$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/mgoYOP5Du16EevxUnyZderuQVzk.roa File: mgoYOP5Du16EevxUnyZderuQVzk.roa (raw, json) Hash identifier: rhOX21A1xOXLs7K6pvrYq7JsYda9WzP5SUJipw/5bBw= Subject key identifier: 9A:0A:18:38:FE:43:BB:5E:84:7A:FC:54:9F:26:5D:7A:BB:90:57:39 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E7A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mgoYOP5Du16EevxUnyZderuQVzk.roa Signing time: Tue 10 Jun 2025 10:53:36 +0000 ROA not before: Tue 10 Jun 2025 10:53:36 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 110.161.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3706 (0xe7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 10:53:36 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=9A0A1838FE43BB5E847AFC549F265D7ABB905739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:9d:c5:76:a0:51:06:a8:4e:a3:52:c4:9f:25: 47:83:8e:98:36:c7:df:dd:73:eb:a1:b3:74:0a:e6: 71:66:f8:7b:a8:11:3a:90:8a:56:16:7d:fb:20:d4: 46:56:d6:89:dd:6d:e1:e3:58:db:b2:a8:5f:71:d8: 53:a0:6b:1a:31:d4:1d:31:2a:41:23:2d:33:a8:80: 37:4e:dc:76:80:68:ff:ac:fb:90:17:d1:f3:dc:a4: 89:a0:28:ab:25:e2:e7:95:fc:31:8d:2b:6d:f6:1d: 4d:3f:78:55:1e:5b:c4:67:ec:c1:b8:65:d5:96:28: 79:c7:01:54:72:27:6c:0d:44:3b:53:0d:fc:c0:f9: fb:2d:ab:9b:92:dd:bd:c8:a1:02:0a:83:50:1c:d1: c1:df:a8:a7:b7:dc:36:b9:31:4c:21:df:bb:a7:5a: c8:bb:09:d9:ac:e1:c7:87:07:94:a1:cf:e7:39:3a: 48:13:d6:4f:b5:4e:6f:a9:b1:bc:b1:14:fe:bb:6e: 54:e0:5c:0e:43:8e:bf:85:bd:de:49:4c:df:00:fe: 95:cc:5e:61:db:f0:31:9d:0e:49:71:3b:dc:8b:ec: be:d4:dd:28:a4:93:fa:c4:6e:44:6c:74:27:61:43: 49:0e:7a:95:41:d0:d3:f2:d1:0d:03:30:1d:24:58: b1:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:0A:18:38:FE:43:BB:5E:84:7A:FC:54:9F:26:5D:7A:BB:90:57:39 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mgoYOP5Du16EevxUnyZderuQVzk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.161.216.0/21 Signature Algorithm: sha256WithRSAEncryption 29:94:a7:dd:0a:cd:fb:35:1d:9e:8c:2a:f5:7e:2c:38:ea:dd: ff:ca:66:8e:11:28:b2:2c:43:4a:89:e3:7e:71:f5:86:48:32: 01:e7:df:61:c0:8a:35:83:90:82:1a:b8:e5:29:06:af:1a:94: ac:fb:87:59:36:87:0b:a4:43:3a:4b:be:9b:34:45:9f:16:b6: 3b:af:fc:fe:bb:9d:9f:58:b6:c3:4a:26:b7:bd:a8:6a:f3:79: 8d:46:0c:89:8a:c8:b2:5f:f4:56:cd:c2:6a:a0:c6:2e:47:ff: 9f:15:11:1f:21:f7:f9:ef:ed:66:3b:18:2d:6f:af:df:fd:be: 32:6b:c9:e7:e9:57:66:d8:44:cd:a5:09:9e:46:d8:bf:bb:b2: 66:79:cc:92:32:0d:50:f6:13:b7:2f:d6:a1:cb:cc:b8:f2:fb: c6:99:34:4c:00:6f:0e:a4:a3:37:5d:12:b5:81:04:3c:89:8b: 2e:49:9e:65:97:10:e8:7f:94:78:53:b0:63:44:43:fa:7e:e1: f6:3d:36:5d:99:88:c9:1c:17:43:26:4f:9f:50:a3:9a:16:de: 90:cb:e6:03:c6:f9:e3:f2:3b:d9:d0:3d:c5:5c:37:06:4a:db: 64:a8:f7:5d:43:73:7f:24:68:58:7e:99:6f:33:89:f1:fa:4d: 9b:61:2c:d0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDnowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MDUzMzZaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDlBMEExODM4RkU0M0JC NUU4NDdBRkM1NDlGMjY1RDdBQkI5MDU3MzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZncV2oFEGqE6jUsSfJUeDjpg2x9/dc+uhs3QK5nFm+HuoETqQ ilYWffsg1EZW1ondbeHjWNuyqF9x2FOgaxox1B0xKkEjLTOogDdO3HaAaP+s+5AX 0fPcpImgKKsl4ueV/DGNK232HU0/eFUeW8Rn7MG4ZdWWKHnHAVRyJ2wNRDtTDfzA +fstq5uS3b3IoQIKg1Ac0cHfqKe33Da5MUwh37unWsi7Cdms4ceHB5Shz+c5OkgT 1k+1Tm+psbyxFP67blTgXA5Djr+Fvd5JTN8A/pXMXmHb8DGdDklxO9yL7L7U3Sik k/rEbkRsdCdhQ0kOepVB0NPy0Q0DMB0kWLFbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUmgoYOP5Du16EevxUnyZderuQVzkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L21nb1lPUDVEdTE2RWV2eFVueVpkZXJ1UVZ6ay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANuodgwDQYJKoZIhvcNAQELBQADggEBACmUp90Kzfs1HZ6MKvV+LDjq3f/K Zo4RKLIsQ0qJ435x9YZIMgHn32HAijWDkIIauOUpBq8alKz7h1k2hwukQzpLvps0 RZ8Wtjuv/P67nZ9YtsNKJre9qGrzeY1GDImKyLJf9FbNwmqgxi5H/58VER8h9/nv 7WY7GC1vr9/9vjJryefpV2bYRM2lCZ5G2L+7smZ5zJIyDVD2E7cv1qHLzLjy+8aZ NEwAbw6kozddErWBBDyJiy5JnmWXEOh/lHhTsGNEQ/p+4fY9Nl2ZiMkcF0MmT59Q o5oW3pDL5gPG+ePyO9nQPcVcNwZK22So911Dc38kaFh+mW8zifH6TZthLNA= -----END CERTIFICATE-----Generated at Thu Jul 3 12:26:44 2025 by rpki-client