$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/2xlQStpNM2G1k_vLvfAjgC-D7A8.roa File: 2xlQStpNM2G1k_vLvfAjgC-D7A8.roa (raw, json) Hash identifier: XF0oAiHMXBKZ3/PgGn6SJQgijoucEBOeJ8NONVb29oA= Subject key identifier: DB:19:50:4A:DA:4D:33:61:B5:93:FB:CB:BD:F0:23:80:2F:83:EC:0F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 14DB Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2xlQStpNM2G1k_vLvfAjgC-D7A8.roa Signing time: Tue 31 Mar 2026 07:58:25 +0000 ROA not before: Tue 31 Mar 2026 07:58:25 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.78.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5339 (0x14db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:58:25 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=DB19504ADA4D3361B593FBCBBDF023802F83EC0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:0c:67:13:21:ee:d5:87:17:b5:fd:4b:e9:5c: 8c:5d:08:5e:32:1a:e8:d9:5d:f6:52:2c:23:fe:4e: 00:ea:e6:66:91:61:f6:8b:ff:9b:22:1a:fd:44:9d: 36:5e:cc:ad:20:54:0b:e6:e6:38:99:c8:31:36:fb: a2:8c:17:ba:02:4e:e1:d3:52:83:36:b8:e7:2e:fd: 6e:6a:50:9d:eb:39:90:14:38:90:00:f6:9c:db:02: 63:53:b6:80:86:7c:21:bd:46:2c:2e:3f:b3:04:47: d8:1e:8a:6c:4a:19:4b:62:40:3c:91:78:51:7d:61: e3:4f:7d:a1:ca:05:c8:76:3b:8e:7c:ab:f1:19:35: 2d:63:45:96:4c:cc:96:af:70:81:da:c0:6d:75:a2: 77:48:b0:8d:ba:2a:e0:34:49:9b:6e:ea:03:f7:05: 67:91:7d:57:b9:14:f3:e9:9d:c7:99:44:1b:96:ca: ac:68:99:dd:76:d1:c4:1e:6c:29:ab:6c:e1:cc:bf: 85:72:8c:c5:8b:40:d9:d3:40:d4:17:b6:5b:31:9c: a9:da:7d:22:de:94:76:8b:45:d5:4a:e7:8e:15:0f: 45:2b:20:d4:74:8e:a8:14:d6:9f:4d:fd:d4:81:07: 72:0c:0f:71:65:f0:c5:44:45:5d:73:00:02:48:89: fc:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:19:50:4A:DA:4D:33:61:B5:93:FB:CB:BD:F0:23:80:2F:83:EC:0F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2xlQStpNM2G1k_vLvfAjgC-D7A8.roa sbgp-ipAddrBlock: critical IPv4: 1.78.4.0/22 Signature Algorithm: sha256WithRSAEncryption 17:7f:0a:a4:63:ea:6c:af:83:06:7a:77:0a:df:f9:05:87:95: 60:81:95:c9:b5:8d:41:42:11:a6:67:a1:de:0a:53:88:5a:0a: 52:fd:4a:0b:76:ee:32:75:e0:ba:52:e3:66:37:a6:cb:06:4c: 51:04:1d:7c:df:27:b9:e5:ce:5d:d3:e2:c4:3b:ae:7a:2c:15: 94:bc:03:58:67:2b:90:32:d6:d6:6b:f6:31:dc:d3:ec:94:ae: e9:b6:eb:60:3d:41:f2:8b:4a:bd:e1:93:5c:a0:c4:15:c8:fd: e7:6f:3c:61:35:36:a7:38:dc:ee:8d:99:b5:cc:27:88:c2:1b: 82:ff:b2:8e:7b:8a:0c:5f:c0:7c:87:b2:70:fe:f6:f9:97:9a: 61:e3:ec:70:05:07:8c:91:5d:7c:03:bb:df:6d:ab:c4:5d:91: 0d:22:f3:e7:4e:69:16:d3:ec:26:ea:7c:b6:19:56:45:6e:f3: e5:31:53:0e:cd:b1:07:ab:c4:65:de:6d:39:3f:58:6a:6c:a6: 41:53:b6:a8:b6:b8:54:81:e4:75:fb:68:be:2a:c3:e2:22:44: 82:1e:01:a7:51:2e:39:17:0c:f9:c0:6d:2a:de:67:26:db:9f: a3:1d:4c:d9:da:cf:9c:33:a4:c6:00:9e:6c:bd:5a:c9:3e:54: 31:6b:e7:69 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFNswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU4MjVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKERCMTk1MDRBREE0RDMz NjFCNTkzRkJDQkJERjAyMzgwMkY4M0VDMEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgDGcTIe7Vhxe1/UvpXIxdCF4yGujZXfZSLCP+TgDq5maRYfaL /5siGv1EnTZezK0gVAvm5jiZyDE2+6KMF7oCTuHTUoM2uOcu/W5qUJ3rOZAUOJAA 9pzbAmNTtoCGfCG9RiwuP7MER9geimxKGUtiQDyReFF9YeNPfaHKBch2O458q/EZ NS1jRZZMzJavcIHawG11ondIsI26KuA0SZtu6gP3BWeRfVe5FPPpnceZRBuWyqxo md120cQebCmrbOHMv4VyjMWLQNnTQNQXtlsxnKnafSLelHaLRdVK544VD0UrINR0 jqgU1p9N/dSBB3IMD3Fl8MVERV1zAAJIifzhAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU2xlQStpNM2G1k/vLvfAjgC+D7A8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5LzJ4bFFTdHBOTTJHMWtfdkx2ZkFqZ0MtRDdBOC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIBTgQwDQYJKoZIhvcNAQELBQADggEB ABd/CqRj6myvgwZ6dwrf+QWHlWCBlcm1jUFCEaZnod4KU4haClL9Sgt27jJ14LpS 42Y3pssGTFEEHXzfJ7nlzl3T4sQ7rnosFZS8A1hnK5Ay1tZr9jHc0+yUrum262A9 QfKLSr3hk1ygxBXI/edvPGE1Nqc43O6NmbXMJ4jCG4L/so57igxfwHyHsnD+9vmX mmHj7HAFB4yRXXwDu99tq8RdkQ0i8+dOaRbT7CbqfLYZVkVu8+UxUw7NsQerxGXe bTk/WGpspkFTtqi2uFSB5HX7aL4qw+IiRIIeAadRLjkXDPnAbSreZybbn6MdTNna z5wzpMYAnmy9Wsk+VDFr52k= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:40 2026 by rpki-client