$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ox3Z2AisvAxIaMb6c6RAZw2Ei4E.roa File: Ox3Z2AisvAxIaMb6c6RAZw2Ei4E.roa (raw, json) Hash identifier: dac2K8G0E5DDAcdRtyfRf/41e1rltusrxy/ioCg86DQ= Subject key identifier: 3B:1D:D9:D8:08:AC:BC:0C:48:68:C6:FA:73:A4:40:67:0D:84:8B:81 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1630 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ox3Z2AisvAxIaMb6c6RAZw2Ei4E.roa Signing time: Tue 31 Mar 2026 08:01:20 +0000 ROA not before: Tue 31 Mar 2026 08:01:20 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5680 (0x1630) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:01:20 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=3B1DD9D808ACBC0C4868C6FA73A440670D848B81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:57:4a:50:b4:6a:2f:ba:4d:d1:09:3e:32:e9: 71:59:0b:9a:27:d5:e4:3b:16:26:1f:1e:51:af:d0: dd:e1:42:5c:36:ef:e8:fe:9d:3f:b1:a9:ff:3f:f0: ed:f9:d7:da:41:e2:13:4f:bd:db:c3:23:31:71:2d: 27:ba:26:10:30:65:8d:70:5a:83:95:c5:d5:15:99: 45:f2:69:06:b7:63:a1:d5:ef:d0:29:f0:e0:95:e0: 4d:5f:18:21:c0:f4:20:57:26:b1:bd:78:2d:66:f5: 37:e8:e4:fe:4c:77:2e:bf:9a:06:aa:ce:8c:38:d1: 1b:b9:46:ef:4c:aa:78:2a:80:64:3b:4f:85:09:bd: cf:51:47:c4:ee:da:46:d2:4e:cd:52:27:6e:d3:1b: 2b:90:fe:2e:a7:f4:b3:c7:c2:71:ca:f9:b0:63:fb: 01:6c:fe:9b:f0:af:02:97:e6:6c:90:eb:cc:21:f2: c2:ab:98:06:d6:84:db:fd:93:ef:34:7a:30:38:b6: 28:fb:a7:3b:ad:59:e9:b3:6d:65:ac:ea:d5:a7:d3: 9a:3f:1c:01:4f:6f:5f:a4:58:d2:f9:33:01:dd:e6: 51:6f:31:4a:5d:a6:43:4b:37:eb:e9:1a:04:98:7e: a5:0d:8d:c6:3f:a0:02:8d:ca:db:0d:e5:bd:dd:2a: 8c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:1D:D9:D8:08:AC:BC:0C:48:68:C6:FA:73:A4:40:67:0D:84:8B:81 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ox3Z2AisvAxIaMb6c6RAZw2Ei4E.roa sbgp-ipAddrBlock: critical IPv4: 220.159.236.0/24 Signature Algorithm: sha256WithRSAEncryption c7:bf:9b:21:08:fc:a9:72:81:42:f8:f2:cc:52:7f:b3:b8:43: 8a:60:38:60:1b:ce:60:21:41:f6:3c:af:96:8d:78:37:d1:bd: 96:eb:ac:ec:02:be:99:52:10:3b:e7:86:52:22:98:da:86:84: aa:74:5c:ac:93:75:10:2c:17:fe:3a:01:03:42:5d:4d:08:b2: 0d:23:5c:d6:12:ac:6d:fe:f7:3f:39:18:d5:77:f5:75:fa:eb: 5f:e9:14:0d:69:12:4f:71:05:78:0d:78:70:86:2f:94:1a:3a: 32:f7:af:25:be:a2:e3:68:9e:83:01:20:91:a3:e7:f9:06:ab: ea:a8:5d:b9:59:94:1e:dc:fd:0c:6d:90:cf:cd:75:9a:e9:d8: a0:3a:f7:b0:fa:6b:81:27:09:6f:26:9b:60:f2:d7:55:56:5e: 4e:9a:04:d1:06:dc:c5:f9:da:3b:96:fa:21:71:18:86:dd:b8: 74:ab:1f:39:92:e1:13:09:24:06:af:22:6a:32:6d:e9:11:eb: 5f:3d:c3:ce:4b:3e:e6:c8:26:5c:54:44:b2:0b:a9:42:d6:e1: 42:fa:53:2d:a9:05:53:df:a4:a5:49:7a:d3:34:39:f5:b1:75: 5e:08:26:26:dd:b6:3a:82:ae:cc:f1:f2:39:93:54:a0:7e:43: e5:85:e4:cd -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFjAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAxMjBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDNCMUREOUQ4MDhBQ0JD MEM0ODY4QzZGQTczQTQ0MDY3MEQ4NDhCODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNV0pQtGovuk3RCT4y6XFZC5on1eQ7FiYfHlGv0N3hQlw27+j+ nT+xqf8/8O3519pB4hNPvdvDIzFxLSe6JhAwZY1wWoOVxdUVmUXyaQa3Y6HV79Ap 8OCV4E1fGCHA9CBXJrG9eC1m9Tfo5P5Mdy6/mgaqzow40Ru5Ru9MqngqgGQ7T4UJ vc9RR8Tu2kbSTs1SJ27TGyuQ/i6n9LPHwnHK+bBj+wFs/pvwrwKX5myQ68wh8sKr mAbWhNv9k+80ejA4tij7pzutWemzbWWs6tWn05o/HAFPb1+kWNL5MwHd5lFvMUpd pkNLN+vpGgSYfqUNjcY/oAKNytsN5b3dKoy9AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUOx3Z2AisvAxIaMb6c6RAZw2Ei4EwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L094M1oyQWlzdkF4SWFNYjZjNlJBWncyRWk0RS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADcn+wwDQYJKoZIhvcNAQELBQADggEB AMe/myEI/KlygUL48sxSf7O4Q4pgOGAbzmAhQfY8r5aNeDfRvZbrrOwCvplSEDvn hlIimNqGhKp0XKyTdRAsF/46AQNCXU0Isg0jXNYSrG3+9z85GNV39XX661/pFA1p Ek9xBXgNeHCGL5QaOjL3ryW+ouNonoMBIJGj5/kGq+qoXblZlB7c/QxtkM/NdZrp 2KA697D6a4EnCW8mm2Dy11VWXk6aBNEG3MX52juW+iFxGIbduHSrHzmS4RMJJAav ImoybekR6189w85LPubIJlxURLILqULW4UL6Uy2pBVPfpKVJetM0OfWxdV4IJibd tjqCrszx8jmTVKB+Q+WF5M0= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:03 2026 by rpki-client