$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/VZZoxRRtGMDh0SRm8lmGiT1bcLg.roa File: VZZoxRRtGMDh0SRm8lmGiT1bcLg.roa (raw, json) Hash identifier: /4bKJpnjC8boakqzJ19n1Doz5iL1lfWz8w5ivAI1bJs= Subject key identifier: 55:96:68:C5:14:6D:18:C0:E1:D1:24:66:F2:59:86:89:3D:5B:70:B8 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 14DE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VZZoxRRtGMDh0SRm8lmGiT1bcLg.roa Signing time: Tue 31 Mar 2026 07:58:27 +0000 ROA not before: Tue 31 Mar 2026 07:58:27 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5342 (0x14de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:58:27 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=559668C5146D18C0E1D12466F25986893D5B70B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d5:c3:57:5f:e0:68:a8:0b:d3:fe:2d:b6:37: ab:8f:ee:f4:9b:44:0a:e8:fe:7d:b0:13:c1:06:e4: 1e:b3:05:ff:eb:57:6b:93:a3:9a:9d:fe:c3:06:aa: d9:1c:68:1c:36:cd:38:b9:5a:2a:11:32:ac:d7:fb: 8a:b8:fb:6d:57:c7:b4:98:21:cc:56:c5:09:95:e1: 2c:fd:af:a4:d2:fe:33:1c:3d:60:c5:3e:12:84:51: d1:55:33:62:2a:98:c4:6f:b7:2d:eb:c0:ba:2e:01: 90:e2:16:4c:26:fb:30:6e:5a:40:a1:83:e4:1b:32: 4b:e3:cd:69:95:89:84:00:79:05:e3:c2:af:dd:10: fb:ed:d7:d3:50:c3:71:d1:bf:24:fb:bf:a5:c3:f2: 99:57:a7:d6:db:87:e7:54:35:ec:75:65:cb:e5:de: 70:49:38:01:b1:62:fe:6c:95:65:4b:d2:89:68:23: 68:8f:23:5d:17:91:db:c4:ce:fa:61:8a:f0:8a:53: 57:92:7d:d2:34:31:89:df:f5:b5:3b:ca:03:ec:cf: 77:4f:7a:97:86:10:41:5a:14:b3:dc:56:dc:f2:a1: bd:ae:7c:6d:dd:95:f3:dc:39:b4:e5:47:3f:ac:98: f7:be:33:2a:cc:27:c7:bf:5f:fb:80:53:a5:1b:13: 30:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:96:68:C5:14:6D:18:C0:E1:D1:24:66:F2:59:86:89:3D:5B:70:B8 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/VZZoxRRtGMDh0SRm8lmGiT1bcLg.roa sbgp-ipAddrBlock: critical IPv4: 1.79.216.0/21 Signature Algorithm: sha256WithRSAEncryption 4b:63:71:e8:87:0a:c2:4c:5b:0b:45:2b:54:83:41:f3:a1:09: bf:0b:70:a0:89:06:8e:7c:22:3f:6d:c3:a3:d4:72:c4:21:78: a5:16:c7:02:5d:a9:34:2f:53:81:b9:77:56:8b:45:12:69:e8: 04:6c:0e:24:88:e3:8f:7e:2a:e6:c6:91:38:69:c0:3f:4e:eb: c9:a3:e1:79:ef:e5:53:fd:0e:68:a3:1b:ec:dc:95:76:ce:f1: c7:35:54:8d:19:f6:39:bd:92:36:a2:16:0c:88:27:c1:ed:39: f9:cf:82:e1:c7:5f:8f:d8:10:38:ea:bb:11:88:dc:5f:fd:ba: c5:db:cb:45:8e:39:a7:7c:3f:05:86:a5:da:13:e2:44:cf:ed: e4:34:d7:b6:62:a4:7b:20:45:61:64:30:24:4c:81:61:0f:e7: e5:5c:ab:06:d8:1b:4c:2f:25:d2:6f:c8:21:ce:b7:23:db:f1: 38:b8:be:dc:f9:bb:2a:85:39:ee:99:e1:c5:90:09:97:88:1c: 7d:80:16:63:ff:cf:db:ca:93:79:e3:e4:fb:a7:e2:19:30:1b: bb:cc:d7:ef:ce:94:56:71:34:ab:06:81:0d:91:c0:88:59:2c: fa:f3:d8:76:ac:9a:c7:54:a0:d8:4f:76:b0:db:c4:32:8e:e0: b4:06:dc:e6 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFN4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU4MjdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDU1OTY2OEM1MTQ2RDE4 QzBFMUQxMjQ2NkYyNTk4Njg5M0Q1QjcwQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZ1cNXX+BoqAvT/i22N6uP7vSbRAro/n2wE8EG5B6zBf/rV2uT o5qd/sMGqtkcaBw2zTi5WioRMqzX+4q4+21Xx7SYIcxWxQmV4Sz9r6TS/jMcPWDF PhKEUdFVM2IqmMRvty3rwLouAZDiFkwm+zBuWkChg+QbMkvjzWmViYQAeQXjwq/d EPvt19NQw3HRvyT7v6XD8plXp9bbh+dUNex1Zcvl3nBJOAGxYv5slWVL0oloI2iP I10XkdvEzvphivCKU1eSfdI0MYnf9bU7ygPsz3dPepeGEEFaFLPcVtzyob2ufG3d lfPcObTlRz+smPe+MyrMJ8e/X/uAU6UbEzDzAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUVZZoxRRtGMDh0SRm8lmGiT1bcLgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1ZaWm94UlJ0R01EaDBTUm04bG1HaVQxYmNMZy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMBT9gwDQYJKoZIhvcNAQELBQADggEB AEtjceiHCsJMWwtFK1SDQfOhCb8LcKCJBo58Ij9tw6PUcsQheKUWxwJdqTQvU4G5 d1aLRRJp6ARsDiSI449+KubGkThpwD9O68mj4Xnv5VP9DmijG+zclXbO8cc1VI0Z 9jm9kjaiFgyIJ8HtOfnPguHHX4/YEDjquxGI3F/9usXby0WOOad8PwWGpdoT4kTP 7eQ017ZipHsgRWFkMCRMgWEP5+VcqwbYG0wvJdJvyCHOtyPb8Ti4vtz5uyqFOe6Z 4cWQCZeIHH2AFmP/z9vKk3nj5Pun4hkwG7vM1+/OlFZxNKsGgQ2RwIhZLPrz2Has msdUoNhPdrDbxDKO4LQG3OY= -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:11 2026 by rpki-client