$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/FXxa1b-dhB9FEfh7d7ybD1bqcDA.roa File: FXxa1b-dhB9FEfh7d7ybD1bqcDA.roa (raw, json) Hash identifier: yHAOlzjFgKvUqGd5WKMprufjgbBA41x8vGHV84kjszg= Subject key identifier: 15:7C:5A:D5:BF:9D:84:1F:45:11:F8:7B:77:BC:9B:0F:56:EA:70:30 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 170D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FXxa1b-dhB9FEfh7d7ybD1bqcDA.roa Signing time: Tue 31 Mar 2026 08:03:02 +0000 ROA not before: Tue 31 Mar 2026 08:03:02 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 110.158.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5901 (0x170d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:03:02 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=157C5AD5BF9D841F4511F87B77BC9B0F56EA7030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:02:70:94:fe:7a:a8:76:22:b6:9d:42:50:62: d4:95:b5:8d:9b:c6:fe:ea:c6:b6:50:a9:89:27:a6: 67:09:35:9e:7c:a5:6b:79:2c:8d:a9:0b:9f:c7:94: 6e:51:55:6d:b8:e8:e4:de:72:f9:fc:ec:d5:14:69: 68:f6:3a:23:e2:1e:0e:9f:fe:98:25:d6:85:1f:87: e9:75:e5:b2:6e:7c:8f:df:d8:dd:52:22:d5:03:90: 71:9f:35:90:a9:29:d3:0a:65:e1:c2:09:dc:08:79: 61:55:e0:19:4f:05:d7:57:91:2e:8e:32:36:97:bd: 51:cb:68:2c:49:64:99:74:5e:23:b6:ca:08:37:a1: 07:7c:2f:88:94:bd:ef:bc:ca:06:75:60:bf:72:7f: d1:41:b7:ce:6f:04:fd:a7:65:2c:c7:79:d9:87:ad: 74:29:8c:eb:bb:43:de:ef:5f:38:47:58:77:ad:e6: 42:fa:54:d5:3e:b7:f1:0b:98:25:6e:66:79:4d:91: 47:7f:e6:d2:9b:1e:4a:0a:af:c7:ef:77:c4:a2:3f: 24:5f:19:7c:53:04:30:22:3c:4e:18:89:6c:60:0e: d7:e0:9e:5a:71:27:a7:4e:f9:6f:bd:1c:80:2d:e8: 8d:fd:53:4a:9a:07:ed:95:37:f2:6d:1e:7b:b1:a2: 49:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:7C:5A:D5:BF:9D:84:1F:45:11:F8:7B:77:BC:9B:0F:56:EA:70:30 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FXxa1b-dhB9FEfh7d7ybD1bqcDA.roa sbgp-ipAddrBlock: critical IPv4: 110.158.128.0/24 Signature Algorithm: sha256WithRSAEncryption 85:86:3b:c6:3e:e1:c6:cc:f8:26:95:6a:c0:31:fc:cd:f5:d0: 62:9b:f5:06:9f:ac:fe:77:7c:1f:d8:18:67:8b:69:fc:e3:1c: 25:8c:51:af:d6:b3:23:4f:75:f0:79:5d:4c:63:6c:74:77:4f: b7:4a:6a:a5:2d:79:6e:c3:2f:d8:e7:79:a8:54:e2:3d:3b:89: 27:4e:4f:98:a2:9a:cf:77:bc:75:36:fd:d9:f6:34:09:1a:2b: 38:fd:37:28:bc:85:4a:f7:61:9f:d7:4e:82:5b:c6:45:0a:49: fd:aa:4d:ca:bb:f2:1c:87:3c:cf:fd:99:aa:4a:67:67:6e:b5: 3d:70:65:1a:c7:89:8d:81:c4:53:fc:fe:90:2a:86:61:a4:68: 6f:78:17:6a:ea:87:75:63:53:83:87:da:1f:d9:75:18:e9:55: ea:6c:ca:7e:c6:6e:e5:f9:90:26:37:17:4c:4c:7f:64:ca:6d: 76:35:ba:54:57:8d:19:4e:5f:3f:f3:39:55:ba:a2:14:ed:58: 55:2e:44:07:4c:5e:db:f6:83:5a:d1:4d:aa:60:ef:f1:b9:02: b6:5e:45:ab:d5:65:3d:e2:52:15:4e:ad:45:b6:84:90:a2:c7: 54:d6:9f:e0:8a:03:ba:24:57:6d:03:15:3f:2d:50:7a:90:f5: 50:da:70:d3 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFw0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAzMDJaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDE1N0M1QUQ1QkY5RDg0 MUY0NTExRjg3Qjc3QkM5QjBGNTZFQTcwMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6AnCU/nqodiK2nUJQYtSVtY2bxv7qxrZQqYknpmcJNZ58pWt5 LI2pC5/HlG5RVW246OTecvn87NUUaWj2OiPiHg6f/pgl1oUfh+l15bJufI/f2N1S ItUDkHGfNZCpKdMKZeHCCdwIeWFV4BlPBddXkS6OMjaXvVHLaCxJZJl0XiO2ygg3 oQd8L4iUve+8ygZ1YL9yf9FBt85vBP2nZSzHedmHrXQpjOu7Q97vXzhHWHet5kL6 VNU+t/ELmCVuZnlNkUd/5tKbHkoKr8fvd8SiPyRfGXxTBDAiPE4YiWxgDtfgnlpx J6dO+W+9HIAt6I39U0qaB+2VN/JtHnuxokm7AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUFXxa1b+dhB9FEfh7d7ybD1bqcDAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0ZYeGExYi1kaEI5RkVmaDdkN3liRDFicWNEQS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABunoAwDQYJKoZIhvcNAQELBQADggEB AIWGO8Y+4cbM+CaVasAx/M310GKb9QafrP53fB/YGGeLafzjHCWMUa/WsyNPdfB5 XUxjbHR3T7dKaqUteW7DL9jneahU4j07iSdOT5iims93vHU2/dn2NAkaKzj9Nyi8 hUr3YZ/XToJbxkUKSf2qTcq78hyHPM/9mapKZ2dutT1wZRrHiY2BxFP8/pAqhmGk aG94F2rqh3VjU4OH2h/ZdRjpVepsyn7GbuX5kCY3F0xMf2TKbXY1ulRXjRlOXz/z OVW6ohTtWFUuRAdMXtv2g1rRTapg7/G5ArZeRavVZT3iUhVOrUW2hJCix1TWn+CK A7okV20DFT8tUHqQ9VDacNM= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:35 2026 by rpki-client