$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/RmMf89aTersFirY1n23UPfoVsbE.roa File: RmMf89aTersFirY1n23UPfoVsbE.roa (raw, json) Hash identifier: VVcz0+S6LOvmTkurFcuk/vojIyd5wWg78uZNp4yK14c= Subject key identifier: 46:63:1F:F3:D6:93:7A:BB:05:8A:B6:35:9F:6D:D4:3D:FA:15:B1:B1 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1478 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/RmMf89aTersFirY1n23UPfoVsbE.roa Signing time: Tue 31 Mar 2026 07:57:36 +0000 ROA not before: Tue 31 Mar 2026 07:57:36 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5240 (0x1478) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:57:36 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=46631FF3D6937ABB058AB6359F6DD43DFA15B1B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9c:b0:9d:70:96:c2:34:47:35:d3:55:0a:f4: dc:1b:f0:b9:d1:ee:df:4f:39:1a:da:4b:8f:46:2c: e2:99:76:0f:25:fa:2e:e0:89:84:d7:47:02:64:d6: 87:1d:6f:02:7c:12:c7:4e:48:3a:11:1f:25:d8:dd: 2b:d0:e0:2e:65:64:89:3c:44:8f:2c:d5:db:40:bb: ba:9d:fe:49:05:61:ae:86:0d:24:92:79:fd:15:52: 7c:13:a6:25:85:15:e3:51:77:86:f2:db:b3:ba:31: a7:e8:aa:56:9a:2e:8a:69:80:a3:e5:39:b0:23:d0: 5a:da:32:23:ca:49:a6:3d:ae:28:fd:10:35:85:8c: e9:5b:82:0f:74:d9:bf:e7:30:a4:06:3f:ed:12:2a: 4a:62:b8:cf:03:38:6a:59:8e:8a:dc:5f:e7:ce:ad: 72:33:fb:b7:17:ed:75:be:3a:59:2e:2d:00:cf:02: 24:8a:99:54:64:d1:00:df:ee:47:7d:df:0c:6b:3f: d2:d4:af:10:21:a0:b6:3a:b5:1a:6a:30:fb:ce:30: 4b:5a:73:a5:d7:7d:d7:c1:a4:9c:22:75:b4:e2:6e: dd:b0:f6:d8:cf:87:0f:4a:ac:58:7d:d4:06:a6:7c: 6c:15:1b:91:b5:5d:bb:b0:9b:98:a3:02:da:6d:9b: d6:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:63:1F:F3:D6:93:7A:BB:05:8A:B6:35:9F:6D:D4:3D:FA:15:B1:B1 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/RmMf89aTersFirY1n23UPfoVsbE.roa sbgp-ipAddrBlock: critical IPv4: 1.79.9.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:07:de:22:4d:14:61:5d:5c:f1:a3:bc:05:cb:34:ea:0a:13: 9a:3f:8d:eb:16:0e:5d:3f:19:17:c4:20:e2:c9:d0:86:b4:cf: 2d:5c:75:0a:14:65:de:57:7f:b4:44:69:e7:95:67:e1:0b:48: 26:fb:2b:4a:ac:73:21:b0:84:9b:6e:06:b8:90:cb:1c:89:0f: e0:a9:5b:2a:d9:00:f4:7a:f6:5b:e3:0f:bd:71:87:db:b7:4c: 9d:eb:3c:94:ad:9b:b9:5a:8b:5e:f9:c9:ec:a2:19:00:79:71: 13:d8:49:5d:1d:42:34:33:ee:e5:b7:29:2d:ca:33:89:3a:cf: 2a:26:64:9d:c0:38:ec:aa:0a:82:66:92:ae:90:c4:a9:0b:61: 46:ea:50:22:98:07:15:57:df:a8:61:79:ff:dd:69:83:a5:58: b6:a1:a7:9e:0a:1c:1b:a2:ca:9d:3b:10:65:c8:43:24:26:e9: 3e:b6:b2:cf:43:c8:bb:90:30:ee:50:b9:68:65:f8:76:4d:31: b7:88:dd:95:27:a0:ca:37:6c:25:87:dc:00:cf:0b:f9:41:cb: 1a:b3:8f:34:ba:67:04:3d:d2:d7:99:89:40:f3:c7:b5:90:a8: 56:ab:96:d5:30:d1:16:a7:04:59:0d:aa:39:00:7a:60:9a:5b: 89:cf:da:59 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFHgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU3MzZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDQ2NjMxRkYzRDY5MzdB QkIwNThBQjYzNTlGNkRENDNERkExNUIxQjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRnLCdcJbCNEc101UK9Nwb8LnR7t9PORraS49GLOKZdg8l+i7g iYTXRwJk1ocdbwJ8EsdOSDoRHyXY3SvQ4C5lZIk8RI8s1dtAu7qd/kkFYa6GDSSS ef0VUnwTpiWFFeNRd4by27O6MafoqlaaLoppgKPlObAj0FraMiPKSaY9rij9EDWF jOlbgg902b/nMKQGP+0SKkpiuM8DOGpZjorcX+fOrXIz+7cX7XW+OlkuLQDPAiSK mVRk0QDf7kd93wxrP9LUrxAhoLY6tRpqMPvOMEtac6XXfdfBpJwidbTibt2w9tjP hw9KrFh91AamfGwVG5G1Xbuwm5ijAtptm9ZrAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQURmMf89aTersFirY1n23UPfoVsbEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1JtTWY4OWFUZXJzRmlyWTFuMjNVUGZvVnNiRS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAABTwkwDQYJKoZIhvcNAQELBQADggEB AGsH3iJNFGFdXPGjvAXLNOoKE5o/jesWDl0/GRfEIOLJ0Ia0zy1cdQoUZd5Xf7RE aeeVZ+ELSCb7K0qscyGwhJtuBriQyxyJD+CpWyrZAPR69lvjD71xh9u3TJ3rPJSt m7lai175yeyiGQB5cRPYSV0dQjQz7uW3KS3KM4k6zyomZJ3AOOyqCoJmkq6QxKkL YUbqUCKYBxVX36hhef/daYOlWLahp54KHBuiyp07EGXIQyQm6T62ss9DyLuQMO5Q uWhl+HZNMbeI3ZUnoMo3bCWH3ADPC/lByxqzjzS6ZwQ90teZiUDzx7WQqFarltUw 0RanBFkNqjkAemCaW4nP2lk= -----END CERTIFICATE-----Generated at Tue Apr 7 22:23:26 2026 by rpki-client