$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NFwhZ1J1H-L7u_LrbZ4hD0vB1DM.roa File: NFwhZ1J1H-L7u_LrbZ4hD0vB1DM.roa (raw, json) Hash identifier: cS4l/xro/imijmnNUO9JJ0C0I9nyDvMOd/8hTDSQdHA= Subject key identifier: 34:5C:21:67:52:75:1F:E2:FB:BB:F2:EB:6D:9E:21:0F:4B:C1:D4:33 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 151E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NFwhZ1J1H-L7u_LrbZ4hD0vB1DM.roa Signing time: Tue 31 Mar 2026 07:58:58 +0000 ROA not before: Tue 31 Mar 2026 07:58:58 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.67.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5406 (0x151e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:58:58 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=345C216752751FE2FBBBF2EB6D9E210F4BC1D433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:64:51:02:66:f3:0d:fd:1e:4e:a3:dc:ab:12: b2:ac:fa:bb:88:57:1b:89:cc:30:a8:b8:b8:26:9d: 0d:51:84:a1:29:ed:3c:48:71:72:71:29:ba:26:c4: 1c:6e:ca:92:88:b7:f8:3b:ad:16:32:cf:94:e9:68: 95:ae:cb:8d:a0:9d:08:b0:1a:7e:88:8e:28:4c:bd: 8d:7b:10:ab:9c:cf:0d:0b:38:cb:05:ba:95:b0:e2: d5:0d:c2:de:ec:8f:3e:f4:93:6e:37:b5:bd:f1:b3: c6:bc:05:64:b6:cc:9b:c7:12:88:a5:91:71:3d:e1: 94:0f:65:21:10:00:0d:f7:21:a1:f9:ae:35:36:2b: 3f:1e:09:43:8c:d1:1b:9c:cb:cf:b4:c8:f6:d1:5f: b4:61:3c:a0:9f:3b:72:38:bc:69:b1:21:6c:5d:e2: 23:ae:d3:51:3e:be:e6:74:3d:73:2b:43:e4:a7:af: c4:69:dd:32:da:52:ef:0d:91:71:da:69:9f:52:50: ea:66:f9:60:14:af:05:47:20:a6:f5:6a:24:88:24: 8b:31:b1:de:d3:ae:c3:a2:c2:c7:77:59:cd:70:4d: b2:4a:98:84:06:fa:47:67:11:3f:3d:f7:36:48:1a: b9:16:b1:20:3c:61:f0:b6:13:b3:ab:4e:3f:5b:2f: c7:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:5C:21:67:52:75:1F:E2:FB:BB:F2:EB:6D:9E:21:0F:4B:C1:D4:33 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NFwhZ1J1H-L7u_LrbZ4hD0vB1DM.roa sbgp-ipAddrBlock: critical IPv4: 1.67.232.0/22 Signature Algorithm: sha256WithRSAEncryption 20:5c:d8:40:61:70:21:ec:ac:6c:96:35:8e:c6:a2:06:a6:75: 84:6f:0c:d7:ac:90:4a:df:6d:e0:9c:d9:1f:dc:16:b6:14:09: e8:fa:40:99:63:25:7d:7d:c3:d9:75:9e:81:87:ac:3d:76:4c: e8:65:aa:58:0e:55:ad:5e:54:00:fb:ef:36:c8:aa:ba:1a:ab: 2d:13:30:96:ec:cf:ab:f7:32:6b:28:66:0d:16:d3:a7:a4:80: b5:5a:0c:c3:29:ea:67:6c:5e:11:98:ec:8f:c9:ba:64:b1:c7: bb:f0:9c:17:30:d5:1f:a7:b2:8f:65:19:c1:8f:b7:17:ed:f8: 9f:a5:7d:15:6c:69:34:1f:a9:79:f8:9a:88:9d:a3:4a:3d:fd: 24:5e:b0:f9:d8:f9:4e:0c:c1:eb:80:28:95:53:af:25:1c:47: 29:cd:ae:6d:6c:90:c0:6e:17:96:bd:68:64:a0:46:2b:06:77: 54:45:a2:c3:cb:14:7d:de:da:aa:81:49:c6:d5:17:fc:08:01: 77:74:66:c1:ac:6f:a8:2a:89:2c:36:c8:80:e9:d1:b5:03:9a: 87:b5:a3:07:e5:d7:9c:e8:fc:86:e8:e5:83:28:7d:20:9c:1b: 13:56:a9:db:1f:c6:03:25:51:d8:3b:e2:34:7f:49:e7:71:eb: af:b7:d8:1d -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFR4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU4NThaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDM0NUMyMTY3NTI3NTFG RTJGQkJCRjJFQjZEOUUyMTBGNEJDMUQ0MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIZFECZvMN/R5Oo9yrErKs+ruIVxuJzDCouLgmnQ1RhKEp7TxI cXJxKbomxBxuypKIt/g7rRYyz5TpaJWuy42gnQiwGn6IjihMvY17EKuczw0LOMsF upWw4tUNwt7sjz70k243tb3xs8a8BWS2zJvHEoilkXE94ZQPZSEQAA33IaH5rjU2 Kz8eCUOM0Rucy8+0yPbRX7RhPKCfO3I4vGmxIWxd4iOu01E+vuZ0PXMrQ+Snr8Rp 3TLaUu8NkXHaaZ9SUOpm+WAUrwVHIKb1aiSIJIsxsd7TrsOiwsd3Wc1wTbJKmIQG +kdnET899zZIGrkWsSA8YfC2E7OrTj9bL8crAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUNFwhZ1J1H+L7u/LrbZ4hD0vB1DMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L05Gd2haMUoxSC1MN3VfTHJiWjRoRDB2QjFETS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIBQ+gwDQYJKoZIhvcNAQELBQADggEB ACBc2EBhcCHsrGyWNY7GogamdYRvDNeskErfbeCc2R/cFrYUCej6QJljJX19w9l1 noGHrD12TOhlqlgOVa1eVAD77zbIqroaqy0TMJbsz6v3MmsoZg0W06ekgLVaDMMp 6mdsXhGY7I/JumSxx7vwnBcw1R+nso9lGcGPtxft+J+lfRVsaTQfqXn4moido0o9 /SResPnY+U4MweuAKJVTryUcRynNrm1skMBuF5a9aGSgRisGd1RFosPLFH3e2qqB ScbVF/wIAXd0ZsGsb6gqiSw2yIDp0bUDmoe1owfl15zo/Ibo5YMofSCcGxNWqdsf xgMlUdg74jR/Sedx66+32B0= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:34 2026 by rpki-client