$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/TURbh8xEs7pFczgaWEmDtVBVypE.roa File: TURbh8xEs7pFczgaWEmDtVBVypE.roa (raw, json) Hash identifier: qKV/y2f544xRdG1SvASQ7GP3Sh/q9YBGss9JkFpfYZI= Subject key identifier: 4D:44:5B:87:CC:44:B3:BA:45:73:38:1A:58:49:83:B5:50:55:CA:91 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 158A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/TURbh8xEs7pFczgaWEmDtVBVypE.roa Signing time: Tue 31 Mar 2026 07:59:50 +0000 ROA not before: Tue 31 Mar 2026 07:59:50 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 219.122.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5514 (0x158a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:59:50 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=4D445B87CC44B3BA4573381A584983B55055CA91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e9:7d:d2:26:bf:31:e8:d8:2a:f5:e2:79:87: b1:52:aa:e6:c2:49:11:3f:1a:bf:82:2b:b3:f0:67: 24:c8:e6:e6:47:e2:c4:ce:06:d9:55:65:dd:e0:da: b3:d2:25:2e:d9:5e:85:8a:90:2a:56:52:48:cb:9d: 2e:3b:e5:78:77:63:0e:1e:0a:8a:6e:7e:0e:89:76: 58:75:36:8d:e4:7b:d3:13:5d:c7:36:c0:1d:57:da: 09:9f:68:e0:f7:1d:43:b1:d0:8a:cb:80:4f:fc:45: 78:fd:da:bf:bd:b9:55:18:fb:03:e8:21:36:5e:b5: 7d:11:eb:f0:0d:a7:e7:63:e8:4c:54:0c:0b:cb:b8: ff:7a:f8:c4:81:b9:e5:60:45:27:8a:23:c5:36:38: b0:92:d1:e6:d0:e9:2e:7a:2f:0d:25:d6:49:6d:bc: a0:aa:c4:da:af:12:51:9b:d5:22:ea:fc:2b:e8:27: 85:c3:1a:b6:b2:96:f1:3a:7b:65:b3:6c:60:18:d3: 15:13:b0:92:8c:8c:63:3e:62:46:77:40:7f:e2:16: 7b:b9:ce:71:3d:dc:4d:e8:30:3a:e2:6a:90:8a:3a: 82:9c:0c:d2:5d:c6:7b:e9:33:08:14:f4:00:cd:a3: ef:1d:8a:6d:63:b0:1d:88:ac:46:1a:ce:af:6d:eb: a2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:44:5B:87:CC:44:B3:BA:45:73:38:1A:58:49:83:B5:50:55:CA:91 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/TURbh8xEs7pFczgaWEmDtVBVypE.roa sbgp-ipAddrBlock: critical IPv4: 219.122.72.0/21 Signature Algorithm: sha256WithRSAEncryption 7a:56:16:50:9f:3d:0d:c6:80:b6:94:14:8d:28:d1:8a:1a:d5: 89:2b:e8:72:a6:ff:5a:2c:17:ee:d3:df:c1:da:18:f9:16:72: 4b:8b:14:ac:79:eb:25:7b:aa:b9:5e:84:e5:c3:0a:02:e1:fa: ac:18:ad:13:86:8b:af:c7:d4:cc:de:b3:3a:50:76:1d:66:c7: f2:4f:43:2b:3d:6f:7e:a4:d8:fb:ca:1d:41:c8:7a:ae:02:3d: 29:dd:eb:f6:f2:5f:8d:6a:39:a9:5f:bf:51:c8:be:06:14:40: 98:c7:8f:0c:b1:87:4a:49:ea:75:41:7d:e4:4a:79:a3:0b:2c: c9:77:5f:ff:72:a6:c2:72:4b:4d:8a:1a:35:ed:21:06:02:53: 60:7c:42:84:2c:99:f8:69:1b:4e:df:a8:ba:41:d9:4c:85:14: 23:44:42:9c:1c:3b:c2:37:ab:48:bc:42:a7:c8:cc:29:3a:e4: a7:db:74:f4:7a:e2:f4:09:fd:b7:0d:30:80:69:30:61:b7:6f: 40:11:51:ec:29:65:be:4f:40:06:63:6e:c7:0f:72:98:40:3e: 9e:29:95:82:5c:a2:b9:d7:ba:f4:1a:0f:b5:68:7f:0c:5e:61: 6a:bf:bd:ad:3e:47:bd:b3:58:b3:b1:f5:1d:33:9d:62:c8:7a: 63:96:7a:2d -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFYowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU5NTBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDRENDQ1Qjg3Q0M0NEIz QkE0NTczMzgxQTU4NDk4M0I1NTA1NUNBOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCt6X3SJr8x6Ngq9eJ5h7FSqubCSRE/Gr+CK7PwZyTI5uZH4sTO BtlVZd3g2rPSJS7ZXoWKkCpWUkjLnS475Xh3Yw4eCopufg6Jdlh1No3ke9MTXcc2 wB1X2gmfaOD3HUOx0IrLgE/8RXj92r+9uVUY+wPoITZetX0R6/ANp+dj6ExUDAvL uP96+MSBueVgRSeKI8U2OLCS0ebQ6S56Lw0l1kltvKCqxNqvElGb1SLq/CvoJ4XD GraylvE6e2WzbGAY0xUTsJKMjGM+YkZ3QH/iFnu5znE93E3oMDriapCKOoKcDNJd xnvpMwgU9ADNo+8dim1jsB2IrEYazq9t66KBAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUTURbh8xEs7pFczgaWEmDtVBVypEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1RVUmJoOHhFczdwRmN6Z2FXRW1EdFZCVnlwRS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPbekgwDQYJKoZIhvcNAQELBQADggEB AHpWFlCfPQ3GgLaUFI0o0Yoa1Ykr6HKm/1osF+7T38HaGPkWckuLFKx56yV7qrle hOXDCgLh+qwYrROGi6/H1MzeszpQdh1mx/JPQys9b36k2PvKHUHIeq4CPSnd6/by X41qOalfv1HIvgYUQJjHjwyxh0pJ6nVBfeRKeaMLLMl3X/9ypsJyS02KGjXtIQYC U2B8QoQsmfhpG07fqLpB2UyFFCNEQpwcO8I3q0i8QqfIzCk65KfbdPR64vQJ/bcN MIBpMGG3b0ARUewpZb5PQAZjbscPcphAPp4plYJcornXuvQaD7VofwxeYWq/va0+ R72zWLOx9R0znWLIemOWei0= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:03 2026 by rpki-client