$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/SC_PD4acBb_Er7lvdgPLzcaxYdY.roa File: SC_PD4acBb_Er7lvdgPLzcaxYdY.roa (raw, json) Hash identifier: KMYdyDrb1Et1D7c8dDu5yM0tdKfO2dwzX/XHNV+95vM= Subject key identifier: 48:2F:CF:0F:86:9C:05:BF:C4:AF:B9:6F:76:03:CB:CD:C6:B1:61:D6 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1585 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/SC_PD4acBb_Er7lvdgPLzcaxYdY.roa Signing time: Tue 31 Mar 2026 07:59:47 +0000 ROA not before: Tue 31 Mar 2026 07:59:47 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.66.108.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5509 (0x1585) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:59:47 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=482FCF0F869C05BFC4AFB96F7603CBCDC6B161D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f7:64:ea:a6:a9:26:05:14:1f:d0:e0:bc:03: 57:de:46:1f:22:91:e1:0d:a9:de:ab:e4:b7:4f:bb: de:75:04:bc:f8:c7:3e:af:53:d6:01:59:a2:bd:7f: 6b:d3:cc:b0:66:91:27:2a:ee:cb:aa:a5:7a:e5:10: 9a:92:b3:b0:71:fc:b7:b1:f7:40:e6:70:2f:7d:f9: 78:da:59:89:cc:13:a0:4f:79:1a:6b:1a:8f:c7:00: 61:b1:8c:8a:f0:ea:83:82:46:41:8e:48:21:85:08: da:22:e7:37:97:71:e6:88:32:5b:78:3b:73:1c:dc: db:64:58:87:0a:f7:e4:b4:8d:81:6f:55:49:33:d2: 91:2c:43:89:3d:5c:9d:bd:27:3c:22:2f:da:e1:1a: 97:47:e7:0b:9d:c4:d9:f5:ee:1e:55:96:91:4b:3a: db:dc:d2:bd:ef:54:73:be:fa:2e:13:fd:19:2a:1e: 8c:d1:2b:40:cc:fd:64:70:8b:98:4b:c1:3f:2f:2b: fe:68:17:13:81:21:bb:bf:f2:23:2a:e6:ff:e6:26: 94:99:1a:fa:1e:0c:67:17:ce:92:81:74:49:57:bc: 4c:3d:dd:61:46:cd:60:27:64:0d:fe:a2:8b:5e:d6: 18:79:ea:1f:d0:fb:ce:02:59:d6:25:b0:e1:3f:d2: a2:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:2F:CF:0F:86:9C:05:BF:C4:AF:B9:6F:76:03:CB:CD:C6:B1:61:D6 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/SC_PD4acBb_Er7lvdgPLzcaxYdY.roa sbgp-ipAddrBlock: critical IPv4: 1.66.108.0/22 Signature Algorithm: sha256WithRSAEncryption d8:cd:f0:89:b6:a0:bc:9b:21:0e:47:65:2e:e1:3c:57:24:3d: 9d:b5:cb:09:60:f3:e1:29:97:96:dc:c0:26:6b:be:7a:4a:23: 61:92:94:69:c7:5a:47:fc:34:09:a9:d3:18:12:5e:02:98:d7: 4c:2a:77:44:4a:e4:4a:f3:d5:c6:17:25:30:2c:26:63:d3:aa: 42:4e:a6:2f:64:99:c7:83:67:dd:cb:78:3a:fd:18:df:63:ed: b4:6f:94:25:50:b7:a1:88:00:16:8d:ef:7d:52:80:0b:f2:89: 30:02:87:f9:d2:db:75:ad:50:c2:24:de:bc:32:91:e9:5f:f0: 79:21:d2:f0:7e:04:d4:4a:c0:1b:4c:af:2b:dc:24:eb:bb:b4: b3:70:bf:39:79:5d:6a:2f:84:d0:6a:10:8f:35:af:75:6d:16: 4e:4e:29:e7:8a:31:45:07:f6:72:4f:34:8a:69:42:56:45:4e: 37:3e:15:37:bb:e4:24:76:b6:7a:02:55:7c:4f:5c:cc:78:b9: 5b:7f:f1:29:82:04:28:84:17:a9:e6:e6:ee:d6:24:b1:fc:a0: 94:6f:31:4e:f5:7e:0e:24:9e:f6:e1:da:19:d3:c2:2a:68:98: e2:0e:3d:78:bf:62:47:a8:7f:b7:6f:f1:0d:00:83:cf:9c:a0: 25:a9:1c:dc -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFYUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU5NDdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDQ4MkZDRjBGODY5QzA1 QkZDNEFGQjk2Rjc2MDNDQkNEQzZCMTYxRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCp92TqpqkmBRQf0OC8A1feRh8ikeENqd6r5LdPu951BLz4xz6v U9YBWaK9f2vTzLBmkScq7suqpXrlEJqSs7Bx/Lex90DmcC99+XjaWYnME6BPeRpr Go/HAGGxjIrw6oOCRkGOSCGFCNoi5zeXceaIMlt4O3Mc3NtkWIcK9+S0jYFvVUkz 0pEsQ4k9XJ29JzwiL9rhGpdH5wudxNn17h5VlpFLOtvc0r3vVHO++i4T/RkqHozR K0DM/WRwi5hLwT8vK/5oFxOBIbu/8iMq5v/mJpSZGvoeDGcXzpKBdElXvEw93WFG zWAnZA3+oote1hh56h/Q+84CWdYlsOE/0qKXAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUSC/PD4acBb/Er7lvdgPLzcaxYdYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1NDX1BENGFjQmJfRXI3bHZkZ1BMemNheFlkWS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIBQmwwDQYJKoZIhvcNAQELBQADggEB ANjN8Im2oLybIQ5HZS7hPFckPZ21ywlg8+Epl5bcwCZrvnpKI2GSlGnHWkf8NAmp 0xgSXgKY10wqd0RK5Erz1cYXJTAsJmPTqkJOpi9kmceDZ93LeDr9GN9j7bRvlCVQ t6GIABaN731SgAvyiTACh/nS23WtUMIk3rwykelf8Hkh0vB+BNRKwBtMryvcJOu7 tLNwvzl5XWovhNBqEI81r3VtFk5OKeeKMUUH9nJPNIppQlZFTjc+FTe75CR2tnoC VXxPXMx4uVt/8SmCBCiEF6nm5u7WJLH8oJRvMU71fg4knvbh2hnTwipomOIOPXi/ Ykeof7dv8Q0Ag8+coCWpHNw= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:00 2026 by rpki-client