:d5:65:d2:95:78:52:98:83: 34:72:d7:20:75:fc:b1:28:d1:36:3a:68:71:c3:b3:b9:aa:dc: 71:73:38:8c:46:1c:c9:c1:1d:84:8c:b2:b0:b2:e1:8a:cc:7e: 53:a8:e2:ee:99:69:79:6f:e5:03:ba:32:97:d3:d9:a0:b5:4e: 64:2e:31:7e:3a:96:e3:6f:25:37:d0:fe:26:03:8e:dd:8a:5e: 72:21:7f:a2:a0:74:b2:29:2a:c2:4f:81:5a:e8:ab:77:ac:c4: 90:0f:47:dd:bc:05:93:e8:02:0d:c5:db:f4:29:ff:70:98:a3: bd:0b:b7:ac:f9:a1:95:94:dd:74:24:ff:80:17:6b:ee:c4:ce: 64:2f:ac:17:03:be:4e:87:9c:d1:15:c2:94:87:c4:e5:c5:3c: f6:22:65:67:ed:90:2f:88:9a:a5:6d:a1:9d:de:65:31:8d:6d: ae:1e:bb:3f:7a:57:7c:16:fa:5f:81:4f:6d:2a:d5:4b:73:f7: fd:7b:f5:c6:77:42:cc:e5:9d:bf:46:76:14:96:cb:91:72:c9: ad:66:6c:0f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDtkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTA5MTRaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDYwNUQyMjY3QzgyOENF MTZBQzJDMjU5NThFOEIxNUEzRDFDNUM4MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfJzxXHJYko+GRRSTen4yJJ/4LxMPfKpy7LJVQCTgS5TmJKKOg TXHo/OAfgcPujNnYpyaFZxcQUD/YG9KRjxCrNJvBeH4+xKAIfhxgNkxrNhzIj2IN qZH906wlOxPpIlIK/wyDTTJN2+T3Q+uCyI61ncgw0owfQqypQBzhLqoVg5PEHgBO cQSc4hsufNFoCZPByZbOsk/fUNm8qvd3FiBV5aVBOOfyHh/QEl3BEHuHXstk3ZWz ZqQkf7xirHOHvl+dausaQs95v5y3IC4nBV2pJdT5PtkHupNNcMszJedLHlPPVad6 MhpzthA/ZBlbONhGD61lPvOLCU41DNjWc8xZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYF0iZ8gozhasLCWVjosVo9HFyDgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1lGMGlaOGdvemhhc0xDV1Zqb3NWbzlIRnlEZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALcn9QwDQYJKoZIhvcNAQELBQADggEBAM0xDKGm0od5tp7vVLYCk1iAkAzA K4SR5Mt/h6yjeL0yxx6xujupDhq85HCAA47VZdKVeFKYgzRy1yB1/LEo0TY6aHHD s7mq3HFzOIxGHMnBHYSMsrCy4YrMflOo4u6ZaXlv5QO6MpfT2aC1TmQuMX46luNv JTfQ/iYDjt2KXnIhf6KgdLIpKsJPgVroq3esxJAPR928BZPoAg3F2/Qp/3CYo70L t6z5oZWU3XQk/4AXa+7EzmQvrBcDvk6HnNEVwpSHxOXFPPYiZWftkC+ImqVtoZ3e ZTGNba4euz96V3wW+l+BT20q1Utz9/179cZ3Qszlnb9GdhSWy5Fyya1mbA8= -----END CERTIFICATE-----Generated at Thu Jul 3 12:33:23 2025 by rpki-client