$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZLWiG-vhRaFcNdOSXPRYhXEpu9c.roa File: ZLWiG-vhRaFcNdOSXPRYhXEpu9c.roa (raw, json) Hash identifier: TrVSrrlwJ1Q+jurPriPHuCekTNLuSesgOh+jSA8idrA= Subject key identifier: 64:B5:A2:1B:EB:E1:45:A1:5C:35:D3:92:5C:F4:58:85:71:29:BB:D7 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 16B6 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZLWiG-vhRaFcNdOSXPRYhXEpu9c.roa Signing time: Tue 31 Mar 2026 08:02:21 +0000 ROA not before: Tue 31 Mar 2026 08:02:21 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 110.158.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5814 (0x16b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:02:21 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=64B5A21BEBE145A15C35D3925CF458857129BBD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b0:b0:b6:2d:28:0d:78:cb:e4:d9:27:e3:4a: 71:b2:d7:6b:da:a1:7f:12:ff:04:ab:04:41:5a:48: 46:fa:23:02:d2:12:ab:e3:b7:36:fb:93:15:f9:3b: bd:55:aa:9c:72:9a:30:e7:bc:ac:6a:fa:a0:00:f3: 07:ad:88:77:74:df:33:1b:04:f2:d4:d9:0a:7d:62: ac:1b:fd:fe:5e:ab:2d:1e:66:dc:b0:49:95:d7:34: 7b:19:42:69:37:9e:2b:11:6a:11:b8:c8:1f:d6:2f: 04:a4:07:3a:e8:12:f6:26:42:36:23:5a:e8:76:d8: 3b:13:ae:1b:3c:ae:eb:36:a6:f6:7a:4b:35:f8:4e: 57:e8:90:40:e0:d4:3f:5e:9e:19:0f:b2:47:e4:23: ce:53:48:15:df:f9:2b:4a:7e:c3:a4:da:0f:66:dc: e1:53:ea:1b:5d:b2:7a:18:68:0e:1c:db:f7:f1:45: 96:0c:63:e2:7d:19:bc:32:99:42:b0:e2:a0:d0:93: 2c:c8:20:81:4b:4f:ed:1c:14:bb:8b:80:25:a5:95: 6a:46:1f:e6:36:3a:68:01:8d:6b:6f:75:79:e3:6c: d4:3e:a3:4a:c9:a3:62:6e:75:73:00:5a:10:ef:60: d5:39:ba:2f:cf:ad:df:21:b3:22:1d:9d:76:3d:31: 82:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:B5:A2:1B:EB:E1:45:A1:5C:35:D3:92:5C:F4:58:85:71:29:BB:D7 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZLWiG-vhRaFcNdOSXPRYhXEpu9c.roa sbgp-ipAddrBlock: critical IPv4: 110.158.144.0/21 Signature Algorithm: sha256WithRSAEncryption 68:b3:86:81:89:82:b1:60:5d:14:bf:2d:92:16:3b:66:c2:42: f0:b5:b9:d2:01:2d:69:34:a8:6c:e8:cc:71:3f:2c:d7:5c:93: 33:4b:1e:f5:4d:3e:cc:c8:7a:9f:fb:13:1f:36:9d:e3:41:ed: 6f:61:20:2e:02:40:39:8b:cd:89:5c:b2:9b:4e:c9:b4:cc:ed: 34:a5:34:e5:f7:5f:a4:d5:da:44:f3:48:80:47:a9:0c:be:c7: f2:e7:80:eb:ef:bc:d3:30:b4:9e:72:23:2a:07:a6:97:d1:20: e9:12:8f:b4:e4:b9:04:8a:50:9f:ee:7e:32:15:bf:ea:e0:06: ca:58:43:ff:f0:b6:b7:bf:99:8d:8e:90:e2:dc:6a:bb:98:34: b8:99:36:0d:cd:ee:80:b3:0a:19:d0:39:2e:74:25:c9:57:d9: 79:ed:0a:6d:17:88:cc:ea:e9:4c:f0:f9:4c:67:dd:e0:62:dd: 67:a1:a2:a1:23:bb:5a:41:82:1e:6d:cc:4c:ad:f9:15:0b:68: 7e:3b:21:64:8f:03:36:9e:76:aa:12:b2:aa:18:5f:7b:47:3d: 21:af:ca:1b:a4:fc:23:5a:1f:c9:87:54:97:78:27:cd:e0:9b: 23:52:b6:d4:3a:16:b8:6a:3d:a9:e4:2b:2d:8d:e6:50:65:35: dc:fa:56:5b -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFrYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAyMjFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY0QjVBMjFCRUJFMTQ1 QTE1QzM1RDM5MjVDRjQ1ODg1NzEyOUJCRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzsLC2LSgNeMvk2SfjSnGy12vaoX8S/wSrBEFaSEb6IwLSEqvj tzb7kxX5O71VqpxymjDnvKxq+qAA8wetiHd03zMbBPLU2Qp9Yqwb/f5eqy0eZtyw SZXXNHsZQmk3nisRahG4yB/WLwSkBzroEvYmQjYjWuh22DsTrhs8rus2pvZ6SzX4 TlfokEDg1D9enhkPskfkI85TSBXf+StKfsOk2g9m3OFT6htdsnoYaA4c2/fxRZYM Y+J9GbwymUKw4qDQkyzIIIFLT+0cFLuLgCWllWpGH+Y2OmgBjWtvdXnjbNQ+o0rJ o2JudXMAWhDvYNU5ui/Prd8hsyIdnXY9MYJLAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUZLWiG+vhRaFcNdOSXPRYhXEpu9cwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1pMV2lHLXZoUmFGY05kT1NYUFJZaFhFcHU5Yy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANunpAwDQYJKoZIhvcNAQELBQADggEB AGizhoGJgrFgXRS/LZIWO2bCQvC1udIBLWk0qGzozHE/LNdckzNLHvVNPszIep/7 Ex82neNB7W9hIC4CQDmLzYlcsptOybTM7TSlNOX3X6TV2kTzSIBHqQy+x/LngOvv vNMwtJ5yIyoHppfRIOkSj7TkuQSKUJ/ufjIVv+rgBspYQ//wtre/mY2OkOLcaruY NLiZNg3N7oCzChnQOS50JclX2XntCm0XiMzq6Uzw+Uxn3eBi3WehoqEju1pBgh5t zEyt+RULaH47IWSPAzaedqoSsqoYX3tHPSGvyhuk/CNaH8mHVJd4J83gmyNSttQ6 FrhqPankKy2N5lBlNdz6Vls= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:02 2026 by rpki-client