$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZIZ43o6q2pSxPQ3TZDed6AxVurM.roa File: ZIZ43o6q2pSxPQ3TZDed6AxVurM.roa (raw, json) Hash identifier: jUq3Gc/bRzHk+VyKlyvCoUPCXxrVnmM7sD+nNUEo4KQ= Subject key identifier: 64:86:78:DE:8E:AA:DA:94:B1:3D:0D:D3:64:37:9D:E8:0C:55:BA:B3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 151C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZIZ43o6q2pSxPQ3TZDed6AxVurM.roa Signing time: Tue 31 Mar 2026 07:58:57 +0000 ROA not before: Tue 31 Mar 2026 07:58:57 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.76.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5404 (0x151c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:58:57 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=648678DE8EAADA94B13D0DD364379DE80C55BAB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0f:c4:c8:36:54:f6:0c:b9:05:91:5d:e2:4b: cf:f3:b7:fb:0c:44:38:e4:cd:a4:54:09:07:86:d1: ca:85:3c:b9:59:75:81:44:c0:00:53:18:66:b1:66: 6b:ce:be:22:b7:c9:a8:54:05:54:b9:1c:05:a9:00: 03:88:2f:b5:cf:5f:ab:57:e0:d2:16:1d:bc:51:bd: 5f:e9:cc:6e:aa:c8:4d:fb:d5:f1:00:c4:81:08:8e: a8:06:39:08:2e:ea:d9:76:49:d1:67:2a:49:74:3d: 92:a7:00:7b:39:d3:2c:35:18:55:dd:c6:93:e0:e2: 8b:b0:06:b1:92:f5:05:17:ba:a1:d4:38:bf:9d:c3: 80:f9:40:36:f8:99:ec:6d:2e:bf:4e:2e:63:a6:5e: 49:43:2b:81:a4:98:04:99:4b:49:ec:69:42:86:c8: 24:be:ae:db:53:56:d0:2d:27:17:c8:33:bb:20:b0: 42:18:a8:85:92:c9:22:33:e0:04:2d:8f:a7:3f:64: 9d:2f:8a:dd:76:41:65:61:98:67:61:ab:ca:71:b1: 7c:12:26:b9:14:3b:7d:85:6f:1f:a8:f5:e8:f9:a3: d7:74:14:97:8c:b7:5b:a9:50:18:02:46:f8:49:f6: 81:20:cc:28:31:c5:1d:ab:45:59:c4:31:aa:d6:08: 1b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:86:78:DE:8E:AA:DA:94:B1:3D:0D:D3:64:37:9D:E8:0C:55:BA:B3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZIZ43o6q2pSxPQ3TZDed6AxVurM.roa sbgp-ipAddrBlock: critical IPv4: 1.76.16.0/20 Signature Algorithm: sha256WithRSAEncryption 54:a2:80:6a:c5:14:8e:07:87:b7:b0:93:7b:a0:ed:a5:da:cb: 3f:9b:0e:6e:41:e6:bf:47:1e:90:b7:90:a2:0c:9a:18:09:59: 81:9b:8c:ec:45:fe:48:51:6b:99:1b:0f:2d:7b:3f:41:71:93: cd:11:4a:8c:31:5b:a3:e1:3a:68:88:27:33:f8:4b:13:d4:b0: d1:27:51:09:ce:7e:fb:1c:c8:e4:c9:01:ea:d6:c0:12:08:ae: 8a:8e:be:46:8a:0b:cd:3a:71:4f:9b:c4:b8:af:0d:1a:71:95: ce:8a:40:da:f2:b3:4f:60:05:5f:0d:78:2c:c5:7d:67:df:78: fc:6e:0d:0b:eb:ae:65:85:a5:0d:59:7e:65:89:73:15:71:c5: 5c:88:2b:41:c7:15:53:1f:06:22:43:4d:8a:26:b1:fe:62:8b: 43:17:bf:5e:8b:14:a1:a0:ac:b1:4f:33:54:88:c0:2d:c4:34: 11:1f:f7:4d:30:73:d6:45:1a:fd:a2:2a:ec:23:ef:b6:0d:73: fa:6e:d6:ed:7a:34:76:1a:a5:e7:e5:17:f9:c7:b7:55:a0:67: 0c:0d:50:70:09:8e:60:e2:f7:72:4d:56:78:d6:85:dd:c1:44: d0:3a:a2:32:8f:b2:f9:6b:38:21:7b:62:62:51:ca:f7:cb:31: e6:ab:c6:12 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFRwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU4NTdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY0ODY3OERFOEVBQURB OTRCMTNEMEREMzY0Mzc5REU4MEM1NUJBQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtD8TINlT2DLkFkV3iS8/zt/sMRDjkzaRUCQeG0cqFPLlZdYFE wABTGGaxZmvOviK3yahUBVS5HAWpAAOIL7XPX6tX4NIWHbxRvV/pzG6qyE371fEA xIEIjqgGOQgu6tl2SdFnKkl0PZKnAHs50yw1GFXdxpPg4ouwBrGS9QUXuqHUOL+d w4D5QDb4mextLr9OLmOmXklDK4GkmASZS0nsaUKGyCS+rttTVtAtJxfIM7sgsEIY qIWSySIz4AQtj6c/ZJ0vit12QWVhmGdhq8pxsXwSJrkUO32Fbx+o9ej5o9d0FJeM t1upUBgCRvhJ9oEgzCgxxR2rRVnEMarWCBtdAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUZIZ43o6q2pSxPQ3TZDed6AxVurMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1pJWjQzbzZxMnBTeFBRM1RaRGVkNkF4VnVyTS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQBTBAwDQYJKoZIhvcNAQELBQADggEB AFSigGrFFI4Hh7ewk3ug7aXayz+bDm5B5r9HHpC3kKIMmhgJWYGbjOxF/khRa5kb Dy17P0Fxk80RSowxW6PhOmiIJzP4SxPUsNEnUQnOfvscyOTJAerWwBIIroqOvkaK C806cU+bxLivDRpxlc6KQNrys09gBV8NeCzFfWffePxuDQvrrmWFpQ1ZfmWJcxVx xVyIK0HHFVMfBiJDTYomsf5ii0MXv16LFKGgrLFPM1SIwC3ENBEf900wc9ZFGv2i Kuwj77YNc/pu1u16NHYapeflF/nHt1WgZwwNUHAJjmDi93JNVnjWhd3BRNA6ojKP svlrOCF7YmJRyvfLMearxhI= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:42 2026 by rpki-client