$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/BUXHUoI4aoEFEWRSt3n9y9QiDoQ.roa File: BUXHUoI4aoEFEWRSt3n9y9QiDoQ.roa (raw, json) Hash identifier: M8KGqdem0mnnxA7Uduw99224nFTC7yAJH3aDAtRhN6I= Subject key identifier: 05:45:C7:52:82:38:6A:81:05:11:64:52:B7:79:FD:CB:D4:22:0E:84 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1443 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BUXHUoI4aoEFEWRSt3n9y9QiDoQ.roa Signing time: Tue 31 Mar 2026 07:57:12 +0000 ROA not before: Tue 31 Mar 2026 07:57:12 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.78.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5187 (0x1443) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:57:12 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=0545C75282386A8105116452B779FDCBD4220E84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5d:e5:03:e4:f2:0f:e9:2b:9c:df:62:b7:1d: e4:79:28:c1:61:a8:5d:f5:b4:0b:3f:e6:43:26:15: db:8f:f7:02:61:64:a9:1a:8a:39:b7:c3:12:f0:3a: 93:8e:45:93:d2:1c:4d:cd:98:94:9b:5e:10:39:e5: 38:65:53:fd:46:39:b9:e3:b9:46:3e:ba:93:12:72: b8:a6:55:d4:95:a5:2c:a9:aa:58:12:f0:3a:bc:65: f6:14:87:b6:36:6e:08:de:1c:ad:f3:51:22:cc:10: a8:e0:d6:ad:d8:88:58:33:22:63:19:d3:07:d5:c2: f5:b0:0a:ff:a5:eb:09:b3:f9:92:9b:8c:40:66:84: f1:90:5a:c2:0d:95:c7:e2:a2:86:ac:f7:3f:39:ec: dc:75:51:8f:55:84:dd:d0:e7:6f:29:6e:88:2f:00: e0:8f:87:5d:3a:0e:e3:63:87:0e:07:e1:6b:fd:f7: 2f:fe:6b:d4:29:23:68:cc:be:16:46:b9:5a:ec:2a: 13:2c:54:06:9e:74:d8:6f:a1:09:59:0d:7f:74:d3: eb:e3:8b:e9:d6:f0:95:87:78:57:de:fa:9e:59:8f: 60:ac:4e:6d:ff:64:e3:29:d6:b5:de:e9:15:3e:58: 7f:4f:5c:de:ac:c9:ad:6e:77:ad:dd:bd:38:33:2b: a3:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:45:C7:52:82:38:6A:81:05:11:64:52:B7:79:FD:CB:D4:22:0E:84 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BUXHUoI4aoEFEWRSt3n9y9QiDoQ.roa sbgp-ipAddrBlock: critical IPv4: 1.78.0.0/23 Signature Algorithm: sha256WithRSAEncryption 29:ec:fe:f0:2a:79:bc:36:6c:39:b2:d6:9e:6d:06:be:25:fd: 5b:69:a5:57:9d:5f:cd:0e:86:8b:50:a1:a7:59:65:ae:2e:09: ca:bf:d7:67:e7:f0:5b:11:ec:b1:7e:48:0e:9f:6e:b9:86:49: 32:86:86:2f:7e:3b:5d:9e:fe:de:19:16:fe:4a:b5:33:f2:ad: be:d3:37:d7:ad:dd:03:90:dd:d0:ae:05:00:a6:8c:8b:62:c9: 67:15:4b:85:37:04:23:15:da:90:64:c2:5a:a9:b1:b5:ab:c5: 59:f3:41:09:36:ef:f0:ee:ec:31:d2:97:74:40:06:f5:05:aa: db:90:74:17:25:76:a4:88:99:99:ee:b3:54:e4:6d:fd:4e:b6: cc:5e:41:ba:8d:03:bd:0f:4b:40:b8:7b:dd:2a:7a:60:d2:30: 8b:cc:4f:9e:4a:9a:49:26:10:cb:c7:ba:f8:ed:3c:11:e1:b2: 59:bb:ce:d8:24:bb:4e:02:dc:44:f6:c1:24:22:ea:aa:f1:ec: c0:93:bb:c7:da:63:4c:43:44:4a:83:f9:c2:64:53:33:0f:f5: 63:61:0b:b3:38:9d:c2:37:8e:19:c5:19:5b:38:a6:96:17:49: b0:53:22:a1:20:14:57:2f:f4:b5:7f:ec:41:36:a6:58:ef:2d: 4c:fc:d8:63 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFEMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU3MTJaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA1NDVDNzUyODIzODZB ODEwNTExNjQ1MkI3NzlGRENCRDQyMjBFODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBXeUD5PIP6Suc32K3HeR5KMFhqF31tAs/5kMmFduP9wJhZKka ijm3wxLwOpOORZPSHE3NmJSbXhA55ThlU/1GObnjuUY+upMScrimVdSVpSypqlgS 8Dq8ZfYUh7Y2bgjeHK3zUSLMEKjg1q3YiFgzImMZ0wfVwvWwCv+l6wmz+ZKbjEBm hPGQWsINlcfiooas9z857Nx1UY9VhN3Q528pbogvAOCPh106DuNjhw4H4Wv99y/+ a9QpI2jMvhZGuVrsKhMsVAaedNhvoQlZDX900+vji+nW8JWHeFfe+p5Zj2CsTm3/ ZOMp1rXe6RU+WH9PXN6sya1ud63dvTgzK6PlAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUBUXHUoI4aoEFEWRSt3n9y9QiDoQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0JVWEhVb0k0YW9FRkVXUlN0M245eTlRaURvUS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEBTgAwDQYJKoZIhvcNAQELBQADggEB ACns/vAqebw2bDmy1p5tBr4l/VtppVedX80OhotQoadZZa4uCcq/12fn8FsR7LF+ SA6fbrmGSTKGhi9+O12e/t4ZFv5KtTPyrb7TN9et3QOQ3dCuBQCmjItiyWcVS4U3 BCMV2pBkwlqpsbWrxVnzQQk27/Du7DHSl3RABvUFqtuQdBcldqSImZnus1Tkbf1O tsxeQbqNA70PS0C4e90qemDSMIvMT55KmkkmEMvHuvjtPBHhslm7ztgku04C3ET2 wSQi6qrx7MCTu8faY0xDREqD+cJkUzMP9WNhC7M4ncI3jhnFGVs4ppYXSbBTIqEg FFcv9LV/7EE2pljvLUz82GM= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:13 2026 by rpki-client