$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/0Zu8ZCQgP6dpsL8HnnFBLKJimF0.roa File: 0Zu8ZCQgP6dpsL8HnnFBLKJimF0.roa (raw, json) Hash identifier: dZvGHkokCD91LLEZg5cKBOZY2akKXWLRBknn6hgirWc= Subject key identifier: D1:9B:BC:64:24:20:3F:A7:69:B0:BF:07:9E:71:41:2C:A2:62:98:5D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1411 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/0Zu8ZCQgP6dpsL8HnnFBLKJimF0.roa Signing time: Tue 31 Mar 2026 07:56:48 +0000 ROA not before: Tue 31 Mar 2026 07:56:48 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5137 (0x1411) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:56:48 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=D19BBC6424203FA769B0BF079E71412CA262985D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b6:a3:aa:93:38:5b:4e:3a:f7:7e:01:60:bf: ef:30:4c:1b:dc:90:62:a1:50:78:b3:8a:76:44:29: ef:e9:d2:8d:d2:65:30:a7:02:8d:d2:63:eb:04:30: 58:85:c4:73:d9:e0:59:79:6b:4e:b9:ce:90:fd:b9: 70:e0:42:34:27:d9:64:80:3a:37:86:60:ab:54:32: 1e:17:b9:a0:e4:de:f4:a3:5f:71:2d:6e:62:04:81: 18:f0:a6:79:e4:63:1a:8c:f6:3e:f3:ad:b8:03:36: 05:93:a7:0a:a2:2d:1e:84:de:de:43:de:37:2f:99: b1:78:c8:04:09:ce:f5:58:da:73:74:dc:86:73:65: ba:a3:ab:db:fb:22:b6:45:d9:7b:b1:00:7f:70:7b: 47:da:b8:0d:11:18:41:d9:df:5a:99:c4:83:7e:bc: a9:1e:e1:02:f4:4e:6e:d7:7d:5c:38:40:70:87:c8: df:83:d6:45:a2:b4:cf:96:97:c0:73:af:bf:14:5b: 96:dd:1e:e0:2f:3b:24:8e:09:42:53:66:a5:68:49: 00:c6:97:bc:70:22:dd:bf:e5:7c:9b:a1:8d:6b:49: 29:d1:bd:40:50:c6:72:cf:3c:e4:3c:de:86:96:1f: 7f:89:7a:92:89:5d:0d:fc:50:09:82:46:24:a1:b8: f1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:9B:BC:64:24:20:3F:A7:69:B0:BF:07:9E:71:41:2C:A2:62:98:5D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/0Zu8ZCQgP6dpsL8HnnFBLKJimF0.roa sbgp-ipAddrBlock: critical IPv4: 1.79.21.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:19:2a:e9:03:3c:7d:46:b9:bc:50:4a:be:6e:33:db:fb:6c: 42:a0:08:75:76:e8:fd:3e:57:9b:2b:b4:86:b8:dc:e6:6a:a8: f9:04:8b:d7:5f:82:35:d3:6a:31:84:b5:3b:13:12:9b:a3:40: 27:4b:37:87:5e:f1:7a:c3:0f:23:ba:8c:02:de:bf:69:54:d9: 9e:b2:42:3e:b4:ae:53:f9:21:f0:4a:80:9c:27:76:0f:bf:89: a9:f8:66:22:1f:27:c3:32:fa:ca:ac:32:38:a0:48:25:7e:53: 2b:9b:76:9f:11:61:d7:87:29:26:58:ed:ab:de:ef:3d:fb:d3: 75:d4:da:0f:02:cb:49:b2:f5:a0:ed:25:56:68:64:9f:f3:12: 6c:11:7b:0a:6d:46:ad:07:7c:ee:5b:64:f2:ed:aa:e4:65:74: 01:00:a1:b6:95:e4:b8:1a:94:b8:f3:02:5b:c3:c0:87:d6:72: 5e:35:38:50:e7:02:d9:d3:c9:c8:2e:7e:62:6b:82:92:53:45: a1:eb:24:3d:6e:27:62:a5:fa:79:56:fc:02:72:28:41:ac:0c: 62:83:bd:54:35:60:1d:00:77:e3:7c:7f:07:a0:db:09:f1:7c: b2:6f:b3:36:4d:c5:c2:0e:cc:24:65:a7:d7:6d:6f:69:34:ca: 48:20:4c:33 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFBEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU2NDhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEQxOUJCQzY0MjQyMDNG QTc2OUIwQkYwNzlFNzE0MTJDQTI2Mjk4NUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNtqOqkzhbTjr3fgFgv+8wTBvckGKhUHizinZEKe/p0o3SZTCn Ao3SY+sEMFiFxHPZ4Fl5a065zpD9uXDgQjQn2WSAOjeGYKtUMh4XuaDk3vSjX3Et bmIEgRjwpnnkYxqM9j7zrbgDNgWTpwqiLR6E3t5D3jcvmbF4yAQJzvVY2nN03IZz Zbqjq9v7IrZF2XuxAH9we0fauA0RGEHZ31qZxIN+vKke4QL0Tm7XfVw4QHCHyN+D 1kWitM+Wl8Bzr78UW5bdHuAvOySOCUJTZqVoSQDGl7xwIt2/5XyboY1rSSnRvUBQ xnLPPOQ83oaWH3+JepKJXQ38UAmCRiShuPGTAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU0Zu8ZCQgP6dpsL8HnnFBLKJimF0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5LzBadThaQ1FnUDZkcHNMOEhubkZCTEtKaW1GMC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAABTxUwDQYJKoZIhvcNAQELBQADggEB AI0ZKukDPH1GubxQSr5uM9v7bEKgCHV26P0+V5srtIa43OZqqPkEi9dfgjXTajGE tTsTEpujQCdLN4de8XrDDyO6jALev2lU2Z6yQj60rlP5IfBKgJwndg+/ian4ZiIf J8My+sqsMjigSCV+Uyubdp8RYdeHKSZY7ave7z3703XU2g8Cy0my9aDtJVZoZJ/z EmwRewptRq0HfO5bZPLtquRldAEAobaV5LgalLjzAlvDwIfWcl41OFDnAtnTycgu fmJrgpJTRaHrJD1uJ2Kl+nlW/AJyKEGsDGKDvVQ1YB0Ad+N8fweg2wnxfLJvszZN xcIOzCRlp9dtb2k0ykggTDM= -----END CERTIFICATE-----Generated at Tue Apr 7 19:42:59 2026 by rpki-client