$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZugSX4EWL4C2Hz3xX1MeKTmI0DY.roa File: ZugSX4EWL4C2Hz3xX1MeKTmI0DY.roa (raw, json) Hash identifier: vpxVTblPtteGoYbeytmofUjf+AHiBiKkwSNwyTPH3nw= Subject key identifier: 66:E8:12:5F:81:16:2F:80:B6:1F:3D:F1:5F:53:1E:29:39:88:D0:36 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0FAA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZugSX4EWL4C2Hz3xX1MeKTmI0DY.roa Signing time: Tue 10 Jun 2025 11:40:39 +0000 ROA not before: Tue 10 Jun 2025 11:40:39 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.76.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4010 (0xfaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:40:39 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=66E8125F81162F80B61F3DF15F531E293988D036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:86:5c:8c:8e:82:56:7a:6b:5e:9a:09:cd:7c: b0:c0:5f:1e:dc:6f:a1:ef:93:64:46:9e:ca:33:ed: 1c:e8:68:79:fb:65:c9:2e:bb:3a:fa:81:c2:9d:d7: c5:9c:58:02:19:00:a2:fc:a5:af:2b:8d:a8:0e:ea: 10:25:28:03:98:84:62:fe:75:fa:18:14:ed:e0:bb: 9d:4b:2b:40:2e:9d:dd:55:28:db:ab:6d:cc:c4:de: 4f:e9:b7:79:33:61:6d:6c:62:99:91:b3:d1:23:d4: ef:28:f2:5e:44:5f:7d:12:1a:75:4e:ea:0f:63:46: 39:15:76:5a:25:bc:62:a3:df:2f:78:94:73:42:cc: 89:4d:b3:6f:36:eb:d3:5e:27:a8:54:df:e1:e6:f5: 19:73:7c:8e:b6:58:88:6c:1b:fb:3d:55:49:65:dc: 83:1f:e6:7a:74:48:64:76:ce:76:c2:b5:0e:11:5c: cb:37:ac:3b:eb:4b:2c:54:15:ce:68:c0:cf:7b:69: 8e:4b:c6:cb:82:72:87:ed:93:71:1c:ea:bb:ef:96: 86:d3:28:e4:59:77:1e:a6:76:8b:3e:3c:dc:15:e5: a8:94:24:64:9b:00:e9:f6:c1:b6:f8:74:65:49:d6: b8:b2:65:3f:d6:bb:3a:53:27:e2:5f:cd:c4:b8:de: cd:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:E8:12:5F:81:16:2F:80:B6:1F:3D:F1:5F:53:1E:29:39:88:D0:36 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZugSX4EWL4C2Hz3xX1MeKTmI0DY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.24.0/21 Signature Algorithm: sha256WithRSAEncryption 91:41:53:37:42:96:24:e6:06:1d:c8:02:08:0c:f9:38:e3:e1: 7c:46:81:f1:be:56:30:1f:dd:e4:e2:62:e7:b5:84:77:30:2c: 30:87:85:46:49:f4:66:ae:05:2f:76:c3:e9:bc:d6:00:5a:f1: ff:1d:0b:64:f5:a9:2a:af:28:c0:2c:1d:20:71:c4:bc:a3:e6: bb:8b:43:c2:24:9b:47:01:dc:fe:fd:e7:71:df:d8:7b:f3:a7: d7:d1:5f:a5:7e:b7:39:01:50:ef:6f:5b:c8:f8:1c:a2:bf:6c: 0a:99:19:67:eb:21:59:c7:32:a6:4d:e8:51:66:ec:bf:5e:07: 54:8c:01:b9:9c:91:03:83:59:2a:89:3d:01:b4:48:ce:bf:9d: f9:95:dc:0b:a6:5d:4b:12:a1:13:59:c8:13:91:24:c0:7f:c3: 66:f0:ca:84:4d:37:5b:1d:fb:4b:cd:c0:cd:ca:36:4d:40:70: 0d:66:d2:c6:c0:a2:c6:fb:10:6e:90:c9:f2:31:af:28:12:d1: e7:da:fd:2a:bb:d4:bb:0c:6b:2c:04:c3:09:34:3e:c9:0f:47: a8:ae:85:e1:2c:eb:d8:e2:6f:49:f9:86:95:48:50:7e:78:50: 49:08:28:de:d6:7a:1a:a9:cc:b8:42:dd:04:57:f2:88:ea:5e: 3c:ca:d0:7c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD6owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTQwMzlaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDY2RTgxMjVGODExNjJG ODBCNjFGM0RGMTVGNTMxRTI5Mzk4OEQwMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjhlyMjoJWemtemgnNfLDAXx7cb6Hvk2RGnsoz7RzoaHn7Zcku uzr6gcKd18WcWAIZAKL8pa8rjagO6hAlKAOYhGL+dfoYFO3gu51LK0Aund1VKNur bczE3k/pt3kzYW1sYpmRs9Ej1O8o8l5EX30SGnVO6g9jRjkVdlolvGKj3y94lHNC zIlNs28269NeJ6hU3+Hm9RlzfI62WIhsG/s9VUll3IMf5np0SGR2znbCtQ4RXMs3 rDvrSyxUFc5owM97aY5LxsuCcoftk3Ec6rvvlobTKORZdx6mdos+PNwV5aiUJGSb AOn2wbb4dGVJ1riyZT/WuzpTJ+JfzcS43s1VAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUZugSX4EWL4C2Hz3xX1MeKTmI0DYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1p1Z1NYNEVXTDRDMkh6M3hYMU1lS1RtSTBEWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBTBgwDQYJKoZIhvcNAQELBQADggEBAJFBUzdCliTmBh3IAggM+Tjj4XxG gfG+VjAf3eTiYue1hHcwLDCHhUZJ9GauBS92w+m81gBa8f8dC2T1qSqvKMAsHSBx xLyj5ruLQ8Ikm0cB3P7953Hf2Hvzp9fRX6V+tzkBUO9vW8j4HKK/bAqZGWfrIVnH MqZN6FFm7L9eB1SMAbmckQODWSqJPQG0SM6/nfmV3AumXUsSoRNZyBORJMB/w2bw yoRNN1sd+0vNwM3KNk1AcA1m0sbAosb7EG6QyfIxrygS0efa/Sq71LsMaywEwwk0 PskPR6iuheEs69jib0n5hpVIUH54UEkIKN7WehqpzLhC3QRX8ojqXjzK0Hw= -----END CERTIFICATE-----Generated at Fri Jul 4 12:53:21 2025 by rpki-client