$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZNMY7cdg8je6gh6zZAQIK-3h2ac.roa File: ZNMY7cdg8je6gh6zZAQIK-3h2ac.roa (raw, json) Hash identifier: fUGFtV/XZDhuabjFQxFs7M+zaPFYExQLCdBVcUfACfk= Subject key identifier: 64:D3:18:ED:C7:60:F2:37:BA:82:1E:B3:64:04:08:2B:ED:E1:D9:A7 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1402 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZNMY7cdg8je6gh6zZAQIK-3h2ac.roa Signing time: Tue 31 Mar 2026 07:56:42 +0000 ROA not before: Tue 31 Mar 2026 07:56:42 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5122 (0x1402) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:56:42 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=64D318EDC760F237BA821EB36404082BEDE1D9A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:30:48:db:7c:88:09:d0:4a:a7:72:f4:e7:ee: 4f:d7:ec:f6:8d:4a:f2:54:a4:47:05:e2:7a:42:40: b6:7b:d3:33:62:96:04:f0:f5:28:6b:b8:a1:2d:1a: bf:3e:d2:29:c1:94:ab:ce:03:8b:15:85:a7:01:fa: 53:06:91:b1:f1:f6:97:37:ac:19:82:a5:a9:1c:54: a9:78:e9:00:27:b0:64:e5:83:ae:48:72:37:6f:fe: 61:b5:8a:82:7c:ab:a6:7e:9b:74:0a:32:b2:84:06: 95:b9:53:f9:66:3f:7e:6c:d3:8d:4d:17:2e:25:9e: c6:b5:79:02:1a:8c:00:3a:87:8c:b3:e9:a1:04:c5: 3e:48:5f:9c:73:e6:35:51:37:8b:13:d0:60:f9:3e: 03:0f:04:b5:61:0e:b3:dc:61:aa:a8:b0:6c:c5:d5: 97:46:f0:b0:84:b0:6f:4b:d4:57:9e:df:4a:d9:c7: f1:6e:77:6d:60:d5:44:0e:8e:3f:39:47:7a:62:1b: fb:f2:be:72:79:46:0c:9f:5e:60:6a:c7:c4:2b:22: de:8d:d5:b9:f8:87:9e:62:6d:4b:13:a8:3e:b0:5d: 05:c3:ba:69:c7:b1:42:e8:5f:f0:81:05:88:22:6e: e0:a4:25:5d:55:3d:1c:b3:67:d4:b9:15:d4:5a:ab: 7b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:D3:18:ED:C7:60:F2:37:BA:82:1E:B3:64:04:08:2B:ED:E1:D9:A7 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZNMY7cdg8je6gh6zZAQIK-3h2ac.roa sbgp-ipAddrBlock: critical IPv4: 1.75.176.0/21 Signature Algorithm: sha256WithRSAEncryption 6f:72:a9:f4:b2:77:d8:8e:f0:8a:20:11:ca:bf:8f:f3:21:c9: e6:75:c2:d4:32:a2:9b:5e:0c:96:7e:ed:07:bb:13:16:00:3f: 7d:b1:59:81:d5:13:ad:99:ee:89:25:26:77:dc:e8:b4:8d:1e: 11:03:21:9d:63:fc:10:3b:40:7c:1d:6d:21:71:98:04:5e:5d: b7:6d:dd:24:ca:78:d5:84:23:19:31:e9:16:26:60:34:f7:ff: bd:a8:48:10:eb:b7:ec:d8:a8:62:49:29:d7:e7:ab:53:e9:47: ca:e2:2c:5f:4b:29:da:6b:40:d1:1b:7e:44:88:05:50:5d:1a: 40:fc:a9:3e:58:93:47:1b:6b:fa:a1:1f:f3:09:f2:3e:3b:bd: ce:f3:68:90:cf:d1:57:2e:83:7c:b5:56:59:2f:42:40:ed:01: 97:66:37:a0:cc:68:3e:55:13:7f:32:90:01:7b:67:87:0e:b5: 5f:b2:de:c4:e3:bb:19:97:1f:c2:d3:9a:b8:37:b1:74:a6:e6: cc:54:9b:1a:68:c0:1e:0f:2e:9f:25:f3:ce:65:a3:57:bb:44: f2:c7:43:3e:c7:3f:6d:d2:6c:c0:7a:7a:62:96:dd:3d:78:26: 4b:37:6e:5c:78:94:57:1d:f4:5b:58:79:ea:03:28:63:bc:cb: 74:06:f5:a9 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFAIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU2NDJaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY0RDMxOEVEQzc2MEYy MzdCQTgyMUVCMzY0MDQwODJCRURFMUQ5QTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGMEjbfIgJ0EqncvTn7k/X7PaNSvJUpEcF4npCQLZ70zNilgTw 9ShruKEtGr8+0inBlKvOA4sVhacB+lMGkbHx9pc3rBmCpakcVKl46QAnsGTlg65I cjdv/mG1ioJ8q6Z+m3QKMrKEBpW5U/lmP35s041NFy4lnsa1eQIajAA6h4yz6aEE xT5IX5xz5jVRN4sT0GD5PgMPBLVhDrPcYaqosGzF1ZdG8LCEsG9L1Fee30rZx/Fu d21g1UQOjj85R3piG/vyvnJ5RgyfXmBqx8QrIt6N1bn4h55ibUsTqD6wXQXDumnH sULoX/CBBYgibuCkJV1VPRyzZ9S5FdRaq3uRAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUZNMY7cdg8je6gh6zZAQIK+3h2acwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1pOTVk3Y2RnOGplNmdoNnpaQVFJSy0zaDJhYy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMBS7AwDQYJKoZIhvcNAQELBQADggEB AG9yqfSyd9iO8IogEcq/j/MhyeZ1wtQyopteDJZ+7Qe7ExYAP32xWYHVE62Z7okl Jnfc6LSNHhEDIZ1j/BA7QHwdbSFxmAReXbdt3STKeNWEIxkx6RYmYDT3/72oSBDr t+zYqGJJKdfnq1PpR8riLF9LKdprQNEbfkSIBVBdGkD8qT5Yk0cba/qhH/MJ8j47 vc7zaJDP0Vcug3y1VlkvQkDtAZdmN6DMaD5VE38ykAF7Z4cOtV+y3sTjuxmXH8LT mrg3sXSm5sxUmxpowB4PLp8l885lo1e7RPLHQz7HP23SbMB6emKW3T14Jks3blx4 lFcd9FtYeeoDKGO8y3QG9ak= -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:06 2026 by rpki-client