$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/MoxgEvlymCXOpqkZcF7a-_T2aWk.roa File: MoxgEvlymCXOpqkZcF7a-_T2aWk.roa (raw, json) Hash identifier: Pst6akh8/oGr6NRqODJkRYwlTqNVdXvyhgUM9bv1Lho= Subject key identifier: 32:8C:60:12:F9:72:98:25:CE:A6:A9:19:70:5E:DA:FB:F4:F6:69:69 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 142D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MoxgEvlymCXOpqkZcF7a-_T2aWk.roa Signing time: Tue 31 Mar 2026 07:56:59 +0000 ROA not before: Tue 31 Mar 2026 07:56:59 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.248.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5165 (0x142d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:56:59 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=328C6012F9729825CEA6A919705EDAFBF4F66969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:3b:5b:fd:2d:71:71:5e:8e:d4:77:34:b2:11: 19:82:fa:e8:bf:1f:25:a5:4d:80:e8:9e:f3:35:d1: 82:3f:a4:e2:d9:44:cd:d6:fe:2c:80:b1:12:d4:05: 79:b9:b0:b3:8d:60:ce:b1:a2:2e:69:4f:e4:23:8b: bd:65:e9:e5:bd:47:d3:08:2d:61:6b:bc:60:2e:8c: cc:aa:6e:f3:73:2a:5b:2a:23:50:fa:76:2f:00:38: 39:32:ca:f0:ea:89:3e:8f:e1:74:ee:bf:53:53:ad: 5a:66:f9:d3:bd:b8:eb:b2:97:88:fa:76:47:f9:14: bf:fb:06:5a:77:c0:03:49:41:a5:36:a3:7f:26:25: 08:30:43:fc:61:6a:a8:94:a3:6b:15:63:16:8b:d6: bb:37:78:68:18:95:42:e0:4e:1b:50:bd:13:cb:aa: ab:cd:57:bd:66:1f:21:1d:99:0a:ee:42:35:1f:31: 77:06:c5:91:f9:0e:8c:0f:c0:51:9e:dd:a0:69:3d: 04:d8:fc:73:b4:69:da:0d:8f:0e:f2:f6:f5:a8:b0: 01:1d:93:e5:f8:fe:7e:1f:b8:01:71:48:5e:82:88: c3:2a:14:08:f9:29:8e:7b:af:c3:f1:e6:f8:6e:dd: b5:39:e6:7d:c8:49:18:4d:1f:42:e9:17:3f:19:07: e6:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:8C:60:12:F9:72:98:25:CE:A6:A9:19:70:5E:DA:FB:F4:F6:69:69 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MoxgEvlymCXOpqkZcF7a-_T2aWk.roa sbgp-ipAddrBlock: critical IPv4: 1.75.248.0/22 Signature Algorithm: sha256WithRSAEncryption c2:8e:de:98:85:0e:75:65:e6:19:96:47:f7:66:97:1f:0d:3d: 8a:71:30:d7:4f:81:25:fa:b9:7a:a9:01:5d:af:53:e6:18:73: 71:08:0d:35:1e:20:2b:9f:f6:7d:55:5a:81:9f:6e:e5:ac:ef: 78:e6:2a:3e:7a:d0:d6:1b:41:eb:c6:66:31:1d:91:e7:bb:a1: 72:78:ab:36:73:d9:9b:7f:89:a7:34:52:f3:ae:ae:c3:2b:f9: ee:c4:4f:7f:4e:55:ca:e4:14:40:8c:5b:9f:4b:3a:cd:96:94: 38:ab:97:d7:39:68:a1:bb:20:78:da:b7:7e:3a:cd:fc:f7:b8: df:e4:bd:15:57:89:52:5b:89:29:0f:fd:1c:3b:90:51:32:fa: 62:bc:00:2d:ba:0f:7a:cf:a3:a4:4d:98:93:7a:8a:6b:bc:9a: 19:52:ef:a6:c7:e2:36:81:d9:bf:fc:04:f3:e6:c1:32:7d:76: c7:d0:ef:58:6b:8c:58:f4:8b:9d:b5:51:27:e3:a9:be:2f:65: 00:07:b2:61:2a:19:b5:3f:8f:e3:02:41:3a:f2:d3:84:68:71: 0b:4b:4d:d8:e9:02:a8:25:10:2e:f5:da:e0:5b:d8:fe:d4:13: 84:87:00:df:19:69:56:57:89:74:6e:14:fb:6d:85:2c:dd:8a: 43:db:3d:38 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFC0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU2NTlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDMyOEM2MDEyRjk3Mjk4 MjVDRUE2QTkxOTcwNUVEQUZCRjRGNjY5NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDvO1v9LXFxXo7UdzSyERmC+ui/HyWlTYDonvM10YI/pOLZRM3W /iyAsRLUBXm5sLONYM6xoi5pT+Qji71l6eW9R9MILWFrvGAujMyqbvNzKlsqI1D6 di8AODkyyvDqiT6P4XTuv1NTrVpm+dO9uOuyl4j6dkf5FL/7Blp3wANJQaU2o38m JQgwQ/xhaqiUo2sVYxaL1rs3eGgYlULgThtQvRPLqqvNV71mHyEdmQruQjUfMXcG xZH5DowPwFGe3aBpPQTY/HO0adoNjw7y9vWosAEdk+X4/n4fuAFxSF6CiMMqFAj5 KY57r8Px5vhu3bU55n3ISRhNH0LpFz8ZB+bnAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUMoxgEvlymCXOpqkZcF7a+/T2aWkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L01veGdFdmx5bUNYT3Bxa1pjRjdhLV9UMmFXay5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIBS/gwDQYJKoZIhvcNAQELBQADggEB AMKO3piFDnVl5hmWR/dmlx8NPYpxMNdPgSX6uXqpAV2vU+YYc3EIDTUeICuf9n1V WoGfbuWs73jmKj560NYbQevGZjEdkee7oXJ4qzZz2Zt/iac0UvOursMr+e7ET39O VcrkFECMW59LOs2WlDirl9c5aKG7IHjat346zfz3uN/kvRVXiVJbiSkP/Rw7kFEy +mK8AC26D3rPo6RNmJN6imu8mhlS76bH4jaB2b/8BPPmwTJ9dsfQ71hrjFj0i521 USfjqb4vZQAHsmEqGbU/j+MCQTry04RocQtLTdjpAqglEC712uBb2P7UE4SHAN8Z aVZXiXRuFPtthSzdikPbPTg= -----END CERTIFICATE-----Generated at Tue Apr 7 21:01:08 2026 by rpki-client