$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/IYLefnVRm1BxRCb8xlh8eil5Uxk.roa File: IYLefnVRm1BxRCb8xlh8eil5Uxk.roa (raw, json) Hash identifier: +nMaAoeabvyA0EY8DsPULElU0TXgMvqm1TBUSrMfA4w= Subject key identifier: 21:82:DE:7E:75:51:9B:50:71:44:26:FC:C6:58:7C:7A:29:79:53:19 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 179E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IYLefnVRm1BxRCb8xlh8eil5Uxk.roa Signing time: Tue 31 Mar 2026 08:04:12 +0000 ROA not before: Tue 31 Mar 2026 08:04:12 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.72.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6046 (0x179e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:04:12 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=2182DE7E75519B50714426FCC6587C7A29795319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0e:cb:89:7d:ff:85:5a:cd:f7:11:14:22:12: 8b:05:55:99:e7:9c:42:28:26:f3:9a:14:9e:cb:d0: 57:05:71:07:e5:c0:33:18:f7:e1:07:58:d2:10:44: d0:e6:56:9d:d1:3e:24:85:21:02:2e:68:cb:c9:e6: fb:9d:a9:0a:01:8d:71:ed:62:5b:14:f2:4c:3a:85: 54:35:79:72:7b:86:2c:53:f5:66:0e:bc:84:d3:2b: 63:06:94:8e:08:e7:6f:78:19:79:a9:61:66:a4:9c: b2:24:78:de:1c:0f:ff:31:35:08:a8:e8:35:78:1b: 68:3f:f1:c1:5e:8f:84:7e:ab:3b:a2:36:cb:dd:56: 03:e2:7d:54:3b:a6:ab:0d:dd:70:5f:4e:24:3a:c1: b8:72:3e:10:cc:08:c6:1d:09:5a:17:01:81:d2:32: 54:b6:87:dd:1a:e2:f1:42:cc:e6:bd:76:38:32:27: ba:0e:64:96:4a:96:00:ec:68:30:55:ec:d4:3c:59: ba:74:95:48:46:11:40:d7:1c:38:48:ab:8c:0b:60: 66:87:87:0f:b4:b9:a5:eb:33:f3:27:ad:a9:e5:32: 1a:12:81:5a:dd:8a:e1:b5:74:f1:ca:42:cf:e0:f4: d6:26:4a:ae:6e:60:75:61:4d:c8:9b:04:e9:18:02: 4f:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:82:DE:7E:75:51:9B:50:71:44:26:FC:C6:58:7C:7A:29:79:53:19 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IYLefnVRm1BxRCb8xlh8eil5Uxk.roa sbgp-ipAddrBlock: critical IPv4: 1.72.24.0/21 Signature Algorithm: sha256WithRSAEncryption 0b:67:52:af:10:dd:16:80:70:1a:e1:ef:85:8d:18:48:c4:e1: e6:b3:56:64:f2:e6:a9:53:bb:fa:04:e1:b8:45:f6:9d:a8:e8: 38:45:de:72:be:0c:1f:e1:a2:a0:63:81:3d:7c:3c:cd:0d:8c: 17:6c:d0:e1:20:d2:91:61:2d:47:ca:5b:46:e3:6d:6a:ea:82: c2:13:e7:90:c2:b7:99:60:59:60:a1:4b:31:28:7e:89:e2:b6: 41:58:2e:72:33:e8:ec:87:1e:a8:23:1d:9c:0d:b7:6b:39:8a: c2:7c:29:93:cc:05:47:1e:df:9d:b7:17:2e:be:0f:a3:d3:9c: 6c:3d:4b:ae:97:ce:95:d6:85:ac:a5:1a:79:c5:2b:81:36:c1: f7:d2:1f:a9:58:06:2c:fa:bf:46:e3:a1:8e:07:78:96:3b:c6: 3a:70:98:60:39:57:0c:be:b6:06:39:27:46:25:b5:d9:61:e7: 49:ec:2f:0e:1a:4e:56:bc:37:63:ac:2c:61:4a:fe:8a:87:56: 90:d6:1d:5c:cc:dc:65:f2:8c:26:e5:1f:20:91:9a:45:bd:e1: 12:c4:3d:87:56:b4:cf:12:6f:f9:0d:dc:c9:ed:41:33:76:f3: ec:48:fc:eb:33:a2:a1:fb:c7:09:a0:d9:ed:fa:61:5b:fd:cb: 17:d3:f9:c5 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICF54wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODA0MTJaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDIxODJERTdFNzU1MTlC NTA3MTQ0MjZGQ0M2NTg3QzdBMjk3OTUzMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBDsuJff+FWs33ERQiEosFVZnnnEIoJvOaFJ7L0FcFcQflwDMY 9+EHWNIQRNDmVp3RPiSFIQIuaMvJ5vudqQoBjXHtYlsU8kw6hVQ1eXJ7hixT9WYO vITTK2MGlI4I5294GXmpYWaknLIkeN4cD/8xNQio6DV4G2g/8cFej4R+qzuiNsvd VgPifVQ7pqsN3XBfTiQ6wbhyPhDMCMYdCVoXAYHSMlS2h90a4vFCzOa9djgyJ7oO ZJZKlgDsaDBV7NQ8Wbp0lUhGEUDXHDhIq4wLYGaHhw+0uaXrM/MnranlMhoSgVrd iuG1dPHKQs/g9NYmSq5uYHVhTcibBOkYAk//AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUIYLefnVRm1BxRCb8xlh8eil5UxkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0lZTGVmblZSbTFCeFJDYjh4bGg4ZWlsNVV4ay5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMBSBgwDQYJKoZIhvcNAQELBQADggEB AAtnUq8Q3RaAcBrh74WNGEjE4eazVmTy5qlTu/oE4bhF9p2o6DhF3nK+DB/hoqBj gT18PM0NjBds0OEg0pFhLUfKW0bjbWrqgsIT55DCt5lgWWChSzEofonitkFYLnIz 6OyHHqgjHZwNt2s5isJ8KZPMBUce3523Fy6+D6PTnGw9S66XzpXWhaylGnnFK4E2 wffSH6lYBiz6v0bjoY4HeJY7xjpwmGA5Vwy+tgY5J0Yltdlh50nsLw4aTla8N2Os LGFK/oqHVpDWHVzM3GXyjCblHyCRmkW94RLEPYdWtM8Sb/kN3MntQTN28+xI/Osz oqH7xwmg2e36YVv9yxfT+cU= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:31 2026 by rpki-client