$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/2HMiEWV_KJbUaSxgK-jI4bq_W6c.roa File: 2HMiEWV_KJbUaSxgK-jI4bq_W6c.roa (raw, json) Hash identifier: KWPXT4qOcBokBoJyaZm9no30gWiaWCl1wZgW8YmX9do= Subject key identifier: D8:73:22:11:65:7F:28:96:D4:69:2C:60:2B:E8:C8:E1:BA:BF:5B:A7 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1376 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2HMiEWV_KJbUaSxgK-jI4bq_W6c.roa Signing time: Tue 31 Mar 2026 07:55:37 +0000 ROA not before: Tue 31 Mar 2026 07:55:37 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.72.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4982 (0x1376) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:55:37 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=D8732211657F2896D4692C602BE8C8E1BABF5BA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:74:33:cf:d1:11:2e:93:d3:51:ed:4f:ff:6c: 8e:dd:c7:cf:ab:26:79:f9:b3:0b:75:54:b7:5b:93: a0:70:f1:b5:c2:ab:46:14:e3:53:e5:40:21:e7:0f: fe:1c:8d:fb:41:ff:9c:d5:9d:52:e0:54:ff:b2:3b: 26:2e:85:f1:ff:df:50:07:81:b2:e0:f4:5b:15:8f: 72:3d:89:85:5a:79:2f:a6:0a:9a:2f:aa:60:ec:0b: b3:5d:6e:0c:3f:e8:20:87:1a:11:42:7e:0a:a7:d3: a1:4c:6c:57:e1:d2:1b:10:c8:fe:c2:65:4a:01:f1: 24:32:56:eb:aa:01:00:26:96:2a:23:e4:38:1d:bd: 49:06:9b:23:88:0a:b5:6c:de:6e:73:23:4f:e9:64: d5:3c:70:f5:fe:09:9d:27:1d:b6:10:ae:ec:fa:16: 12:e0:44:c2:5c:0a:98:82:88:d7:9f:17:4d:65:23: 09:59:cc:c1:99:05:8f:35:be:06:76:0a:fd:47:c3: 86:33:c0:a3:84:21:33:4e:a2:66:fe:57:4b:69:29: bc:88:cf:b2:dc:19:8c:08:92:06:47:a4:cd:89:49: 70:61:8e:d8:3c:92:ee:a7:a6:f2:ff:2d:22:b9:26: 13:14:57:d1:7b:c8:83:aa:5a:a7:57:2e:9c:61:c2: b7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:73:22:11:65:7F:28:96:D4:69:2C:60:2B:E8:C8:E1:BA:BF:5B:A7 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2HMiEWV_KJbUaSxgK-jI4bq_W6c.roa sbgp-ipAddrBlock: critical IPv4: 1.72.2.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:73:b9:59:b5:b1:cb:d6:0e:76:19:59:97:9f:8d:3d:14:2e: 17:0b:00:c2:ef:4a:81:ac:78:41:b0:55:d6:dd:11:c5:fa:31: b1:e5:36:c2:b6:ad:cb:f1:16:65:bb:22:2b:e0:da:e3:83:64: b7:a7:5a:7c:a8:fa:9f:97:bb:73:dd:a0:fe:be:46:05:83:94: ca:ad:72:e8:9a:9a:03:33:f8:90:2d:75:3f:fa:a5:6f:90:ad: ca:ca:fe:6d:be:09:18:87:d6:cc:57:c7:f9:30:50:cf:cf:2d: e5:c9:e7:37:b4:10:dc:9c:4b:cb:b4:49:86:89:ee:c3:90:23: 7d:46:cb:b8:d7:57:18:9a:ae:50:90:93:8e:7d:f3:b9:f2:9c: fe:95:f3:0f:fb:3a:95:b0:ad:71:59:41:ea:98:99:de:cd:e3: 47:76:07:7c:22:db:7b:53:0e:15:f4:f4:ce:e4:b0:16:8c:a0: bd:c0:9d:92:74:3c:4d:64:cd:8e:89:82:61:f9:05:e8:f4:3d: de:2c:9e:56:fc:68:cb:b8:77:b1:aa:ac:1f:fa:99:52:f1:5a: 02:d3:f1:93:ba:d4:ed:61:0c:65:d0:0e:96:ff:3c:a8:8c:a6: 86:8a:e4:ab:94:ab:b8:f7:48:e7:34:ea:80:31:e6:76:fc:fb: 43:25:af:38 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICE3YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU1MzdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEQ4NzMyMjExNjU3RjI4 OTZENDY5MkM2MDJCRThDOEUxQkFCRjVCQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmdDPP0REuk9NR7U//bI7dx8+rJnn5swt1VLdbk6Bw8bXCq0YU 41PlQCHnD/4cjftB/5zVnVLgVP+yOyYuhfH/31AHgbLg9FsVj3I9iYVaeS+mCpov qmDsC7Ndbgw/6CCHGhFCfgqn06FMbFfh0hsQyP7CZUoB8SQyVuuqAQAmlioj5Dgd vUkGmyOICrVs3m5zI0/pZNU8cPX+CZ0nHbYQruz6FhLgRMJcCpiCiNefF01lIwlZ zMGZBY81vgZ2Cv1Hw4YzwKOEITNOomb+V0tpKbyIz7LcGYwIkgZHpM2JSXBhjtg8 ku6npvL/LSK5JhMUV9F7yIOqWqdXLpxhwrdlAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU2HMiEWV/KJbUaSxgK+jI4bq/W6cwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5LzJITWlFV1ZfS0piVWFTeGdLLWpJNGJxX1c2Yy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEBSAIwDQYJKoZIhvcNAQELBQADggEB AG5zuVm1scvWDnYZWZefjT0ULhcLAMLvSoGseEGwVdbdEcX6MbHlNsK2rcvxFmW7 Iivg2uODZLenWnyo+p+Xu3PdoP6+RgWDlMqtcuiamgMz+JAtdT/6pW+QrcrK/m2+ CRiH1sxXx/kwUM/PLeXJ5ze0ENycS8u0SYaJ7sOQI31Gy7jXVxiarlCQk45987ny nP6V8w/7OpWwrXFZQeqYmd7N40d2B3wi23tTDhX09M7ksBaMoL3AnZJ0PE1kzY6J gmH5Bej0Pd4snlb8aMu4d7GqrB/6mVLxWgLT8ZO61O1hDGXQDpb/PKiMpoaK5KuU q7j3SOc06oAx5nb8+0Mlrzg= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:42 2026 by rpki-client