$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/-upGD6nGg-8i4SyD72U2t74WzKs.roa File: -upGD6nGg-8i4SyD72U2t74WzKs.roa (raw, json) Hash identifier: Fg3O5rHrtN+ggiL0iMfGP6lZaAYbRSRdAfTi+173rSU= Subject key identifier: FA:EA:46:0F:A9:C6:83:EF:22:E1:2C:83:EF:65:36:B7:BE:16:CC:AB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 186B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-upGD6nGg-8i4SyD72U2t74WzKs.roa Signing time: Tue 31 Mar 2026 08:05:57 +0000 ROA not before: Tue 31 Mar 2026 08:05:57 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 110.163.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6251 (0x186b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:05:57 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=FAEA460FA9C683EF22E12C83EF6536B7BE16CCAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6e:2d:4b:aa:a8:6b:5e:90:e6:00:ac:89:2e: 9c:78:e5:8c:0f:07:d8:75:64:e8:0e:24:2c:9e:13: 8f:b1:8c:5c:e6:30:6e:1c:6a:a7:29:d6:e8:9d:99: c3:a8:c7:2d:96:78:f5:f3:7b:f3:81:71:4a:10:ab: b5:45:d6:82:f8:d0:5f:be:2e:5a:94:31:45:18:9e: 9f:dc:39:b8:cd:b6:43:d2:14:de:ba:cd:c1:b0:78: d6:fc:0c:32:98:b4:0e:9d:7d:56:67:fb:99:43:78: 5f:3a:05:3a:49:5d:32:3f:a5:cf:bb:d9:07:86:8b: 47:0a:1b:08:b7:5e:ad:ab:45:b7:5e:86:d1:17:8b: 05:37:b5:63:6f:2d:e5:89:7d:a8:c7:b7:81:e7:56: df:19:73:81:73:ab:98:1e:ed:c5:5c:b7:f8:cf:da: 0a:56:23:4c:7c:13:5b:28:1e:48:0a:8f:14:04:da: d8:7f:3b:fd:22:ce:a0:98:53:86:11:47:6e:99:9c: e2:32:6c:d8:eb:bc:16:11:ac:b7:92:5e:83:3a:07: c6:b4:dc:b4:0a:58:82:2d:c3:72:2c:40:30:42:f2: 52:7a:58:da:c4:ee:9d:ad:8a:c1:d5:8c:30:29:29: c3:c1:7c:4a:4d:7e:08:dc:bd:9a:b0:46:be:00:a2: b2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:EA:46:0F:A9:C6:83:EF:22:E1:2C:83:EF:65:36:B7:BE:16:CC:AB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-upGD6nGg-8i4SyD72U2t74WzKs.roa sbgp-ipAddrBlock: critical IPv4: 110.163.128.0/20 Signature Algorithm: sha256WithRSAEncryption 62:2d:40:57:fe:5f:73:6b:c4:34:50:6d:f0:b3:65:d5:90:5f: 5b:52:4f:81:1f:1a:bb:af:4d:c6:17:0e:d7:f5:f0:cd:80:83: e2:44:3e:a9:c9:12:18:91:e8:65:a1:32:f2:b8:58:eb:20:50: 19:fc:1b:a7:60:77:13:e1:f7:50:fc:70:bf:0e:50:ca:b7:a2: 85:82:95:1d:44:dc:f9:33:4e:ed:f3:ae:3e:25:7a:c4:4e:ee: 7f:2f:a1:10:f9:d1:75:83:bd:5b:f4:e1:35:85:b6:fb:24:6e: 49:9f:f6:e1:3d:fd:2f:7e:b3:4f:82:d5:84:34:29:e9:73:c2: c0:b1:3f:7f:96:59:bd:c2:58:96:0d:3b:07:21:86:3f:32:b6: 66:13:9f:05:97:46:8c:ef:a8:2f:18:2b:22:74:f7:4f:73:7e: 0b:3e:e7:f0:94:2f:37:9c:cb:34:3e:85:e0:f7:00:8c:ba:f4: 84:c6:18:ea:8f:5e:58:75:1c:aa:9f:08:dd:6c:44:b5:3a:de: 4e:1b:74:15:1f:14:9b:6a:de:2e:45:c7:5f:60:c9:52:ed:1f: fa:40:7b:a9:c5:39:43:84:fd:77:cf:1c:9c:41:2e:04:a0:e6: 06:c0:e8:3d:f4:48:d1:9b:de:e5:30:83:5e:31:5c:cf:96:c0: d7:ae:63:93 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICGGswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODA1NTdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEZBRUE0NjBGQTlDNjgz RUYyMkUxMkM4M0VGNjUzNkI3QkUxNkNDQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPbi1LqqhrXpDmAKyJLpx45YwPB9h1ZOgOJCyeE4+xjFzmMG4c aqcp1uidmcOoxy2WePXze/OBcUoQq7VF1oL40F++LlqUMUUYnp/cObjNtkPSFN66 zcGweNb8DDKYtA6dfVZn+5lDeF86BTpJXTI/pc+72QeGi0cKGwi3Xq2rRbdehtEX iwU3tWNvLeWJfajHt4HnVt8Zc4Fzq5ge7cVct/jP2gpWI0x8E1soHkgKjxQE2th/ O/0izqCYU4YRR26ZnOIybNjrvBYRrLeSXoM6B8a03LQKWIItw3IsQDBC8lJ6WNrE 7p2tisHVjDApKcPBfEpNfgjcvZqwRr4AorI9AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU+upGD6nGg+8i4SyD72U2t74WzKswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5Ly11cEdENm5HZy04aTRTeUQ3MlUydDc0V3pLcy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARuo4AwDQYJKoZIhvcNAQELBQADggEB AGItQFf+X3NrxDRQbfCzZdWQX1tST4EfGruvTcYXDtf18M2Ag+JEPqnJEhiR6GWh MvK4WOsgUBn8G6dgdxPh91D8cL8OUMq3ooWClR1E3PkzTu3zrj4lesRO7n8voRD5 0XWDvVv04TWFtvskbkmf9uE9/S9+s0+C1YQ0KelzwsCxP3+WWb3CWJYNOwchhj8y tmYTnwWXRozvqC8YKyJ0909zfgs+5/CULzecyzQ+heD3AIy69ITGGOqPXlh1HKqf CN1sRLU63k4bdBUfFJtq3i5Fx19gyVLtH/pAe6nFOUOE/XfPHJxBLgSg5gbA6D30 SNGb3uUwg14xXM+WwNeuY5M= -----END CERTIFICATE-----Generated at Tue Apr 7 22:24:56 2026 by rpki-client