$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/H7dNKuHGztpiBT6w9OdS7wvTpik.roa File: H7dNKuHGztpiBT6w9OdS7wvTpik.roa (raw, json) Hash identifier: 9iB495Cp+tnEdxrx1vBMXEaXG6onvsM6Y+0lJsVwkSc= Subject key identifier: 1F:B7:4D:2A:E1:C6:CE:DA:62:05:3E:B0:F4:E7:52:EF:0B:D3:A6:29 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1549 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/H7dNKuHGztpiBT6w9OdS7wvTpik.roa Signing time: Tue 31 Mar 2026 07:59:20 +0000 ROA not before: Tue 31 Mar 2026 07:59:20 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 27.230.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5449 (0x1549) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:59:20 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=1FB74D2AE1C6CEDA62053EB0F4E752EF0BD3A629 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0c:8c:76:a2:a0:20:fd:cf:10:0b:36:84:73: 17:ec:6f:98:a0:69:ae:e5:b9:87:3e:ad:47:e2:37: c8:a7:fb:58:19:cd:98:f5:7b:c5:66:4b:92:5f:40: fd:27:21:f3:a1:f4:d0:6e:a4:82:54:8d:05:22:33: cd:3a:b7:12:33:42:cd:82:ed:af:6a:ea:ba:2e:eb: 34:f3:93:90:03:93:4f:84:04:14:6f:af:9b:a5:a0: b9:1e:b6:1a:0b:38:52:23:83:64:55:99:dc:6b:c2: f4:62:cb:de:03:90:0e:68:f4:3b:a1:d0:44:d0:82: 9d:2f:1e:b3:ef:94:a2:f7:77:66:0d:19:76:be:3e: ca:5d:f0:9b:08:e2:eb:4e:5b:45:93:e1:fe:93:e8: 3f:f3:af:9e:d7:1f:ca:79:36:6b:25:ad:67:9d:db: 3e:7f:90:27:7b:b8:21:77:77:55:3b:24:6e:a7:2b: 2f:83:f8:cf:cb:9f:fa:1f:4e:97:06:a4:85:1c:48: 2c:ae:a6:c9:3a:e7:3a:68:fe:ae:f2:01:96:90:23: ee:17:5d:e7:10:7f:60:d1:b8:ee:45:83:fe:44:96: bf:9c:84:d0:6a:15:9c:79:a0:e0:8b:d0:3d:7b:df: 2b:e1:6c:a4:05:ff:30:4a:fe:cf:a0:a0:dd:da:7c: 9f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:B7:4D:2A:E1:C6:CE:DA:62:05:3E:B0:F4:E7:52:EF:0B:D3:A6:29 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/H7dNKuHGztpiBT6w9OdS7wvTpik.roa sbgp-ipAddrBlock: critical IPv4: 27.230.56.0/21 Signature Algorithm: sha256WithRSAEncryption 58:a5:4e:16:ad:d2:a2:96:e9:f4:56:56:71:c8:f2:69:5f:93: 09:33:51:d6:17:22:21:a8:4b:31:d5:89:e0:bd:82:25:92:38: b2:5b:54:0f:64:87:e0:c0:01:a3:61:c4:0f:27:f0:63:d6:c7: 03:9c:6b:67:9a:31:9a:59:79:57:93:03:0e:07:2a:82:a6:21: a9:f9:e1:9f:b5:d8:76:f4:52:2b:51:11:fb:51:83:21:79:92: ce:1e:99:8f:f0:29:e2:97:1b:42:0f:24:c8:ad:e1:c1:94:3d: 6e:b5:21:53:40:45:68:d1:75:a5:a8:1d:b0:04:b3:d2:28:5a: 59:38:a9:29:2f:f9:b8:f1:c2:76:47:a5:f3:e0:bf:ec:27:57: 4c:f5:cc:04:f2:f9:02:3e:ef:0e:9f:20:0c:20:02:0d:55:b8: 7c:31:8c:76:82:3b:57:51:d7:91:54:0a:03:bd:0c:31:79:c0: 5c:54:b6:ad:31:50:5b:5e:45:97:e8:34:fa:06:21:81:fc:6a: 68:f0:c5:7b:9d:0f:a2:ee:66:e9:d3:e9:3d:d4:d0:6e:1d:92: cd:d9:97:93:79:1f:c2:c2:20:4e:37:aa:f6:34:d4:81:57:35: c3:6b:46:98:b9:9b:d8:98:a2:eb:8e:41:5c:ff:aa:4b:52:3b: 06:95:15:b2 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFUkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU5MjBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDFGQjc0RDJBRTFDNkNF REE2MjA1M0VCMEY0RTc1MkVGMEJEM0E2MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYDIx2oqAg/c8QCzaEcxfsb5igaa7luYc+rUfiN8in+1gZzZj1 e8VmS5JfQP0nIfOh9NBupIJUjQUiM806txIzQs2C7a9q6rou6zTzk5ADk0+EBBRv r5uloLkethoLOFIjg2RVmdxrwvRiy94DkA5o9Duh0ETQgp0vHrPvlKL3d2YNGXa+ Pspd8JsI4utOW0WT4f6T6D/zr57XH8p5NmslrWed2z5/kCd7uCF3d1U7JG6nKy+D +M/Ln/ofTpcGpIUcSCyupsk65zpo/q7yAZaQI+4XXecQf2DRuO5Fg/5Elr+chNBq FZx5oOCL0D173yvhbKQF/zBK/s+goN3afJ8RAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUH7dNKuHGztpiBT6w9OdS7wvTpikwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0g3ZE5LdUhHenRwaUJUNnc5T2RTN3d2VHBpay5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMb5jgwDQYJKoZIhvcNAQELBQADggEB AFilThat0qKW6fRWVnHI8mlfkwkzUdYXIiGoSzHVieC9giWSOLJbVA9kh+DAAaNh xA8n8GPWxwOca2eaMZpZeVeTAw4HKoKmIan54Z+12Hb0UitREftRgyF5ks4emY/w KeKXG0IPJMit4cGUPW61IVNARWjRdaWoHbAEs9IoWlk4qSkv+bjxwnZHpfPgv+wn V0z1zATy+QI+7w6fIAwgAg1VuHwxjHaCO1dR15FUCgO9DDF5wFxUtq0xUFteRZfo NPoGIYH8amjwxXudD6LuZunT6T3U0G4dks3Zl5N5H8LCIE43qvY01IFXNcNrRpi5 m9iYouuOQVz/qktSOwaVFbI= -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:02 2026 by rpki-client