$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/UUFmhk36xhSGoyF9sxak_Z9RNJU.roa File: UUFmhk36xhSGoyF9sxak_Z9RNJU.roa (raw, json) Hash identifier: mILBy3LxTYFiCdyRM/RoXGVAmh+3SIIMqA8WM7Iiu28= Subject key identifier: 51:41:66:86:4D:FA:C6:14:86:A3:21:7D:B3:16:A4:FD:9F:51:34:95 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 14BC Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UUFmhk36xhSGoyF9sxak_Z9RNJU.roa Signing time: Tue 31 Mar 2026 07:58:11 +0000 ROA not before: Tue 31 Mar 2026 07:58:11 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5308 (0x14bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:58:11 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=514166864DFAC61486A3217DB316A4FD9F513495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:30:cd:bd:68:b2:d1:e6:14:33:0d:b6:09:00: 26:ad:f4:5f:03:ca:4f:4c:80:89:50:f2:4e:f4:c4: 1c:0b:81:04:a4:c6:e1:f2:69:b0:3e:52:80:a1:24: 02:3f:5e:1b:2b:cb:a1:d4:32:66:4c:e0:f7:9e:77: 90:11:0d:d5:cf:7a:cc:39:a1:dc:3d:6d:49:db:0b: 78:b1:e4:d1:e4:2b:99:93:66:38:48:82:4d:a8:50: 6d:f9:dc:37:f9:1e:d0:87:87:65:3a:b8:8c:37:90: b9:f8:a4:93:20:2d:f4:35:cf:ef:76:0a:c7:d5:47: 56:03:e9:13:94:74:44:65:78:ac:81:df:2e:b0:04: 2b:e7:a5:14:a8:60:91:c8:d7:ff:01:fb:60:98:91: 95:85:55:71:2d:81:af:8f:d1:81:2b:42:06:ae:2c: 5f:48:47:9f:f4:dc:61:44:b5:85:6e:1d:2d:fd:19: 88:5d:bd:6e:10:83:6a:6a:4d:3a:4a:6c:b2:1d:98: 36:3d:e9:a0:b2:b0:a3:2e:63:91:a0:eb:d4:c3:cf: e0:4b:eb:a7:8a:b2:13:9e:da:cf:54:de:af:a6:6c: 7b:b7:97:e5:15:47:c5:00:be:8f:61:9c:ad:b7:ef: 06:6d:00:0e:37:5e:2c:60:b5:07:34:ac:43:bd:50: 68:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:41:66:86:4D:FA:C6:14:86:A3:21:7D:B3:16:A4:FD:9F:51:34:95 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UUFmhk36xhSGoyF9sxak_Z9RNJU.roa sbgp-ipAddrBlock: critical IPv4: 1.79.12.0/22 Signature Algorithm: sha256WithRSAEncryption b4:e8:7a:33:ec:5d:55:82:d9:2b:dc:18:e3:7c:57:96:96:0d: 4c:16:30:d9:96:64:9e:0a:45:99:6c:5c:3d:93:79:6d:5c:82: fe:75:8c:3f:36:1d:47:f6:de:8b:87:97:f1:e9:e0:ae:bc:6b: 5d:4e:ee:58:f2:7e:57:3f:a5:32:bd:b4:70:56:2c:ae:62:27: 96:82:14:eb:d4:d5:14:9a:25:2f:56:ee:0d:cc:c1:08:c6:c0: 21:62:7c:bb:b1:a1:95:eb:98:ad:4e:38:63:e7:dd:70:e9:4b: b8:4b:1c:d4:78:2b:e5:fe:4a:8a:ee:f5:0f:75:0f:41:11:dd: b9:45:e8:70:1f:10:47:0a:38:21:34:7f:35:4c:d7:12:00:4a: 5c:08:e4:cb:ae:5d:f3:1b:49:c0:34:c6:b3:93:16:84:95:19: 8a:0d:12:c0:d0:9a:56:30:c5:7d:e1:de:f8:23:17:99:0f:a2: d2:48:12:c1:c0:6f:3e:77:e7:27:33:79:eb:ff:9f:77:5b:38: 00:d5:59:f8:93:7e:3e:7a:99:98:4f:fe:be:7c:ea:57:f8:09: 5f:ef:c9:ca:9b:ed:bd:39:cf:38:0f:57:59:af:46:14:dc:6f: ab:d4:40:7d:8b:db:8d:d1:fb:99:9e:68:1f:f5:5e:c8:dc:76: 59:3d:9d:78 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFLwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU4MTFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDUxNDE2Njg2NERGQUM2 MTQ4NkEzMjE3REIzMTZBNEZEOUY1MTM0OTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1MM29aLLR5hQzDbYJACat9F8Dyk9MgIlQ8k70xBwLgQSkxuHy abA+UoChJAI/Xhsry6HUMmZM4Peed5ARDdXPesw5odw9bUnbC3ix5NHkK5mTZjhI gk2oUG353Df5HtCHh2U6uIw3kLn4pJMgLfQ1z+92CsfVR1YD6ROUdERleKyB3y6w BCvnpRSoYJHI1/8B+2CYkZWFVXEtga+P0YErQgauLF9IR5/03GFEtYVuHS39GYhd vW4Qg2pqTTpKbLIdmDY96aCysKMuY5Gg69TDz+BL66eKshOe2s9U3q+mbHu3l+UV R8UAvo9hnK237wZtAA43XixgtQc0rEO9UGiXAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUUUFmhk36xhSGoyF9sxak/Z9RNJUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1VVRm1oazM2eGhTR295RjlzeGFrX1o5Uk5KVS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIBTwwwDQYJKoZIhvcNAQELBQADggEB ALToejPsXVWC2SvcGON8V5aWDUwWMNmWZJ4KRZlsXD2TeW1cgv51jD82HUf23ouH l/Hp4K68a11O7ljyflc/pTK9tHBWLK5iJ5aCFOvU1RSaJS9W7g3MwQjGwCFifLux oZXrmK1OOGPn3XDpS7hLHNR4K+X+Soru9Q91D0ER3blF6HAfEEcKOCE0fzVM1xIA SlwI5MuuXfMbScA0xrOTFoSVGYoNEsDQmlYwxX3h3vgjF5kPotJIEsHAbz535ycz eev/n3dbOADVWfiTfj56mZhP/r586lf4CV/vycqb7b05zzgPV1mvRhTcb6vUQH2L 243R+5meaB/1Xsjcdlk9nXg= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:10 2026 by rpki-client