$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/McOwI3iP0Qd84R3vJYxieZqYQ5U.roa File: McOwI3iP0Qd84R3vJYxieZqYQ5U.roa (raw, json) Hash identifier: cB5LDi0nCfhkKxqtztZuI3NoK4W4J/KzDWPj1642CFM= Subject key identifier: 31:C3:B0:23:78:8F:D1:07:7C:E1:1D:EF:25:8C:62:79:9A:98:43:95 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 175E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/McOwI3iP0Qd84R3vJYxieZqYQ5U.roa Signing time: Tue 31 Mar 2026 08:03:41 +0000 ROA not before: Tue 31 Mar 2026 08:03:41 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5982 (0x175e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:03:41 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=31C3B023788FD1077CE11DEF258C62799A984395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e4:04:6f:f8:db:31:db:5d:62:10:e6:5f:e9: 91:02:78:83:5d:07:f0:3a:dd:72:52:11:e7:aa:59: 28:e0:c2:19:97:9d:0b:6f:cc:b1:09:e4:a8:de:fd: e8:3d:63:bf:48:9d:c2:ba:c3:46:14:bc:c7:ce:14: 1d:e8:83:cf:23:6b:3b:4e:fb:7a:e0:8c:89:9e:6a: 40:b6:90:ec:40:3f:24:6b:1e:7e:04:09:f3:0b:36: 39:a7:b1:e5:24:2b:be:5b:ed:73:a1:29:7d:30:7b: 15:fc:30:06:8f:f7:8b:31:a8:64:fd:a0:05:df:70: 4f:12:4b:60:2e:92:c9:6a:c0:c8:b8:44:77:a1:0c: f9:a8:a0:52:07:66:b5:88:03:8c:fc:5c:a0:b5:64: 15:75:07:25:cc:fd:66:1d:15:c2:d2:a8:06:c7:d1: e7:7b:d7:8a:16:e2:86:c1:51:26:90:c3:20:74:65: 45:53:7a:a0:76:c4:71:26:3b:42:e3:44:03:06:24: 48:89:2b:5d:27:17:ef:c0:0a:76:b1:42:68:31:62: d8:12:92:42:05:29:1b:2d:87:a1:b9:c5:f3:8b:b8: cd:69:ae:99:79:20:7c:6f:a3:f5:7d:1a:04:ff:56: 04:24:31:86:a2:ca:79:ea:03:ab:d8:1b:5b:8c:62: 5c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C3:B0:23:78:8F:D1:07:7C:E1:1D:EF:25:8C:62:79:9A:98:43:95 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/McOwI3iP0Qd84R3vJYxieZqYQ5U.roa sbgp-ipAddrBlock: critical IPv4: 1.79.120.0/21 Signature Algorithm: sha256WithRSAEncryption 8d:b4:4e:30:c5:85:92:1c:33:4b:e2:61:b5:22:28:a5:2d:9a: ff:b9:12:e3:a7:0d:9d:27:29:fd:76:f7:a7:43:9b:9f:41:26: 3f:32:e5:7e:26:67:ee:4b:9a:a2:79:a9:13:6c:6e:15:b0:20: 3a:f3:ec:95:a4:d6:b2:58:35:be:36:37:41:3b:60:5b:ae:7b: 59:04:1b:e7:90:05:8c:cd:23:cb:a9:b7:ad:73:6d:35:53:00: 72:13:19:a6:d6:00:76:77:33:5f:50:ff:e3:fb:1f:df:fc:5d: 41:aa:31:12:59:92:87:5a:5c:b9:61:0a:ae:fa:23:e8:ef:2e: 64:78:16:36:51:49:0f:6d:a0:4d:ae:19:2d:51:ad:3e:b0:c8: 43:21:69:99:ff:4c:e0:18:b4:ea:35:ff:7e:bc:12:ed:de:7d: 68:8c:66:8f:39:83:3b:44:e3:01:6b:44:28:5e:71:ea:e8:09: e4:23:c7:f6:48:b6:5d:57:c6:f6:f4:57:34:6f:fa:f6:f3:a8: 0d:df:72:7b:a9:be:dd:76:a0:15:9a:b9:5e:6c:cc:32:e8:61: e8:79:83:98:81:d2:92:ad:74:51:d7:5f:78:d8:38:20:b6:93: fd:b3:02:83:c7:47:bb:ad:99:7d:54:58:7b:18:6e:29:a4:99: c7:ba:2d:b9 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICF14wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAzNDFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDMxQzNCMDIzNzg4RkQx MDc3Q0UxMURFRjI1OEM2Mjc5OUE5ODQzOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDf5ARv+Nsx211iEOZf6ZECeINdB/A63XJSEeeqWSjgwhmXnQtv zLEJ5Kje/eg9Y79IncK6w0YUvMfOFB3og88jaztO+3rgjImeakC2kOxAPyRrHn4E CfMLNjmnseUkK75b7XOhKX0wexX8MAaP94sxqGT9oAXfcE8SS2AukslqwMi4RHeh DPmooFIHZrWIA4z8XKC1ZBV1ByXM/WYdFcLSqAbH0ed714oW4obBUSaQwyB0ZUVT eqB2xHEmO0LjRAMGJEiJK10nF+/ACnaxQmgxYtgSkkIFKRsth6G5xfOLuM1prpl5 IHxvo/V9GgT/VgQkMYaiynnqA6vYG1uMYlxfAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUMcOwI3iP0Qd84R3vJYxieZqYQ5UwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L01jT3dJM2lQMFFkODRSM3ZKWXhpZVpxWVE1VS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMBT3gwDQYJKoZIhvcNAQELBQADggEB AI20TjDFhZIcM0viYbUiKKUtmv+5EuOnDZ0nKf1296dDm59BJj8y5X4mZ+5LmqJ5 qRNsbhWwIDrz7JWk1rJYNb42N0E7YFuue1kEG+eQBYzNI8upt61zbTVTAHITGabW AHZ3M19Q/+P7H9/8XUGqMRJZkodaXLlhCq76I+jvLmR4FjZRSQ9toE2uGS1RrT6w yEMhaZn/TOAYtOo1/368Eu3efWiMZo85gztE4wFrRCheceroCeQjx/ZItl1Xxvb0 VzRv+vbzqA3fcnupvt12oBWauV5szDLoYeh5g5iB0pKtdFHXX3jYOCC2k/2zAoPH R7utmX1UWHsYbimkmce6Lbk= -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:27 2026 by rpki-client