$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NvBRqErPValXdmsPaCUZSe4SbzI.roa File: NvBRqErPValXdmsPaCUZSe4SbzI.roa (raw, json) Hash identifier: SP1HiXdbOBxQy6YAc1IrcYPT6s2rP4OvetmkFnUc6r8= Subject key identifier: 36:F0:51:A8:4A:CF:55:A9:57:76:6B:0F:68:25:19:49:EE:12:6F:32 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 13B0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NvBRqErPValXdmsPaCUZSe4SbzI.roa Signing time: Tue 31 Mar 2026 07:56:06 +0000 ROA not before: Tue 31 Mar 2026 07:56:06 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5040 (0x13b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:56:06 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=36F051A84ACF55A957766B0F68251949EE126F32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c7:97:c2:40:2b:40:1f:d9:ba:a2:a1:d6:9d: 05:4b:9e:5a:74:49:06:bb:da:32:ca:98:69:6f:b6: 44:98:c9:8d:a1:fd:f7:af:af:07:e4:9f:02:af:5f: 73:d0:b4:32:2a:f2:36:ac:46:bb:da:0d:ee:83:4f: 17:ba:be:d2:3b:69:1c:d9:28:03:b3:95:d2:d4:28: 29:7e:7d:1e:a4:25:14:f0:34:54:4f:e9:22:ad:25: 4a:95:b3:06:98:e6:12:b7:48:98:55:2b:f5:44:3c: 2a:8e:80:13:67:5a:7e:4c:5f:25:39:e9:3c:c9:5b: de:69:0c:4f:74:48:4d:e7:3f:38:a0:ba:2b:78:a1: a5:cb:01:d4:a0:39:33:28:05:d0:49:1e:2d:5d:06: 0e:6d:99:61:e0:c1:d5:1c:0b:e0:34:e4:eb:4b:3a: e1:70:2f:3c:e7:f3:dd:76:8e:e3:ae:eb:a6:53:fd: b3:42:5a:c9:c0:a9:de:3a:72:e9:6b:27:7c:db:ce: 6c:ec:3b:56:6b:b1:1f:d2:ae:70:43:26:86:82:9e: 5c:4c:22:de:df:85:bb:37:ee:fa:ac:0c:89:c6:f3: 20:e5:fc:1d:dc:c0:9c:53:17:a9:f1:39:b7:16:aa: cd:b5:fe:27:2f:9d:84:cb:72:eb:03:49:d0:ca:46: 8d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:F0:51:A8:4A:CF:55:A9:57:76:6B:0F:68:25:19:49:EE:12:6F:32 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NvBRqErPValXdmsPaCUZSe4SbzI.roa sbgp-ipAddrBlock: critical IPv4: 1.75.0.0/23 Signature Algorithm: sha256WithRSAEncryption cf:5c:49:65:3d:da:2c:2f:96:35:f7:e5:ed:dc:f1:fe:c4:0f: 2e:94:5b:ed:71:2c:a5:4b:5a:ea:af:c9:ec:19:16:08:58:17: d7:ae:ea:42:d5:59:63:cf:95:99:18:6a:ea:91:95:d4:7c:ff: a5:3c:21:c8:1d:4b:b8:d2:da:95:fe:46:98:80:a8:3b:79:82: 15:df:b5:4e:67:27:4a:ec:82:0d:05:a5:0f:b8:d0:14:a5:83: b1:7b:65:e1:69:f7:03:78:64:4c:f7:3d:bf:58:46:49:bd:82: d5:62:d8:af:dc:63:b8:a9:e2:48:96:ae:56:2d:07:b3:27:14: a9:68:15:c7:86:29:c1:33:2a:c8:81:39:c4:1a:ed:36:63:fc: de:01:3e:ca:2d:a2:64:f2:c5:7a:a3:59:e1:a6:d8:f5:07:35: 62:18:d5:78:12:7a:98:91:be:ea:2c:5b:cc:ad:74:60:35:24: f9:80:4c:41:31:3e:2e:7a:c7:f0:be:30:ab:02:7a:70:f3:a9: a1:20:c1:9e:5e:79:ae:c3:62:2f:e2:79:0f:89:fa:f7:c8:eb: 70:ac:10:d2:40:a4:5c:77:a8:b2:2a:40:6b:93:89:24:64:96: 34:34:34:40:e8:1f:6d:10:84:65:d3:59:45:43:e7:e8:b4:73: 99:1f:ab:4e -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICE7AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU2MDZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDM2RjA1MUE4NEFDRjU1 QTk1Nzc2NkIwRjY4MjUxOTQ5RUUxMjZGMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgx5fCQCtAH9m6oqHWnQVLnlp0SQa72jLKmGlvtkSYyY2h/fev rwfknwKvX3PQtDIq8jasRrvaDe6DTxe6vtI7aRzZKAOzldLUKCl+fR6kJRTwNFRP 6SKtJUqVswaY5hK3SJhVK/VEPCqOgBNnWn5MXyU56TzJW95pDE90SE3nPziguit4 oaXLAdSgOTMoBdBJHi1dBg5tmWHgwdUcC+A05OtLOuFwLzzn8912juOu66ZT/bNC WsnAqd46culrJ3zbzmzsO1ZrsR/SrnBDJoaCnlxMIt7fhbs37vqsDInG8yDl/B3c wJxTF6nxObcWqs21/icvnYTLcusDSdDKRo0tAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUNvBRqErPValXdmsPaCUZSe4SbzIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L052QlJxRXJQVmFsWGRtc1BhQ1VaU2U0U2J6SS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEBSwAwDQYJKoZIhvcNAQELBQADggEB AM9cSWU92iwvljX35e3c8f7EDy6UW+1xLKVLWuqvyewZFghYF9eu6kLVWWPPlZkY auqRldR8/6U8IcgdS7jS2pX+RpiAqDt5ghXftU5nJ0rsgg0FpQ+40BSlg7F7ZeFp 9wN4ZEz3Pb9YRkm9gtVi2K/cY7ip4kiWrlYtB7MnFKloFceGKcEzKsiBOcQa7TZj /N4BPsotomTyxXqjWeGm2PUHNWIY1XgSepiRvuosW8ytdGA1JPmATEExPi56x/C+ MKsCenDzqaEgwZ5eea7DYi/ieQ+J+vfI63CsENJApFx3qLIqQGuTiSRkljQ0NEDo H20QhGXTWUVD5+i0c5kfq04= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:00 2026 by rpki-client