$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/OicHBYnChl0Esj7WuPoNc9S2PKc.roa File: OicHBYnChl0Esj7WuPoNc9S2PKc.roa (raw, json) Hash identifier: UeVJV8N5ZcaO+tvLZhieGkTzYvHjQ7ZS/FQ3V79D/2A= Subject key identifier: 3A:27:07:05:89:C2:86:5D:04:B2:3E:D6:B8:FA:0D:73:D4:B6:3C:A7 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 137A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/OicHBYnChl0Esj7WuPoNc9S2PKc.roa Signing time: Tue 31 Mar 2026 07:55:38 +0000 ROA not before: Tue 31 Mar 2026 07:55:38 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.72.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4986 (0x137a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:55:38 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=3A27070589C2865D04B23ED6B8FA0D73D4B63CA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3d:ff:64:50:09:68:3f:7d:d2:6a:f2:68:66: c6:b6:0b:88:45:8c:88:81:39:ac:43:ea:88:94:ce: eb:50:98:43:46:57:8b:81:8d:66:8d:b3:9d:cf:0c: 3e:22:56:db:ce:56:7f:d5:4d:80:2c:1b:a8:e5:41: 0d:2d:32:82:ff:3f:92:58:6a:e7:85:39:a7:e7:65: c3:90:6b:24:c3:f5:9b:72:3a:cf:60:81:63:7c:31: 38:6d:27:a0:07:e7:f8:8c:59:a4:d5:77:9b:54:7d: 02:23:7a:6f:88:67:1d:26:f8:88:de:18:74:92:0b: 61:f1:af:9f:10:53:f6:96:57:8c:5c:08:7c:6e:28: 7e:af:d0:55:5b:b7:e5:7f:ba:c0:ac:d3:d1:65:2c: a5:7a:02:1e:f3:be:48:a5:35:c3:c5:61:84:03:1e: ba:56:62:dc:b8:c4:92:7a:6c:4e:bf:e6:09:4d:39: 73:54:08:d5:2d:ac:3f:40:04:d9:c6:3f:1c:b0:0a: 00:18:d2:d6:72:0f:3f:b7:32:29:cc:0b:10:5c:73: 01:12:7c:d7:fb:0b:fb:ac:01:4c:c1:18:6e:b5:6d: 7d:7b:f6:bb:ee:75:c1:1b:a5:88:5c:e2:5a:03:05: 56:a8:21:80:64:8b:c4:83:39:6e:d9:d4:a9:ac:35: 8a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:27:07:05:89:C2:86:5D:04:B2:3E:D6:B8:FA:0D:73:D4:B6:3C:A7 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/OicHBYnChl0Esj7WuPoNc9S2PKc.roa sbgp-ipAddrBlock: critical IPv4: 1.72.9.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:dd:b7:e7:d5:09:ef:0a:f0:0d:a3:24:a7:e2:cd:0f:b1:4c: d4:54:57:2f:9d:d5:35:01:13:3b:99:ff:5d:7f:35:7c:47:0c: da:be:69:a2:19:2f:ea:56:64:15:19:a7:e3:27:44:df:b8:d6: a5:34:3e:1e:2c:d3:6f:87:24:b9:84:3f:01:fb:e7:3c:b0:0b: 90:b7:67:24:2d:b0:0f:d2:50:e1:75:f9:5c:56:a4:bd:e9:a4: 59:24:a9:9a:d6:2d:b8:e8:3c:fb:9b:35:4d:47:b6:96:e8:97: c4:a2:93:de:2b:89:3f:ec:eb:77:2a:77:41:f5:ab:b3:fb:d5: 2a:ab:8b:21:14:62:23:b7:67:19:15:5b:c2:0a:c1:c7:ce:aa: 7e:bc:41:b9:28:a4:e1:f5:5d:2d:8a:91:9d:7c:28:06:77:4e: 8d:8c:2c:a6:c9:e0:e4:c8:43:10:db:f3:95:e6:bf:18:4f:e0: 40:24:cf:3f:6b:25:c4:fd:33:3f:45:62:1c:34:53:04:55:8c: 21:52:4e:0f:94:d0:69:ef:bb:6b:fc:4d:cb:41:d0:da:a9:b3: d7:bf:42:20:25:71:db:36:52:3d:e6:3e:6c:82:d4:2c:40:57: eb:e3:8b:4e:1e:27:a9:16:e5:e6:52:65:53:0c:a8:ae:43:86: e6:4b:85:c1 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICE3owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU1MzhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDNBMjcwNzA1ODlDMjg2 NUQwNEIyM0VENkI4RkEwRDczRDRCNjNDQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2Pf9kUAloP33SavJoZsa2C4hFjIiBOaxD6oiUzutQmENGV4uB jWaNs53PDD4iVtvOVn/VTYAsG6jlQQ0tMoL/P5JYaueFOafnZcOQayTD9ZtyOs9g gWN8MThtJ6AH5/iMWaTVd5tUfQIjem+IZx0m+IjeGHSSC2Hxr58QU/aWV4xcCHxu KH6v0FVbt+V/usCs09FlLKV6Ah7zvkilNcPFYYQDHrpWYty4xJJ6bE6/5glNOXNU CNUtrD9ABNnGPxywCgAY0tZyDz+3MinMCxBccwESfNf7C/usAUzBGG61bX179rvu dcEbpYhc4loDBVaoIYBki8SDOW7Z1KmsNYo5AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUOicHBYnChl0Esj7WuPoNc9S2PKcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L09pY0hCWW5DaGwwRXNqN1d1UG9OYzlTMlBLYy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAABSAkwDQYJKoZIhvcNAQELBQADggEB AFvdt+fVCe8K8A2jJKfizQ+xTNRUVy+d1TUBEzuZ/11/NXxHDNq+aaIZL+pWZBUZ p+MnRN+41qU0Ph4s02+HJLmEPwH75zywC5C3ZyQtsA/SUOF1+VxWpL3ppFkkqZrW LbjoPPubNU1Htpbol8Sik94riT/s63cqd0H1q7P71SqriyEUYiO3ZxkVW8IKwcfO qn68QbkopOH1XS2KkZ18KAZ3To2MLKbJ4OTIQxDb85XmvxhP4EAkzz9rJcT9Mz9F Yhw0UwRVjCFSTg+U0Gnvu2v8TctB0Nqps9e/QiAlcds2Uj3mPmyC1CxAV+vji04e J6kW5eZSZVMMqK5DhuZLhcE= -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:04 2026 by rpki-client