$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/P4Hz67sNJlB6ff-yrkohZ9zyZ0M.roa File: P4Hz67sNJlB6ff-yrkohZ9zyZ0M.roa (raw, json) Hash identifier: Y4OoFvqeptb8HEZTnzfF8t3rRU6u9ORrzrGAfVh7Da4= Subject key identifier: 3F:81:F3:EB:BB:0D:26:50:7A:7D:FF:B2:AE:4A:21:67:DC:F2:67:43 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 17A9 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/P4Hz67sNJlB6ff-yrkohZ9zyZ0M.roa Signing time: Tue 31 Mar 2026 08:04:17 +0000 ROA not before: Tue 31 Mar 2026 08:04:17 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6057 (0x17a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:04:17 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=3F81F3EBBB0D26507A7DFFB2AE4A2167DCF26743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:58:65:27:04:23:8a:73:b8:8d:00:c5:70:75: 92:c0:1b:70:50:42:69:fc:67:b5:66:6d:92:1e:a3: cb:0a:18:e3:c4:f7:48:11:60:0a:36:5f:cd:47:54: ef:65:2b:37:98:d3:5f:4c:b3:ba:f1:58:c4:03:38: be:2b:b0:08:a1:8c:3d:dc:64:52:4f:ee:9c:91:39: ce:e3:b6:28:5d:7a:88:81:de:8d:ed:7e:0c:20:d5: cf:4c:90:cb:99:03:05:2e:29:43:41:07:73:2e:24: 02:38:1c:8e:fa:2d:4c:2d:a0:b8:63:6c:f0:e6:37: 55:a7:2c:38:e4:42:80:58:35:56:43:93:92:fa:8a: 06:a2:b2:dd:55:ae:ba:b0:45:95:f6:b3:38:54:58: a8:fb:6e:32:3f:8c:4c:d7:6e:ed:e4:19:1f:a7:ce: dd:c4:a1:a9:fa:19:8c:b4:d3:1d:2b:80:09:2b:f7: 23:8a:0a:27:03:b0:8a:18:92:19:c2:51:07:73:ab: cb:a6:36:55:cc:4a:1e:db:86:86:34:90:f3:84:a4: 27:02:5e:13:6d:93:d1:49:f4:c6:7b:57:a3:33:4f: c9:ce:6c:b7:7f:9f:67:01:9a:1a:4c:20:9c:05:61: 83:d2:ba:86:b1:6c:9c:46:c5:d5:ac:48:7a:04:c3: 0e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:81:F3:EB:BB:0D:26:50:7A:7D:FF:B2:AE:4A:21:67:DC:F2:67:43 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/P4Hz67sNJlB6ff-yrkohZ9zyZ0M.roa sbgp-ipAddrBlock: critical IPv4: 220.159.40.0/21 Signature Algorithm: sha256WithRSAEncryption 25:39:c4:4e:5c:91:de:89:0c:a6:75:9d:b2:f7:a7:e1:ee:ea: 59:e1:b1:3e:b4:59:67:eb:5e:54:33:e1:18:77:16:cc:bc:d3: 55:17:ac:66:8a:dd:f7:a6:37:b7:3a:dd:d9:0f:83:98:17:dc: 95:a7:93:ef:23:97:74:33:05:d7:e1:65:79:60:b0:57:d6:72: 63:7c:4b:57:65:2e:da:4f:59:26:31:2d:b6:70:c5:9f:a2:04: 2b:dd:fd:1e:a4:0b:34:4f:ef:4f:2c:e3:30:5f:e1:06:ef:67: 6d:49:8a:a9:08:a8:f3:f7:df:8a:fd:fc:cb:b8:d6:11:aa:22: e3:bd:3f:f6:5d:75:42:89:16:98:03:94:15:65:f7:5b:be:bc: 24:f2:bf:dd:10:4d:a2:6e:bb:cc:f0:db:ad:b1:76:c2:ed:cb: ca:57:8a:50:ae:98:1e:51:e3:bc:91:1e:4c:d5:49:a4:f3:db: 26:4d:d8:59:88:0e:73:5a:8f:ca:38:7b:3a:5c:2c:87:b7:9d: 72:cf:2f:bc:4e:d4:62:66:22:74:af:da:94:b7:f0:80:b8:ff: 4f:e6:d9:f4:9a:42:c7:bc:51:22:38:27:8f:9a:c4:e9:aa:e3: 1e:f9:f7:e0:a8:37:9d:e7:57:7a:16:89:ec:4d:5f:25:d9:89: ac:f3:33:af -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICF6kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODA0MTdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDNGODFGM0VCQkIwRDI2 NTA3QTdERkZCMkFFNEEyMTY3RENGMjY3NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfWGUnBCOKc7iNAMVwdZLAG3BQQmn8Z7VmbZIeo8sKGOPE90gR YAo2X81HVO9lKzeY019Ms7rxWMQDOL4rsAihjD3cZFJP7pyROc7jtihdeoiB3o3t fgwg1c9MkMuZAwUuKUNBB3MuJAI4HI76LUwtoLhjbPDmN1WnLDjkQoBYNVZDk5L6 igaist1VrrqwRZX2szhUWKj7bjI/jEzXbu3kGR+nzt3Eoan6GYy00x0rgAkr9yOK CicDsIoYkhnCUQdzq8umNlXMSh7bhoY0kPOEpCcCXhNtk9FJ9MZ7V6MzT8nObLd/ n2cBmhpMIJwFYYPSuoaxbJxGxdWsSHoEww6jAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUP4Hz67sNJlB6ff+yrkohZ9zyZ0MwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1A0SHo2N3NOSmxCNmZmLXlya29oWjl6eVowTS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPcnygwDQYJKoZIhvcNAQELBQADggEB ACU5xE5ckd6JDKZ1nbL3p+Hu6lnhsT60WWfrXlQz4Rh3Fsy801UXrGaK3femN7c6 3dkPg5gX3JWnk+8jl3QzBdfhZXlgsFfWcmN8S1dlLtpPWSYxLbZwxZ+iBCvd/R6k CzRP708s4zBf4QbvZ21JiqkIqPP334r9/Mu41hGqIuO9P/ZddUKJFpgDlBVl91u+ vCTyv90QTaJuu8zw262xdsLty8pXilCumB5R47yRHkzVSaTz2yZN2FmIDnNaj8o4 ezpcLIe3nXLPL7xO1GJmInSv2pS38IC4/0/m2fSaQse8USI4J4+axOmq4x759+Co N53nV3oWiexNXyXZiazzM68= -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:14 2026 by rpki-client