$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KxqntpwbLeOXzqMXWfXcUvSkNxs.roa File: KxqntpwbLeOXzqMXWfXcUvSkNxs.roa (raw, json) Hash identifier: tvIKfJKu3nOU4m6TdPRQJwIMZgjV++RXM0cx2/+oefo= Subject key identifier: 2B:1A:A7:B6:9C:1B:2D:E3:97:CE:A3:17:59:F5:DC:52:F4:A4:37:1B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 14AD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KxqntpwbLeOXzqMXWfXcUvSkNxs.roa Signing time: Tue 31 Mar 2026 07:58:01 +0000 ROA not before: Tue 31 Mar 2026 07:58:01 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.78.36.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5293 (0x14ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:58:01 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=2B1AA7B69C1B2DE397CEA31759F5DC52F4A4371B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e8:c6:b2:fb:4e:ec:92:e1:a5:3f:79:c9:37: 84:95:c4:91:98:26:c3:bf:a1:58:09:84:0b:96:1f: a6:62:06:e2:e4:0e:1a:5f:3b:a8:84:08:b6:e2:e7: b9:48:2d:65:6d:50:2d:a4:18:87:8d:16:ac:e1:3b: f6:8f:ce:59:5b:e0:1b:60:02:8e:40:13:88:f0:1b: 71:de:27:8f:94:1c:08:f4:0f:13:62:41:5a:cc:6c: f5:1c:77:54:a5:de:f8:95:fb:b7:16:79:b3:33:d1: 74:11:2f:ca:6e:2f:f3:fa:e5:fb:c8:90:7c:20:d2: 8a:38:0b:55:15:bb:2c:49:52:87:30:1a:30:86:76: e8:a0:23:c9:df:81:23:bb:84:0c:30:95:3d:d1:ef: ec:11:75:77:4b:7b:75:6e:b7:90:50:6f:75:b7:32: ea:60:51:26:a1:ff:f4:85:5b:8e:12:9c:2e:9b:25: c0:f9:23:a5:d6:75:13:21:63:1c:98:f1:82:5a:15: 35:ba:e1:23:4a:a4:d0:39:6e:df:d7:d4:76:6b:38: a1:8c:92:d8:07:9d:d8:25:73:93:74:fe:63:43:59: 68:04:c6:9e:e3:38:d7:8c:c8:f2:cf:3a:b4:a6:e6: c5:09:86:c7:86:ba:bd:1f:82:d3:11:a9:ba:dc:cc: 4f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:1A:A7:B6:9C:1B:2D:E3:97:CE:A3:17:59:F5:DC:52:F4:A4:37:1B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KxqntpwbLeOXzqMXWfXcUvSkNxs.roa sbgp-ipAddrBlock: critical IPv4: 1.78.36.0/22 Signature Algorithm: sha256WithRSAEncryption 83:f7:fe:17:28:78:e3:50:81:37:6e:dc:1c:77:ec:83:93:b4: 06:ed:4f:78:40:f4:91:5b:fc:5d:b1:c1:89:9c:74:e1:08:53: 97:e2:d6:ff:49:86:88:39:d5:2c:75:ce:f6:51:bc:b6:e0:16: b1:a6:6c:bb:d3:2b:76:3b:0a:4f:22:a2:cd:db:e1:40:bf:05: 78:62:d3:d5:2b:a1:42:3f:d1:11:01:9d:bc:03:c0:d2:77:b2: 47:5c:a5:d1:bb:a3:2e:29:3a:b3:58:46:d4:03:72:5b:d3:de: ce:d7:7a:c9:ae:69:fd:b4:0c:69:3f:24:12:fa:36:76:96:39: b5:71:56:ae:db:78:b0:f4:4a:39:1c:dd:f7:20:f1:bd:ea:c4: c7:25:f5:a5:4c:10:49:a6:50:a5:35:4d:9a:e0:14:66:12:1d: f3:9d:4c:06:d5:ec:63:eb:46:82:52:13:63:09:14:a4:a8:66: 54:9f:16:bc:d1:a1:a3:a9:77:a1:1e:43:82:a0:e6:e1:e0:23: 53:f2:13:fc:99:64:8f:23:23:44:c6:4a:d2:7b:98:83:5c:fe: 25:44:66:8c:17:f3:a2:21:02:de:df:a9:cf:1d:cb:13:d3:86: fd:04:32:b4:0d:da:5c:a0:b2:6c:75:da:eb:06:f5:3b:e3:8e: 6e:a9:cc:19 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFK0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU4MDFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDJCMUFBN0I2OUMxQjJE RTM5N0NFQTMxNzU5RjVEQzUyRjRBNDM3MUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDA6May+07skuGlP3nJN4SVxJGYJsO/oVgJhAuWH6ZiBuLkDhpf O6iECLbi57lILWVtUC2kGIeNFqzhO/aPzllb4BtgAo5AE4jwG3HeJ4+UHAj0DxNi QVrMbPUcd1Sl3viV+7cWebMz0XQRL8puL/P65fvIkHwg0oo4C1UVuyxJUocwGjCG duigI8nfgSO7hAwwlT3R7+wRdXdLe3Vut5BQb3W3MupgUSah//SFW44SnC6bJcD5 I6XWdRMhYxyY8YJaFTW64SNKpNA5bt/X1HZrOKGMktgHndglc5N0/mNDWWgExp7j ONeMyPLPOrSm5sUJhseGur0fgtMRqbrczE8tAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUKxqntpwbLeOXzqMXWfXcUvSkNxswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0t4cW50cHdiTGVPWHpxTVhXZlhjVXZTa054cy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIBTiQwDQYJKoZIhvcNAQELBQADggEB AIP3/hcoeONQgTdu3Bx37IOTtAbtT3hA9JFb/F2xwYmcdOEIU5fi1v9Jhog51Sx1 zvZRvLbgFrGmbLvTK3Y7Ck8ios3b4UC/BXhi09UroUI/0REBnbwDwNJ3skdcpdG7 oy4pOrNYRtQDclvT3s7Xesmuaf20DGk/JBL6NnaWObVxVq7beLD0Sjkc3fcg8b3q xMcl9aVMEEmmUKU1TZrgFGYSHfOdTAbV7GPrRoJSE2MJFKSoZlSfFrzRoaOpd6Ee Q4Kg5uHgI1PyE/yZZI8jI0TGStJ7mINc/iVEZowX86IhAt7fqc8dyxPThv0EMrQN 2lygsmx12usG9Tvjjm6pzBk= -----END CERTIFICATE-----Generated at Tue Apr 7 19:48:11 2026 by rpki-client