$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZWwF22CUOhkSNLzD1ncP9DGZhRQ.roa File: ZWwF22CUOhkSNLzD1ncP9DGZhRQ.roa (raw, json) Hash identifier: P3o+pjxzZZ3/tB6ZAviEdA6pGZGHb5TgVcrdQwdUr7Y= Subject key identifier: 65:6C:05:DB:60:94:3A:19:12:34:BC:C3:D6:77:0F:F4:31:99:85:14 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 16D8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZWwF22CUOhkSNLzD1ncP9DGZhRQ.roa Signing time: Tue 31 Mar 2026 08:02:37 +0000 ROA not before: Tue 31 Mar 2026 08:02:37 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.67.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5848 (0x16d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:02:37 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=656C05DB60943A191234BCC3D6770FF431998514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f8:2e:1e:ac:13:2d:88:2b:44:25:a2:04:f7: 9d:f6:a4:01:49:bf:91:5d:bf:35:7a:9c:9f:22:e8: 88:72:a8:46:67:f1:1b:26:e8:86:9e:6f:d9:4d:4a: 6f:71:6e:9d:a1:f9:5a:46:01:68:e9:70:0d:8a:5f: 8f:f7:b4:29:55:0e:e1:80:87:b1:b8:05:56:3e:23: b9:93:30:a9:fd:46:de:a7:21:6f:53:00:92:77:ea: 98:04:2e:d7:93:49:b4:e5:43:92:af:ba:bb:fd:0a: 80:20:c5:60:4e:9f:df:2c:09:eb:c4:20:b7:74:0f: 9b:d7:ce:0e:4c:bd:16:ba:80:d5:f5:80:a6:cb:73: 3e:18:d4:1c:d8:91:57:30:08:d5:b3:df:f5:8a:d7: be:a1:3f:8f:f4:05:c2:c7:44:43:22:da:9f:a2:06: ad:61:5b:b7:18:05:4b:c4:b2:da:48:e3:57:47:bf: 66:17:be:88:a5:c2:2a:77:ca:b6:25:54:a2:e1:b1: 7e:c6:f6:0b:78:e8:11:f8:81:35:8d:13:3e:33:17: 8f:76:e4:b0:39:85:00:b1:a2:3a:f0:10:c9:be:50: 63:71:ad:0c:1a:45:ff:6a:76:ed:15:20:e9:29:90: 02:63:ef:c6:52:c4:31:72:29:f9:58:23:30:ab:75: 5b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:6C:05:DB:60:94:3A:19:12:34:BC:C3:D6:77:0F:F4:31:99:85:14 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZWwF22CUOhkSNLzD1ncP9DGZhRQ.roa sbgp-ipAddrBlock: critical IPv4: 1.67.192.0/20 Signature Algorithm: sha256WithRSAEncryption 74:f5:49:10:a6:93:cd:b8:17:57:d3:5d:2a:ee:2b:45:ab:f0: f8:99:79:35:80:70:46:38:f7:a3:3c:da:13:91:02:52:10:a8: d3:b9:44:d8:07:42:dc:13:71:2b:01:f9:ae:f3:1e:ba:60:e4: 39:cf:11:ce:c7:af:4e:0a:5e:5a:3a:d5:10:78:df:c2:96:ca: a7:1f:bb:73:9b:b7:55:2e:5a:a4:0e:cb:65:8f:6b:55:46:7b: 24:2e:1a:43:64:c5:3a:5e:c3:ef:0f:78:5e:ce:98:91:bd:95: 81:11:68:56:10:7e:b9:8b:f3:e8:72:a5:f0:14:f2:67:4a:af: 39:67:89:f3:f7:76:8d:35:f2:cc:ba:ff:f5:9e:d4:68:8b:27: 55:09:9e:e5:f9:51:b7:89:45:4a:ee:80:dc:f1:fd:5a:ac:fc: 92:40:a5:9e:3d:71:f7:d7:83:88:36:db:89:ff:cf:ad:a3:a3: 4e:69:ed:79:e7:52:4b:26:93:07:04:26:ff:91:38:48:5b:59: 02:a3:c1:8b:89:32:eb:55:38:ea:28:8e:a4:89:32:87:b3:d9: cf:e7:43:9d:df:15:fa:a0:2d:c6:03:d9:09:a3:92:13:4d:65: 32:4c:4a:a8:f2:38:81:a8:c8:18:72:5f:2a:13:e1:93:ab:95: 04:d8:c6:fb -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFtgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAyMzdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY1NkMwNURCNjA5NDNB MTkxMjM0QkNDM0Q2NzcwRkY0MzE5OTg1MTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDH+C4erBMtiCtEJaIE9532pAFJv5FdvzV6nJ8i6IhyqEZn8Rsm 6Iaeb9lNSm9xbp2h+VpGAWjpcA2KX4/3tClVDuGAh7G4BVY+I7mTMKn9Rt6nIW9T AJJ36pgELteTSbTlQ5Kvurv9CoAgxWBOn98sCevEILd0D5vXzg5MvRa6gNX1gKbL cz4Y1BzYkVcwCNWz3/WK176hP4/0BcLHREMi2p+iBq1hW7cYBUvEstpI41dHv2YX voilwip3yrYlVKLhsX7G9gt46BH4gTWNEz4zF4925LA5hQCxojrwEMm+UGNxrQwa Rf9qdu0VIOkpkAJj78ZSxDFyKflYIzCrdVsbAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUZWwF22CUOhkSNLzD1ncP9DGZhRQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1pXd0YyMkNVT2hrU05MekQxbmNQOURHWmhSUS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQBQ8AwDQYJKoZIhvcNAQELBQADggEB AHT1SRCmk824F1fTXSruK0Wr8PiZeTWAcEY496M82hORAlIQqNO5RNgHQtwTcSsB +a7zHrpg5DnPEc7Hr04KXlo61RB438KWyqcfu3Obt1UuWqQOy2WPa1VGeyQuGkNk xTpew+8PeF7OmJG9lYERaFYQfrmL8+hypfAU8mdKrzlnifP3do018sy6//We1GiL J1UJnuX5UbeJRUrugNzx/Vqs/JJApZ49cffXg4g224n/z62jo05p7XnnUksmkwcE Jv+ROEhbWQKjwYuJMutVOOoojqSJMoez2c/nQ53fFfqgLcYD2QmjkhNNZTJMSqjy OIGoyBhyXyoT4ZOrlQTYxvs= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:56 2026 by rpki-client