$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/vIOQs__FItNYvkZZsKUAjsfsIjQ.roa File: vIOQs__FItNYvkZZsKUAjsfsIjQ.roa (raw, json) Hash identifier: wncnN+zpgjZc8KKIX7FiV79zK4muSqXrLqitzbPYsdc= Subject key identifier: BC:83:90:B3:FF:C5:22:D3:58:BE:46:59:B0:A5:00:8E:C7:EC:22:34 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E46 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vIOQs__FItNYvkZZsKUAjsfsIjQ.roa Signing time: Sun 01 Jun 2025 01:30:21 +0000 ROA not before: Sun 01 Jun 2025 01:30:21 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 1.73.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 23:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3654 (0xe46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 1 01:30:21 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=BC8390B3FFC522D358BE4659B0A5008EC7EC2234 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b6:1c:ec:03:32:e6:af:a0:67:0b:fd:5c:eb: 18:5b:6f:74:15:f5:8b:ef:7a:c7:f0:88:a3:0a:66: c9:86:87:1b:94:69:74:05:b7:21:6f:76:63:ef:cf: a8:c7:5e:3e:fb:b0:fa:c5:30:4d:68:3c:c0:24:5c: 7f:93:76:71:b9:5d:cf:4e:8f:33:57:3e:e8:c2:4e: a2:de:00:22:96:d8:af:da:08:c3:a9:72:ac:a7:49: c3:e0:12:ff:55:83:28:a0:b3:32:05:03:f9:58:14: 99:1c:84:ec:17:f3:33:97:56:89:b2:c0:f0:76:96: fe:23:60:0b:01:c6:50:f6:1e:b4:ac:e2:6a:69:80: da:58:c7:ec:46:fc:df:b6:77:c9:14:96:52:4d:10: 98:12:2c:73:dd:33:76:b0:43:40:ae:41:fc:a5:c7: 86:08:ec:6b:5f:c4:5e:5e:d3:5e:e7:96:43:20:48: b9:60:35:61:3e:80:9e:b7:3f:a9:c4:7b:3e:7c:22: ca:b7:1d:2e:88:bd:ee:ab:a3:d9:6d:e5:d2:45:74: 3a:6b:e6:8c:7e:05:d0:30:68:df:74:84:59:6e:8b: 23:32:b0:d8:f3:bb:35:31:64:88:71:93:7e:59:9b: 86:32:f5:2f:c8:47:74:03:44:83:fc:1b:7f:88:c6: 75:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:83:90:B3:FF:C5:22:D3:58:BE:46:59:B0:A5:00:8E:C7:EC:22:34 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vIOQs__FItNYvkZZsKUAjsfsIjQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.73.248.0/24 Signature Algorithm: sha256WithRSAEncryption a8:8d:86:87:5a:28:fc:7f:2b:26:35:bd:38:83:59:a6:0a:39: 15:f3:5b:8e:55:d0:9a:a6:f0:8b:94:1e:88:c7:ee:18:3d:76: ab:2f:bc:1a:f7:57:ef:c4:ed:05:de:b5:76:9a:39:9d:cc:16: ec:3c:74:fd:57:7b:0a:bd:79:ae:15:1c:64:7d:72:56:0e:7f: 94:31:4c:de:ca:78:22:ad:c5:1f:52:36:43:8e:84:3e:bd:65: c8:2d:12:3e:c8:55:9f:ac:64:d9:85:b8:2e:51:2a:52:88:92: 8b:e6:9f:ee:d9:04:ad:4a:cb:14:30:2e:25:08:99:3f:72:a6: 2b:14:46:7f:de:0d:81:95:a6:23:ba:27:9d:6d:c0:03:85:1b: 44:cd:13:29:51:23:5d:bf:55:e4:d0:c8:1e:b8:87:ae:f0:73: 79:45:d8:38:d1:e6:fd:f8:84:5a:b4:db:ce:c2:f4:5c:87:03: b3:b5:ca:23:71:b5:48:1d:98:b1:83:ba:76:b4:a1:8b:3b:b7: 53:52:35:01:32:6b:cc:95:6f:08:f8:d9:b7:1c:6d:4e:ab:4b: 09:d6:a9:44:2b:2c:7f:a1:8b:d3:e8:1f:1f:0c:9e:bf:fd:1a: 63:e8:4c:58:d3:08:f2:b0:ea:d9:cf:a3:ae:69:13:2d:29:ed: 92:b5:a8:ba -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDkYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MDEw MTMwMjFaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEJDODM5MEIzRkZDNTIy RDM1OEJFNDY1OUIwQTUwMDhFQzdFQzIyMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/thzsAzLmr6BnC/1c6xhbb3QV9YvvesfwiKMKZsmGhxuUaXQF tyFvdmPvz6jHXj77sPrFME1oPMAkXH+TdnG5Xc9OjzNXPujCTqLeACKW2K/aCMOp cqynScPgEv9VgyigszIFA/lYFJkchOwX8zOXVomywPB2lv4jYAsBxlD2HrSs4mpp gNpYx+xG/N+2d8kUllJNEJgSLHPdM3awQ0CuQfylx4YI7GtfxF5e017nlkMgSLlg NWE+gJ63P6nEez58Isq3HS6Ive6ro9lt5dJFdDpr5ox+BdAwaN90hFluiyMysNjz uzUxZIhxk35Zm4Yy9S/IR3QDRIP8G3+IxnWHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUvIOQs//FItNYvkZZsKUAjsfsIjQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3ZJT1FzX19GSXROWXZrWlpzS1VBanNmc0lqUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABSfgwDQYJKoZIhvcNAQELBQADggEBAKiNhodaKPx/KyY1vTiDWaYKORXz W45V0Jqm8IuUHojH7hg9dqsvvBr3V+/E7QXetXaaOZ3MFuw8dP1Xewq9ea4VHGR9 clYOf5QxTN7KeCKtxR9SNkOOhD69ZcgtEj7IVZ+sZNmFuC5RKlKIkovmn+7ZBK1K yxQwLiUImT9ypisURn/eDYGVpiO6J51twAOFG0TNEylRI12/VeTQyB64h67wc3lF 2DjR5v34hFq0287C9FyHA7O1yiNxtUgdmLGDuna0oYs7t1NSNQEya8yVbwj42bcc bU6rSwnWqUQrLH+hi9PoHx8Mnr/9GmPoTFjTCPKw6tnPo65pEy0p7ZK1qLo= -----END CERTIFICATE-----Generated at Wed Jun 4 02:03:33 2025 by rpki-client