$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/LXMmxfUM0fjltWVjaYZB0hFgR_0.roa File: LXMmxfUM0fjltWVjaYZB0hFgR_0.roa (raw, json) Hash identifier: X+EnjxK3Je3tQni/EchdcuqHsrFe5B5OjBdTJmo6vv0= Subject key identifier: 2D:73:26:C5:F5:0C:D1:F8:E5:B5:65:63:69:86:41:D2:11:60:47:FD Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 17C7 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LXMmxfUM0fjltWVjaYZB0hFgR_0.roa Signing time: Tue 31 Mar 2026 08:04:32 +0000 ROA not before: Tue 31 Mar 2026 08:04:32 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.72.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6087 (0x17c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:04:32 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=2D7326C5F50CD1F8E5B56563698641D2116047FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:00:56:b5:c8:cf:91:86:7e:39:18:31:ac:b2: e1:d6:31:98:27:86:4e:a2:03:a0:3f:49:6b:4b:cb: 6b:c6:07:76:ed:0e:7a:5b:de:07:bf:02:26:b1:ef: 3e:96:eb:a5:eb:a4:58:5d:4e:6a:a0:2c:d8:b3:fe: 7e:0d:45:f8:90:a9:23:63:0b:f3:d3:20:e0:95:9f: fc:f6:a1:57:48:ee:d1:db:1c:0f:7e:b6:8d:98:cf: 4c:db:13:0a:fc:e0:5f:be:aa:20:3f:71:6d:c3:8d: a4:0e:28:f1:86:fc:2d:d7:8b:69:35:23:53:ba:99: b5:01:08:9b:12:4b:a1:36:ce:30:86:1f:2e:03:65: 68:ff:56:68:1c:e8:bb:f2:8b:fa:36:4e:3c:86:e5: c6:4d:8d:50:1a:61:5e:c1:c6:03:cf:76:5a:a6:40: 41:1f:72:b6:9b:2b:50:32:49:d6:14:b2:49:73:f4: 32:f1:94:77:4b:61:24:50:58:03:1f:6c:1a:d9:1c: 73:6f:25:92:dd:bb:e7:dd:91:96:3b:a0:02:da:9e: 7a:a9:c9:61:31:6d:d3:a5:b6:80:b4:8d:8e:d0:1d: a5:d7:a2:67:4e:af:fa:6d:d9:86:05:f4:25:b1:ac: dc:41:b6:b1:25:01:85:0b:b9:24:ef:6d:82:a1:ba: e3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:73:26:C5:F5:0C:D1:F8:E5:B5:65:63:69:86:41:D2:11:60:47:FD X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LXMmxfUM0fjltWVjaYZB0hFgR_0.roa sbgp-ipAddrBlock: critical IPv4: 1.72.64.0/19 Signature Algorithm: sha256WithRSAEncryption 2a:2e:b8:c0:f6:ae:af:7a:b5:a4:51:b6:b2:87:08:cb:09:ad: f0:85:66:4c:34:1b:1e:63:c6:8a:a3:e2:2f:d6:aa:60:b4:6d: 45:17:70:e6:8b:61:59:ad:6a:f6:a0:e8:61:e8:23:20:cd:6a: ac:8e:89:18:6d:1e:d9:b5:50:b7:c6:13:7d:13:91:43:08:5e: ca:3d:07:da:28:cc:ae:7d:a5:42:f9:cf:15:84:9d:5a:ba:eb: 57:3d:3a:48:66:8c:03:f5:fb:7f:5c:7e:6a:7d:45:f8:e8:fd: 28:7a:2e:8c:b2:e8:3f:07:99:1d:b4:fb:30:b0:4d:09:08:c5: 7a:0e:4b:37:ab:0d:9c:03:0b:44:5c:ec:ba:b0:6f:0e:0f:36: 8d:d7:ba:4b:d2:0a:03:ed:8a:65:8f:6a:73:94:88:8e:f5:26: ed:2f:86:1d:65:3d:e0:14:c7:1d:1a:f1:d9:f5:73:b2:8b:d0: 91:ba:88:fd:63:71:c7:f6:00:7e:2b:f8:b1:69:62:36:f6:01: ef:d5:ef:ab:6c:40:04:0d:16:93:94:64:8d:5c:46:30:6e:5a: 8b:9f:b6:43:1b:9b:55:e4:d7:ef:cc:ae:cf:91:49:cd:ad:f9: 5f:20:fb:fa:52:59:f3:26:5f:23:87:b7:40:5b:8f:51:7b:44: e2:f2:31:3e -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICF8cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODA0MzJaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDJENzMyNkM1RjUwQ0Qx RjhFNUI1NjU2MzY5ODY0MUQyMTE2MDQ3RkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQAFa1yM+Rhn45GDGssuHWMZgnhk6iA6A/SWtLy2vGB3btDnpb 3ge/Aiax7z6W66XrpFhdTmqgLNiz/n4NRfiQqSNjC/PTIOCVn/z2oVdI7tHbHA9+ to2Yz0zbEwr84F++qiA/cW3DjaQOKPGG/C3Xi2k1I1O6mbUBCJsSS6E2zjCGHy4D ZWj/Vmgc6Lvyi/o2TjyG5cZNjVAaYV7BxgPPdlqmQEEfcrabK1AySdYUsklz9DLx lHdLYSRQWAMfbBrZHHNvJZLdu+fdkZY7oALannqpyWExbdOltoC0jY7QHaXXomdO r/pt2YYF9CWxrNxBtrElAYULuSTvbYKhuuNzAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQULXMmxfUM0fjltWVjaYZB0hFgR/0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0xYTW14ZlVNMGZqbHRXVmphWVpCMGhGZ1JfMC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAUBSEAwDQYJKoZIhvcNAQELBQADggEB ACouuMD2rq96taRRtrKHCMsJrfCFZkw0Gx5jxoqj4i/WqmC0bUUXcOaLYVmtavag 6GHoIyDNaqyOiRhtHtm1ULfGE30TkUMIXso9B9oozK59pUL5zxWEnVq661c9Okhm jAP1+39cfmp9Rfjo/Sh6Loyy6D8HmR20+zCwTQkIxXoOSzerDZwDC0Rc7Lqwbw4P No3XukvSCgPtimWPanOUiI71Ju0vhh1lPeAUxx0a8dn1c7KL0JG6iP1jccf2AH4r +LFpYjb2Ae/V76tsQAQNFpOUZI1cRjBuWouftkMbm1Xk1+/Mrs+RSc2t+V8g+/pS WfMmXyOHt0Bbj1F7ROLyMT4= -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:02 2026 by rpki-client