$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/JFOFAYJZtql14XW90A102KUiNVE.roa File: JFOFAYJZtql14XW90A102KUiNVE.roa (raw, json) Hash identifier: L2F93FsWEnmrRhFHx9TdfExw1jDfLdcht4U4aTOS/5I= Subject key identifier: 24:53:85:01:82:59:B6:A9:75:E1:75:BD:D0:0D:74:D8:A5:22:35:51 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 145C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JFOFAYJZtql14XW90A102KUiNVE.roa Signing time: Tue 31 Mar 2026 07:57:24 +0000 ROA not before: Tue 31 Mar 2026 07:57:24 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.78.28.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5212 (0x145c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:57:24 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=245385018259B6A975E175BDD00D74D8A5223551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:85:d8:cc:64:f5:66:d6:12:04:30:80:1f:0b: a2:14:85:bd:32:73:f2:eb:3a:5f:04:02:19:42:16: 88:71:78:ec:43:1e:12:44:87:c4:91:52:02:d3:24: 3f:f1:1a:f6:9a:ed:42:ff:57:32:c6:9b:42:67:93: 54:59:fa:02:d9:0b:d0:be:00:90:3d:4f:8d:e4:2d: 8e:31:09:4c:11:3e:c4:c2:46:ba:1f:83:f9:fd:32: 3b:44:88:78:f0:2f:30:3b:74:9c:3c:af:57:25:0b: 4c:0f:81:f6:ce:c6:33:ba:a1:36:7d:f5:9f:07:44: c0:20:5c:ca:1a:10:ee:ec:65:da:b1:b7:cf:bf:7f: 5d:60:66:5a:a6:20:66:27:bc:e8:2e:61:83:a5:c5: d6:49:31:c1:08:84:7a:38:7e:47:75:45:cb:cb:8d: 07:f7:ad:a3:44:e6:bf:9b:ff:50:40:1b:85:7a:de: 05:c8:65:c0:cd:45:b0:0e:da:1c:3c:0a:8f:3f:d1: 2c:aa:ce:02:5a:eb:c4:3d:68:0d:a5:ed:52:77:41: 95:49:fa:29:ff:20:6e:65:78:00:2c:8a:fc:8b:f5: ee:4b:28:1c:89:fe:9f:1c:0e:35:fb:31:8e:fd:25: 24:30:d9:93:57:9a:fc:19:12:28:15:92:73:a0:63: bb:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:53:85:01:82:59:B6:A9:75:E1:75:BD:D0:0D:74:D8:A5:22:35:51 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JFOFAYJZtql14XW90A102KUiNVE.roa sbgp-ipAddrBlock: critical IPv4: 1.78.28.0/23 Signature Algorithm: sha256WithRSAEncryption c9:ae:84:68:f2:a1:8e:e1:b2:ae:62:2d:7b:12:9e:1d:ff:6c: 70:3f:49:ba:f1:df:fd:ea:db:69:fe:48:d9:e0:a7:ea:b2:b3: b7:15:7d:b2:d3:59:bb:da:f2:9b:b3:2b:33:df:59:95:e6:a1: c3:90:de:26:0d:44:8c:39:4b:ff:20:95:2a:a3:13:51:08:fb: 65:d0:97:23:9f:c6:05:0c:69:e1:cd:98:13:4d:c1:6b:af:f1: 70:08:ec:02:6b:1b:a2:c7:a5:e4:57:f9:29:08:2a:d6:45:10: 2a:fc:20:ef:c9:9d:b4:f3:fb:12:9d:2d:c9:82:a9:96:ff:4a: 8e:fd:63:25:dd:50:6b:cc:d1:f4:9a:8c:99:bb:bb:3b:54:1d: 8a:4b:8e:7e:47:08:fc:c6:81:5a:ac:6c:13:9e:7d:c5:92:d5: af:64:42:86:ec:1f:0f:cf:94:01:7e:9f:92:92:cf:39:93:a8: 71:1f:d1:e6:2d:86:9b:fd:ac:e7:d3:14:31:ba:5f:12:26:5a: fa:b7:0f:fc:30:0e:2e:ff:ab:2e:b7:e0:84:09:f9:56:39:ce: bd:f5:7f:d6:ce:20:37:a9:70:58:32:bc:54:07:4e:66:8d:2c: a9:dc:16:ae:af:00:81:c0:4e:5a:b2:d2:ec:79:45:0f:41:fe: 03:37:38:a3 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFFwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU3MjRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDI0NTM4NTAxODI1OUI2 QTk3NUUxNzVCREQwMEQ3NEQ4QTUyMjM1NTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEhdjMZPVm1hIEMIAfC6IUhb0yc/LrOl8EAhlCFohxeOxDHhJE h8SRUgLTJD/xGvaa7UL/VzLGm0Jnk1RZ+gLZC9C+AJA9T43kLY4xCUwRPsTCRrof g/n9MjtEiHjwLzA7dJw8r1clC0wPgfbOxjO6oTZ99Z8HRMAgXMoaEO7sZdqxt8+/ f11gZlqmIGYnvOguYYOlxdZJMcEIhHo4fkd1RcvLjQf3raNE5r+b/1BAG4V63gXI ZcDNRbAO2hw8Co8/0SyqzgJa68Q9aA2l7VJ3QZVJ+in/IG5leAAsivyL9e5LKByJ /p8cDjX7MY79JSQw2ZNXmvwZEigVknOgY7tJAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUJFOFAYJZtql14XW90A102KUiNVEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0pGT0ZBWUpadHFsMTRYVzkwQTEwMktVaU5WRS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEBThwwDQYJKoZIhvcNAQELBQADggEB AMmuhGjyoY7hsq5iLXsSnh3/bHA/Sbrx3/3q22n+SNngp+qys7cVfbLTWbva8puz KzPfWZXmocOQ3iYNRIw5S/8glSqjE1EI+2XQlyOfxgUMaeHNmBNNwWuv8XAI7AJr G6LHpeRX+SkIKtZFECr8IO/JnbTz+xKdLcmCqZb/So79YyXdUGvM0fSajJm7uztU HYpLjn5HCPzGgVqsbBOefcWS1a9kQobsHw/PlAF+n5KSzzmTqHEf0eYthpv9rOfT FDG6XxImWvq3D/wwDi7/qy634IQJ+VY5zr31f9bOIDepcFgyvFQHTmaNLKncFq6v AIHATlqy0ux5RQ9B/gM3OKM= -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:49 2026 by rpki-client