$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KupxzQB4y37zAxahT88owvQwPbE.roa File: KupxzQB4y37zAxahT88owvQwPbE.roa (raw, json) Hash identifier: omLYfdzjMITdvfTL4WynJATW6NNNSvF5wU+hChino1A= Subject key identifier: 2A:EA:71:CD:00:78:CB:7E:F3:03:16:A1:4F:CF:28:C2:F4:30:3D:B1 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 151D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KupxzQB4y37zAxahT88owvQwPbE.roa Signing time: Tue 31 Mar 2026 07:58:57 +0000 ROA not before: Tue 31 Mar 2026 07:58:57 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.72.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5405 (0x151d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:58:57 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=2AEA71CD0078CB7EF30316A14FCF28C2F4303DB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:19:e2:61:48:8f:9a:f2:da:63:43:ef:8e:1e: ef:d2:4e:03:3c:3a:29:dc:eb:50:74:f3:11:fe:67: 56:1c:c0:a8:c0:21:94:80:da:09:a1:18:ed:e8:85: df:c1:f0:ec:11:52:39:bf:2c:e5:7b:fd:66:ea:d0: 71:e5:0e:9b:15:5a:13:67:63:c2:ba:2a:6c:f6:79: 9b:08:92:d5:69:f3:e2:4f:f6:dc:59:2d:bf:30:6f: b7:d0:9d:13:0d:b9:62:24:24:ec:b7:41:88:54:02: 0c:10:84:70:cd:67:93:e9:b0:3e:83:32:92:e6:e1: b7:c7:48:82:fb:3c:20:fe:bd:4d:ad:90:74:0a:b5: 2b:d4:9c:2a:41:f0:0a:29:09:b5:25:a3:51:ec:4a: 4a:f9:82:a2:df:f0:bf:61:44:db:bd:cb:3b:5e:a7: 04:93:3a:b5:43:dc:3b:b9:b6:e1:a2:77:fa:4a:5d: 07:78:6e:f1:f9:a3:b4:81:cf:df:72:ce:af:0b:b4: 87:63:b2:c4:71:c1:37:17:b8:e8:ae:d8:77:78:56: 93:b3:d0:ae:c6:98:06:61:c9:18:67:83:29:1c:27: 56:b0:a5:dc:92:fc:18:19:93:ce:b8:b1:52:71:61: c6:ae:2d:28:42:36:68:4d:51:4f:91:bd:c9:53:03: cd:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:EA:71:CD:00:78:CB:7E:F3:03:16:A1:4F:CF:28:C2:F4:30:3D:B1 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KupxzQB4y37zAxahT88owvQwPbE.roa sbgp-ipAddrBlock: critical IPv4: 1.72.192.0/18 Signature Algorithm: sha256WithRSAEncryption ac:21:1f:b2:45:33:70:f3:43:ba:99:af:59:ec:4f:12:3d:12: e3:3b:54:04:69:98:15:c2:70:41:02:42:c8:d7:87:63:f6:4e: 0a:77:8e:73:09:71:97:04:4b:94:87:f6:5f:6c:14:0b:7c:a6: a7:c1:79:f4:de:b3:d5:a5:26:41:9c:8f:84:c6:f4:30:42:77: ae:e1:81:91:8a:a3:6d:da:cb:b0:1e:30:04:5b:41:1b:c5:47: db:df:ce:05:0f:c1:ed:cb:ea:84:97:28:1a:d5:3c:44:4d:20: dd:f3:ca:6d:45:06:cf:8c:17:2b:42:37:f7:e0:03:26:63:6a: 0d:ec:12:2c:80:84:42:17:05:8e:8b:22:6f:e1:89:97:fe:c3: 64:b4:6b:a4:fd:3d:55:ea:86:13:0d:54:f0:fc:e5:53:4e:4c: d8:af:bb:47:fa:a8:74:54:e0:61:c9:bd:f3:11:d6:10:d1:59: 69:6e:4e:42:9a:8f:a3:3e:b5:83:42:22:c1:fb:c0:6f:42:82: 9a:27:4e:68:97:3a:f0:40:06:fc:12:ab:18:d2:2d:b6:01:7c: 2a:44:be:b4:11:8e:ba:48:71:60:41:45:23:6a:b2:f5:ac:a4: 6f:af:62:57:3a:a8:08:54:d4:6f:8a:9e:34:b7:e7:8e:d2:03: ca:5c:88:5e -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFR0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU4NTdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDJBRUE3MUNEMDA3OENC N0VGMzAzMTZBMTRGQ0YyOEMyRjQzMDNEQjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIGeJhSI+a8tpjQ++OHu/STgM8Oinc61B08xH+Z1YcwKjAIZSA 2gmhGO3ohd/B8OwRUjm/LOV7/Wbq0HHlDpsVWhNnY8K6Kmz2eZsIktVp8+JP9txZ Lb8wb7fQnRMNuWIkJOy3QYhUAgwQhHDNZ5PpsD6DMpLm4bfHSIL7PCD+vU2tkHQK tSvUnCpB8AopCbUlo1HsSkr5gqLf8L9hRNu9yztepwSTOrVD3Du5tuGid/pKXQd4 bvH5o7SBz99yzq8LtIdjssRxwTcXuOiu2Hd4VpOz0K7GmAZhyRhngykcJ1awpdyS /BgZk864sVJxYcauLShCNmhNUU+RvclTA81dAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUKupxzQB4y37zAxahT88owvQwPbEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0t1cHh6UUI0eTM3ekF4YWhUODhvd3ZRd1BiRS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAYBSMAwDQYJKoZIhvcNAQELBQADggEB AKwhH7JFM3DzQ7qZr1nsTxI9EuM7VARpmBXCcEECQsjXh2P2Tgp3jnMJcZcES5SH 9l9sFAt8pqfBefTes9WlJkGcj4TG9DBCd67hgZGKo23ay7AeMARbQRvFR9vfzgUP we3L6oSXKBrVPERNIN3zym1FBs+MFytCN/fgAyZjag3sEiyAhEIXBY6LIm/hiZf+ w2S0a6T9PVXqhhMNVPD85VNOTNivu0f6qHRU4GHJvfMR1hDRWWluTkKaj6M+tYNC IsH7wG9CgponTmiXOvBABvwSqxjSLbYBfCpEvrQRjrpIcWBBRSNqsvWspG+vYlc6 qAhU1G+KnjS3547SA8pciF4= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:21 2026 by rpki-client