$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/DFcFoL8x5extZcPj8NV9DLGrVYM.roa File: DFcFoL8x5extZcPj8NV9DLGrVYM.roa (raw, json) Hash identifier: R91TmG9KXEEuqhYoerX4MPlmYxQjL2gePshg1w5FTb0= Subject key identifier: 0C:57:05:A0:BF:31:E5:EC:6D:65:C3:E3:F0:D5:7D:0C:B1:AB:55:83 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 180F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DFcFoL8x5extZcPj8NV9DLGrVYM.roa Signing time: Tue 31 Mar 2026 08:05:13 +0000 ROA not before: Tue 31 Mar 2026 08:05:13 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.76.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6159 (0x180f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:05:13 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=0C5705A0BF31E5EC6D65C3E3F0D57D0CB1AB5583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:60:b9:40:b7:6e:39:9f:86:ce:72:08:9c:c4: b4:6a:db:c1:26:44:6d:ce:0c:2b:96:17:54:fc:0d: b4:5c:8b:50:76:59:2a:48:24:33:4d:68:84:53:6b: 0d:b3:21:57:85:72:05:36:6b:18:35:93:3a:ca:e5: 65:4a:34:bb:d8:a7:9b:93:f5:33:15:15:c4:aa:9b: a3:9c:01:d2:9d:b0:5b:4e:95:f7:bd:9d:c6:eb:5d: c0:78:6d:37:1b:44:82:ce:3f:5c:db:80:69:c4:21: 7a:0c:58:b5:f5:23:84:15:cc:c4:81:7d:de:cc:ab: ff:ce:83:3e:dc:98:34:96:d2:77:1c:06:05:41:a8: bc:2f:8b:d6:74:6d:68:67:01:ed:24:b9:8d:da:b9: 70:ce:0e:60:21:9d:58:3b:dc:05:c7:b7:22:76:5f: 84:9d:2e:e0:44:aa:df:bd:ee:e9:d6:e4:6c:e0:d6: 52:f9:2b:ba:d7:65:69:b2:6e:db:dc:8e:77:44:0b: 87:87:cf:a1:08:54:96:86:9d:29:84:e6:66:a0:f4: 58:82:05:d3:df:0f:ca:b6:8e:bc:a8:e3:0c:7e:eb: e2:9a:3e:d3:14:16:e5:4c:24:75:f6:9e:bc:d1:af: 65:fb:2e:ef:2e:ac:9d:bc:39:f3:74:c7:d5:94:74: 8c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:57:05:A0:BF:31:E5:EC:6D:65:C3:E3:F0:D5:7D:0C:B1:AB:55:83 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DFcFoL8x5extZcPj8NV9DLGrVYM.roa sbgp-ipAddrBlock: critical IPv4: 1.76.12.0/22 Signature Algorithm: sha256WithRSAEncryption e1:00:da:f7:f7:b2:01:42:d0:d7:63:66:51:68:23:65:e1:7f: 7f:d5:0c:ed:be:93:0c:a6:fd:1d:d2:c3:ee:74:84:d6:c6:e9: b2:09:95:ae:43:d2:fc:af:16:c3:a9:b3:aa:8b:14:71:98:db: 5c:94:09:1f:b6:cb:e4:0b:0a:d2:63:d5:df:42:b4:be:10:41: 25:ce:96:a5:77:58:81:f9:23:b0:13:49:85:a0:57:72:e0:18: df:c1:aa:64:88:5a:18:81:77:2e:79:f8:30:56:32:08:5b:66: 8e:b0:d3:75:81:01:3d:4d:64:6c:28:5b:cb:5c:6e:81:45:1a: 35:1c:d1:c5:c1:6d:b0:fb:84:0e:96:1d:8c:2f:e6:a7:81:66: 90:cc:5f:a7:d0:cc:fb:e1:89:71:fc:cb:c7:fc:bc:0e:96:aa: bb:6f:03:7d:57:fb:0a:6e:02:23:87:08:81:bf:06:52:5e:e0: d5:31:33:fb:77:d6:e9:be:c9:0b:a4:2b:b5:88:3c:04:fb:a5: 9a:d4:fa:03:98:c1:00:2c:90:0a:95:45:22:84:83:27:62:2f: bd:ae:5c:27:0c:dc:9f:21:fa:44:00:69:04:ad:a7:bc:a2:e6: d8:0f:15:f2:b3:5e:c8:10:d8:dc:b5:42:50:70:a0:44:a9:d2: fb:4e:06:20 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICGA8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODA1MTNaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDBDNTcwNUEwQkYzMUU1 RUM2RDY1QzNFM0YwRDU3RDBDQjFBQjU1ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkYLlAt245n4bOcgicxLRq28EmRG3ODCuWF1T8DbRci1B2WSpI JDNNaIRTaw2zIVeFcgU2axg1kzrK5WVKNLvYp5uT9TMVFcSqm6OcAdKdsFtOlfe9 ncbrXcB4bTcbRILOP1zbgGnEIXoMWLX1I4QVzMSBfd7Mq//Ogz7cmDSW0nccBgVB qLwvi9Z0bWhnAe0kuY3auXDODmAhnVg73AXHtyJ2X4SdLuBEqt+97unW5Gzg1lL5 K7rXZWmybtvcjndEC4eHz6EIVJaGnSmE5mag9FiCBdPfD8q2jryo4wx+6+KaPtMU FuVMJHX2nrzRr2X7Lu8urJ28OfN0x9WUdIyfAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUDFcFoL8x5extZcPj8NV9DLGrVYMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0RGY0ZvTDh4NWV4dFpjUGo4TlY5RExHclZZTS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIBTAwwDQYJKoZIhvcNAQELBQADggEB AOEA2vf3sgFC0NdjZlFoI2Xhf3/VDO2+kwym/R3Sw+50hNbG6bIJla5D0vyvFsOp s6qLFHGY21yUCR+2y+QLCtJj1d9CtL4QQSXOlqV3WIH5I7ATSYWgV3LgGN/BqmSI WhiBdy55+DBWMghbZo6w03WBAT1NZGwoW8tcboFFGjUc0cXBbbD7hA6WHYwv5qeB ZpDMX6fQzPvhiXH8y8f8vA6WqrtvA31X+wpuAiOHCIG/BlJe4NUxM/t31um+yQuk K7WIPAT7pZrU+gOYwQAskAqVRSKEgydiL72uXCcM3J8h+kQAaQStp7yi5tgPFfKz XsgQ2Ny1QlBwoESp0vtOBiA= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:38 2026 by rpki-client