$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/A3G6KTUtbBNf3_20juB1ySzMNvU.roa File: A3G6KTUtbBNf3_20juB1ySzMNvU.roa (raw, json) Hash identifier: +tgn+rCWXhpBws9dtXkcyOEvRKQORK4MhjkDjCxaSOc= Subject key identifier: 03:71:BA:29:35:2D:6C:13:5F:DF:FD:B4:8E:E0:75:C9:2C:CC:36:F5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1509 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/A3G6KTUtbBNf3_20juB1ySzMNvU.roa Signing time: Tue 31 Mar 2026 07:58:48 +0000 ROA not before: Tue 31 Mar 2026 07:58:48 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.66.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5385 (0x1509) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:58:48 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=0371BA29352D6C135FDFFDB48EE075C92CCC36F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c5:3a:23:44:6f:5f:bc:66:58:14:65:ba:be: af:fa:90:91:9e:06:8b:1f:26:42:20:6c:65:c7:97: 2d:03:bf:7f:56:c0:ea:a5:6f:f2:e7:8f:c9:57:d0: 60:d5:a6:86:60:0a:f5:f8:90:f9:ad:73:49:37:aa: 2b:09:b4:b8:f6:10:5c:12:44:2d:ea:12:b1:27:e6: 0b:89:22:6e:23:e3:57:fa:db:10:ab:79:42:89:25: ac:60:ca:3d:5e:97:37:a0:8d:03:74:10:71:40:8d: 31:95:00:b0:86:af:db:71:55:27:e8:07:f9:3c:10: 79:bc:a8:1d:e2:9f:54:3e:74:57:95:b4:c2:61:be: 23:eb:ab:3f:6f:3e:cf:43:3a:ed:3a:c9:2f:00:c5: c0:87:b6:85:00:6b:44:42:29:05:e4:a4:29:79:92: 7a:5a:25:e0:d7:f0:e2:44:e9:7e:af:22:68:50:6c: 8c:fb:63:8d:cd:a2:e0:be:71:a1:84:c9:78:87:58: be:6a:3c:48:ca:d6:3e:b0:98:3d:90:be:85:35:87: 9f:23:50:eb:f8:56:0c:17:c2:86:b9:bf:af:38:c8: 11:57:38:79:64:27:23:b7:2d:32:3b:92:fc:13:3c: c7:19:7b:b5:7d:6c:dc:c9:c0:ea:23:02:cd:4e:12: 15:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:71:BA:29:35:2D:6C:13:5F:DF:FD:B4:8E:E0:75:C9:2C:CC:36:F5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/A3G6KTUtbBNf3_20juB1ySzMNvU.roa sbgp-ipAddrBlock: critical IPv4: 1.66.20.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:eb:32:ca:05:ca:7a:e9:0e:6a:d2:a2:dc:ed:cf:d9:26:fa: 10:ce:0e:1c:42:2d:d6:da:ea:69:01:84:75:0b:46:02:17:f6: 94:12:f4:43:8d:3c:5a:24:03:c6:f3:27:e4:30:70:19:59:b6: 08:27:5c:9e:ca:93:04:06:ca:33:2c:d2:05:94:3c:bb:16:eb: 8b:6e:01:aa:38:4e:c7:6d:25:dc:4d:83:bc:36:45:f9:9e:fd: 7b:30:4c:89:38:38:92:eb:fe:96:90:37:29:59:ba:17:1a:9a: d5:0f:67:42:21:bc:2a:3d:d2:7e:25:bc:e9:d3:8c:66:79:11: ad:40:f0:57:b7:57:08:30:89:39:d1:ee:75:b4:7e:2c:be:38: bc:06:dd:ca:d7:d1:f0:eb:c3:16:57:1a:f8:f7:c3:f5:72:6e: 48:85:bf:13:4b:31:c0:57:08:60:d5:db:55:9e:83:37:d2:11: 4b:15:d8:6b:e8:5f:a0:1a:d5:90:88:94:6e:0e:0a:42:52:db: 51:34:e4:11:b4:11:5f:48:66:5d:c9:a4:cf:5a:8d:7f:5b:62: bd:ce:6c:4b:29:bb:c4:f0:c5:78:8d:df:64:82:c4:f5:6c:67: cb:5e:cd:98:1f:c7:a1:79:36:3f:c2:34:c3:84:b5:52:3c:ab: 1a:3c:7a:66 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFQkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU4NDhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDAzNzFCQTI5MzUyRDZD MTM1RkRGRkRCNDhFRTA3NUM5MkNDQzM2RjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdxTojRG9fvGZYFGW6vq/6kJGeBosfJkIgbGXHly0Dv39WwOql b/Lnj8lX0GDVpoZgCvX4kPmtc0k3qisJtLj2EFwSRC3qErEn5guJIm4j41f62xCr eUKJJaxgyj1elzegjQN0EHFAjTGVALCGr9txVSfoB/k8EHm8qB3in1Q+dFeVtMJh viPrqz9vPs9DOu06yS8AxcCHtoUAa0RCKQXkpCl5knpaJeDX8OJE6X6vImhQbIz7 Y43NouC+caGEyXiHWL5qPEjK1j6wmD2QvoU1h58jUOv4VgwXwoa5v684yBFXOHlk JyO3LTI7kvwTPMcZe7V9bNzJwOojAs1OEhVfAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUA3G6KTUtbBNf3/20juB1ySzMNvUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0EzRzZLVFV0YkJOZjNfMjBqdUIxeVN6TU52VS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIBQhQwDQYJKoZIhvcNAQELBQADggEB AGrrMsoFynrpDmrSotztz9km+hDODhxCLdba6mkBhHULRgIX9pQS9EONPFokA8bz J+QwcBlZtggnXJ7KkwQGyjMs0gWUPLsW64tuAao4TsdtJdxNg7w2Rfme/XswTIk4 OJLr/paQNylZuhcamtUPZ0IhvCo90n4lvOnTjGZ5Ea1A8Fe3VwgwiTnR7nW0fiy+ OLwG3crX0fDrwxZXGvj3w/VybkiFvxNLMcBXCGDV21WegzfSEUsV2GvoX6Aa1ZCI lG4OCkJS21E05BG0EV9IZl3JpM9ajX9bYr3ObEspu8TwxXiN32SCxPVsZ8tezZgf x6F5Nj/CNMOEtVI8qxo8emY= -----END CERTIFICATE-----Generated at Tue Apr 7 21:01:45 2026 by rpki-client