$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/YgWt_eKDastweLAryNr2-tmRXj0.roa File: YgWt_eKDastweLAryNr2-tmRXj0.roa (raw, json) Hash identifier: 91P1BDpc+f166F6ZMm7Cuk+5BuSyGs+j0R3saj8CHsw= Subject key identifier: 62:05:AD:FD:E2:83:6A:CB:70:78:B0:2B:C8:DA:F6:FA:D9:91:5E:3D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1766 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YgWt_eKDastweLAryNr2-tmRXj0.roa Signing time: Tue 31 Mar 2026 08:03:44 +0000 ROA not before: Tue 31 Mar 2026 08:03:44 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.210.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5990 (0x1766) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:03:44 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=6205ADFDE2836ACB7078B02BC8DAF6FAD9915E3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:56:e0:3b:8b:83:24:b9:67:97:10:97:b6:d9: 93:7b:5e:2e:02:60:6a:ba:a1:13:81:a9:cc:e5:fb: 00:06:ef:05:a0:cd:30:d3:ee:fc:a4:44:6f:7f:dd: 2b:32:d6:e0:cd:b1:25:cb:11:3d:73:6b:62:00:e3: f6:e2:4e:89:ea:59:65:a0:5e:31:d3:10:d4:cf:b4: b4:cf:9e:2c:4e:e1:f0:38:42:a1:6c:fc:af:7b:87: 8c:d5:18:91:32:f1:82:00:7c:07:ce:71:db:81:12: fe:a0:df:00:c0:1f:93:d4:0f:7f:0d:e7:8f:e1:a6: 8d:51:a4:8c:c7:97:f0:e1:39:04:d4:e3:65:b5:d0: a3:c7:6f:ba:83:62:e1:e8:20:30:3f:41:51:80:6f: 11:c0:1c:84:04:a9:e7:de:95:19:66:ec:09:bc:5e: 2c:d0:94:2f:02:12:ba:a4:ff:20:e2:fa:dd:e1:2d: d9:ac:ef:c4:93:da:32:4f:64:ab:e1:31:e8:1e:e2: 2d:e7:62:36:2a:fc:99:62:a4:e0:2d:51:0b:f6:9f: 6f:a6:d4:fd:84:e0:81:c1:0b:09:bc:ab:bf:fe:e1: a4:53:b7:7d:6f:ca:c1:63:1a:f0:f0:3b:3a:90:ac: 71:cc:fc:27:0a:61:77:fd:a9:0a:97:a9:1b:b7:7f: 30:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:05:AD:FD:E2:83:6A:CB:70:78:B0:2B:C8:DA:F6:FA:D9:91:5E:3D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YgWt_eKDastweLAryNr2-tmRXj0.roa sbgp-ipAddrBlock: critical IPv4: 220.210.68.0/24 Signature Algorithm: sha256WithRSAEncryption 18:69:d2:61:6e:42:72:27:d3:57:5f:69:27:5e:46:52:9c:27: 5a:17:4a:93:2b:85:ec:8b:11:c1:cf:83:7c:02:c2:88:73:12: d4:ff:e8:fd:07:3e:87:44:5a:62:58:22:2d:61:c7:68:10:ee: 8c:90:54:74:48:a9:d9:d5:c0:3c:99:57:fc:a9:53:e8:ae:4a: a9:b0:90:a6:f5:e4:2d:54:02:e8:00:22:11:16:ca:2f:08:d0: b7:cf:25:25:33:2f:3d:4c:c5:78:5c:61:d5:f6:a6:65:27:24: 99:1e:c0:86:d0:f2:d3:03:7a:fb:73:61:4a:2d:e5:b2:8f:36: 36:c1:43:92:f0:78:c6:14:c9:76:9f:a0:10:e7:11:85:d3:86: 5a:f9:16:3f:68:af:e8:06:85:12:e4:64:eb:3a:ea:e0:6c:df: 0a:b6:09:3f:79:72:60:c5:59:7a:a7:d2:a1:26:ab:4a:6a:91: a2:15:74:96:86:90:cf:75:c3:16:19:1b:e2:6e:b0:71:6e:eb: 54:bc:0c:b8:e6:24:a9:99:bd:57:2e:57:c6:a4:15:7a:b0:cb: 37:07:be:3b:27:49:89:1e:84:9d:6c:8e:21:1b:4a:09:13:8f: 38:69:12:0b:b1:ca:cd:a8:92:d5:f0:61:7b:04:40:df:56:d5: 9b:f2:d4:c3 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICF2YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAzNDRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDYyMDVBREZERTI4MzZB Q0I3MDc4QjAyQkM4REFGNkZBRDk5MTVFM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwVuA7i4MkuWeXEJe22ZN7Xi4CYGq6oROBqczl+wAG7wWgzTDT 7vykRG9/3Ssy1uDNsSXLET1za2IA4/biTonqWWWgXjHTENTPtLTPnixO4fA4QqFs /K97h4zVGJEy8YIAfAfOcduBEv6g3wDAH5PUD38N54/hpo1RpIzHl/DhOQTU42W1 0KPHb7qDYuHoIDA/QVGAbxHAHIQEqefelRlm7Am8XizQlC8CErqk/yDi+t3hLdms 78ST2jJPZKvhMege4i3nYjYq/JlipOAtUQv2n2+m1P2E4IHBCwm8q7/+4aRTt31v ysFjGvDwOzqQrHHM/CcKYXf9qQqXqRu3fzDfAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUYgWt/eKDastweLAryNr2+tmRXj0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1lnV3RfZUtEYXN0d2VMQXJ5TnIyLXRtUlhqMC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADc0kQwDQYJKoZIhvcNAQELBQADggEB ABhp0mFuQnIn01dfaSdeRlKcJ1oXSpMrheyLEcHPg3wCwohzEtT/6P0HPodEWmJY Ii1hx2gQ7oyQVHRIqdnVwDyZV/ypU+iuSqmwkKb15C1UAugAIhEWyi8I0LfPJSUz Lz1MxXhcYdX2pmUnJJkewIbQ8tMDevtzYUot5bKPNjbBQ5LweMYUyXafoBDnEYXT hlr5Fj9or+gGhRLkZOs66uBs3wq2CT95cmDFWXqn0qEmq0pqkaIVdJaGkM91wxYZ G+JusHFu61S8DLjmJKmZvVcuV8akFXqwyzcHvjsnSYkehJ1sjiEbSgkTjzhpEgux ys2oktXwYXsEQN9W1Zvy1MM= -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:06 2026 by rpki-client