$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/FAEhdRlQEdZfl1P991GZtNgZOOA.roa File: FAEhdRlQEdZfl1P991GZtNgZOOA.roa (raw, json) Hash identifier: 6/AcuThJ9Gbb8x9Y8ggBemMoeKx9JPvKgPcofbmqA0s= Subject key identifier: 14:01:21:75:19:50:11:D6:5F:97:53:FD:F7:51:99:B4:D8:19:38:E0 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 13B4 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FAEhdRlQEdZfl1P991GZtNgZOOA.roa Signing time: Tue 31 Mar 2026 07:56:08 +0000 ROA not before: Tue 31 Mar 2026 07:56:08 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5044 (0x13b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:56:08 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=14012175195011D65F9753FDF75199B4D81938E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:79:88:fc:c8:4e:39:76:cd:bf:63:2b:1a:42: 91:0b:22:00:8c:75:9f:50:bb:9e:4a:60:30:20:6f: c9:2b:7e:f4:af:b3:1a:26:0c:d4:95:bb:ef:eb:ca: 1c:84:02:ee:b2:1e:ae:04:a2:84:d0:5e:d1:ea:a3: 51:44:6b:2e:04:34:40:4e:06:25:e2:bc:8b:99:19: 56:ee:a4:73:68:25:9b:f4:6c:f2:eb:9c:85:c3:75: de:24:cc:53:7b:10:56:28:93:1f:b8:8b:7d:19:17: 55:8c:8c:97:50:b8:df:66:1e:8f:35:d4:d1:84:78: 51:86:88:f0:a3:88:a2:09:f1:d9:91:89:0b:19:5a: f8:d9:5f:92:de:e7:2e:c1:49:57:6e:2e:43:f6:6e: 5f:f9:8c:61:d3:de:dd:81:18:bd:12:d1:5c:27:df: fd:20:2f:60:02:dc:ea:62:24:ad:4b:b2:6f:82:8d: fe:b1:e3:3a:58:84:7b:37:15:41:9c:c7:5d:a3:e5: c2:62:e2:99:94:63:77:f3:26:58:e0:f3:2d:c9:5b: 20:f5:96:c3:6b:9e:fb:ea:fc:13:2f:99:db:cb:bd: 3b:ee:f9:61:73:6d:4d:2b:9c:c0:78:02:5e:f9:7f: 92:9d:a4:53:73:3d:fa:8f:e3:b7:51:8b:80:e8:c2: a5:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:01:21:75:19:50:11:D6:5F:97:53:FD:F7:51:99:B4:D8:19:38:E0 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FAEhdRlQEdZfl1P991GZtNgZOOA.roa sbgp-ipAddrBlock: critical IPv4: 1.75.4.0/22 Signature Algorithm: sha256WithRSAEncryption 16:d8:e6:1c:c0:3b:9a:91:1f:3f:a1:bc:d0:0e:9f:65:9c:9f: ca:a6:d8:f0:85:4a:7b:c0:ac:a2:1d:4d:f1:ae:00:f1:9d:6a: 6a:97:d0:52:70:1b:43:9a:73:b2:f5:c5:e0:f9:f3:3b:8f:2c: 11:9f:d3:8e:da:da:b6:f3:62:4f:25:8b:5e:3a:d9:bb:ef:36: d2:47:98:b2:87:e6:e3:68:c5:61:1b:23:b1:05:9d:d9:80:e2: ff:29:91:ae:9d:f5:e6:d9:e8:df:8e:32:45:1c:2e:3c:81:b2: 20:34:4f:cb:04:5a:e4:84:4d:e6:8d:79:af:36:b3:08:8e:86: 72:64:e0:24:60:c2:5f:ab:95:02:52:43:a4:4e:80:4e:b7:fd: 50:c7:54:33:d3:0d:d0:7f:76:50:a7:4b:be:47:a4:26:f2:04: 41:83:45:b9:e1:a9:b3:16:05:24:56:7e:1d:98:6d:ee:97:bf: 25:a2:54:09:f7:6e:35:8f:34:af:66:e0:34:d2:79:28:01:16: d6:5b:90:d9:15:05:c4:ef:3f:01:4a:46:56:8b:2c:bd:53:bb: 1a:24:90:3c:69:2e:3c:e2:05:31:8c:43:ca:89:16:0b:6f:1e: f8:d8:1a:27:e5:7e:14:db:73:8b:61:52:6f:1e:f3:d8:15:18: 76:5c:42:08 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICE7QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU2MDhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDE0MDEyMTc1MTk1MDEx RDY1Rjk3NTNGREY3NTE5OUI0RDgxOTM4RTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4eYj8yE45ds2/YysaQpELIgCMdZ9Qu55KYDAgb8krfvSvsxom DNSVu+/ryhyEAu6yHq4EooTQXtHqo1FEay4ENEBOBiXivIuZGVbupHNoJZv0bPLr nIXDdd4kzFN7EFYokx+4i30ZF1WMjJdQuN9mHo811NGEeFGGiPCjiKIJ8dmRiQsZ WvjZX5Le5y7BSVduLkP2bl/5jGHT3t2BGL0S0Vwn3/0gL2AC3OpiJK1Lsm+Cjf6x 4zpYhHs3FUGcx12j5cJi4pmUY3fzJljg8y3JWyD1lsNrnvvq/BMvmdvLvTvu+WFz bU0rnMB4Al75f5KdpFNzPfqP47dRi4DowqVfAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUFAEhdRlQEdZfl1P991GZtNgZOOAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0ZBRWhkUmxRRWRaZmwxUDk5MUdadE5nWk9PQS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIBSwQwDQYJKoZIhvcNAQELBQADggEB ABbY5hzAO5qRHz+hvNAOn2Wcn8qm2PCFSnvArKIdTfGuAPGdamqX0FJwG0Oac7L1 xeD58zuPLBGf047a2rbzYk8li1462bvvNtJHmLKH5uNoxWEbI7EFndmA4v8pka6d 9ebZ6N+OMkUcLjyBsiA0T8sEWuSETeaNea82swiOhnJk4CRgwl+rlQJSQ6ROgE63 /VDHVDPTDdB/dlCnS75HpCbyBEGDRbnhqbMWBSRWfh2Ybe6XvyWiVAn3bjWPNK9m 4DTSeSgBFtZbkNkVBcTvPwFKRlaLLL1TuxokkDxpLjziBTGMQ8qJFgtvHvjYGifl fhTbc4thUm8e89gVGHZcQgg= -----END CERTIFICATE-----Generated at Tue Apr 7 21:01:40 2026 by rpki-client