$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ApzBwSjhkLMYIDKM0HJ1TjlgCSo.roa File: ApzBwSjhkLMYIDKM0HJ1TjlgCSo.roa (raw, json) Hash identifier: 1QZcW/8K1DcOWAkXp2OxxpdYYCYNeNcs8vxc1meIbjs= Subject key identifier: 02:9C:C1:C1:28:E1:90:B3:18:20:32:8C:D0:72:75:4E:39:60:09:2A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 17D8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ApzBwSjhkLMYIDKM0HJ1TjlgCSo.roa Signing time: Tue 31 Mar 2026 08:04:40 +0000 ROA not before: Tue 31 Mar 2026 08:04:40 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.210.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6104 (0x17d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:04:40 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=029CC1C128E190B31820328CD072754E3960092A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:56:e7:31:bd:21:34:b3:06:5b:f5:65:ce:a1: 11:35:36:98:7b:d0:6a:c8:fc:11:fb:10:c0:ce:0f: 75:b9:fd:cb:6f:ba:6b:3c:8c:9f:c6:64:70:ea:8f: 1d:8a:dd:5a:dd:9b:9c:6d:a6:56:13:da:f9:ed:a6: 4c:07:90:b7:2f:85:e9:2d:88:ac:2a:58:30:b1:84: 90:83:c2:6a:fe:ef:5b:95:13:68:53:77:73:b5:cf: c2:5d:95:e3:34:2a:92:83:37:cd:6f:2a:ee:c9:8b: 51:69:1f:c1:c7:ea:c1:d7:0d:90:06:1c:a8:24:42: 27:95:58:95:86:46:64:37:36:23:46:36:1e:eb:a0: 72:5b:4f:4f:5b:db:d6:3e:bd:23:45:35:62:d7:97: 8e:f3:d2:07:13:0c:60:0a:27:8c:c1:6f:78:ef:1b: fb:23:2a:03:41:e4:97:b5:b7:81:1f:0b:19:2d:a6: 22:2b:f1:af:63:e9:f7:f2:04:79:bd:2a:38:6d:f3: f3:f7:54:30:5d:90:72:aa:ad:50:13:fe:de:27:26: e7:c5:22:15:cc:7e:58:73:5e:44:2a:f9:37:33:49: 97:25:65:8f:18:3e:16:a1:3f:62:f8:49:27:54:f6: a2:5b:06:83:52:cf:91:f6:a6:e6:10:23:7a:a6:4a: b4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:9C:C1:C1:28:E1:90:B3:18:20:32:8C:D0:72:75:4E:39:60:09:2A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ApzBwSjhkLMYIDKM0HJ1TjlgCSo.roa sbgp-ipAddrBlock: critical IPv4: 220.210.96.0/22 Signature Algorithm: sha256WithRSAEncryption a9:eb:f6:e7:a2:d5:56:51:be:ca:ca:73:bd:d5:cf:fa:d0:51: b0:c4:e7:67:97:73:62:aa:2c:72:d1:1d:04:1f:da:6e:d2:b8: 43:10:ed:6a:25:13:92:9c:63:05:86:9d:a3:09:cf:a0:0f:60: 8d:1a:ca:ec:aa:08:cb:e8:88:9c:ac:10:bb:2e:47:8d:c1:07: 14:8d:09:56:1a:15:e9:e6:10:09:82:c7:fe:48:90:60:22:20: 10:fc:f8:d9:37:e4:54:65:aa:26:5c:30:38:2a:be:74:27:9d: a3:64:13:3d:9f:83:6e:a9:b2:ff:dc:14:3e:f1:62:68:71:54: ae:dc:f4:c7:6c:48:99:42:20:92:4e:1a:e7:0f:e9:50:ef:e5: 26:20:d8:2f:1b:99:a0:68:d3:ae:92:65:07:da:ce:27:75:bf: 70:82:08:2b:ed:4f:eb:7e:c0:4b:6d:b0:59:84:70:86:3c:d6: e7:67:bc:c6:a5:54:35:b8:1b:f0:59:31:96:a6:0d:14:8e:82: 7d:2b:5e:ba:89:ef:42:b6:9f:1d:88:77:3e:7b:a7:59:d1:9a: 0f:d7:4a:6d:d0:2b:60:02:1d:5a:f8:7d:da:b9:54:1b:94:a2: 45:10:cb:41:bf:d4:09:6e:db:ac:88:a9:69:b2:40:33:fc:f1: e6:c2:2c:5b -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICF9gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODA0NDBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDAyOUNDMUMxMjhFMTkw QjMxODIwMzI4Q0QwNzI3NTRFMzk2MDA5MkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdVucxvSE0swZb9WXOoRE1Nph70GrI/BH7EMDOD3W5/ctvums8 jJ/GZHDqjx2K3Vrdm5xtplYT2vntpkwHkLcvhektiKwqWDCxhJCDwmr+71uVE2hT d3O1z8JdleM0KpKDN81vKu7Ji1FpH8HH6sHXDZAGHKgkQieVWJWGRmQ3NiNGNh7r oHJbT09b29Y+vSNFNWLXl47z0gcTDGAKJ4zBb3jvG/sjKgNB5Je1t4EfCxktpiIr 8a9j6ffyBHm9Kjht8/P3VDBdkHKqrVAT/t4nJufFIhXMflhzXkQq+TczSZclZY8Y PhahP2L4SSdU9qJbBoNSz5H2puYQI3qmSrTnAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUApzBwSjhkLMYIDKM0HJ1TjlgCSowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0FwekJ3U2poa0xNWUlES00wSEoxVGpsZ0NTby5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALc0mAwDQYJKoZIhvcNAQELBQADggEB AKnr9uei1VZRvsrKc73Vz/rQUbDE52eXc2KqLHLRHQQf2m7SuEMQ7WolE5KcYwWG naMJz6APYI0ayuyqCMvoiJysELsuR43BBxSNCVYaFenmEAmCx/5IkGAiIBD8+Nk3 5FRlqiZcMDgqvnQnnaNkEz2fg26psv/cFD7xYmhxVK7c9MdsSJlCIJJOGucP6VDv 5SYg2C8bmaBo066SZQfazid1v3CCCCvtT+t+wEttsFmEcIY81udnvMalVDW4G/BZ MZamDRSOgn0rXrqJ70K2nx2Idz57p1nRmg/XSm3QK2ACHVr4fdq5VBuUokUQy0G/ 1Alu26yIqWmyQDP88ebCLFs= -----END CERTIFICATE-----Generated at Tue Apr 7 21:02:11 2026 by rpki-client