$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3-JwQfBp_mokzDEP-aPEG4VyjCg.roa File: 3-JwQfBp_mokzDEP-aPEG4VyjCg.roa (raw, json) Hash identifier: z0ddC99DRIJ68F4y+jWYFZ5VBEogM/QGka3UWvEvZx4= Subject key identifier: DF:E2:70:41:F0:69:FE:6A:24:CC:31:0F:F9:A3:C4:1B:85:72:8C:28 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1432 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3-JwQfBp_mokzDEP-aPEG4VyjCg.roa Signing time: Tue 31 Mar 2026 07:57:03 +0000 ROA not before: Tue 31 Mar 2026 07:57:03 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5170 (0x1432) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:57:03 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=DFE27041F069FE6A24CC310FF9A3C41B85728C28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a9:66:4a:60:86:f7:b7:5e:bf:e9:72:60:d2: 94:fc:d1:65:ba:cb:94:36:05:d7:56:91:ee:71:ba: c5:30:49:b1:a1:00:03:d2:35:b6:f1:a4:b2:f7:a1: 26:64:02:2c:45:c6:e3:44:c1:66:a0:b6:6d:90:10: 2e:44:1e:59:84:38:42:7d:f9:f7:34:25:0a:13:94: 81:57:10:70:e7:c2:d1:c4:54:bd:48:77:3f:51:c3: 00:81:06:2a:bb:1f:56:3e:f2:fe:42:08:75:b1:62: fb:d3:8e:00:12:e7:7b:b0:c0:85:bd:91:26:d7:99: a3:61:7d:ad:2a:6a:03:3c:ed:bf:1d:19:53:c2:75: 3e:9c:08:6e:7c:32:51:07:66:02:f5:fc:ad:d2:35: 75:a4:a5:c7:ca:91:24:6f:e6:b3:c4:6c:2a:83:0e: 51:50:73:d7:a4:99:b6:95:9f:34:02:c3:54:ed:e7: 5c:f1:71:a8:e2:f1:cc:fa:0c:e0:9a:14:9b:87:05: 94:87:39:54:9e:5b:be:4e:57:73:4c:98:f7:1a:f6: 10:79:c4:f5:05:fa:8d:f5:5e:46:30:e0:4b:76:15: a1:17:bb:d1:b6:32:08:5c:c2:cf:78:93:87:96:bc: 58:ee:56:22:e8:3f:e4:18:22:10:e8:3f:8c:98:51: d9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:E2:70:41:F0:69:FE:6A:24:CC:31:0F:F9:A3:C4:1B:85:72:8C:28 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3-JwQfBp_mokzDEP-aPEG4VyjCg.roa sbgp-ipAddrBlock: critical IPv4: 1.79.8.0/24 Signature Algorithm: sha256WithRSAEncryption 18:ea:1c:82:ce:be:a6:31:e4:62:a3:d5:71:3d:1a:d1:a4:b8: b3:7f:da:f1:78:e1:72:10:6d:85:be:0f:a9:0c:3c:b5:fd:50: c3:ae:f2:c8:9c:4a:af:c8:49:ed:c2:cf:b6:d6:8c:f6:f1:00: 53:40:df:9f:f2:01:3e:55:df:6f:1c:dc:73:af:69:7e:6c:f0: 95:bf:76:0e:de:4c:e6:6d:30:b9:1e:b6:38:bb:7e:9f:eb:0a: a6:52:08:0c:54:41:26:a7:5c:27:8f:31:1b:d7:05:f3:2d:2a: 7e:ca:64:b1:84:36:7c:0a:18:4a:d3:41:95:41:d2:f2:a2:ee: 48:19:09:a2:51:dd:dc:d7:13:c9:9a:7c:e2:eb:74:90:9d:48: 6e:ff:a1:e8:3a:4c:49:49:df:00:7a:4c:56:4e:3f:12:ba:61: 62:d1:c7:70:72:18:91:7d:28:74:1a:89:58:1a:c9:03:82:89: ca:15:9d:6f:59:22:12:18:a1:74:40:f5:84:7a:e5:1a:76:a7: 44:87:54:90:ef:53:d3:f3:61:8c:b0:cd:7d:f2:e6:e9:ff:f0: 08:68:6f:0d:e9:c2:53:ae:e8:67:28:e5:27:8a:63:d6:ee:d9: 6e:eb:3a:b2:14:3a:26:04:a4:26:a8:72:22:86:d1:4d:0f:49: 17:78:e2:18 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFDIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU3MDNaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKERGRTI3MDQxRjA2OUZF NkEyNENDMzEwRkY5QTNDNDFCODU3MjhDMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUqWZKYIb3t16/6XJg0pT80WW6y5Q2BddWke5xusUwSbGhAAPS NbbxpLL3oSZkAixFxuNEwWagtm2QEC5EHlmEOEJ9+fc0JQoTlIFXEHDnwtHEVL1I dz9RwwCBBiq7H1Y+8v5CCHWxYvvTjgAS53uwwIW9kSbXmaNhfa0qagM87b8dGVPC dT6cCG58MlEHZgL1/K3SNXWkpcfKkSRv5rPEbCqDDlFQc9ekmbaVnzQCw1Tt51zx caji8cz6DOCaFJuHBZSHOVSeW75OV3NMmPca9hB5xPUF+o31XkYw4Et2FaEXu9G2 Mghcws94k4eWvFjuViLoP+QYIhDoP4yYUdn5AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU3+JwQfBp/mokzDEP+aPEG4VyjCgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5LzMtSndRZkJwX21va3pERVAtYVBFRzRWeWpDZy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAABTwgwDQYJKoZIhvcNAQELBQADggEB ABjqHILOvqYx5GKj1XE9GtGkuLN/2vF44XIQbYW+D6kMPLX9UMOu8sicSq/ISe3C z7bWjPbxAFNA35/yAT5V328c3HOvaX5s8JW/dg7eTOZtMLketji7fp/rCqZSCAxU QSanXCePMRvXBfMtKn7KZLGENnwKGErTQZVB0vKi7kgZCaJR3dzXE8mafOLrdJCd SG7/oeg6TElJ3wB6TFZOPxK6YWLRx3ByGJF9KHQaiVgayQOCicoVnW9ZIhIYoXRA 9YR65Rp2p0SHVJDvU9PzYYywzX3y5un/8Ahobw3pwlOu6Gco5SeKY9bu2W7rOrIU OiYEpCaociKG0U0PSRd44hg= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:14 2026 by rpki-client