$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/YZOcRTnSN2rm2q0FfY1U-St8Rmk.roa File: YZOcRTnSN2rm2q0FfY1U-St8Rmk.roa (raw, json) Hash identifier: WYxSqDCOJJnQUQa7hSByVQ62c/ZP8U00PV923idxVDE= Subject key identifier: 61:93:9C:45:39:D2:37:6A:E6:DA:AD:05:7D:8D:54:F9:2B:7C:46:69 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 17DA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YZOcRTnSN2rm2q0FfY1U-St8Rmk.roa Signing time: Tue 31 Mar 2026 08:04:40 +0000 ROA not before: Tue 31 Mar 2026 08:04:40 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 211.14.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6106 (0x17da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:04:40 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=61939C4539D2376AE6DAAD057D8D54F92B7C4669 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ce:00:de:4d:66:70:db:c7:22:98:ce:9e:70: cc:6a:b8:70:78:4f:58:51:41:20:70:a1:e5:66:8d: 81:42:b4:f1:5e:9a:f1:4c:2e:71:08:33:55:6c:8c: e4:a5:86:08:d7:a5:42:6f:f2:95:c1:a0:50:0f:3a: 78:9b:89:dd:a8:9e:d4:f2:e2:4f:b4:14:13:c9:0e: fb:b7:8e:31:3a:0a:78:f7:7b:74:77:91:df:23:b1: 2f:7d:ca:ca:7f:c9:6e:cd:f9:36:38:93:50:ef:2b: 96:a8:84:91:f2:d5:01:81:ca:b0:4f:dd:3b:6b:7b: a7:4e:d7:a8:cb:89:1a:bd:18:92:0d:72:56:f3:54: 2e:e8:91:84:28:f9:2f:b1:be:7e:30:ed:f4:1a:82: 00:87:58:cb:c4:02:8b:9e:d2:d6:79:5a:36:e5:1e: 00:2c:0c:a1:56:eb:0f:14:ad:87:92:0f:7c:bc:17: f2:3d:0c:47:96:fe:cc:6a:bf:9c:ad:65:44:9a:7f: 72:47:1e:5c:e6:95:d1:eb:14:75:aa:69:5d:63:96: b5:fd:9a:cc:0d:04:89:b1:9b:9d:6d:94:eb:2b:49: 1c:4c:20:0a:5e:fe:ed:48:d4:13:d7:f7:6e:7f:87: a0:80:1c:d3:74:aa:37:f4:7b:a4:51:c3:82:49:84: 89:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:93:9C:45:39:D2:37:6A:E6:DA:AD:05:7D:8D:54:F9:2B:7C:46:69 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YZOcRTnSN2rm2q0FfY1U-St8Rmk.roa sbgp-ipAddrBlock: critical IPv4: 211.14.119.0/24 Signature Algorithm: sha256WithRSAEncryption 29:5a:17:4e:57:87:65:30:e7:d2:03:54:cd:cd:6b:ab:fa:15: 8f:43:8c:f9:47:5e:7c:7b:f2:e6:e7:44:f7:02:43:83:a7:02: 42:f9:dd:5c:c4:68:26:95:a6:1c:6f:86:60:a4:f0:61:f0:e5: 2f:2e:eb:aa:b8:6d:46:8e:32:5d:bf:e1:72:49:18:1b:37:94: a3:17:c5:6f:c3:64:5e:56:71:6c:02:38:77:c5:42:27:da:84: b5:b5:c9:07:2b:1a:81:ee:6f:ab:f9:c6:09:b6:c0:ca:ac:46: 13:5f:d7:b6:26:1a:78:78:01:49:56:9e:3e:06:86:b4:e7:dc: fa:11:3a:3c:34:16:63:79:56:b7:7a:11:70:81:84:05:9a:81: 08:5a:14:ab:43:bf:74:76:a1:b9:eb:a7:4d:7f:78:69:8a:71: d6:41:57:3b:d2:14:d2:16:0e:28:d4:57:b9:1b:3d:ea:dc:75: 6c:86:33:af:08:ed:3b:d1:c4:40:e8:fe:69:73:cc:04:4a:a8: 59:60:c8:d7:a2:30:c4:10:c2:f3:ba:45:86:d7:3b:88:f5:c1: 4b:a2:8c:6f:d0:21:6b:f4:90:54:58:1d:e2:88:93:57:3d:d7: 1f:23:10:34:b9:23:b0:4c:f9:f6:29:56:4b:0a:9a:18:41:99: bd:d6:43:2a -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICF9owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODA0NDBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDYxOTM5QzQ1MzlEMjM3 NkFFNkRBQUQwNTdEOEQ1NEY5MkI3QzQ2NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbzgDeTWZw28cimM6ecMxquHB4T1hRQSBwoeVmjYFCtPFemvFM LnEIM1VsjOSlhgjXpUJv8pXBoFAPOnibid2ontTy4k+0FBPJDvu3jjE6Cnj3e3R3 kd8jsS99ysp/yW7N+TY4k1DvK5aohJHy1QGByrBP3Ttre6dO16jLiRq9GJINclbz VC7okYQo+S+xvn4w7fQaggCHWMvEAoue0tZ5WjblHgAsDKFW6w8UrYeSD3y8F/I9 DEeW/sxqv5ytZUSaf3JHHlzmldHrFHWqaV1jlrX9mswNBImxm51tlOsrSRxMIApe /u1I1BPX925/h6CAHNN0qjf0e6RRw4JJhIkpAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUYZOcRTnSN2rm2q0FfY1U+St8RmkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1laT2NSVG5TTjJybTJxMEZmWTFVLVN0OFJtay5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADTDncwDQYJKoZIhvcNAQELBQADggEB AClaF05Xh2Uw59IDVM3Na6v6FY9DjPlHXnx78ubnRPcCQ4OnAkL53VzEaCaVphxv hmCk8GHw5S8u66q4bUaOMl2/4XJJGBs3lKMXxW/DZF5WcWwCOHfFQifahLW1yQcr GoHub6v5xgm2wMqsRhNf17YmGnh4AUlWnj4GhrTn3PoROjw0FmN5Vrd6EXCBhAWa gQhaFKtDv3R2obnrp01/eGmKcdZBVzvSFNIWDijUV7kbPercdWyGM68I7TvRxEDo /mlzzARKqFlgyNeiMMQQwvO6RYbXO4j1wUuijG/QIWv0kFRYHeKIk1c91x8jEDS5 I7BM+fYpVksKmhhBmb3WQyo= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:40 2026 by rpki-client