$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/HeQ9uDcdIgTVO4riWuw_Rs2MAWs.roa File: HeQ9uDcdIgTVO4riWuw_Rs2MAWs.roa (raw, json) Hash identifier: Q5GKg2mRPY4z2Nk8wN5AvdrXzeR0kcGJUfoGLfzANUw= Subject key identifier: 1D:E4:3D:B8:37:1D:22:04:D5:3B:8A:E2:5A:EC:3F:46:CD:8C:01:6B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1427 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HeQ9uDcdIgTVO4riWuw_Rs2MAWs.roa Signing time: Tue 31 Mar 2026 07:56:56 +0000 ROA not before: Tue 31 Mar 2026 07:56:56 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.182.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5159 (0x1427) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:56:56 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=1DE43DB8371D2204D53B8AE25AEC3F46CD8C016B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b6:18:f5:29:84:0b:d9:ee:50:06:b2:36:19: d7:35:3d:94:c1:c9:5c:5b:82:68:c8:76:8f:38:c0: 0f:41:84:36:0d:2d:d7:fc:c0:7a:f2:c8:4a:0e:3e: db:a0:9e:aa:e7:a7:01:9a:cb:d7:7e:a0:1f:3e:95: a3:91:35:92:7e:20:85:f5:8c:50:0b:d4:9c:ed:01: 5d:32:b7:80:4e:be:42:b1:4b:6e:04:4f:89:72:8e: 96:34:f8:f9:35:dd:90:21:92:88:44:5b:71:02:9a: 5d:b2:de:87:12:a5:13:22:5d:db:ad:8d:27:49:f1: ad:20:eb:e6:67:dc:4c:9b:87:ca:f6:50:fb:cd:ff: 17:db:6d:46:39:cb:9c:14:3e:de:2f:b4:2f:3d:cf: 45:82:ed:19:cc:dc:b9:cc:b4:eb:88:01:58:69:a0: 1c:b4:f3:ad:19:27:10:ce:08:d8:15:f9:0e:be:ff: 8d:cd:93:f4:7d:7f:90:3c:a8:2b:c1:de:a5:bf:01: c3:13:b3:27:64:28:78:81:4f:6d:36:5f:4f:33:9d: c5:67:39:83:2f:7c:b3:d1:ad:dd:2c:9a:31:12:72: 45:64:86:5a:10:23:39:15:25:0c:b2:6a:79:0c:3d: 89:54:be:56:30:56:ea:4b:39:64:38:8b:35:9e:ce: 1a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:E4:3D:B8:37:1D:22:04:D5:3B:8A:E2:5A:EC:3F:46:CD:8C:01:6B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HeQ9uDcdIgTVO4riWuw_Rs2MAWs.roa sbgp-ipAddrBlock: critical IPv4: 1.79.182.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:41:5b:fe:d6:31:1a:51:c3:f1:ce:d5:49:7f:be:b2:7f:62: 45:c1:97:c8:f7:75:34:65:77:b5:48:f3:44:bd:75:ef:88:4c: 72:12:1b:13:99:ea:1a:b2:44:39:ed:8f:b9:d2:cf:f8:79:c7: 25:b9:b8:9b:01:ab:e9:2b:e7:9b:3a:12:01:78:87:37:37:56: e2:5b:c2:20:2e:2b:c1:ee:c1:a0:48:25:78:b7:59:63:2a:e3: 52:65:30:c4:11:13:92:c6:77:de:49:9c:45:b1:f3:d8:c5:ba: 0a:eb:bf:7f:cc:12:e6:64:23:eb:da:83:7b:fd:cb:7a:93:6e: f2:d0:e4:2f:2d:bc:4b:fb:fd:66:bb:f6:55:d1:f5:cb:e7:11: 83:89:be:f6:45:b8:a3:6c:dd:89:e7:24:ad:45:5d:ac:4e:35: 1f:84:b8:f6:45:de:57:22:be:d8:f1:81:2f:6d:21:7a:4f:e8: ad:55:71:de:2e:9a:7e:93:6d:74:8e:26:ac:bc:ba:b9:ce:52: b6:28:53:ec:cb:9e:77:a3:7b:34:33:60:19:35:6f:ab:a4:d7: 67:47:72:b3:ca:cb:f9:c0:e0:53:5e:af:7e:0c:55:d4:4a:e6: e9:24:93:ca:3b:5e:34:93:58:3c:eb:e8:f7:ec:61:e8:24:6a: ca:a3:e9:48 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFCcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU2NTZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDFERTQzREI4MzcxRDIy MDRENTNCOEFFMjVBRUMzRjQ2Q0Q4QzAxNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqthj1KYQL2e5QBrI2Gdc1PZTByVxbgmjIdo84wA9BhDYNLdf8 wHryyEoOPtugnqrnpwGay9d+oB8+laORNZJ+IIX1jFAL1JztAV0yt4BOvkKxS24E T4lyjpY0+Pk13ZAhkohEW3ECml2y3ocSpRMiXdutjSdJ8a0g6+Zn3Eybh8r2UPvN /xfbbUY5y5wUPt4vtC89z0WC7RnM3LnMtOuIAVhpoBy0860ZJxDOCNgV+Q6+/43N k/R9f5A8qCvB3qW/AcMTsydkKHiBT202X08zncVnOYMvfLPRrd0smjESckVkhloQ IzkVJQyyankMPYlUvlYwVupLOWQ4izWezho9AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUHeQ9uDcdIgTVO4riWuw/Rs2MAWswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0hlUTl1RGNkSWdUVk80cmlXdXdfUnMyTUFXcy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEBT7YwDQYJKoZIhvcNAQELBQADggEB AJ5BW/7WMRpRw/HO1Ul/vrJ/YkXBl8j3dTRld7VI80S9de+ITHISGxOZ6hqyRDnt j7nSz/h5xyW5uJsBq+kr55s6EgF4hzc3VuJbwiAuK8HuwaBIJXi3WWMq41JlMMQR E5LGd95JnEWx89jFugrrv3/MEuZkI+vag3v9y3qTbvLQ5C8tvEv7/Wa79lXR9cvn EYOJvvZFuKNs3YnnJK1FXaxONR+EuPZF3lcivtjxgS9tIXpP6K1Vcd4umn6TbXSO Jqy8urnOUrYoU+zLnnejezQzYBk1b6uk12dHcrPKy/nA4FNer34MVdRK5ukkk8o7 XjSTWDzr6PfsYegkasqj6Ug= -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:54 2026 by rpki-client