$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/JSjTiBMU7dcDqSXl3MpTqE1hBQk.roa File: JSjTiBMU7dcDqSXl3MpTqE1hBQk.roa (raw, json) Hash identifier: LEJpPt3R5BbHA+S4pTpL4kHzqiwKm/NPCoZsxNUDKQQ= Subject key identifier: 25:28:D3:88:13:14:ED:D7:03:A9:25:E5:DC:CA:53:A8:4D:61:05:09 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1550 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JSjTiBMU7dcDqSXl3MpTqE1hBQk.roa Signing time: Tue 31 Mar 2026 07:59:24 +0000 ROA not before: Tue 31 Mar 2026 07:59:24 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.73.76.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5456 (0x1550) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:59:24 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=2528D3881314EDD703A925E5DCCA53A84D610509 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:12:7e:5a:d9:1b:80:2a:f4:15:e5:14:03:8b: ce:42:ae:b3:e3:b6:d2:a3:f3:23:0e:1d:01:d3:a6: af:fc:ca:48:93:48:7d:aa:99:64:03:d8:f1:80:d6: 41:12:c3:cf:67:2b:9c:b2:c7:30:46:13:9f:ea:42: db:21:01:d8:60:55:45:df:fb:c3:3f:04:f8:31:38: 6c:fe:3b:63:92:18:55:a7:24:5a:b8:a8:b7:ac:c8: 75:a7:7f:5b:65:25:dc:3e:47:a6:a2:15:fc:13:6a: 64:f3:76:6b:ab:41:83:5c:73:6c:d2:6d:93:b9:3f: 44:db:0e:d7:25:8e:e1:38:2d:8e:6c:42:8f:4b:8e: 23:2f:4c:a5:da:a4:d5:45:c4:87:3b:67:a6:4e:93: 4a:5e:b3:39:83:cc:ec:cc:71:04:92:2f:18:c4:22: 68:b8:6b:1a:23:33:8c:31:1b:77:ba:52:09:31:97: 43:00:f8:80:49:33:00:a8:31:fb:29:f4:a0:28:d6: 57:54:c8:5f:ec:0a:93:10:17:73:79:69:9b:a5:8b: 3b:db:3e:a8:05:13:ff:54:2d:27:8a:ed:e5:0e:42: 83:0a:e8:0b:53:b5:4e:b3:12:25:c6:7e:b9:db:79: a3:47:fa:a6:03:47:de:52:7d:1b:f4:23:a3:62:34: 28:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:28:D3:88:13:14:ED:D7:03:A9:25:E5:DC:CA:53:A8:4D:61:05:09 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JSjTiBMU7dcDqSXl3MpTqE1hBQk.roa sbgp-ipAddrBlock: critical IPv4: 1.73.76.0/23 Signature Algorithm: sha256WithRSAEncryption 66:be:f7:7c:26:f9:88:f5:fe:63:f6:e2:a1:ad:d5:0a:9a:05: ee:5f:e9:94:7d:5b:1f:de:ad:7d:36:30:90:fa:0d:44:77:f2: d5:07:1b:ef:f9:cc:23:63:fe:da:e6:7d:9f:54:ae:d2:84:aa: 12:22:52:00:4c:fb:d2:e1:89:e1:81:07:fc:97:dd:57:44:32: 60:b8:09:12:ae:0f:60:ec:8c:4b:87:11:6a:9b:3a:2f:5e:0c: 4b:6b:d7:d2:4c:b1:cb:d0:17:e8:c2:6e:8a:7a:b9:e2:1a:2c: f1:78:38:0f:f7:8e:01:a4:b3:ab:c2:a1:06:f5:d3:7a:43:d3: b3:54:59:91:5c:68:06:ca:9a:10:e4:d9:f7:e8:7e:d0:88:6e: ae:66:28:df:37:50:e8:90:77:32:13:44:9a:14:78:b1:ee:a2: aa:4b:5b:a5:02:70:aa:e4:2d:a7:1d:67:f7:41:f2:c9:b2:68: 6a:e8:ff:6a:76:d0:fd:d5:cf:36:50:9d:7d:3b:d3:56:e5:45: fe:64:b7:60:3b:fd:5d:19:13:51:b9:cb:21:a3:fa:16:a6:ac: 94:e5:85:dc:58:15:44:8e:b6:56:48:0d:b9:cc:b0:d5:5a:58: b8:56:09:6c:cb:01:2c:0f:45:08:56:48:fb:b4:cf:15:fd:5e: 9c:6e:6b:23 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFVAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU5MjRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDI1MjhEMzg4MTMxNEVE RDcwM0E5MjVFNURDQ0E1M0E4NEQ2MTA1MDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkEn5a2RuAKvQV5RQDi85CrrPjttKj8yMOHQHTpq/8ykiTSH2q mWQD2PGA1kESw89nK5yyxzBGE5/qQtshAdhgVUXf+8M/BPgxOGz+O2OSGFWnJFq4 qLesyHWnf1tlJdw+R6aiFfwTamTzdmurQYNcc2zSbZO5P0TbDtcljuE4LY5sQo9L jiMvTKXapNVFxIc7Z6ZOk0peszmDzOzMcQSSLxjEImi4axojM4wxG3e6Ugkxl0MA +IBJMwCoMfsp9KAo1ldUyF/sCpMQF3N5aZulizvbPqgFE/9ULSeK7eUOQoMK6AtT tU6zEiXGfrnbeaNH+qYDR95SfRv0I6NiNChBAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUJSjTiBMU7dcDqSXl3MpTqE1hBQkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0pTalRpQk1VN2RjRHFTWGwzTXBUcUUxaEJRay5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEBSUwwDQYJKoZIhvcNAQELBQADggEB AGa+93wm+Yj1/mP24qGt1QqaBe5f6ZR9Wx/erX02MJD6DUR38tUHG+/5zCNj/trm fZ9UrtKEqhIiUgBM+9LhieGBB/yX3VdEMmC4CRKuD2DsjEuHEWqbOi9eDEtr19JM scvQF+jCbop6ueIaLPF4OA/3jgGks6vCoQb103pD07NUWZFcaAbKmhDk2ffoftCI bq5mKN83UOiQdzITRJoUeLHuoqpLW6UCcKrkLacdZ/dB8smyaGro/2p20P3VzzZQ nX0701blRf5kt2A7/V0ZE1G5yyGj+hamrJTlhdxYFUSOtlZIDbnMsNVaWLhWCWzL ASwPRQhWSPu0zxX9XpxuayM= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:59 2026 by rpki-client