$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KfWDtp65-cuAs1Pj_QlKk-z1j68.roa File: KfWDtp65-cuAs1Pj_QlKk-z1j68.roa (raw, json) Hash identifier: RfAWu5V5bDPoq3uEDRts9jRSPua8Qrh4eMEDT1Wyci4= Subject key identifier: 29:F5:83:B6:9E:B9:F9:CB:80:B3:53:E3:FD:09:4A:93:EC:F5:8F:AF Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 15AA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KfWDtp65-cuAs1Pj_QlKk-z1j68.roa Signing time: Tue 31 Mar 2026 08:00:05 +0000 ROA not before: Tue 31 Mar 2026 08:00:05 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 211.14.78.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5546 (0x15aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:00:05 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=29F583B69EB9F9CB80B353E3FD094A93ECF58FAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7e:ef:db:c0:c3:0f:1b:14:4d:ad:f0:d4:0e: 5b:bd:e7:9e:c0:2a:77:79:63:56:16:0a:8c:db:a0: 11:54:26:c3:b6:f2:80:7c:d4:3c:58:40:9c:fc:2a: 1e:fd:fe:42:fa:38:a5:98:d5:26:7a:71:22:a0:c1: c6:34:e4:0d:0e:10:7c:12:24:00:8f:97:2d:29:3a: 0f:c3:2e:31:85:9f:92:ba:62:c2:e2:13:0a:d5:f0: a8:70:82:73:fa:5a:87:65:12:41:dd:e8:c0:87:56: 3e:34:f2:d3:52:7e:f2:d5:1c:28:5f:a5:ac:48:4e: e6:a1:2f:16:58:57:f7:0a:90:f0:1a:77:25:79:12: 9d:3f:a6:32:8f:ef:3b:ab:5f:aa:6c:bc:5b:63:6f: f6:fe:24:b6:78:17:2c:f6:a6:d4:30:23:86:0c:bd: 36:07:b1:1c:68:02:4d:66:b4:40:ec:6c:b5:c0:d9: 24:1d:b8:95:f1:39:4b:7d:7e:24:1c:62:b6:7f:a3: 3e:bd:bb:8b:64:7a:3d:91:9d:b7:6b:a7:b3:33:d0: 8a:bf:b8:d0:8a:70:9d:bf:c4:1f:06:0f:17:08:be: 91:c6:6d:2d:55:b6:80:57:aa:b5:42:45:c5:a1:5f: 63:0d:30:33:00:5d:6a:de:07:59:db:ba:0b:f8:f9: 10:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:F5:83:B6:9E:B9:F9:CB:80:B3:53:E3:FD:09:4A:93:EC:F5:8F:AF X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KfWDtp65-cuAs1Pj_QlKk-z1j68.roa sbgp-ipAddrBlock: critical IPv4: 211.14.78.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:38:d2:55:c4:75:32:b0:37:91:0d:1a:61:6d:07:33:b0:70: eb:0d:6f:1c:19:82:28:3c:8b:b7:35:14:e7:36:87:40:8c:61: eb:97:10:60:a7:08:69:88:75:15:05:44:61:bb:f3:3f:34:1a: 90:9e:6e:3c:28:1b:2d:04:55:67:78:c7:b4:a8:04:ec:ab:5e: 24:bb:8e:46:5f:64:12:4e:75:a3:8c:48:39:fa:7f:65:04:fb: ad:13:39:ff:82:e0:21:f9:7a:ce:46:16:b1:d1:3d:13:28:7e: 67:90:e2:e9:95:7d:a0:c8:7b:a2:be:2f:de:ec:21:f9:d0:55: 0c:ab:66:7f:5d:13:47:fd:d1:8a:d8:2d:ad:5b:de:05:10:0b: 1f:09:32:61:25:22:24:5c:06:5a:10:48:0d:82:84:aa:e5:f0: dc:70:84:59:95:48:aa:14:4e:35:a0:8e:d1:f4:06:45:fa:ed: 34:c1:a8:a9:5e:07:1a:dd:40:b7:58:8d:f6:73:ce:ee:21:07: 62:08:fa:3e:42:e8:61:8e:49:e8:6e:76:4c:f7:d6:51:6d:7f: 25:ff:e3:02:58:13:fd:d6:4e:08:88:ac:ca:3f:23:2c:64:c2: 8c:bb:ba:09:ce:fc:27:40:e2:f6:4d:eb:ea:5e:99:e3:68:3e: d5:5b:1f:3b -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFaowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAwMDVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDI5RjU4M0I2OUVCOUY5 Q0I4MEIzNTNFM0ZEMDk0QTkzRUNGNThGQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPfu/bwMMPGxRNrfDUDlu9557AKnd5Y1YWCozboBFUJsO28oB8 1DxYQJz8Kh79/kL6OKWY1SZ6cSKgwcY05A0OEHwSJACPly0pOg/DLjGFn5K6YsLi EwrV8KhwgnP6WodlEkHd6MCHVj408tNSfvLVHChfpaxITuahLxZYV/cKkPAadyV5 Ep0/pjKP7zurX6psvFtjb/b+JLZ4Fyz2ptQwI4YMvTYHsRxoAk1mtEDsbLXA2SQd uJXxOUt9fiQcYrZ/oz69u4tkej2Rnbdrp7Mz0Iq/uNCKcJ2/xB8GDxcIvpHGbS1V toBXqrVCRcWhX2MNMDMAXWreB1nbugv4+RCPAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUKfWDtp65+cuAs1Pj/QlKk+z1j68wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0tmV0R0cDY1LWN1QXMxUGpfUWxLay16MWo2OC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHTDk4wDQYJKoZIhvcNAQELBQADggEB AC440lXEdTKwN5ENGmFtBzOwcOsNbxwZgig8i7c1FOc2h0CMYeuXEGCnCGmIdRUF RGG78z80GpCebjwoGy0EVWd4x7SoBOyrXiS7jkZfZBJOdaOMSDn6f2UE+60TOf+C 4CH5es5GFrHRPRMofmeQ4umVfaDIe6K+L97sIfnQVQyrZn9dE0f90YrYLa1b3gUQ Cx8JMmElIiRcBloQSA2ChKrl8NxwhFmVSKoUTjWgjtH0BkX67TTBqKleBxrdQLdY jfZzzu4hB2II+j5C6GGOSehudkz31lFtfyX/4wJYE/3WTgiIrMo/Iyxkwoy7ugnO /CdA4vZN6+pemeNoPtVbHzs= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:33 2026 by rpki-client