$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/9Gh0lsfG4BKNvNP2ZCfMk3oWS-U.roa File: 9Gh0lsfG4BKNvNP2ZCfMk3oWS-U.roa (raw, json) Hash identifier: U8DEMVsMyLB/2ejYtwFpCfebM9Bta5CRVoN9KK4xkTc= Subject key identifier: F4:68:74:96:C7:C6:E0:12:8D:BC:D3:F6:64:27:CC:93:7A:16:4B:E5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 178A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/9Gh0lsfG4BKNvNP2ZCfMk3oWS-U.roa Signing time: Tue 31 Mar 2026 08:04:04 +0000 ROA not before: Tue 31 Mar 2026 08:04:04 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.67.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6026 (0x178a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:04:04 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=F4687496C7C6E0128DBCD3F66427CC937A164BE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:9e:9d:91:8c:16:1d:73:cf:d0:4f:e0:72:b3: 5c:e4:93:fd:0a:84:05:28:17:2d:a1:d8:4e:5c:e0: d9:88:f1:d6:c1:34:a2:5d:8e:fd:c0:5d:8f:f9:06: b3:e7:b4:bc:48:91:e1:0d:6e:d1:4d:58:b9:2b:34: 7d:06:15:1a:12:35:2d:1a:a3:76:31:22:e9:e3:73: b0:be:3b:08:2f:41:66:b6:90:4b:52:ba:16:53:47: cb:2e:83:5a:0b:df:94:a2:76:52:92:1d:fa:83:ab: 5e:4c:7c:2e:b1:c7:fb:88:af:9d:6d:64:0b:32:fb: 23:37:5e:b5:d3:3c:65:d3:57:4b:fc:77:4f:00:54: 6c:c0:5e:cc:31:5d:22:a0:49:a0:02:9d:68:77:f2: 8b:db:aa:5a:7e:06:b2:c6:24:ff:2a:4d:9b:b1:ec: 13:f0:3f:6e:a4:16:90:96:a6:b5:ef:a2:96:3a:5b: 8f:5b:13:d6:53:60:37:ac:1d:76:b6:0f:7d:1e:d9: a1:3c:cb:52:ea:67:33:fe:3a:22:c9:d6:0b:68:c2: 0a:cb:72:be:a1:cb:dd:e1:ce:e7:c4:35:c6:2e:d3: 17:30:77:2e:14:19:4d:9b:68:00:dd:d5:0d:a2:56: f7:90:34:5f:88:d4:8d:d2:68:b0:86:85:b6:fd:bc: 40:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:68:74:96:C7:C6:E0:12:8D:BC:D3:F6:64:27:CC:93:7A:16:4B:E5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/9Gh0lsfG4BKNvNP2ZCfMk3oWS-U.roa sbgp-ipAddrBlock: critical IPv4: 1.67.237.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:d8:b2:67:64:be:0c:38:d1:d6:32:ed:75:5c:76:91:60:d7: a9:30:6c:f4:c9:f5:af:79:0c:5d:40:04:b3:0c:91:5a:7d:05: 46:58:71:5c:87:5c:42:41:9e:25:ab:75:0b:3d:7f:0e:12:5e: fa:4a:ca:d5:f0:b5:03:34:4a:15:99:fd:eb:76:b3:d9:6d:44: 3e:70:fb:15:08:e5:4a:bc:c8:8e:a5:d8:27:58:78:99:8a:f1: 2b:98:f7:c4:e2:a5:e7:1a:0f:e5:65:c1:e4:5b:18:e5:91:50: 3b:a5:85:53:a3:7f:cf:44:8a:f4:e1:82:70:a0:55:bd:c2:df: 07:5e:41:29:a4:21:06:b2:ec:d7:05:f7:3b:fb:2b:e5:18:4d: 34:c9:97:bf:35:cb:a3:37:15:83:7d:14:47:3d:45:0d:25:bd: 06:9d:a2:8b:68:0d:21:f4:f9:32:b9:d7:18:fe:2e:6b:2d:6b: 8d:9b:ea:87:33:97:f7:2d:ff:94:88:23:15:50:98:b0:57:1b: ff:8a:79:27:da:6d:ef:3b:60:d6:89:1e:71:d8:d3:0c:d9:f1: ab:d2:37:94:d7:93:53:78:ab:d6:1c:73:6e:ce:57:7d:5e:dc: 8e:9e:1a:bb:39:44:46:49:24:42:70:ab:7f:f9:17:99:ec:b7: bc:c2:8b:3e -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICF4owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODA0MDRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEY0Njg3NDk2QzdDNkUw MTI4REJDRDNGNjY0MjdDQzkzN0ExNjRCRTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmnp2RjBYdc8/QT+Bys1zkk/0KhAUoFy2h2E5c4NmI8dbBNKJd jv3AXY/5BrPntLxIkeENbtFNWLkrNH0GFRoSNS0ao3YxIunjc7C+OwgvQWa2kEtS uhZTR8sug1oL35SidlKSHfqDq15MfC6xx/uIr51tZAsy+yM3XrXTPGXTV0v8d08A VGzAXswxXSKgSaACnWh38ovbqlp+BrLGJP8qTZux7BPwP26kFpCWprXvopY6W49b E9ZTYDesHXa2D30e2aE8y1LqZzP+OiLJ1gtowgrLcr6hy93hzufENcYu0xcwdy4U GU2baADd1Q2iVveQNF+I1I3SaLCGhbb9vEA/AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU9Gh0lsfG4BKNvNP2ZCfMk3oWS+UwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5LzlHaDBsc2ZHNEJLTnZOUDJaQ2ZNazNvV1MtVS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAABQ+0wDQYJKoZIhvcNAQELBQADggEB AEvYsmdkvgw40dYy7XVcdpFg16kwbPTJ9a95DF1ABLMMkVp9BUZYcVyHXEJBniWr dQs9fw4SXvpKytXwtQM0ShWZ/et2s9ltRD5w+xUI5Uq8yI6l2CdYeJmK8SuY98Ti pecaD+VlweRbGOWRUDulhVOjf89EivThgnCgVb3C3wdeQSmkIQay7NcF9zv7K+UY TTTJl781y6M3FYN9FEc9RQ0lvQadootoDSH0+TK51xj+Lmsta42b6oczl/ct/5SI IxVQmLBXG/+KeSfabe87YNaJHnHY0wzZ8avSN5TXk1N4q9Ycc27OV31e3I6eGrs5 REZJJEJwq3/5F5nst7zCiz4= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:04 2026 by rpki-client