$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/jEK5Tg4fMAdMh6k40JqaVkt4C2E.roa File: jEK5Tg4fMAdMh6k40JqaVkt4C2E.roa (raw, json) Hash identifier: KARbc128JB6+lZGBDa+giVf5G1syWc7ZbIHeltuLn6c= Subject key identifier: 8C:42:B9:4E:0E:1F:30:07:4C:87:A9:38:D0:9A:9A:56:4B:78:0B:61 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0F63 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/jEK5Tg4fMAdMh6k40JqaVkt4C2E.roa Signing time: Tue 10 Jun 2025 11:32:27 +0000 ROA not before: Tue 10 Jun 2025 11:32:27 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 220.159.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3939 (0xf63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:32:27 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=8C42B94E0E1F30074C87A938D09A9A564B780B61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3b:13:78:8c:d5:0c:0d:1d:58:30:b0:d6:65: 0c:5b:19:42:64:77:47:a6:12:25:8d:2f:a5:26:d0: 15:12:28:dc:83:ca:25:87:22:a1:01:1b:b1:1c:16: e9:7c:c1:dc:5a:cf:d8:20:01:a0:70:4f:df:ad:15: 17:9a:1c:39:89:6c:94:2e:56:be:c9:59:9f:09:f4: 71:5e:63:1b:78:56:33:80:c8:66:08:c3:1a:55:4c: 82:18:0c:13:51:44:f7:8e:19:c1:d4:d7:1f:5e:d9: 5d:ba:c9:90:55:2a:8d:b0:ad:d7:45:7a:df:8d:a2: 93:02:f6:67:cf:88:b6:75:af:28:a9:77:d6:0a:fd: 88:d2:65:c5:d4:81:3f:6b:44:42:43:b6:98:75:67: f7:62:f0:4d:0f:7c:4f:e3:3b:5a:cf:5c:ba:83:4a: cc:41:bc:fa:b0:8d:7c:b6:d2:cc:6d:10:b9:e3:56: 2c:57:a5:5e:a4:9b:df:67:fb:9a:5a:a0:72:22:70: b9:90:3c:bf:46:91:57:11:c8:1c:98:cb:6b:b4:f0: cc:18:0e:34:8d:24:da:a9:52:85:fe:94:f8:32:5e: 8b:1a:03:1a:f0:96:55:5a:69:50:49:fe:dc:2d:87: c1:5f:8f:9a:34:32:3d:d1:da:2c:23:2f:0f:92:65: cb:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:42:B9:4E:0E:1F:30:07:4C:87:A9:38:D0:9A:9A:56:4B:78:0B:61 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/jEK5Tg4fMAdMh6k40JqaVkt4C2E.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.230.0/24 Signature Algorithm: sha256WithRSAEncryption a7:21:a5:79:8f:a8:6e:63:da:3f:d6:75:c8:a6:b5:ef:ba:71: 6d:a8:a4:d7:af:24:78:a4:b8:77:e1:a7:4a:7f:7c:8d:f2:d8: 98:0c:c5:88:33:0b:1e:53:93:88:26:2d:e5:89:d5:80:2f:89: db:e1:d9:1f:e1:02:7a:0b:9e:c2:f6:9a:be:77:d0:17:91:51: 1b:3d:b8:05:7b:c6:bd:84:bb:c2:e5:c2:47:bb:77:54:dd:33: dc:66:09:3e:81:d0:96:f9:57:6e:e9:86:e2:cc:15:91:f1:90: 09:c9:6f:06:92:a3:fa:e3:4a:57:e4:8d:f1:09:1f:df:e7:b2: 68:d7:6f:d6:72:35:7e:59:e6:b4:ec:84:09:1d:69:90:d6:b0: 85:5a:22:fc:a0:89:43:3a:65:a1:be:f2:73:53:3c:41:44:aa: 56:67:0a:c9:de:f2:e3:8b:2d:a8:01:ab:9f:f8:ad:95:cc:d2: a9:46:da:73:f6:2e:82:0f:8e:a2:df:58:21:29:17:1c:f9:d6: 94:92:7f:69:95:24:b4:8e:62:8a:3b:e0:1d:18:04:7b:dc:2b: 10:fe:a6:de:52:c7:31:89:de:46:ab:d7:c9:7d:73:6c:a7:0a: 80:46:09:0e:3c:49:9a:31:d0:82:95:8d:59:74:85:e3:d6:1f: fe:d6:3a:3a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD2MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTMyMjdaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDhDNDJCOTRFMEUxRjMw MDc0Qzg3QTkzOEQwOUE5QTU2NEI3ODBCNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFOxN4jNUMDR1YMLDWZQxbGUJkd0emEiWNL6Um0BUSKNyDyiWH IqEBG7EcFul8wdxaz9ggAaBwT9+tFReaHDmJbJQuVr7JWZ8J9HFeYxt4VjOAyGYI wxpVTIIYDBNRRPeOGcHU1x9e2V26yZBVKo2wrddFet+NopMC9mfPiLZ1ryipd9YK /YjSZcXUgT9rREJDtph1Z/di8E0PfE/jO1rPXLqDSsxBvPqwjXy20sxtELnjVixX pV6km99n+5paoHIicLmQPL9GkVcRyByYy2u08MwYDjSNJNqpUoX+lPgyXosaAxrw llVaaVBJ/twth8Ffj5o0Mj3R2iwjLw+SZcvPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUjEK5Tg4fMAdMh6k40JqaVkt4C2EwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2pFSzVUZzRmTUFkTWg2azQwSnFhVmt0NEMyRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADcn+YwDQYJKoZIhvcNAQELBQADggEBAKchpXmPqG5j2j/Wdcimte+6cW2o pNevJHikuHfhp0p/fI3y2JgMxYgzCx5Tk4gmLeWJ1YAvidvh2R/hAnoLnsL2mr53 0BeRURs9uAV7xr2Eu8Llwke7d1TdM9xmCT6B0Jb5V27phuLMFZHxkAnJbwaSo/rj SlfkjfEJH9/nsmjXb9ZyNX5Z5rTshAkdaZDWsIVaIvygiUM6ZaG+8nNTPEFEqlZn Csne8uOLLagBq5/4rZXM0qlG2nP2LoIPjqLfWCEpFxz51pSSf2mVJLSOYoo74B0Y BHvcKxD+pt5SxzGJ3kar18l9c2ynCoBGCQ48SZox0IKVjVl0hePWH/7WOjo= -----END CERTIFICATE-----Generated at Thu Jul 3 15:49:20 2025 by rpki-client