$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NwGW1DUCUr8p98uqSTt-ZN3BJe0.roa File: NwGW1DUCUr8p98uqSTt-ZN3BJe0.roa (raw, json) Hash identifier: ysECnW4GkddsLRjUCHeDlbRQYe/uNBMaSWVWOysY7fw= Subject key identifier: 37:01:96:D4:35:02:52:BF:29:F7:CB:AA:49:3B:7E:64:DD:C1:25:ED Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 16E2 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NwGW1DUCUr8p98uqSTt-ZN3BJe0.roa Signing time: Tue 31 Mar 2026 08:02:41 +0000 ROA not before: Tue 31 Mar 2026 08:02:41 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.76.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5858 (0x16e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:02:41 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=370196D4350252BF29F7CBAA493B7E64DDC125ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:20:9f:49:38:86:9c:0a:c8:cf:e4:b4:77:4e: fd:c7:57:34:e9:31:90:2d:c4:66:66:3b:ae:d6:0f: bb:5c:3b:d0:ea:de:23:86:85:91:ee:9d:44:10:7e: 18:71:1e:28:3d:c2:f8:6b:c2:0d:7a:5d:28:e7:49: 7d:06:fc:75:f2:bc:25:88:b4:ee:66:74:09:99:ac: 6d:c9:30:a4:23:69:96:e9:9a:04:c7:55:01:73:5a: 69:32:f0:1c:93:5e:e8:24:bb:8d:62:20:4c:9a:0b: ba:fe:e7:4a:d4:1b:14:e6:d6:6c:8d:5a:6e:40:03: 16:c0:a3:c1:ce:56:ee:2a:c1:13:7f:60:e4:69:0a: ca:dc:c7:8c:9d:01:45:88:c6:b3:fc:39:36:85:76: b7:51:d6:b2:da:ff:a4:b1:a6:6e:f5:b9:a9:f1:91: 3e:07:d4:13:34:f2:55:3a:f1:a6:da:2b:48:26:4c: a3:ca:4e:62:7b:29:c1:91:ea:36:6c:44:57:11:fc: 22:98:41:83:ac:43:95:7f:02:4e:f9:a5:b4:44:8c: 40:72:05:a6:8b:87:e0:81:2c:95:7e:fe:6e:1a:6f: f5:4e:9f:7c:dd:3d:d1:9c:60:6d:29:65:c8:df:ed: 0b:eb:c4:77:7d:fe:76:7a:b4:0e:68:df:33:c1:b8: 82:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:01:96:D4:35:02:52:BF:29:F7:CB:AA:49:3B:7E:64:DD:C1:25:ED X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NwGW1DUCUr8p98uqSTt-ZN3BJe0.roa sbgp-ipAddrBlock: critical IPv4: 1.76.208.0/20 Signature Algorithm: sha256WithRSAEncryption 7e:8a:79:05:9a:59:95:f7:f7:9b:8e:54:70:26:e4:16:34:1a: f6:a8:b8:f1:4f:0f:dd:26:57:d6:4d:f4:c1:8f:1c:c0:72:3d: 55:a1:cd:93:f9:87:89:a6:c4:3a:bb:eb:76:b4:23:9e:f8:7a: 43:35:ce:83:40:e0:86:35:0a:39:ad:42:b8:0b:00:29:35:97: e9:70:36:c3:e6:65:38:d4:7f:6e:57:83:65:0d:11:3c:48:14: 8e:4b:4a:34:eb:98:21:88:0b:b2:6b:f2:9a:e8:c8:14:e1:4c: d1:0e:96:18:13:25:51:26:5b:5a:ce:4e:46:e4:3f:61:74:b7: e1:33:b3:be:01:51:6a:83:f0:53:30:54:a9:c1:e5:ea:a0:8c: 00:75:0b:33:07:3d:2d:cd:c5:fa:5f:68:98:15:92:33:3f:d4: f6:30:99:83:3c:e7:98:2b:f1:85:d0:60:b3:64:94:49:7e:ed: 2a:13:1c:c5:ef:72:c7:28:fb:1f:eb:94:fa:6e:fb:46:78:17: 2b:e6:42:48:11:d0:bc:00:6f:6f:ce:58:84:fe:06:a9:fc:a5: b7:64:f5:0f:d0:7a:2b:eb:08:89:b6:c3:9f:cb:18:60:81:97: 7f:b8:69:df:0a:74:40:16:9e:61:9d:d4:19:9e:48:31:ea:d7: 62:86:c4:97 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFuIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAyNDFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDM3MDE5NkQ0MzUwMjUy QkYyOUY3Q0JBQTQ5M0I3RTY0RERDMTI1RUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmIJ9JOIacCsjP5LR3Tv3HVzTpMZAtxGZmO67WD7tcO9Dq3iOG hZHunUQQfhhxHig9wvhrwg16XSjnSX0G/HXyvCWItO5mdAmZrG3JMKQjaZbpmgTH VQFzWmky8ByTXugku41iIEyaC7r+50rUGxTm1myNWm5AAxbAo8HOVu4qwRN/YORp Csrcx4ydAUWIxrP8OTaFdrdR1rLa/6Sxpm71uanxkT4H1BM08lU68abaK0gmTKPK TmJ7KcGR6jZsRFcR/CKYQYOsQ5V/Ak75pbREjEByBaaLh+CBLJV+/m4ab/VOn3zd PdGcYG0pZcjf7QvrxHd9/nZ6tA5o3zPBuIL5AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUNwGW1DUCUr8p98uqSTt+ZN3BJe0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L053R1cxRFVDVXI4cDk4dXFTVHQtWk4zQkplMC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQBTNAwDQYJKoZIhvcNAQELBQADggEB AH6KeQWaWZX395uOVHAm5BY0GvaouPFPD90mV9ZN9MGPHMByPVWhzZP5h4mmxDq7 63a0I574ekM1zoNA4IY1CjmtQrgLACk1l+lwNsPmZTjUf25Xg2UNETxIFI5LSjTr mCGIC7Jr8proyBThTNEOlhgTJVEmW1rOTkbkP2F0t+Ezs74BUWqD8FMwVKnB5eqg jAB1CzMHPS3NxfpfaJgVkjM/1PYwmYM855gr8YXQYLNklEl+7SoTHMXvcsco+x/r lPpu+0Z4FyvmQkgR0LwAb2/OWIT+Bqn8pbdk9Q/QeivrCIm2w5/LGGCBl3+4ad8K dEAWnmGd1BmeSDHq12KGxJc= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:11 2026 by rpki-client