$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/GbxdOp7JkS7ptIrSFOVtsXAGpk8.roa File: GbxdOp7JkS7ptIrSFOVtsXAGpk8.roa (raw, json) Hash identifier: s0L8Hs1/HzlZEQy6Ru2ZaIhltf2o6mko5dqp/nutSjo= Subject key identifier: 19:BC:5D:3A:9E:C9:91:2E:E9:B4:8A:D2:14:E5:6D:B1:70:06:A6:4F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1524 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GbxdOp7JkS7ptIrSFOVtsXAGpk8.roa Signing time: Tue 31 Mar 2026 07:59:00 +0000 ROA not before: Tue 31 Mar 2026 07:59:00 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.208.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5412 (0x1524) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:59:00 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=19BC5D3A9EC9912EE9B48AD214E56DB17006A64F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:c4:f9:a4:38:2a:fe:5e:c5:85:63:24:8d:0c: 6f:7d:e8:43:87:00:ee:5d:b3:08:e3:b2:86:e0:70: 19:87:d3:9a:05:03:94:a9:02:f6:c9:9b:1c:ea:4e: 46:c3:69:58:a5:82:61:a5:27:39:fd:67:16:09:38: 74:7a:c1:e6:71:12:1e:6b:b4:ce:55:3f:b7:7d:58: 2a:42:d6:0d:85:b8:1d:38:25:81:5e:24:a8:23:86: a0:6e:a4:f8:2a:0c:d1:4b:b1:3e:3c:1e:d7:70:76: e5:1c:6a:f5:c7:6c:2c:4d:de:24:27:78:be:e2:df: 80:ad:53:7c:1b:ee:db:ca:c2:35:4a:4d:ce:5d:11: f2:ac:11:77:ec:3e:d5:2a:29:34:43:aa:99:ad:75: 4c:f3:3d:4f:b7:18:61:22:59:41:ae:63:e9:9c:6f: 75:d7:40:d8:f6:56:f5:b2:b8:1f:46:4d:08:ef:73: 10:73:15:f9:bd:09:6d:8e:c9:ae:ae:a3:2a:b7:5e: 79:e0:cd:bc:4e:09:21:ab:5c:ff:83:6f:ea:1a:b3: 0e:69:d4:d6:51:4c:ee:62:8d:7f:e4:81:d2:8a:02: a5:33:76:1a:6d:9a:f9:31:9d:87:b5:44:f1:46:40: 0b:4f:e8:c2:8b:60:89:4d:64:84:45:e0:84:aa:12: 28:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:BC:5D:3A:9E:C9:91:2E:E9:B4:8A:D2:14:E5:6D:B1:70:06:A6:4F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GbxdOp7JkS7ptIrSFOVtsXAGpk8.roa sbgp-ipAddrBlock: critical IPv4: 220.159.208.0/21 Signature Algorithm: sha256WithRSAEncryption bb:28:5b:f3:36:c5:bf:91:02:23:6a:29:e1:c7:78:cd:94:20: 01:ef:0e:db:22:55:2a:b6:a8:d7:9d:5f:77:a5:c3:d0:4f:44: 85:f5:a7:99:5c:ed:73:ae:34:94:4f:88:65:94:bf:a9:ee:b5: f6:85:1b:70:a3:6b:6a:f6:a3:b5:81:45:62:70:98:b1:21:14: d6:b9:70:8d:cb:bc:55:ad:31:fe:5b:07:7f:1e:6e:3a:0d:a5: ed:0e:d7:eb:8d:f4:80:45:51:9d:e6:d5:b2:43:62:5e:2d:8d: 7a:b9:a4:97:8c:d9:51:bb:cd:3e:58:87:8f:58:59:13:33:3d: 98:ce:85:90:1b:96:6d:3d:da:2c:f0:46:61:e8:cd:d7:a7:8d: ec:34:16:f7:de:c3:e6:71:ad:f0:8b:24:ef:48:ad:0d:0c:e1: 0a:df:97:ae:21:ac:30:05:87:63:db:c1:ad:63:c7:6c:14:b9: 7d:ad:73:b8:f2:51:a9:07:9e:86:13:ce:45:5b:21:78:3e:fe: 43:56:1c:80:33:7b:22:88:e4:57:82:ad:20:03:78:ed:6b:c3: 8f:6b:89:eb:ca:69:d7:29:0c:4f:30:1c:a1:d0:72:db:93:d0: b7:32:7d:80:a7:24:dc:d7:10:c0:8a:a5:68:99:b8:dc:21:ff: 9d:d5:24:e8 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFSQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU5MDBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDE5QkM1RDNBOUVDOTkx MkVFOUI0OEFEMjE0RTU2REIxNzAwNkE2NEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYxPmkOCr+XsWFYySNDG996EOHAO5dswjjsobgcBmH05oFA5Sp AvbJmxzqTkbDaVilgmGlJzn9ZxYJOHR6weZxEh5rtM5VP7d9WCpC1g2FuB04JYFe JKgjhqBupPgqDNFLsT48HtdwduUcavXHbCxN3iQneL7i34CtU3wb7tvKwjVKTc5d EfKsEXfsPtUqKTRDqpmtdUzzPU+3GGEiWUGuY+mcb3XXQNj2VvWyuB9GTQjvcxBz Ffm9CW2Oya6uoyq3XnngzbxOCSGrXP+Db+oasw5p1NZRTO5ijX/kgdKKAqUzdhpt mvkxnYe1RPFGQAtP6MKLYIlNZIRF4ISqEig/AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUGbxdOp7JkS7ptIrSFOVtsXAGpk8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0dieGRPcDdKa1M3cHRJclNGT1Z0c1hBR3BrOC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPcn9AwDQYJKoZIhvcNAQELBQADggEB ALsoW/M2xb+RAiNqKeHHeM2UIAHvDtsiVSq2qNedX3elw9BPRIX1p5lc7XOuNJRP iGWUv6nutfaFG3Cja2r2o7WBRWJwmLEhFNa5cI3LvFWtMf5bB38ebjoNpe0O1+uN 9IBFUZ3m1bJDYl4tjXq5pJeM2VG7zT5Yh49YWRMzPZjOhZAblm092izwRmHozden jew0Fvfew+ZxrfCLJO9IrQ0M4Qrfl64hrDAFh2Pbwa1jx2wUuX2tc7jyUakHnoYT zkVbIXg+/kNWHIAzeyKI5FeCrSADeO1rw49rievKadcpDE8wHKHQctuT0LcyfYCn JNzXEMCKpWiZuNwh/53VJOg= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:38 2026 by rpki-client