$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4rzrPnwwrmJaCLCsWyojWP-EmFE.roa File: 4rzrPnwwrmJaCLCsWyojWP-EmFE.roa (raw, json) Hash identifier: Juqiap1cFN1QoEZ1NUNuQFJKrC5vqfuQcruUlO4+C90= Subject key identifier: E2:BC:EB:3E:7C:30:AE:62:5A:08:B0:AC:5B:2A:23:58:FF:84:98:51 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 16B7 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4rzrPnwwrmJaCLCsWyojWP-EmFE.roa Signing time: Tue 31 Mar 2026 08:02:22 +0000 ROA not before: Tue 31 Mar 2026 08:02:22 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 27.230.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5815 (0x16b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:02:22 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=E2BCEB3E7C30AE625A08B0AC5B2A2358FF849851 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:cb:a8:3f:dd:9a:f5:0c:2b:b5:85:34:9a:2d: 3e:07:f6:0c:69:0c:66:a1:f7:0d:4d:9c:4b:fb:be: b4:be:54:fd:c5:8d:7d:55:02:6f:b1:70:50:1c:5c: 75:6a:54:ba:e8:cf:d7:ee:88:37:48:a3:a3:a5:bc: 64:21:57:3d:75:6e:44:59:c4:9a:c5:71:da:11:09: f0:35:6e:e4:68:4c:6a:ea:7b:ac:06:f2:52:42:e7: 9f:9e:d8:e6:39:0e:2e:3f:52:99:f4:df:24:14:ef: 3b:87:7d:1c:cb:34:11:fb:f2:bf:d5:73:07:76:7a: ee:41:37:70:da:1f:13:13:84:92:83:1f:c1:8c:21: 1c:1e:2e:c6:c8:ce:16:90:c5:26:48:4a:98:66:19: a7:12:68:78:c8:88:62:a9:8d:91:05:e3:80:9b:d9: 46:63:3a:71:ea:7a:44:85:8e:de:9b:7d:f6:06:ca: 40:96:f5:7d:2c:c5:68:fe:cd:52:d4:60:63:a8:c2: 1b:7c:73:ae:93:77:35:de:ed:b3:8c:bc:ac:19:68: 60:b7:42:cd:ea:7c:66:7e:c3:68:cf:aa:ea:e3:c5: 40:c2:90:db:71:da:24:7c:55:0b:19:e7:80:3f:73: 40:74:d6:bd:ee:df:e0:75:78:a2:98:9c:df:45:83: eb:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:BC:EB:3E:7C:30:AE:62:5A:08:B0:AC:5B:2A:23:58:FF:84:98:51 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4rzrPnwwrmJaCLCsWyojWP-EmFE.roa sbgp-ipAddrBlock: critical IPv4: 27.230.120.0/21 Signature Algorithm: sha256WithRSAEncryption 40:5a:78:84:73:0a:96:f7:95:80:f8:fa:4b:c1:e6:f9:3d:1a: bd:cf:ac:7c:03:f2:b5:8d:37:1f:ef:8a:01:1e:8c:4a:65:7e: ca:26:4a:d5:eb:e4:73:9c:a4:06:a1:bd:70:ca:17:4a:48:8c: 63:0e:c3:6d:49:87:3c:a9:36:3b:07:39:a7:6b:db:62:92:27: 8e:d1:14:6a:38:de:b4:d2:5b:59:99:37:18:b6:db:a1:b0:a7: 09:33:2a:ec:a3:46:cb:8c:d9:68:59:58:26:bb:ec:56:51:4c: da:d7:30:bb:77:b7:87:ab:32:3b:46:a7:66:cc:e0:84:36:bc: b9:bb:01:4f:44:bc:25:fe:ac:32:11:fc:87:61:a1:38:ed:8b: 84:e2:65:36:28:b5:10:ab:6c:92:2f:8b:75:3b:ba:7d:ae:d3: 9f:20:77:cc:14:9d:23:7a:a6:e2:02:04:c7:15:17:f4:00:a9: 1e:65:5d:f0:f5:9d:52:b0:bc:43:88:ad:0d:d6:c8:07:1b:59: ce:88:df:26:52:84:9d:de:76:00:de:12:23:35:2d:4c:8c:b7: 35:b0:7c:d2:38:ac:bd:93:3c:02:43:68:cc:e6:e2:44:dd:7b: 46:f4:94:c0:a8:bc:1a:87:ea:2d:85:04:60:94:4d:e0:00:30: f3:95:e7:1e -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFrcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAyMjJaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEUyQkNFQjNFN0MzMEFF NjI1QTA4QjBBQzVCMkEyMzU4RkY4NDk4NTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiy6g/3Zr1DCu1hTSaLT4H9gxpDGah9w1NnEv7vrS+VP3FjX1V Am+xcFAcXHVqVLroz9fuiDdIo6OlvGQhVz11bkRZxJrFcdoRCfA1buRoTGrqe6wG 8lJC55+e2OY5Di4/Upn03yQU7zuHfRzLNBH78r/Vcwd2eu5BN3DaHxMThJKDH8GM IRweLsbIzhaQxSZISphmGacSaHjIiGKpjZEF44Cb2UZjOnHqekSFjt6bffYGykCW 9X0sxWj+zVLUYGOowht8c66TdzXe7bOMvKwZaGC3Qs3qfGZ+w2jPqurjxUDCkNtx 2iR8VQsZ54A/c0B01r3u3+B1eKKYnN9Fg+vnAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU4rzrPnwwrmJaCLCsWyojWP+EmFEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5LzRyenJQbnd3cm1KYUNMQ3NXeW9qV1AtRW1GRS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMb5ngwDQYJKoZIhvcNAQELBQADggEB AEBaeIRzCpb3lYD4+kvB5vk9Gr3PrHwD8rWNNx/vigEejEplfsomStXr5HOcpAah vXDKF0pIjGMOw21JhzypNjsHOadr22KSJ47RFGo43rTSW1mZNxi226GwpwkzKuyj RsuM2WhZWCa77FZRTNrXMLt3t4erMjtGp2bM4IQ2vLm7AU9EvCX+rDIR/IdhoTjt i4TiZTYotRCrbJIvi3U7un2u058gd8wUnSN6puICBMcVF/QAqR5lXfD1nVKwvEOI rQ3WyAcbWc6I3yZShJ3edgDeEiM1LUyMtzWwfNI4rL2TPAJDaMzm4kTde0b0lMCo vBqH6i2FBGCUTeAAMPOV5x4= -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:00 2026 by rpki-client