$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/hi6vtY18k96cSrtEQpGEB89POpc.roa File: hi6vtY18k96cSrtEQpGEB89POpc.roa (raw, json) Hash identifier: kt1HBPWpgkZ4m+c5DwNbR9FU8hHxq+BgMSt4/rx3yfk= Subject key identifier: 86:2E:AF:B5:8D:7C:93:DE:9C:4A:BB:44:42:91:84:07:CF:4F:3A:97 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0ECC Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hi6vtY18k96cSrtEQpGEB89POpc.roa Signing time: Tue 10 Jun 2025 11:09:04 +0000 ROA not before: Tue 10 Jun 2025 11:09:04 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 110.161.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3788 (0xecc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:09:04 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=862EAFB58D7C93DE9C4ABB4442918407CF4F3A97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0e:1a:d5:f8:e9:44:95:5a:1e:39:bb:00:15: ed:e5:7d:09:f9:78:14:26:ca:74:af:a1:eb:84:2d: f0:d4:0b:63:29:1a:27:15:79:9f:37:b6:1a:bc:6b: 8d:07:5b:9a:d9:30:aa:bb:71:12:2d:2c:64:d4:57: 22:61:96:f8:6f:81:58:4d:a7:66:dd:6a:f6:3d:55: 3b:29:a8:6d:3e:a0:33:c1:db:ec:c2:6f:8c:97:77: d5:82:cc:a6:f7:79:d7:04:b3:62:66:91:8d:e5:d6: 83:51:e5:d6:56:23:ff:2c:55:fc:b4:38:f7:01:41: e4:36:7e:84:e9:04:7b:e0:0b:2b:1c:26:ab:cc:2a: ea:e8:56:88:4f:be:f3:07:7b:08:8f:9d:35:64:60: 38:6d:29:39:16:c9:d1:d6:19:3c:e6:fd:95:94:73: 47:07:3d:a6:8d:73:65:6d:af:8a:f8:48:98:1d:b7: 33:67:de:a7:b9:a4:eb:10:cb:8a:4f:42:92:a3:39: 34:bd:67:39:0a:67:6b:b7:af:76:e6:6c:4e:60:bd: 6f:10:77:b2:3f:9c:1b:43:30:d6:19:e9:4d:32:89: dd:57:ae:75:0f:0e:54:bc:17:ce:9e:c9:06:7b:ab: b5:2b:98:09:56:a7:65:15:da:c7:46:30:82:d8:03: 9d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:2E:AF:B5:8D:7C:93:DE:9C:4A:BB:44:42:91:84:07:CF:4F:3A:97 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hi6vtY18k96cSrtEQpGEB89POpc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.161.0.0/18 Signature Algorithm: sha256WithRSAEncryption a6:52:8f:89:fd:3b:5c:b7:8d:d4:bd:9f:68:09:53:b1:13:46: ce:49:c6:ae:ab:0a:12:4b:84:da:7f:05:f8:27:43:e2:e8:f2: 43:29:37:6b:b8:f6:a0:09:da:25:a9:f5:79:ee:09:7a:1b:df: cf:63:f9:99:1f:08:91:cb:8d:19:8f:95:97:9f:cf:a9:33:5d: 01:6e:36:0c:f7:fa:84:5c:74:1a:e4:70:48:f4:35:1d:c0:3f: 8a:68:c1:cd:a8:71:03:b3:fa:10:21:e2:75:b1:c1:f9:22:ae: be:30:e4:8f:e9:97:e3:e3:e0:64:c0:e9:cf:a3:5b:e5:7d:e1: 6d:67:41:0a:f2:41:6b:17:41:01:cf:12:41:20:d6:d8:f8:bc: 77:86:a1:64:33:8b:6c:b2:73:87:04:29:9d:ff:e1:76:5a:13: c1:6a:30:2b:e9:9d:99:1e:46:e2:54:6d:0d:2d:47:36:55:27: 28:65:03:19:df:24:0f:f4:b2:43:c8:94:5f:0f:1e:cf:70:f5: 98:00:98:08:ce:40:e4:fb:41:75:08:ae:64:f3:d8:09:c0:ab: fa:9b:db:04:51:4b:5c:07:33:af:98:67:34:9d:bf:df:18:21: af:f3:46:51:52:60:bf:fa:bc:5e:cf:fc:58:60:57:78:0f:49: d0:6b:b7:f8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDswwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTA5MDRaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDg2MkVBRkI1OEQ3Qzkz REU5QzRBQkI0NDQyOTE4NDA3Q0Y0RjNBOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnDhrV+OlElVoeObsAFe3lfQn5eBQmynSvoeuELfDUC2MpGicV eZ83thq8a40HW5rZMKq7cRItLGTUVyJhlvhvgVhNp2bdavY9VTspqG0+oDPB2+zC b4yXd9WCzKb3edcEs2JmkY3l1oNR5dZWI/8sVfy0OPcBQeQ2foTpBHvgCyscJqvM KuroVohPvvMHewiPnTVkYDhtKTkWydHWGTzm/ZWUc0cHPaaNc2Vtr4r4SJgdtzNn 3qe5pOsQy4pPQpKjOTS9ZzkKZ2u3r3bmbE5gvW8Qd7I/nBtDMNYZ6U0yid1XrnUP DlS8F86eyQZ7q7UrmAlWp2UV2sdGMILYA531AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUhi6vtY18k96cSrtEQpGEB89POpcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2hpNnZ0WTE4azk2Y1NydEVRcEdFQjg5UE9wYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZuoQAwDQYJKoZIhvcNAQELBQADggEBAKZSj4n9O1y3jdS9n2gJU7ETRs5J xq6rChJLhNp/BfgnQ+Lo8kMpN2u49qAJ2iWp9XnuCXob389j+ZkfCJHLjRmPlZef z6kzXQFuNgz3+oRcdBrkcEj0NR3AP4powc2ocQOz+hAh4nWxwfkirr4w5I/pl+Pj 4GTA6c+jW+V94W1nQQryQWsXQQHPEkEg1tj4vHeGoWQzi2yyc4cEKZ3/4XZaE8Fq MCvpnZkeRuJUbQ0tRzZVJyhlAxnfJA/0skPIlF8PHs9w9ZgAmAjOQOT7QXUIrmTz 2AnAq/qb2wRRS1wHM6+YZzSdv98YIa/zRlFSYL/6vF7P/FhgV3gPSdBrt/g= -----END CERTIFICATE-----Generated at Thu Jul 3 12:26:26 2025 by rpki-client