$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NHuOrOQKlWgz3T67guv_1WQOi00.roa File: NHuOrOQKlWgz3T67guv_1WQOi00.roa (raw, json) Hash identifier: 7WXTG+OGXEtORzGADfgdUfy0OVTXp2Jt0iTyB2kwcyE= Subject key identifier: 34:7B:8E:AC:E4:0A:95:68:33:DD:3E:BB:82:EB:FF:D5:64:0E:8B:4D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 17D3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NHuOrOQKlWgz3T67guv_1WQOi00.roa Signing time: Tue 31 Mar 2026 08:04:37 +0000 ROA not before: Tue 31 Mar 2026 08:04:37 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 219.114.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6099 (0x17d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:04:37 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=347B8EACE40A956833DD3EBB82EBFFD5640E8B4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:1d:29:65:37:79:a8:8a:90:64:7b:2b:a0:29: b5:cd:29:5e:34:85:70:d1:70:d4:f8:8c:f2:c1:4a: 4a:1e:7e:2e:f6:6c:c9:1d:e9:a2:d3:9f:77:b5:65: 5e:64:a6:85:83:91:a4:b9:b7:c2:38:71:fb:18:0e: 6d:e1:96:3a:c0:be:33:1f:4e:3c:fb:05:33:cd:d6: 40:d3:cf:46:f9:7f:74:3f:b8:b6:3d:17:84:e0:8e: bb:46:b0:03:2e:79:5c:f0:f5:38:48:ad:d2:2b:94: f4:f1:ba:2f:5c:3e:93:0d:c7:a8:3c:fa:e5:60:58: df:e5:c4:ba:36:83:0a:b8:c5:89:bc:a6:9a:52:d8: 7b:1f:2d:b0:73:2c:2d:fa:77:53:5f:85:00:08:d3: b3:8e:40:44:57:5c:c3:ad:a1:db:c7:7a:0f:04:db: 1c:77:7a:18:5e:60:23:1d:62:8c:60:4f:33:35:24: 53:e2:d8:bc:da:b5:1a:20:03:11:2f:0c:13:4c:b9: 2a:4d:3c:bd:b9:36:f0:dc:7f:98:76:cf:ac:2c:d0: 62:6d:63:80:51:c7:69:3c:53:61:6a:9b:70:11:98: ba:af:f4:1d:95:95:61:c5:37:09:d5:8c:b6:4d:14: d3:0f:81:df:77:5a:8d:a7:69:c2:56:69:21:aa:02: 45:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:7B:8E:AC:E4:0A:95:68:33:DD:3E:BB:82:EB:FF:D5:64:0E:8B:4D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NHuOrOQKlWgz3T67guv_1WQOi00.roa sbgp-ipAddrBlock: critical IPv4: 219.114.144.0/20 Signature Algorithm: sha256WithRSAEncryption 00:ec:a0:30:10:c6:b0:c0:ed:ce:13:98:72:42:af:83:1d:a3: 7d:b0:56:e4:b1:42:eb:9e:63:19:51:cb:7f:e8:c2:8f:f2:b0: f7:f7:c0:95:27:56:fc:37:a3:97:41:ec:c4:83:2c:b4:e8:3f: b4:ea:1d:da:20:4e:dc:1e:06:58:08:0d:bf:bf:28:3e:05:6a: c7:06:07:37:3b:79:37:60:7f:3e:8c:e3:92:c6:6b:d8:49:c7: 83:56:4c:3a:9d:17:e4:21:16:69:02:ac:d2:f3:52:0d:c4:74: 67:29:67:73:9f:59:6f:ec:7c:e7:36:3d:6b:01:f7:67:0d:73: 79:fb:6d:a0:ad:f1:1a:88:9b:d0:5d:57:07:cf:c3:b8:dd:62: bf:ec:8f:3e:0d:22:2e:fb:f9:5c:76:0f:76:09:03:9c:25:ff: 51:6e:25:51:ff:56:e2:1b:2e:4f:e3:ef:98:c1:a0:eb:20:6d: cd:14:e1:18:c9:1e:fb:f1:dc:30:d0:03:c9:18:15:1f:b2:7a: 93:9f:e3:d6:b9:58:7a:b4:c1:6c:59:7e:56:1e:5d:8e:55:8f: d0:2a:7a:3f:0c:fd:2e:91:2b:7f:04:bd:a4:06:57:69:a5:56: 55:e2:3d:47:22:5c:b9:9a:bc:36:e9:f5:39:88:2b:2a:0e:98: 80:9c:59:d6 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICF9MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODA0MzdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDM0N0I4RUFDRTQwQTk1 NjgzM0REM0VCQjgyRUJGRkQ1NjQwRThCNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDzHSllN3moipBkeyugKbXNKV40hXDRcNT4jPLBSkoefi72bMkd 6aLTn3e1ZV5kpoWDkaS5t8I4cfsYDm3hljrAvjMfTjz7BTPN1kDTz0b5f3Q/uLY9 F4TgjrtGsAMueVzw9ThIrdIrlPTxui9cPpMNx6g8+uVgWN/lxLo2gwq4xYm8pppS 2HsfLbBzLC36d1NfhQAI07OOQERXXMOtodvHeg8E2xx3ehheYCMdYoxgTzM1JFPi 2LzatRogAxEvDBNMuSpNPL25NvDcf5h2z6ws0GJtY4BRx2k8U2Fqm3ARmLqv9B2V lWHFNwnVjLZNFNMPgd93Wo2nacJWaSGqAkVhAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUNHuOrOQKlWgz3T67guv/1WQOi00wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L05IdU9yT1FLbFdnejNUNjdndXZfMVdRT2kwMC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATbcpAwDQYJKoZIhvcNAQELBQADggEB AADsoDAQxrDA7c4TmHJCr4Mdo32wVuSxQuueYxlRy3/owo/ysPf3wJUnVvw3o5dB 7MSDLLToP7TqHdogTtweBlgIDb+/KD4FascGBzc7eTdgfz6M45LGa9hJx4NWTDqd F+QhFmkCrNLzUg3EdGcpZ3OfWW/sfOc2PWsB92cNc3n7baCt8RqIm9BdVwfPw7jd Yr/sjz4NIi77+Vx2D3YJA5wl/1FuJVH/VuIbLk/j75jBoOsgbc0U4RjJHvvx3DDQ A8kYFR+yepOf49a5WHq0wWxZflYeXY5Vj9Aqej8M/S6RK38EvaQGV2mlVlXiPUci XLmavDbp9TmIKyoOmICcWdY= -----END CERTIFICATE-----Generated at Tue Apr 7 19:48:06 2026 by rpki-client