$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/PPi7G1YfZemFLV5rPStPaoWb6iQ.roa File: PPi7G1YfZemFLV5rPStPaoWb6iQ.roa (raw, json) Hash identifier: 6EubDd0dz9hv+JQJ9Y2AnCpkA/tcJC1rUKqRZUkt0aM= Subject key identifier: 3C:F8:BB:1B:56:1F:65:E9:85:2D:5E:6B:3D:2B:4F:6A:85:9B:EA:24 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1594 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PPi7G1YfZemFLV5rPStPaoWb6iQ.roa Signing time: Tue 31 Mar 2026 07:59:55 +0000 ROA not before: Tue 31 Mar 2026 07:59:55 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.230.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5524 (0x1594) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:59:55 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=3CF8BB1B561F65E9852D5E6B3D2B4F6A859BEA24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e1:ea:dd:03:f7:7a:75:60:be:16:a3:ab:de: 6a:a6:3b:b7:ad:12:f2:bf:86:5d:08:84:35:3d:7a: 46:98:43:0c:32:08:6c:dc:95:a3:c2:14:66:12:db: bf:35:40:91:77:3d:3f:64:d4:aa:0e:32:39:cd:0e: 19:3a:97:1d:78:cd:dc:64:4f:49:e8:5c:90:7c:0c: 02:e1:ca:60:0b:53:6f:9b:0c:65:89:05:e7:20:62: 0b:6a:f1:00:46:13:94:95:d1:44:d2:51:df:b0:b3: 10:de:58:3b:49:5d:d4:74:3f:38:11:9a:64:5f:c2: 56:07:dc:2a:3a:e9:c2:53:4d:ac:5e:a3:3c:1c:ab: 72:16:8d:44:5b:ad:ae:d6:1a:84:2c:5e:ba:8a:9e: 60:f5:33:b5:d8:5b:9e:77:b7:ed:f1:1d:33:94:27: 63:0a:56:c0:49:50:3a:6a:03:50:34:fa:04:9c:14: 8a:11:c0:63:5f:e7:71:ca:43:6b:08:5b:d3:6d:6f: ff:18:bf:ae:f1:11:a5:26:44:05:d4:19:c4:b1:4f: 55:c2:85:01:d9:71:6a:a6:c2:0d:21:1f:8c:f8:4d: 57:df:55:00:58:c2:e3:e8:a3:3f:e0:90:be:cc:eb: e0:52:7f:aa:52:20:b0:f8:61:08:56:4e:87:4f:a7: 6e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:F8:BB:1B:56:1F:65:E9:85:2D:5E:6B:3D:2B:4F:6A:85:9B:EA:24 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PPi7G1YfZemFLV5rPStPaoWb6iQ.roa sbgp-ipAddrBlock: critical IPv4: 220.159.230.0/23 Signature Algorithm: sha256WithRSAEncryption 94:9f:de:ee:74:b6:68:6f:53:f7:ed:4c:d5:f1:86:74:e6:b9: fa:79:74:c4:28:52:2b:9d:7a:a3:41:65:22:eb:02:75:0a:af: 11:96:f2:6b:21:bf:3c:5f:87:52:5d:22:06:6e:38:86:68:70: c1:29:52:8e:f6:c3:78:ea:25:14:5f:1e:24:2a:d5:b2:b1:e4: f2:36:1d:25:64:49:4f:51:88:aa:cd:0b:d4:6f:0b:f4:7d:bb: 5d:21:cc:e6:e9:89:b0:cc:0b:45:c7:56:11:b8:09:1b:42:cc: 09:8b:0f:8f:72:e2:93:2a:01:69:c6:23:a4:46:25:6b:f2:63: a1:bc:66:c9:17:14:d3:84:55:72:a3:9d:8d:2a:af:1c:4f:1d: ef:1c:59:f5:61:c1:d9:47:43:a0:75:f0:a8:d8:81:3a:e6:39: 45:4c:e5:c7:8e:dd:2c:ea:d9:cb:77:1c:66:75:3a:41:90:07: 7b:ef:0f:01:30:88:8e:70:d5:da:f3:f7:91:ca:4a:51:f3:1f: 07:0e:10:11:1e:32:ef:44:48:0a:bc:62:1a:44:16:dd:69:a6: 97:35:ce:fb:4b:eb:73:ad:4e:11:fd:41:03:fb:a3:e7:e2:b7: b8:71:b0:9c:00:98:6a:f6:fe:1e:2e:cf:e8:db:10:5a:ce:e4: 19:2f:57:e7 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFZQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU5NTVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDNDRjhCQjFCNTYxRjY1 RTk4NTJENUU2QjNEMkI0RjZBODU5QkVBMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCv4erdA/d6dWC+FqOr3mqmO7etEvK/hl0IhDU9ekaYQwwyCGzc laPCFGYS2781QJF3PT9k1KoOMjnNDhk6lx14zdxkT0noXJB8DALhymALU2+bDGWJ BecgYgtq8QBGE5SV0UTSUd+wsxDeWDtJXdR0PzgRmmRfwlYH3Co66cJTTaxeozwc q3IWjURbra7WGoQsXrqKnmD1M7XYW553t+3xHTOUJ2MKVsBJUDpqA1A0+gScFIoR wGNf53HKQ2sIW9Ntb/8Yv67xEaUmRAXUGcSxT1XChQHZcWqmwg0hH4z4TVffVQBY wuPooz/gkL7M6+BSf6pSILD4YQhWTodPp26rAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUPPi7G1YfZemFLV5rPStPaoWb6iQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1BQaTdHMVlmWmVtRkxWNXJQU3RQYW9XYjZpUS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHcn+YwDQYJKoZIhvcNAQELBQADggEB AJSf3u50tmhvU/ftTNXxhnTmufp5dMQoUiudeqNBZSLrAnUKrxGW8mshvzxfh1Jd IgZuOIZocMEpUo72w3jqJRRfHiQq1bKx5PI2HSVkSU9RiKrNC9RvC/R9u10hzObp ibDMC0XHVhG4CRtCzAmLD49y4pMqAWnGI6RGJWvyY6G8ZskXFNOEVXKjnY0qrxxP He8cWfVhwdlHQ6B18KjYgTrmOUVM5ceO3Szq2ct3HGZ1OkGQB3vvDwEwiI5w1drz 95HKSlHzHwcOEBEeMu9ESAq8YhpEFt1pppc1zvtL63OtThH9QQP7o+fit7hxsJwA mGr2/h4uz+jbEFrO5BkvV+c= -----END CERTIFICATE-----Generated at Tue Apr 7 21:02:11 2026 by rpki-client