$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/p2jOvkCP8R67-dhz-jAWJKa4qak.roa File: p2jOvkCP8R67-dhz-jAWJKa4qak.roa (raw, json) Hash identifier: tD4WOgV5MM0KUxDQwfAqYQZl0i6v5ZG6X2L4SS0dywk= Subject key identifier: A7:68:CE:BE:40:8F:F1:1E:BB:F9:D8:73:FA:30:16:24:A6:B8:A9:A9 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0FA6 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/p2jOvkCP8R67-dhz-jAWJKa4qak.roa Signing time: Tue 10 Jun 2025 11:40:37 +0000 ROA not before: Tue 10 Jun 2025 11:40:37 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.74.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4006 (0xfa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:40:37 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=A768CEBE408FF11EBBF9D873FA301624A6B8A9A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:32:bd:63:66:ac:80:1c:5e:d3:19:f3:5b:f4: 9a:1f:10:ff:6e:c1:6a:a7:7b:da:65:d7:46:98:18: 70:6f:dc:9e:f2:ba:a8:53:c9:43:00:6f:f4:d1:de: 28:81:41:4e:0f:67:4d:8e:33:11:b4:5f:3d:94:d7: 77:42:6e:1d:00:3d:43:f9:d4:e5:6b:47:f2:b9:96: 09:10:29:4a:c1:ea:dd:2f:0f:fb:a2:9a:d6:47:52: e9:ab:45:d9:55:6a:cb:58:08:09:1a:24:a4:67:80: ab:f4:15:30:77:24:de:0b:5c:6e:2d:98:e6:4d:cc: c9:17:f8:d0:14:f8:e8:62:80:a3:e8:58:b9:fa:b4: 28:14:5a:60:dd:e7:0c:4c:58:06:09:1c:92:18:fa: a1:5e:e3:2e:a4:d1:69:9b:da:28:e5:53:2b:52:26: 0d:42:6e:44:b6:08:86:86:28:e9:ea:07:1d:44:ef: 76:ed:1d:eb:62:d8:c2:8b:82:32:d9:25:11:72:54: fb:23:db:2f:75:54:2c:86:39:8a:f5:72:fc:04:6f: a2:eb:1b:3a:04:10:b6:d9:dd:d8:d1:a0:18:54:63: 05:3c:60:52:47:a9:bb:9d:56:9a:a9:03:64:ea:e4: ad:18:7b:d0:85:89:65:af:0f:0c:af:d1:48:97:0c: 3d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:68:CE:BE:40:8F:F1:1E:BB:F9:D8:73:FA:30:16:24:A6:B8:A9:A9 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/p2jOvkCP8R67-dhz-jAWJKa4qak.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.74.216.0/21 Signature Algorithm: sha256WithRSAEncryption 77:13:cf:6b:a3:e0:2f:8f:66:77:d4:e6:51:a0:f0:7d:37:9c: 05:5c:b0:1b:5e:b5:c8:26:a5:18:77:a2:ca:2f:cb:93:b4:a0: 98:60:19:90:eb:e4:25:cb:f1:8a:9b:63:87:5f:9e:02:01:cf: 4f:f8:19:74:2f:d6:9f:d3:09:bd:9d:67:13:0a:eb:90:4c:52: 47:6b:30:a0:0d:a5:81:d1:b6:0c:aa:50:74:6c:51:22:36:58: 00:5a:7b:5d:3b:f9:03:e1:b4:9a:db:73:98:41:4f:4d:7a:8a: 71:bc:f9:61:db:cd:71:db:82:bb:97:d1:b6:58:ab:37:aa:b0: c1:31:d0:a6:da:10:4c:17:5a:3b:60:91:65:bf:3d:98:f1:3f: 0a:82:e4:84:58:dc:b7:2f:2e:63:a8:b9:d9:df:72:f4:a7:c1: 54:f4:56:97:6c:9b:73:07:a1:d3:ec:75:d9:98:a3:45:46:e8: 9b:80:a6:a8:73:fc:63:58:b7:fd:98:e2:50:d5:eb:bb:8c:52: 96:2c:a0:eb:ce:1b:42:0e:0a:cb:cd:6f:9f:c4:c9:aa:0c:be: b5:f6:15:81:36:1a:3c:50:c0:bd:1e:c4:ad:ea:d8:0b:3b:57: c7:f7:8c:94:3b:d1:9e:c2:2e:a9:49:4b:aa:71:3b:97:f5:a2: f2:36:86:2d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD6YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTQwMzdaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEE3NjhDRUJFNDA4RkYx MUVCQkY5RDg3M0ZBMzAxNjI0QTZCOEE5QTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvMr1jZqyAHF7TGfNb9JofEP9uwWqne9pl10aYGHBv3J7yuqhT yUMAb/TR3iiBQU4PZ02OMxG0Xz2U13dCbh0APUP51OVrR/K5lgkQKUrB6t0vD/ui mtZHUumrRdlVastYCAkaJKRngKv0FTB3JN4LXG4tmOZNzMkX+NAU+OhigKPoWLn6 tCgUWmDd5wxMWAYJHJIY+qFe4y6k0Wmb2ijlUytSJg1CbkS2CIaGKOnqBx1E73bt Heti2MKLgjLZJRFyVPsj2y91VCyGOYr1cvwEb6LrGzoEELbZ3djRoBhUYwU8YFJH qbudVpqpA2Tq5K0Ye9CFiWWvDwyv0UiXDD2tAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUp2jOvkCP8R67+dhz+jAWJKa4qakwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3Ayak92a0NQOFI2Ny1kaHotakFXSkthNHFhay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBStgwDQYJKoZIhvcNAQELBQADggEBAHcTz2uj4C+PZnfU5lGg8H03nAVc sBtetcgmpRh3osovy5O0oJhgGZDr5CXL8YqbY4dfngIBz0/4GXQv1p/TCb2dZxMK 65BMUkdrMKANpYHRtgyqUHRsUSI2WABae107+QPhtJrbc5hBT016inG8+WHbzXHb gruX0bZYqzeqsMEx0KbaEEwXWjtgkWW/PZjxPwqC5IRY3LcvLmOoudnfcvSnwVT0 Vpdsm3MHodPsddmYo0VG6JuApqhz/GNYt/2Y4lDV67uMUpYsoOvOG0IOCsvNb5/E yaoMvrX2FYE2GjxQwL0exK3q2As7V8f3jJQ70Z7CLqlJS6pxO5f1ovI2hi0= -----END CERTIFICATE-----Generated at Fri Jul 4 20:26:45 2025 by rpki-client