$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KGkT6eWw8AfZom-94mFrUFExE1M.roa File: KGkT6eWw8AfZom-94mFrUFExE1M.roa (raw, json) Hash identifier: RS633/hgpWa1a5gNGRNF5bfzRccjXY4A6hBhpru4MrA= Subject key identifier: 28:69:13:E9:E5:B0:F0:07:D9:A2:6F:BD:E2:61:6B:50:51:31:13:53 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 17A3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KGkT6eWw8AfZom-94mFrUFExE1M.roa Signing time: Tue 31 Mar 2026 08:04:14 +0000 ROA not before: Tue 31 Mar 2026 08:04:14 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.67.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6051 (0x17a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:04:14 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=286913E9E5B0F007D9A26FBDE2616B5051311353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8e:24:c8:39:d1:1f:d2:33:c2:fa:29:90:67: 1e:c8:dd:0a:48:c5:8f:23:94:38:18:62:85:7a:1e: 3a:cb:64:38:a3:e5:51:d7:bf:1d:58:fe:d0:58:f6: 1c:a5:ba:4c:53:23:e1:4f:d1:e7:84:16:7d:f0:2d: fa:80:cf:74:88:ca:7b:1c:b1:e2:b0:d0:c3:0d:b7: e3:22:96:f3:4e:55:be:39:98:70:e5:54:4d:5c:e5: 9f:96:6a:dc:ee:6d:59:c6:2e:76:1c:62:d9:a6:7a: 96:ea:a2:ae:4a:2d:b1:91:13:d6:95:fe:53:0e:9e: d2:d7:23:db:97:11:54:0b:dc:d0:60:0d:e1:20:e6: 84:63:ac:a5:67:bb:8f:e0:f2:3b:df:86:5e:5e:57: d7:48:e2:eb:68:0d:3e:58:c0:9c:99:b7:72:2c:c9: 57:95:20:d7:31:85:48:23:98:d3:8e:1a:ce:35:f4: 15:06:b2:c0:9a:12:56:14:3a:35:1d:a3:98:de:92: 28:80:14:0a:22:7b:44:57:ce:a7:65:06:f0:65:cb: 6f:64:07:22:37:65:69:76:27:0b:93:25:80:09:71: 2b:8c:51:41:3f:ac:2b:cb:1f:1d:e8:ce:41:2b:04: d7:ba:06:61:c5:c7:72:f3:46:a0:15:97:13:69:ad: 46:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:69:13:E9:E5:B0:F0:07:D9:A2:6F:BD:E2:61:6B:50:51:31:13:53 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KGkT6eWw8AfZom-94mFrUFExE1M.roa sbgp-ipAddrBlock: critical IPv4: 1.67.208.0/20 Signature Algorithm: sha256WithRSAEncryption d0:10:e0:00:74:21:5b:f8:e3:67:77:13:10:ae:43:42:8d:4e: 1f:97:d3:96:95:52:63:b8:ed:7b:47:01:fb:aa:ba:89:67:a6: f3:fe:a7:7c:b6:36:47:91:54:38:cf:94:e5:0a:e1:21:6a:7d: 68:89:19:8a:34:2b:b8:b0:b5:fd:c8:d8:05:46:62:c9:ff:a9: 34:0b:f5:05:54:d1:e5:5e:69:b9:ab:be:eb:9d:d0:a0:42:c5: 33:1e:9a:46:dd:c1:88:d0:3c:bd:b9:b5:dd:67:cd:d2:92:82: b6:72:d7:c3:75:f5:02:33:91:15:9e:ad:2c:cf:9b:0c:f9:f2: 4b:5d:93:a9:21:48:ca:44:97:50:a2:fc:5f:8a:9a:37:84:ba: 26:6d:c3:27:52:61:51:e5:ed:90:cb:24:c2:49:8b:f9:68:87: ab:42:0a:3b:f0:65:22:9a:80:06:08:df:8d:7c:cb:73:6d:71: 64:5c:f5:c3:6c:f3:d3:89:c0:72:a8:85:53:a5:c7:0a:e7:cf: 58:dd:b0:f2:30:57:d7:6f:4a:13:e5:ad:b4:ed:56:8d:b1:01: 08:ff:8d:23:9c:81:cd:dd:50:78:20:67:97:89:85:a2:25:93: 0f:5c:79:b2:8e:6a:68:69:d7:22:93:02:ed:54:45:c3:3a:43: 7e:3e:95:69 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICF6MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODA0MTRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDI4NjkxM0U5RTVCMEYw MDdEOUEyNkZCREUyNjE2QjUwNTEzMTEzNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfjiTIOdEf0jPC+imQZx7I3QpIxY8jlDgYYoV6HjrLZDij5VHX vx1Y/tBY9hylukxTI+FP0eeEFn3wLfqAz3SIynscseKw0MMNt+MilvNOVb45mHDl VE1c5Z+WatzubVnGLnYcYtmmepbqoq5KLbGRE9aV/lMOntLXI9uXEVQL3NBgDeEg 5oRjrKVnu4/g8jvfhl5eV9dI4utoDT5YwJyZt3IsyVeVINcxhUgjmNOOGs419BUG ssCaElYUOjUdo5jekiiAFAoie0RXzqdlBvBly29kByI3ZWl2JwuTJYAJcSuMUUE/ rCvLHx3ozkErBNe6BmHFx3LzRqAVlxNprUbFAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUKGkT6eWw8AfZom+94mFrUFExE1MwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0tHa1Q2ZVd3OEFmWm9tLTk0bUZyVUZFeEUxTS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQBQ9AwDQYJKoZIhvcNAQELBQADggEB ANAQ4AB0IVv442d3ExCuQ0KNTh+X05aVUmO47XtHAfuquolnpvP+p3y2NkeRVDjP lOUK4SFqfWiJGYo0K7iwtf3I2AVGYsn/qTQL9QVU0eVeabmrvuud0KBCxTMemkbd wYjQPL25td1nzdKSgrZy18N19QIzkRWerSzPmwz58ktdk6khSMpEl1Ci/F+KmjeE uiZtwydSYVHl7ZDLJMJJi/loh6tCCjvwZSKagAYI3418y3NtcWRc9cNs89OJwHKo hVOlxwrnz1jdsPIwV9dvShPlrbTtVo2xAQj/jSOcgc3dUHggZ5eJhaIlkw9cebKO amhp1yKTAu1URcM6Q34+lWk= -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:46 2026 by rpki-client