$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NiHp9BtNs0QeSG-z7rVtrfGF1sA.roa File: NiHp9BtNs0QeSG-z7rVtrfGF1sA.roa (raw, json) Hash identifier: I8mITSGRL+2gQNPiEewvuH4oy6iG4I1siboHp8u6wdo= Subject key identifier: 36:21:E9:F4:1B:4D:B3:44:1E:48:6F:B3:EE:B5:6D:AD:F1:85:D6:C0 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 146C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NiHp9BtNs0QeSG-z7rVtrfGF1sA.roa Signing time: Tue 31 Mar 2026 07:57:30 +0000 ROA not before: Tue 31 Mar 2026 07:57:30 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.78.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5228 (0x146c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:57:30 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=3621E9F41B4DB3441E486FB3EEB56DADF185D6C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b0:88:c7:b6:e1:e5:7c:28:02:92:9e:69:ee: df:e2:56:cc:7b:8e:a4:2c:c9:15:4b:4a:91:1b:09: 00:6b:bd:95:fb:11:95:cb:b4:d0:ea:04:bb:d3:f8: b6:f3:e3:70:91:cc:0a:7d:76:ec:99:a7:74:cf:52: 1d:da:da:ae:89:ee:70:7f:92:77:ca:ce:aa:07:76: 42:53:93:a4:59:00:79:b0:68:7d:44:ed:af:9c:a4: ab:65:60:94:b7:50:01:a6:77:f4:6f:86:b3:e6:de: a8:c0:36:e1:ee:a6:d3:7d:e0:e3:73:80:9b:19:84: 96:d1:ed:bd:ce:95:28:a7:ea:00:47:cf:57:45:ca: d7:c7:a0:10:a5:58:c9:0d:65:6b:69:7c:e9:b3:e0: 08:5e:1d:70:6d:d2:a8:8b:ba:44:58:25:7b:b9:98: 7f:13:51:52:51:01:d9:fc:7d:fc:bb:36:84:59:bc: ff:2a:3c:2e:37:ce:80:db:62:55:5f:b1:9b:f3:28: f9:9b:f8:a4:53:d0:87:80:9b:47:20:2c:f9:43:4c: d5:6b:cd:2a:0f:47:59:e9:6a:4b:5b:6f:67:a2:f3: 1f:c8:82:e6:de:16:6b:ba:5c:a6:c1:55:90:1f:30: 69:cc:1c:b5:db:ba:3f:94:f4:96:6f:fb:63:90:b8: e0:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:21:E9:F4:1B:4D:B3:44:1E:48:6F:B3:EE:B5:6D:AD:F1:85:D6:C0 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NiHp9BtNs0QeSG-z7rVtrfGF1sA.roa sbgp-ipAddrBlock: critical IPv4: 1.78.48.0/20 Signature Algorithm: sha256WithRSAEncryption 85:04:ae:fe:7e:1b:7d:a3:bc:9b:5b:ae:13:b3:0c:e9:67:5f: 7c:e8:6f:03:98:65:62:ee:6e:da:21:62:7d:81:98:4b:f4:71: 32:59:53:35:3a:b2:d1:25:a0:ca:af:19:35:05:c3:cf:1e:96: 49:a6:fd:22:d5:d9:3e:f9:28:61:b7:c9:0a:83:65:5f:92:f0: 1c:b8:85:81:27:7e:20:47:37:30:ba:5a:3b:8c:c1:c1:c9:21: 4b:56:3f:eb:02:0b:2d:fc:85:f1:75:e4:bb:c7:be:db:77:45: d0:96:02:bc:55:12:8f:a4:15:1a:52:59:b4:4d:15:c0:c9:23: f3:68:4c:4a:88:39:f4:45:b4:06:a7:bf:32:a1:a9:b2:9f:33: e1:ab:95:e1:cd:14:d0:0e:14:57:14:4f:11:10:9e:05:bc:17: 48:a8:f4:72:f7:2a:e3:46:c3:5f:97:dc:49:bc:99:0f:1d:8f: fd:33:b6:38:ca:bc:95:9f:85:67:18:b5:88:2f:55:5d:68:4a: 4d:cf:f1:d5:6d:a2:16:78:72:7e:90:39:5e:1c:1c:25:e6:68: f2:a1:29:f8:f2:4d:7e:05:84:b4:af:7c:cf:68:48:8c:09:34: 66:86:dd:d5:1f:6c:8c:23:ec:af:ae:36:96:aa:4b:5a:a7:c5: 82:88:d5:55 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFGwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU3MzBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDM2MjFFOUY0MUI0REIz NDQxRTQ4NkZCM0VFQjU2REFERjE4NUQ2QzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxsIjHtuHlfCgCkp5p7t/iVsx7jqQsyRVLSpEbCQBrvZX7EZXL tNDqBLvT+Lbz43CRzAp9duyZp3TPUh3a2q6J7nB/knfKzqoHdkJTk6RZAHmwaH1E 7a+cpKtlYJS3UAGmd/RvhrPm3qjANuHuptN94ONzgJsZhJbR7b3OlSin6gBHz1dF ytfHoBClWMkNZWtpfOmz4AheHXBt0qiLukRYJXu5mH8TUVJRAdn8ffy7NoRZvP8q PC43zoDbYlVfsZvzKPmb+KRT0IeAm0cgLPlDTNVrzSoPR1npaktbb2ei8x/Igube Fmu6XKbBVZAfMGnMHLXbuj+U9JZv+2OQuOD7AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUNiHp9BtNs0QeSG+z7rVtrfGF1sAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L05pSHA5QnROczBRZVNHLXo3clZ0cmZHRjFzQS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQBTjAwDQYJKoZIhvcNAQELBQADggEB AIUErv5+G32jvJtbrhOzDOlnX3zobwOYZWLubtohYn2BmEv0cTJZUzU6stEloMqv GTUFw88elkmm/SLV2T75KGG3yQqDZV+S8By4hYEnfiBHNzC6WjuMwcHJIUtWP+sC Cy38hfF15LvHvtt3RdCWArxVEo+kFRpSWbRNFcDJI/NoTEqIOfRFtAanvzKhqbKf M+GrleHNFNAOFFcUTxEQngW8F0io9HL3KuNGw1+X3Em8mQ8dj/0ztjjKvJWfhWcY tYgvVV1oSk3P8dVtohZ4cn6QOV4cHCXmaPKhKfjyTX4FhLSvfM9oSIwJNGaG3dUf bIwj7K+uNpaqS1qnxYKI1VU= -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:00 2026 by rpki-client