$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Kg6jwfzQUMF6YrnWjq0uqHyMREQ.roa File: Kg6jwfzQUMF6YrnWjq0uqHyMREQ.roa (raw, json) Hash identifier: UJxsa74NuyP8dAs105/J8yCuPW0By3Nb9Jt0XxrAG0M= Subject key identifier: 2A:0E:A3:C1:FC:D0:50:C1:7A:62:B9:D6:8E:AD:2E:A8:7C:8C:44:44 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1572 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Kg6jwfzQUMF6YrnWjq0uqHyMREQ.roa Signing time: Tue 31 Mar 2026 07:59:40 +0000 ROA not before: Tue 31 Mar 2026 07:59:40 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 219.114.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5490 (0x1572) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:59:40 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=2A0EA3C1FCD050C17A62B9D68EAD2EA87C8C4444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:93:3b:aa:f2:41:a5:93:c0:f1:ac:39:bd:17: 2f:41:01:e1:b6:13:73:20:ad:1a:21:75:a8:d7:a6: 95:0a:08:36:f6:df:52:ab:4d:08:e5:3d:a2:d3:8f: 01:2c:5e:29:87:41:a8:af:59:3b:28:f7:3d:12:bf: 7e:64:b7:e6:5f:59:9e:67:6f:1d:3b:77:df:32:8c: ee:7b:56:25:5c:d8:2a:f1:bc:9b:3a:b6:d1:5d:42: 1d:4d:80:b3:6a:fe:be:c2:6a:51:a8:bc:e6:b4:2e: 41:e5:32:4e:4f:38:a7:6e:c1:d2:29:5b:91:72:5c: 27:84:c1:14:0e:3c:31:37:0d:c3:ba:a4:38:35:68: 82:72:6d:78:cf:5d:96:5b:94:fc:c7:75:55:44:b7: 79:4a:e5:ed:70:ab:7e:95:f9:20:d5:78:cd:5b:09: be:dd:97:be:d7:0e:4c:b4:bc:18:a6:29:8d:a3:12: ba:50:d0:b5:79:f6:49:35:1d:30:5b:5d:9b:0f:df: 59:15:bc:cf:cf:5d:5c:9c:98:85:2f:24:c1:30:fd: eb:79:ec:00:e1:0f:cd:ec:f0:05:14:84:1b:52:cf: 89:5d:dd:16:06:cf:91:e7:b9:f8:ea:e1:a0:99:e4: b7:a6:0c:88:56:7c:e4:4c:a4:10:8f:64:17:a6:9d: fb:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:0E:A3:C1:FC:D0:50:C1:7A:62:B9:D6:8E:AD:2E:A8:7C:8C:44:44 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Kg6jwfzQUMF6YrnWjq0uqHyMREQ.roa sbgp-ipAddrBlock: critical IPv4: 219.114.168.0/21 Signature Algorithm: sha256WithRSAEncryption e0:6e:fb:15:8c:73:c8:4e:50:5e:9e:3b:ec:c8:1b:a9:15:2d: 12:2b:4c:82:81:ac:3d:b6:a9:6e:6c:be:e7:f1:f7:96:12:75: 4f:9a:9a:5d:f9:b5:1d:07:df:55:eb:49:53:08:08:4b:68:90: 9b:d5:7a:ec:cc:79:06:1c:fa:ea:44:11:f0:b6:62:b3:66:da: ff:39:c1:ee:1e:ff:f0:55:21:01:23:2e:24:a8:4d:3a:a2:7b: d3:63:d1:27:d7:71:9b:10:0f:f8:81:37:e1:fd:22:ec:08:3b: 1b:fd:f5:55:85:25:d2:34:d4:42:e3:c5:92:66:94:30:c6:9f: f8:af:2e:05:64:d2:58:32:50:6d:e1:e9:09:94:8f:59:db:51: ba:e3:3b:ba:23:5d:bf:56:a3:be:13:cd:5e:16:fa:35:b8:7b: 00:13:10:eb:0f:49:85:f8:60:6b:6c:07:4b:89:fd:4c:00:af: 71:06:b5:9b:ef:f7:5e:ab:13:c9:d9:67:b5:cb:23:ea:67:2f: 58:15:b0:b8:58:c6:04:f7:5f:ce:86:40:b0:0f:79:af:28:c1: 5a:9e:72:1a:71:2d:92:ef:46:3e:65:7f:5f:24:3b:ad:bd:4f: 48:39:70:c6:01:b6:93:34:ea:71:7e:b1:90:90:03:ff:fd:d1: 0d:2a:6c:41 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFXIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU5NDBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDJBMEVBM0MxRkNEMDUw QzE3QTYyQjlENjhFQUQyRUE4N0M4QzQ0NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmkzuq8kGlk8DxrDm9Fy9BAeG2E3MgrRohdajXppUKCDb231Kr TQjlPaLTjwEsXimHQaivWTso9z0Sv35kt+ZfWZ5nbx07d98yjO57ViVc2CrxvJs6 ttFdQh1NgLNq/r7CalGovOa0LkHlMk5POKduwdIpW5FyXCeEwRQOPDE3DcO6pDg1 aIJybXjPXZZblPzHdVVEt3lK5e1wq36V+SDVeM1bCb7dl77XDky0vBimKY2jErpQ 0LV59kk1HTBbXZsP31kVvM/PXVycmIUvJMEw/et57ADhD83s8AUUhBtSz4ld3RYG z5Hnufjq4aCZ5LemDIhWfORMpBCPZBemnfs7AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUKg6jwfzQUMF6YrnWjq0uqHyMREQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0tnNmp3ZnpRVU1GNllybldqcTB1cUh5TVJFUS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPbcqgwDQYJKoZIhvcNAQELBQADggEB AOBu+xWMc8hOUF6eO+zIG6kVLRIrTIKBrD22qW5svufx95YSdU+aml35tR0H31Xr SVMICEtokJvVeuzMeQYc+upEEfC2YrNm2v85we4e//BVIQEjLiSoTTqie9Nj0SfX cZsQD/iBN+H9IuwIOxv99VWFJdI01ELjxZJmlDDGn/ivLgVk0lgyUG3h6QmUj1nb UbrjO7ojXb9Wo74TzV4W+jW4ewATEOsPSYX4YGtsB0uJ/UwAr3EGtZvv916rE8nZ Z7XLI+pnL1gVsLhYxgT3X86GQLAPea8owVqechpxLZLvRj5lf18kO629T0g5cMYB tpM06nF+sZCQA//90Q0qbEE= -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:29 2026 by rpki-client