$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/PRrWRC2UlsHyNgaOpNWzoQV6uBY.roa File: PRrWRC2UlsHyNgaOpNWzoQV6uBY.roa (raw, json) Hash identifier: GV6ZttmIwRE8z2qXb9AxdjIpjyXVLTL7L8896VGco+o= Subject key identifier: 3D:1A:D6:44:2D:94:96:C1:F2:36:06:8E:A4:D5:B3:A1:05:7A:B8:16 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 15C5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PRrWRC2UlsHyNgaOpNWzoQV6uBY.roa Signing time: Tue 31 Mar 2026 08:00:23 +0000 ROA not before: Tue 31 Mar 2026 08:00:23 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.73.236.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5573 (0x15c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:00:23 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=3D1AD6442D9496C1F236068EA4D5B3A1057AB816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:01:41:41:d8:47:70:89:8e:6e:f5:00:a2:4f: ed:64:78:e2:75:5d:5c:04:53:0c:06:d7:e7:19:7c: d3:a0:b7:c0:71:06:a7:e5:2d:b1:da:b0:be:52:43: dc:17:e1:11:e5:20:2a:25:ae:f0:75:96:55:fc:d3: 11:4b:42:b4:77:b8:3d:ee:dc:78:fd:14:f6:dd:93: c0:04:fd:21:03:f4:ee:32:c8:75:f2:64:b7:94:98: 94:c4:3d:56:d8:49:81:7c:2b:9f:cd:b4:cf:76:09: 33:b0:a8:bd:1c:24:40:cc:a5:5f:d6:56:6c:ec:59: 29:6a:25:32:86:2e:35:14:bd:e1:ae:2e:b6:92:b1: c4:6b:fa:9f:98:1c:1c:5a:06:7b:3d:f0:53:26:61: 17:a0:d1:7b:5d:85:64:c3:0a:9e:50:d2:3a:14:1f: 9c:d5:33:32:bb:53:d9:87:4a:63:a4:f6:4e:d2:19: fe:8a:83:d1:31:26:39:68:01:f8:72:1e:b4:3e:44: b5:1e:03:dd:79:d3:87:89:78:45:fe:fc:c8:a8:33: 94:e6:fc:61:b7:08:d4:b0:e0:8b:d4:1d:ec:ea:08: ea:60:0d:13:70:0b:28:af:7a:41:38:af:70:c6:f8: d5:b2:07:a4:75:4f:2a:52:9a:a1:a2:b6:5c:60:de: 31:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:1A:D6:44:2D:94:96:C1:F2:36:06:8E:A4:D5:B3:A1:05:7A:B8:16 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PRrWRC2UlsHyNgaOpNWzoQV6uBY.roa sbgp-ipAddrBlock: critical IPv4: 1.73.236.0/23 Signature Algorithm: sha256WithRSAEncryption cf:f9:2c:d0:30:1b:4e:e5:7d:17:d3:1d:00:70:23:53:51:27: c4:2b:60:81:67:7d:00:37:fe:0d:1f:e0:be:b6:e3:cc:d7:57: 63:a5:d4:e4:9b:a7:56:6d:92:89:1a:78:74:4b:d3:46:4b:09: 95:8a:ee:3e:86:ba:b6:fc:99:1a:93:f2:aa:43:02:01:7d:a8: b8:e7:c8:7d:31:3f:41:6f:1e:e5:fe:1e:62:1c:3f:8d:14:02: d1:16:39:a5:05:69:bd:80:12:0e:a0:54:e7:56:ae:53:9f:f4: 3f:40:88:11:00:79:2f:77:62:3d:07:73:b1:8e:17:d4:97:01: ad:3c:0b:6d:54:01:ca:cb:d6:26:af:fb:9b:13:05:41:fd:df: aa:43:5e:76:3c:5f:62:47:41:39:e8:90:8f:05:7f:53:cd:62: c3:ed:d5:3e:ba:46:c8:6c:d6:48:46:80:cc:25:3c:28:6e:ba: 00:f4:d0:ce:d6:6c:17:b7:ba:96:ff:ba:3d:ed:1d:0f:21:30: f1:ff:bc:39:94:5c:d8:b1:d0:28:1c:13:78:cb:26:b2:b3:c1: a5:f5:d4:8c:50:28:d3:8e:21:47:e5:19:dc:98:d7:8b:93:a0: 16:30:cd:23:0d:0c:74:1c:0e:3f:90:61:d0:90:6e:40:82:2b: 9f:18:a9:24 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFcUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAwMjNaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDNEMUFENjQ0MkQ5NDk2 QzFGMjM2MDY4RUE0RDVCM0ExMDU3QUI4MTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXAUFB2EdwiY5u9QCiT+1keOJ1XVwEUwwG1+cZfNOgt8BxBqfl LbHasL5SQ9wX4RHlIColrvB1llX80xFLQrR3uD3u3Hj9FPbdk8AE/SED9O4yyHXy ZLeUmJTEPVbYSYF8K5/NtM92CTOwqL0cJEDMpV/WVmzsWSlqJTKGLjUUveGuLraS scRr+p+YHBxaBns98FMmYReg0XtdhWTDCp5Q0joUH5zVMzK7U9mHSmOk9k7SGf6K g9ExJjloAfhyHrQ+RLUeA91504eJeEX+/MioM5Tm/GG3CNSw4IvUHezqCOpgDRNw CyivekE4r3DG+NWyB6R1TypSmqGitlxg3jGlAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUPRrWRC2UlsHyNgaOpNWzoQV6uBYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1BScldSQzJVbHNIeU5nYU9wTld6b1FWNnVCWS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEBSewwDQYJKoZIhvcNAQELBQADggEB AM/5LNAwG07lfRfTHQBwI1NRJ8QrYIFnfQA3/g0f4L6248zXV2Ol1OSbp1Ztkoka eHRL00ZLCZWK7j6Gurb8mRqT8qpDAgF9qLjnyH0xP0FvHuX+HmIcP40UAtEWOaUF ab2AEg6gVOdWrlOf9D9AiBEAeS93Yj0Hc7GOF9SXAa08C21UAcrL1iav+5sTBUH9 36pDXnY8X2JHQTnokI8Ff1PNYsPt1T66Rshs1khGgMwlPChuugD00M7WbBe3upb/ uj3tHQ8hMPH/vDmUXNix0CgcE3jLJrKzwaX11IxQKNOOIUflGdyY14uToBYwzSMN DHQcDj+QYdCQbkCCK58YqSQ= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:58 2026 by rpki-client