$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/5DfRoM2vdsfbiGxZ58lDkK5bKMo.roa File: 5DfRoM2vdsfbiGxZ58lDkK5bKMo.roa (raw, json) Hash identifier: EUbkvmQG2iJ5oCxyggP7cMt7CG70b/wyjj/fc8x1unA= Subject key identifier: E4:37:D1:A0:CD:AF:76:C7:DB:88:6C:59:E7:C9:43:90:AE:5B:28:CA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 16ED Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5DfRoM2vdsfbiGxZ58lDkK5bKMo.roa Signing time: Tue 31 Mar 2026 08:02:47 +0000 ROA not before: Tue 31 Mar 2026 08:02:47 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.72.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5869 (0x16ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:02:47 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=E437D1A0CDAF76C7DB886C59E7C94390AE5B28CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:34:98:1c:c4:36:10:f8:ca:cf:1b:c8:8a:f7: be:c4:40:b5:6f:75:9e:ea:c2:24:61:6e:71:63:bd: 62:75:7a:db:94:0f:32:f2:a7:47:2b:0a:29:f2:81: 70:42:41:a7:49:67:ea:a6:b5:5d:3d:2c:17:f8:25: 6f:20:ad:ed:43:ad:6e:dd:20:e9:f0:f0:e5:37:9f: ce:46:1a:de:70:9e:c6:65:b5:2e:f6:02:12:77:fc: 97:5c:cf:07:3f:cb:5e:6d:a8:75:f3:c3:0f:3a:5e: bd:95:38:3a:27:4f:27:f3:5e:32:18:44:d0:1d:3f: 60:e3:e6:a9:68:2f:02:ab:3a:0b:b3:30:85:2e:00: 56:62:81:a8:10:42:22:7d:41:f8:3c:c8:01:f4:b8: d2:bb:13:53:0d:cb:86:2b:0c:7a:15:e9:2a:c3:63: a8:92:5e:58:12:31:26:9f:4d:cb:8c:e6:fd:00:63: 8b:7e:d0:66:06:e5:e4:f4:ba:18:33:3f:3b:7e:0d: a5:4a:2e:d2:c7:b6:f1:4e:36:09:09:94:a5:9f:aa: 87:37:eb:db:09:39:22:9a:97:88:d8:23:60:35:b1: df:33:fd:6f:88:2a:2d:84:70:28:53:99:0c:58:6f: c1:e4:4c:5c:84:55:18:cd:0d:97:56:53:b1:d7:1f: 2b:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:37:D1:A0:CD:AF:76:C7:DB:88:6C:59:E7:C9:43:90:AE:5B:28:CA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5DfRoM2vdsfbiGxZ58lDkK5bKMo.roa sbgp-ipAddrBlock: critical IPv4: 1.72.192.0/19 Signature Algorithm: sha256WithRSAEncryption 12:40:6d:0e:51:dd:ea:34:3e:92:6d:c4:40:c3:37:a5:ab:3a: db:1f:fe:ba:55:34:42:64:6f:a9:89:7a:43:c1:1b:b8:22:d7: 7f:0d:70:04:27:54:21:ec:06:4d:88:ba:9d:7e:a6:e0:79:e1: 41:7a:59:3c:99:df:94:d5:ce:40:92:35:97:31:b1:ee:ae:1d: e9:d9:eb:34:c0:4a:de:18:ba:10:8d:53:99:91:70:05:eb:50: b7:58:e3:fc:75:a2:db:67:72:78:ed:c7:67:25:e7:18:46:20: 2a:3d:85:c5:ee:f8:8c:f5:4b:91:de:78:24:db:3e:32:29:15: 92:da:18:06:2f:33:18:58:14:ff:bb:70:49:c3:4d:b5:6b:ed: d9:1f:42:70:c1:9d:24:a1:72:a5:ee:75:4c:7a:ef:b6:63:26: 79:d8:f6:b9:5d:89:ab:fe:70:d3:a0:e4:7c:59:d7:0b:c4:cb: 34:9c:70:05:50:d1:0a:b4:39:7a:47:05:d4:64:37:bf:b6:7f: 21:50:b4:12:bb:c1:c1:8e:f3:c1:df:e1:ff:b2:24:16:fb:4c: f6:95:e4:42:cb:0f:f6:62:a9:45:08:e3:ec:d2:8d:b5:05:78: 58:fa:bd:ac:f7:b4:e0:3b:33:0f:c0:e9:db:52:b8:30:64:a4: 89:ad:65:e3 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFu0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAyNDdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEU0MzdEMUEwQ0RBRjc2 QzdEQjg4NkM1OUU3Qzk0MzkwQUU1QjI4Q0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2NJgcxDYQ+MrPG8iK977EQLVvdZ7qwiRhbnFjvWJ1etuUDzLy p0crCinygXBCQadJZ+qmtV09LBf4JW8gre1DrW7dIOnw8OU3n85GGt5wnsZltS72 AhJ3/Jdczwc/y15tqHXzww86Xr2VODonTyfzXjIYRNAdP2Dj5qloLwKrOguzMIUu AFZigagQQiJ9Qfg8yAH0uNK7E1MNy4YrDHoV6SrDY6iSXlgSMSafTcuM5v0AY4t+ 0GYG5eT0uhgzPzt+DaVKLtLHtvFONgkJlKWfqoc369sJOSKal4jYI2A1sd8z/W+I Ki2EcChTmQxYb8HkTFyEVRjNDZdWU7HXHysdAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU5DfRoM2vdsfbiGxZ58lDkK5bKMowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5LzVEZlJvTTJ2ZHNmYmlHeFo1OGxEa0s1YktNby5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAUBSMAwDQYJKoZIhvcNAQELBQADggEB ABJAbQ5R3eo0PpJtxEDDN6WrOtsf/rpVNEJkb6mJekPBG7gi138NcAQnVCHsBk2I up1+puB54UF6WTyZ35TVzkCSNZcxse6uHenZ6zTASt4YuhCNU5mRcAXrULdY4/x1 ottncnjtx2cl5xhGICo9hcXu+Iz1S5HeeCTbPjIpFZLaGAYvMxhYFP+7cEnDTbVr 7dkfQnDBnSShcqXudUx677ZjJnnY9rldiav+cNOg5HxZ1wvEyzSccAVQ0Qq0OXpH BdRkN7+2fyFQtBK7wcGO88Hf4f+yJBb7TPaV5ELLD/ZiqUUI4+zSjbUFeFj6vaz3 tOA7Mw/A6dtSuDBkpImtZeM= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:55 2026 by rpki-client