$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Xwh1YYb_5v9gDwRIxCu3Krnudsw.roa File: Xwh1YYb_5v9gDwRIxCu3Krnudsw.roa (raw, json) Hash identifier: oRxHPH42on55Dzw/R73U7onvvJHZ8Gip6uqQyqlO5qU= Subject key identifier: 5F:08:75:61:86:FF:E6:FF:60:0F:04:48:C4:2B:B7:2A:B9:EE:76:CC Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 16EE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Xwh1YYb_5v9gDwRIxCu3Krnudsw.roa Signing time: Tue 31 Mar 2026 08:02:47 +0000 ROA not before: Tue 31 Mar 2026 08:02:47 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.210.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5870 (0x16ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:02:47 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=5F08756186FFE6FF600F0448C42BB72AB9EE76CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:9e:09:ea:06:8e:39:36:1d:a6:be:cd:e1:22: aa:d7:45:cc:9c:7c:2a:51:16:76:fd:ed:95:5e:6b: 07:f1:4c:d1:6b:c9:c2:9a:13:76:15:95:2f:96:f0: c3:50:57:04:41:2d:6f:11:60:41:9a:be:9e:4c:0f: 9c:36:9b:bf:1a:da:cf:38:c8:aa:07:08:39:81:0d: 8f:00:a0:6e:a0:96:d7:43:fa:36:14:7f:c0:c6:a5: c7:bf:bc:c9:dc:01:7d:f2:b8:01:a0:72:77:10:aa: ab:c7:05:7d:25:d7:74:94:30:54:d0:60:45:18:93: 1e:7a:7f:b8:75:34:bb:95:3d:a8:61:0d:4e:72:78: 58:2f:46:49:6b:67:8d:a3:ca:e0:35:bf:74:0d:ed: a6:a0:85:53:d7:3c:a7:ef:da:29:d3:4c:23:5f:a3: 03:47:85:e6:b5:bc:eb:7e:a9:2f:5e:60:7a:85:8f: 66:38:40:7d:23:71:be:d3:e2:b8:39:87:c3:2e:5d: 03:8c:cd:86:0e:43:b8:98:2e:a2:0b:48:a5:8d:5f: a7:96:73:3c:81:42:65:e4:76:34:95:08:67:a3:63: 6a:8c:39:25:3d:ce:69:ab:a8:61:12:50:6a:14:7c: 2d:95:2a:94:7a:d9:dd:95:f8:63:a5:57:d0:fd:a7: f9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:08:75:61:86:FF:E6:FF:60:0F:04:48:C4:2B:B7:2A:B9:EE:76:CC X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Xwh1YYb_5v9gDwRIxCu3Krnudsw.roa sbgp-ipAddrBlock: critical IPv4: 220.210.40.0/21 Signature Algorithm: sha256WithRSAEncryption da:4d:bc:76:0e:fe:0e:6d:38:79:08:1c:2b:20:3e:c1:69:ae: 29:62:e5:61:80:ac:b3:7b:b2:12:ae:b0:f7:7a:18:a8:7b:d9: 98:65:d0:ea:26:bf:a1:54:78:54:e9:d9:77:2c:12:06:08:37: 1d:50:aa:06:94:49:9d:4a:b7:ef:64:c1:50:61:f2:9a:73:ef: 05:94:4b:3c:b4:67:26:7b:55:86:af:4a:d6:cb:cc:59:02:9b: 5b:0a:23:97:77:2b:47:32:31:54:17:06:24:b3:87:7d:29:07: 0c:47:4c:d4:df:db:f4:a1:a2:c6:7b:ad:a8:cf:16:8a:e1:92: 1b:cb:3b:96:a3:44:ef:43:f7:40:21:a3:cc:3d:c5:40:fa:87: f2:7e:07:c9:3a:d9:fa:bc:14:1b:c7:18:4c:2a:d4:fc:43:7a: 25:08:43:a0:77:df:18:22:22:c1:cc:4e:87:79:9c:20:f9:d3: a5:62:98:36:05:fb:27:0a:ef:84:55:83:2e:04:07:69:85:9b: bd:17:3f:96:c2:7d:e9:f1:93:4a:68:da:00:a7:c0:a6:96:82: b3:69:98:db:e5:72:ab:c0:1d:37:6d:61:f6:5d:1d:81:dd:5e: d6:e7:e3:4c:b8:00:a0:60:43:49:5c:e1:a0:c4:3d:83:d3:92: 52:53:0e:d5 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFu4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAyNDdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDVGMDg3NTYxODZGRkU2 RkY2MDBGMDQ0OEM0MkJCNzJBQjlFRTc2Q0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbngnqBo45Nh2mvs3hIqrXRcycfCpRFnb97ZVeawfxTNFrycKa E3YVlS+W8MNQVwRBLW8RYEGavp5MD5w2m78a2s84yKoHCDmBDY8AoG6gltdD+jYU f8DGpce/vMncAX3yuAGgcncQqqvHBX0l13SUMFTQYEUYkx56f7h1NLuVPahhDU5y eFgvRklrZ42jyuA1v3QN7aaghVPXPKfv2inTTCNfowNHhea1vOt+qS9eYHqFj2Y4 QH0jcb7T4rg5h8MuXQOMzYYOQ7iYLqILSKWNX6eWczyBQmXkdjSVCGejY2qMOSU9 zmmrqGESUGoUfC2VKpR62d2V+GOlV9D9p/l9AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUXwh1YYb/5v9gDwRIxCu3KrnudswwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1h3aDFZWWJfNXY5Z0R3Ukl4Q3UzS3JudWRzdy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPc0igwDQYJKoZIhvcNAQELBQADggEB ANpNvHYO/g5tOHkIHCsgPsFprili5WGArLN7shKusPd6GKh72Zhl0Oomv6FUeFTp 2XcsEgYINx1QqgaUSZ1Kt+9kwVBh8ppz7wWUSzy0ZyZ7VYavStbLzFkCm1sKI5d3 K0cyMVQXBiSzh30pBwxHTNTf2/ShosZ7rajPForhkhvLO5ajRO9D90Aho8w9xUD6 h/J+B8k62fq8FBvHGEwq1PxDeiUIQ6B33xgiIsHMTod5nCD506VimDYF+ycK74RV gy4EB2mFm70XP5bCfenxk0po2gCnwKaWgrNpmNvlcqvAHTdtYfZdHYHdXtbn40y4 AKBgQ0lc4aDEPYPTklJTDtU= -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:49 2026 by rpki-client