$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KKXST9uZHePnnvWtLlqlNKFUcUM.roa File: KKXST9uZHePnnvWtLlqlNKFUcUM.roa (raw, json) Hash identifier: KjOGyODUGobQSk0wa+hk8uY8ZgbOC+uiYI0V/Su6Zk4= Subject key identifier: 28:A5:D2:4F:DB:99:1D:E3:E7:9E:F5:AD:2E:5A:A5:34:A1:54:71:43 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1516 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KKXST9uZHePnnvWtLlqlNKFUcUM.roa Signing time: Tue 31 Mar 2026 07:58:54 +0000 ROA not before: Tue 31 Mar 2026 07:58:54 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 211.14.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5398 (0x1516) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:58:54 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=28A5D24FDB991DE3E79EF5AD2E5AA534A1547143 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:01:5c:3b:08:fc:6f:77:67:b8:d1:84:2e:58: 86:b7:b7:9b:f0:10:be:4b:8f:78:27:48:76:21:3f: 5c:38:08:1e:2c:4e:e4:4c:a1:7a:4e:83:7d:14:11: f8:36:ad:f5:e8:83:84:4e:2b:17:62:0f:38:3f:39: 3d:fb:8e:d3:71:9d:07:a3:83:eb:32:ae:3b:f4:d8: c1:23:15:c0:18:30:8d:91:70:ba:7b:80:96:bd:b8: d1:88:7c:37:d9:d6:64:8c:03:97:1f:d0:ea:86:36: 66:fd:70:2b:db:d5:ec:5a:c9:bd:d4:64:cc:63:0f: dc:c8:14:97:ee:73:52:0f:cd:32:d4:95:62:5c:5c: a2:d3:cc:c2:4f:9d:be:1b:e5:5c:b6:97:76:73:86: ec:2f:61:25:ce:75:cf:33:ef:a4:07:67:fd:22:6d: 87:59:74:f7:f9:f4:f5:76:7c:20:fe:75:a8:e6:4e: 7e:c9:6b:15:a2:e4:59:93:77:50:a1:7a:17:8f:91: f2:9e:48:2f:0e:4b:77:dc:b5:24:94:b7:45:66:6a: 9a:c3:ae:be:c9:1d:c4:ae:66:d2:02:eb:4c:48:ce: be:b3:fa:c2:a0:cd:0a:5f:2a:54:2a:45:16:30:b0: ae:a0:a9:cd:0c:fb:8f:07:64:99:6c:e5:ff:e7:53: f7:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:A5:D2:4F:DB:99:1D:E3:E7:9E:F5:AD:2E:5A:A5:34:A1:54:71:43 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KKXST9uZHePnnvWtLlqlNKFUcUM.roa sbgp-ipAddrBlock: critical IPv4: 211.14.96.0/21 Signature Algorithm: sha256WithRSAEncryption a9:57:80:88:b9:4d:d9:49:b9:96:3b:22:f7:af:18:2f:b7:82: 97:43:13:c5:ea:b1:69:6f:67:6d:5b:3f:64:91:fd:6d:78:06: c1:8b:5c:22:a6:88:c8:12:f5:26:56:f1:59:fb:b9:73:b5:57: e5:5b:3e:93:cc:1c:40:1d:91:d7:07:3a:8d:d9:08:2b:46:4b: 5f:ca:8d:d8:d1:cd:b7:c0:5c:d7:39:f6:98:80:85:69:c7:8e: 22:b4:ff:38:72:2d:83:dd:14:2c:f0:37:7a:76:9a:ee:22:39: a5:6f:0e:fd:19:b4:0d:6e:80:39:59:15:40:8d:75:91:26:28: af:18:06:3f:ac:08:77:b8:34:0c:4d:2e:d5:ba:13:fa:e3:0d: f7:7d:ad:01:47:fe:b1:d8:66:e9:a6:01:51:0a:ab:3d:a6:0a: 29:ca:ea:18:36:5d:c6:c1:3d:4a:89:ae:07:c7:2b:cf:6b:00: 26:2b:01:87:41:4e:7a:5b:12:4c:52:cc:59:46:c1:5c:8d:dc: e8:37:17:9f:0f:22:c6:af:71:a2:09:4a:62:7b:6b:4a:e1:d9: 97:e7:96:af:d1:80:2d:65:37:d3:bc:47:74:30:87:7a:c6:d7: 16:de:73:18:5b:36:14:82:e4:72:9a:aa:97:07:aa:89:1d:87: 6b:b1:ef:2c -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFRYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU4NTRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDI4QTVEMjRGREI5OTFE RTNFNzlFRjVBRDJFNUFBNTM0QTE1NDcxNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD6AVw7CPxvd2e40YQuWIa3t5vwEL5Lj3gnSHYhP1w4CB4sTuRM oXpOg30UEfg2rfXog4ROKxdiDzg/OT37jtNxnQejg+syrjv02MEjFcAYMI2RcLp7 gJa9uNGIfDfZ1mSMA5cf0OqGNmb9cCvb1exayb3UZMxjD9zIFJfuc1IPzTLUlWJc XKLTzMJPnb4b5Vy2l3ZzhuwvYSXOdc8z76QHZ/0ibYdZdPf59PV2fCD+dajmTn7J axWi5FmTd1ChehePkfKeSC8OS3fctSSUt0VmaprDrr7JHcSuZtIC60xIzr6z+sKg zQpfKlQqRRYwsK6gqc0M+48HZJls5f/nU/fjAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUKKXST9uZHePnnvWtLlqlNKFUcUMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0tLWFNUOXVaSGVQbm52V3RMbHFsTktGVWNVTS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPTDmAwDQYJKoZIhvcNAQELBQADggEB AKlXgIi5TdlJuZY7IvevGC+3gpdDE8XqsWlvZ21bP2SR/W14BsGLXCKmiMgS9SZW 8Vn7uXO1V+VbPpPMHEAdkdcHOo3ZCCtGS1/KjdjRzbfAXNc59piAhWnHjiK0/zhy LYPdFCzwN3p2mu4iOaVvDv0ZtA1ugDlZFUCNdZEmKK8YBj+sCHe4NAxNLtW6E/rj Dfd9rQFH/rHYZummAVEKqz2mCinK6hg2XcbBPUqJrgfHK89rACYrAYdBTnpbEkxS zFlGwVyN3Og3F58PIsavcaIJSmJ7a0rh2Zfnlq/RgC1lN9O8R3Qwh3rG1xbecxhb NhSC5HKaqpcHqokdh2ux7yw= -----END CERTIFICATE-----Generated at Tue Apr 7 19:42:57 2026 by rpki-client