$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/I1IQtASQID0TVH50kDGRNTePsDg.roa File: I1IQtASQID0TVH50kDGRNTePsDg.roa (raw, json) Hash identifier: DVZ/YFObktR1pru6LKGG25tZiLlx8NThqxTxPYEpXXY= Subject key identifier: 23:52:10:B4:04:90:20:3D:13:54:7E:74:90:31:91:35:37:8F:B0:38 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 14D2 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/I1IQtASQID0TVH50kDGRNTePsDg.roa Signing time: Tue 31 Mar 2026 07:58:22 +0000 ROA not before: Tue 31 Mar 2026 07:58:22 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.80.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5330 (0x14d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:58:22 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=235210B40490203D13547E7490319135378FB038 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:34:f1:56:9c:90:19:2d:3c:5f:e7:97:36:fe: 43:35:e7:5f:b3:7d:2b:1e:4a:1f:d2:b6:d6:e8:ea: 58:9d:f6:0c:c8:d1:37:a6:f5:5b:c6:7e:e1:3a:ae: 17:07:e2:3a:a2:36:19:1f:c6:10:0f:07:6b:b1:94: b9:ce:a9:5a:7b:c7:06:83:82:71:32:ad:2a:bc:85: 22:b3:e2:3b:f6:ec:04:69:74:75:bf:e8:11:7f:d3: 19:cc:68:01:36:44:85:e4:61:15:0d:b8:73:2e:80: ae:65:a2:45:b3:f6:33:fb:16:1e:52:c2:96:88:6a: 79:c0:13:93:f1:f2:fb:da:a0:c5:16:63:9a:3f:39: a7:6d:fc:95:47:63:0d:2f:36:73:9c:81:c3:a2:bc: be:79:97:cc:63:8e:d3:29:cc:61:ea:ca:3b:70:86: 0f:9d:2e:24:6d:62:56:d7:dd:57:71:81:bb:cc:1a: ea:ec:da:23:ab:12:5d:0f:9c:b6:d0:22:f6:05:00: 68:89:45:97:e1:6a:6f:b0:8f:be:f8:29:4f:0f:c6: 12:da:0d:7a:bf:da:4b:e2:a5:f5:30:24:00:0b:3b: 1d:49:40:71:3f:dc:29:b4:cb:ad:9a:89:a7:68:b4: 48:3b:03:cb:ac:e2:98:7f:5f:0b:69:bd:ee:a1:ca: 50:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:52:10:B4:04:90:20:3D:13:54:7E:74:90:31:91:35:37:8F:B0:38 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/I1IQtASQID0TVH50kDGRNTePsDg.roa sbgp-ipAddrBlock: critical IPv4: 1.79.80.0/23 Signature Algorithm: sha256WithRSAEncryption e2:5d:42:70:45:05:9e:22:86:ef:7a:71:73:9e:57:1e:6d:f9: 48:2e:82:ea:0e:f1:84:b8:30:a7:0e:90:58:a9:52:19:7f:6d: 65:8e:e9:52:f5:f6:df:7e:0f:4a:e2:d6:19:9f:44:16:32:3a: 17:37:b9:c0:b0:3d:81:60:7a:66:87:64:8a:09:27:b7:bd:a3: e0:01:95:a4:33:8e:41:0c:26:22:dd:ed:6f:fe:5b:98:66:41: d0:a8:2e:c1:d1:19:b3:dd:f2:cc:95:aa:8b:dd:69:74:c2:51: b1:f0:f7:da:02:aa:23:9d:78:5c:9a:12:dd:85:50:e0:09:c5: 0d:06:10:86:47:50:e4:93:cc:14:4c:80:9b:b7:0b:89:b0:ac: 67:7f:30:a0:7b:cf:ac:89:92:50:18:8a:77:ee:17:8f:7b:55: b2:9f:ee:d0:40:27:f1:89:24:b7:3e:f6:b9:fa:83:b0:0b:a0: ea:ef:a0:09:3d:2d:c6:cc:48:5b:62:de:b7:f6:0a:73:64:7e: 27:3d:17:d4:6d:14:52:af:c6:b2:1d:bb:c6:c8:58:14:15:6b: 33:ad:ae:c0:01:54:c0:7f:92:ea:11:ba:d5:00:42:eb:41:c6: 1b:91:f1:1a:b6:11:96:b8:a4:0a:6b:f9:55:fe:92:19:96:f8: 9f:2e:03:f8 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFNIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU4MjJaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDIzNTIxMEI0MDQ5MDIw M0QxMzU0N0U3NDkwMzE5MTM1Mzc4RkIwMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3NPFWnJAZLTxf55c2/kM151+zfSseSh/Sttbo6lid9gzI0Tem 9VvGfuE6rhcH4jqiNhkfxhAPB2uxlLnOqVp7xwaDgnEyrSq8hSKz4jv27ARpdHW/ 6BF/0xnMaAE2RIXkYRUNuHMugK5lokWz9jP7Fh5SwpaIannAE5Px8vvaoMUWY5o/ Oadt/JVHYw0vNnOcgcOivL55l8xjjtMpzGHqyjtwhg+dLiRtYlbX3VdxgbvMGurs 2iOrEl0PnLbQIvYFAGiJRZfham+wj774KU8PxhLaDXq/2kvipfUwJAALOx1JQHE/ 3Cm0y62aiadotEg7A8us4ph/Xwtpve6hylD5AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUI1IQtASQID0TVH50kDGRNTePsDgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0kxSVF0QVNRSUQwVFZINTBrREdSTlRlUHNEZy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEBT1AwDQYJKoZIhvcNAQELBQADggEB AOJdQnBFBZ4ihu96cXOeVx5t+UguguoO8YS4MKcOkFipUhl/bWWO6VL19t9+D0ri 1hmfRBYyOhc3ucCwPYFgemaHZIoJJ7e9o+ABlaQzjkEMJiLd7W/+W5hmQdCoLsHR GbPd8syVqovdaXTCUbHw99oCqiOdeFyaEt2FUOAJxQ0GEIZHUOSTzBRMgJu3C4mw rGd/MKB7z6yJklAYinfuF497VbKf7tBAJ/GJJLc+9rn6g7ALoOrvoAk9LcbMSFti 3rf2CnNkfic9F9RtFFKvxrIdu8bIWBQVazOtrsABVMB/kuoRutUAQutBxhuR8Rq2 EZa4pApr+VX+khmW+J8uA/g= -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:01 2026 by rpki-client