$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KjjAw2kqyBKaxfO8eJ5HvJvDDDI.roa File: KjjAw2kqyBKaxfO8eJ5HvJvDDDI.roa (raw, json) Hash identifier: I8O1MHRd/B/O5wuov/RCq/eXXjxNY0wu8ka5kxtal50= Subject key identifier: 2A:38:C0:C3:69:2A:C8:12:9A:C5:F3:BC:78:9E:47:BC:9B:C3:0C:32 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 16C5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KjjAw2kqyBKaxfO8eJ5HvJvDDDI.roa Signing time: Tue 31 Mar 2026 08:02:28 +0000 ROA not before: Tue 31 Mar 2026 08:02:28 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 110.158.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5829 (0x16c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:02:28 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=2A38C0C3692AC8129AC5F3BC789E47BC9BC30C32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:8c:38:03:26:d5:c0:33:00:6f:78:c2:08:7b: d7:ed:d2:6d:dd:fe:ec:4d:13:1d:d1:78:43:25:23: 5e:81:6a:ed:b4:34:5e:a5:c7:03:e2:3b:6b:cc:92: 4e:b5:a1:ba:f7:58:fd:cc:8c:ca:b0:12:3a:16:76: 26:d5:3a:b7:29:aa:d0:35:8c:27:a5:74:8c:35:0b: ea:25:4b:8c:70:71:ef:0e:8b:bc:2c:20:00:ed:0b: cd:32:22:d0:c6:73:0c:fd:4d:5d:02:07:45:95:c9: 92:6f:50:64:38:9b:8a:0c:c3:49:60:30:0c:ca:af: ea:01:2b:d3:fa:6b:2c:ff:59:01:94:00:72:da:18: f5:5b:63:97:d9:96:cb:6d:c4:f3:d8:6e:7f:a4:14: da:91:0e:9f:4f:34:de:05:2c:f7:c8:b6:01:90:0c: e6:e4:dc:a6:f6:69:ff:05:e8:cf:18:d1:4d:02:df: 64:6e:df:9f:36:fd:af:b8:15:e0:42:43:90:64:2c: e3:3b:0c:8e:89:b8:2c:32:0c:82:02:05:de:ce:97: a7:9a:06:11:97:80:fb:f3:2c:24:a4:9d:f3:b8:7c: 48:d3:44:a4:76:b6:5d:85:06:ac:09:44:1e:af:fa: a2:dc:70:8e:87:fe:62:bc:3f:f6:0b:75:7c:91:92: 35:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:38:C0:C3:69:2A:C8:12:9A:C5:F3:BC:78:9E:47:BC:9B:C3:0C:32 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KjjAw2kqyBKaxfO8eJ5HvJvDDDI.roa sbgp-ipAddrBlock: critical IPv4: 110.158.192.0/19 Signature Algorithm: sha256WithRSAEncryption a8:33:f7:3b:1f:c9:86:06:34:5a:05:75:31:a7:37:64:9c:ab: 3b:d4:ce:61:f9:4f:7f:d8:44:16:4f:69:b1:cc:d6:5f:56:87: ca:06:ab:d9:9e:c4:57:33:1c:9a:17:0d:58:21:55:17:de:aa: fa:1f:c9:c0:89:65:f8:bf:d1:82:1e:a9:d0:c8:13:f2:99:c4: 81:18:3a:01:54:3d:da:40:74:47:ff:a9:ad:d1:32:69:b9:8b: 9f:bb:02:5f:da:5b:87:50:66:e9:de:10:00:92:56:03:54:49: b8:b9:7f:03:1d:f6:2b:49:8d:fb:67:7b:ad:0c:2c:c2:f7:12: f3:78:4a:11:03:d8:3f:45:f2:4b:4a:a7:87:5c:ca:a6:b8:c8: 7d:af:67:cb:2f:23:af:aa:ea:dc:50:ca:8c:79:da:88:5b:e9: 1c:f6:1f:67:42:83:60:4d:80:2f:41:35:fb:70:8f:a5:ea:33: c9:1f:90:be:eb:fb:23:ae:fc:32:d3:a4:8b:ac:5c:75:bf:f0: 20:ba:c1:70:98:6b:b1:47:5e:5e:32:3f:14:7f:79:70:4c:cf: 74:d7:b1:81:2e:db:db:c6:45:10:8c:44:2b:2a:de:49:0a:5c: 7a:00:55:6b:bc:1a:52:ed:b3:07:30:ed:66:8b:6a:a6:53:fe: 4e:8b:6f:04 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFsUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAyMjhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDJBMzhDMEMzNjkyQUM4 MTI5QUM1RjNCQzc4OUU0N0JDOUJDMzBDMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDijDgDJtXAMwBveMIIe9ft0m3d/uxNEx3ReEMlI16Bau20NF6l xwPiO2vMkk61obr3WP3MjMqwEjoWdibVOrcpqtA1jCeldIw1C+olS4xwce8Oi7ws IADtC80yItDGcwz9TV0CB0WVyZJvUGQ4m4oMw0lgMAzKr+oBK9P6ayz/WQGUAHLa GPVbY5fZlsttxPPYbn+kFNqRDp9PNN4FLPfItgGQDObk3Kb2af8F6M8Y0U0C32Ru 3582/a+4FeBCQ5BkLOM7DI6JuCwyDIICBd7Ol6eaBhGXgPvzLCSknfO4fEjTRKR2 tl2FBqwJRB6v+qLccI6H/mK8P/YLdXyRkjVJAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUKjjAw2kqyBKaxfO8eJ5HvJvDDDIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0tqakF3MmtxeUJLYXhmTzhlSjVIdkp2RERESS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAVunsAwDQYJKoZIhvcNAQELBQADggEB AKgz9zsfyYYGNFoFdTGnN2ScqzvUzmH5T3/YRBZPabHM1l9Wh8oGq9mexFczHJoX DVghVRfeqvofycCJZfi/0YIeqdDIE/KZxIEYOgFUPdpAdEf/qa3RMmm5i5+7Al/a W4dQZuneEACSVgNUSbi5fwMd9itJjftne60MLML3EvN4ShED2D9F8ktKp4dcyqa4 yH2vZ8svI6+q6txQyox52ohb6Rz2H2dCg2BNgC9BNftwj6XqM8kfkL7r+yOu/DLT pIusXHW/8CC6wXCYa7FHXl4yPxR/eXBMz3TXsYEu29vGRRCMRCsq3kkKXHoAVWu8 GlLtswcw7WaLaqZT/k6LbwQ= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:44 2026 by rpki-client