$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KPeWYTgfTxoKYfi50BbtHyFTXwE.roa File: KPeWYTgfTxoKYfi50BbtHyFTXwE.roa (raw, json) Hash identifier: /w6NT4Sq5/2WsgKzhRAHOcW7aoK3Iw9/IducPrYiHPg= Subject key identifier: 28:F7:96:61:38:1F:4F:1A:0A:61:F8:B9:D0:16:ED:1F:21:53:5F:01 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 171D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KPeWYTgfTxoKYfi50BbtHyFTXwE.roa Signing time: Tue 31 Mar 2026 08:03:11 +0000 ROA not before: Tue 31 Mar 2026 08:03:11 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.72.12.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5917 (0x171d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:03:11 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=28F79661381F4F1A0A61F8B9D016ED1F21535F01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:7c:9b:f9:2a:7f:2c:8a:52:06:db:a6:d7:f3: ad:18:d5:4a:3e:7a:eb:28:ae:36:f3:c5:85:f7:13: e7:52:a9:24:0e:95:97:d8:58:3c:f1:f4:05:1b:69: 0f:65:0d:b2:5b:cc:47:28:b9:0c:9d:4a:2c:bf:ab: c7:f2:6c:d2:e1:6d:d5:17:89:ac:16:58:ff:a3:7c: 83:a1:41:2f:2b:af:51:57:f3:93:0c:25:7f:27:cb: 5f:be:a2:60:d2:f7:80:ad:0c:2b:70:ab:c3:a2:bb: fd:6f:39:c1:6a:11:20:cf:9a:6e:1d:0b:a3:fa:bc: 4b:ab:d5:fe:ec:1a:c6:03:f3:f9:86:5a:a3:c2:50: 0b:b9:88:4d:fc:e6:7d:fc:85:d7:a7:9b:f6:64:0f: 08:3d:1e:46:0c:4f:e2:6a:9f:80:7d:26:ef:76:85: 6c:94:89:ab:8e:aa:fc:8d:ae:16:16:cd:8c:d4:06: 66:3b:67:9a:3f:65:a7:be:47:f1:ff:75:63:dc:b5: 9f:2c:4c:43:00:5d:18:ea:e7:c1:26:be:3c:21:6a: d6:a2:84:8a:2b:20:bd:0b:45:a8:62:db:74:b9:70: 4b:be:8f:7b:ed:e1:4c:23:93:8f:a0:1c:12:cd:e3: ba:a8:ae:58:3c:e2:04:cb:3b:ed:0d:8c:93:b1:d7: 27:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:F7:96:61:38:1F:4F:1A:0A:61:F8:B9:D0:16:ED:1F:21:53:5F:01 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KPeWYTgfTxoKYfi50BbtHyFTXwE.roa sbgp-ipAddrBlock: critical IPv4: 1.72.12.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:48:7c:da:4a:e5:cf:d5:72:2d:9f:c2:81:a5:37:68:3f:3b: 1c:d9:eb:ac:92:5f:5f:b8:f2:d2:ab:10:e0:df:42:03:bc:01: 36:a1:ba:f7:dd:2c:e7:45:93:59:2b:0c:be:85:75:96:84:4c: 3d:ef:29:12:f9:ae:34:da:d9:7f:60:e4:a6:a2:ff:8d:6c:66: 28:7c:e9:06:9c:a1:76:bf:18:66:58:99:e0:1a:5c:9e:a4:39: 9c:20:9f:a5:b7:6d:4a:40:3d:57:f2:8b:77:de:f7:81:5e:0e: fa:f2:b5:e3:ff:24:c2:8c:9b:f2:72:a3:29:f8:f1:ff:30:4c: fa:ee:98:95:22:3d:53:d3:5a:a7:b8:e8:88:ca:1c:fa:c8:ff: a7:00:ed:6d:7f:41:8a:49:40:16:ca:69:bd:c2:62:0c:43:32: f9:9e:4b:5d:92:9c:b2:05:26:23:72:1b:59:05:de:2d:e6:41: 84:d1:f9:b8:61:2d:31:9d:c9:ab:b2:87:cf:26:87:0a:99:db: c8:7b:ef:84:bf:5c:88:3c:6c:62:90:68:83:6e:e7:cf:e2:aa: 78:5c:fe:40:a9:de:4b:07:df:a9:52:95:9f:c5:24:c3:e3:57: d0:da:30:35:ad:5a:ae:eb:11:52:15:4d:49:4e:cb:83:2b:c6: 47:52:98:af -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFx0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAzMTFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDI4Rjc5NjYxMzgxRjRG MUEwQTYxRjhCOUQwMTZFRDFGMjE1MzVGMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjfJv5Kn8silIG26bX860Y1Uo+eusorjbzxYX3E+dSqSQOlZfY WDzx9AUbaQ9lDbJbzEcouQydSiy/q8fybNLhbdUXiawWWP+jfIOhQS8rr1FX85MM JX8ny1++omDS94CtDCtwq8Oiu/1vOcFqESDPmm4dC6P6vEur1f7sGsYD8/mGWqPC UAu5iE385n38hdenm/ZkDwg9HkYMT+Jqn4B9Ju92hWyUiauOqvyNrhYWzYzUBmY7 Z5o/Zae+R/H/dWPctZ8sTEMAXRjq58EmvjwhataihIorIL0LRahi23S5cEu+j3vt 4Uwjk4+gHBLN47qorlg84gTLO+0NjJOx1ycBAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUKPeWYTgfTxoKYfi50BbtHyFTXwEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0tQZVdZVGdmVHhvS1lmaTUwQmJ0SHlGVFh3RS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEBSAwwDQYJKoZIhvcNAQELBQADggEB AJ1IfNpK5c/Vci2fwoGlN2g/OxzZ66ySX1+48tKrEODfQgO8ATahuvfdLOdFk1kr DL6FdZaETD3vKRL5rjTa2X9g5Kai/41sZih86QacoXa/GGZYmeAaXJ6kOZwgn6W3 bUpAPVfyi3fe94FeDvryteP/JMKMm/Jyoyn48f8wTPrumJUiPVPTWqe46IjKHPrI /6cA7W1/QYpJQBbKab3CYgxDMvmeS12SnLIFJiNyG1kF3i3mQYTR+bhhLTGdyauy h88mhwqZ28h774S/XIg8bGKQaINu58/iqnhc/kCp3ksH36lSlZ/FJMPjV9DaMDWt Wq7rEVIVTUlOy4MrxkdSmK8= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:15 2026 by rpki-client