$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZURibM_wktSPGlYBcalO6jYAx68.roa File: ZURibM_wktSPGlYBcalO6jYAx68.roa (raw, json) Hash identifier: Y4wEnKYrwSS87T2QIGVnDQg/Oqt+K6NfJoC8O8JQryc= Subject key identifier: 65:44:62:6C:CF:F0:92:D4:8F:1A:56:01:71:A9:4E:EA:36:00:C7:AF Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 14CB Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZURibM_wktSPGlYBcalO6jYAx68.roa Signing time: Tue 31 Mar 2026 07:58:17 +0000 ROA not before: Tue 31 Mar 2026 07:58:17 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5323 (0x14cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:58:17 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=6544626CCFF092D48F1A560171A94EEA3600C7AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ca:ea:a1:70:9b:d3:49:a6:51:3d:60:07:5a: e6:b3:49:88:a7:75:fe:8a:bf:8d:39:a6:fc:d9:0d: 00:ab:5f:bf:7e:57:c2:ec:56:3b:af:01:01:cc:36: 8e:23:af:ed:43:a2:a7:4d:9a:4a:0e:d9:01:cc:a6: 98:75:af:54:5d:6a:68:9b:c8:91:e3:5d:5c:4c:9e: 0a:20:20:9b:56:55:75:aa:fd:81:08:51:09:f7:9a: 8c:d8:48:49:86:18:db:fb:b8:3c:bd:08:02:3c:f9: 70:56:4b:b1:52:9c:92:5f:7a:0b:6b:2d:fa:5c:b1: 9d:e8:06:1e:79:a8:3c:ad:45:98:ab:70:d5:57:2f: 39:7c:ed:92:ab:e9:a0:c4:fd:5d:da:f9:85:7f:b7: c9:03:27:26:9a:e1:1f:db:a1:20:02:96:c1:ac:6f: cf:e4:5e:03:70:86:d4:1f:93:65:3c:f5:9a:38:41: c2:28:96:f1:b0:0d:7a:72:18:f2:83:4e:ef:4e:e1: df:3e:23:6e:78:13:50:9c:3e:26:db:e2:0c:fe:b6: 03:ff:3e:98:d0:4f:a6:eb:21:da:01:80:03:d8:b0: 2c:50:fc:a4:b7:c1:fe:d8:e8:38:8e:04:f2:97:b4: 31:01:cb:33:81:d5:64:12:98:2b:0e:41:5e:c5:a6: 32:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:44:62:6C:CF:F0:92:D4:8F:1A:56:01:71:A9:4E:EA:36:00:C7:AF X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZURibM_wktSPGlYBcalO6jYAx68.roa sbgp-ipAddrBlock: critical IPv4: 1.75.244.0/22 Signature Algorithm: sha256WithRSAEncryption cf:b7:da:65:c6:4a:ad:f3:55:4a:50:76:9b:5f:03:e6:d8:c6: 46:5a:8f:4c:77:d0:26:2d:a8:34:dc:bf:57:31:f5:fb:cf:dc: 66:83:3f:0c:69:ac:3c:53:4a:0b:31:12:b9:8c:70:be:d0:eb: ce:8a:e2:10:18:24:78:65:0c:b1:67:4b:93:f2:ad:35:bd:9f: ee:94:79:57:cf:54:08:cb:82:33:2e:f7:4e:84:44:9b:74:54: ad:90:e7:d7:a5:79:e7:34:14:23:a7:1b:19:6c:75:c5:fc:7f: 94:66:ef:c0:d1:17:12:e5:b5:fa:5e:df:d5:f7:46:52:4f:0b: 52:ed:43:55:ca:c2:43:30:78:2f:8a:84:79:5a:55:94:69:f6: 27:05:e1:66:45:cc:bc:bc:47:60:84:b4:b3:31:92:f1:2e:d5: b9:65:9d:78:f2:2a:4c:b5:36:27:eb:0d:75:9c:07:08:75:17: a1:a6:3b:ae:1c:2c:01:2d:33:b8:27:5e:1b:db:40:1f:1c:b3: 98:05:57:71:1f:01:60:6b:30:1e:76:8d:95:6c:bb:10:e3:5f: 87:ea:5b:01:4c:cd:df:65:5d:ff:1e:57:d3:3a:55:88:2f:e7: 58:0a:36:27:e7:3e:d2:19:c8:f9:7b:37:b0:e3:4e:b9:76:57: f7:6a:1a:1e -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFMswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU4MTdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY1NDQ2MjZDQ0ZGMDky RDQ4RjFBNTYwMTcxQTk0RUVBMzYwMEM3QUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqyuqhcJvTSaZRPWAHWuazSYindf6Kv405pvzZDQCrX79+V8Ls VjuvAQHMNo4jr+1DoqdNmkoO2QHMpph1r1RdamibyJHjXVxMngogIJtWVXWq/YEI UQn3mozYSEmGGNv7uDy9CAI8+XBWS7FSnJJfegtrLfpcsZ3oBh55qDytRZircNVX Lzl87ZKr6aDE/V3a+YV/t8kDJyaa4R/boSAClsGsb8/kXgNwhtQfk2U89Zo4QcIo lvGwDXpyGPKDTu9O4d8+I254E1CcPibb4gz+tgP/PpjQT6brIdoBgAPYsCxQ/KS3 wf7Y6DiOBPKXtDEByzOB1WQSmCsOQV7FpjK3AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUZURibM/wktSPGlYBcalO6jYAx68wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1pVUmliTV93a3RTUEdsWUJjYWxPNmpZQXg2OC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIBS/QwDQYJKoZIhvcNAQELBQADggEB AM+32mXGSq3zVUpQdptfA+bYxkZaj0x30CYtqDTcv1cx9fvP3GaDPwxprDxTSgsx ErmMcL7Q686K4hAYJHhlDLFnS5PyrTW9n+6UeVfPVAjLgjMu906ERJt0VK2Q59el eec0FCOnGxlsdcX8f5Rm78DRFxLltfpe39X3RlJPC1LtQ1XKwkMweC+KhHlaVZRp 9icF4WZFzLy8R2CEtLMxkvEu1bllnXjyKky1NifrDXWcBwh1F6GmO64cLAEtM7gn XhvbQB8cs5gFV3EfAWBrMB52jZVsuxDjX4fqWwFMzd9lXf8eV9M6VYgv51gKNifn PtIZyPl7N7DjTrl2V/dqGh4= -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:53 2026 by rpki-client