$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/_9KR29UXFfEqwXUSMQYWK-UPUcs.roa File: _9KR29UXFfEqwXUSMQYWK-UPUcs.roa (raw, json) Hash identifier: W1/DY3EXMwd1ko/kpnaZQ1RsloLV5dtI5JebSi+GF1o= Subject key identifier: FF:D2:91:DB:D5:17:15:F1:2A:C1:75:12:31:06:16:2B:E5:0F:51:CB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 14F8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/_9KR29UXFfEqwXUSMQYWK-UPUcs.roa Signing time: Tue 31 Mar 2026 07:58:40 +0000 ROA not before: Tue 31 Mar 2026 07:58:40 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5368 (0x14f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:58:40 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=FFD291DBD51715F12AC175123106162BE50F51CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a3:c4:9b:7a:8b:9c:42:2d:60:8f:5c:64:25: f1:2d:3d:c9:7e:0c:6b:24:2f:13:cf:55:11:f7:c3: 22:48:51:ea:77:f6:df:53:52:07:cc:e2:4c:66:08: ab:70:2e:22:62:d3:78:72:c7:34:26:0f:2b:26:e1: 42:62:b7:f6:91:9b:35:0d:4f:96:2e:e3:17:c2:63: 42:fd:f5:7a:3c:e4:8b:98:dd:45:6c:d4:1a:62:24: f4:d5:d6:4f:9c:ed:d4:15:79:2e:89:4e:82:86:3d: aa:82:a8:ab:e1:59:70:44:dd:b5:e8:47:ed:99:39: 09:f2:c5:10:37:53:45:78:9e:55:d4:03:9b:6f:d1: 44:cd:b0:f2:ba:d4:cd:c0:a9:d4:3e:d4:fa:c6:a3: 1d:29:1a:53:ca:2c:07:45:ec:79:8e:91:04:04:8f: cb:7f:85:6f:cd:1a:16:8e:ad:1e:35:1f:b8:e5:6d: 71:36:7a:65:f3:f7:18:a6:2a:dc:99:56:c0:b8:b4: ec:42:9c:cc:1e:90:24:8e:fa:7b:ee:cd:62:48:9e: c0:53:c3:f8:28:da:ad:ce:7a:3b:0b:9b:ed:26:c8: 9c:2d:dd:dc:39:a1:12:ad:25:25:f2:e1:aa:8e:39: ec:d3:98:12:e1:ed:2f:72:94:43:b1:98:16:ba:67: 63:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:D2:91:DB:D5:17:15:F1:2A:C1:75:12:31:06:16:2B:E5:0F:51:CB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/_9KR29UXFfEqwXUSMQYWK-UPUcs.roa sbgp-ipAddrBlock: critical IPv4: 1.79.168.0/22 Signature Algorithm: sha256WithRSAEncryption d4:69:62:40:72:08:7d:ab:0a:0e:ce:bb:ce:58:cc:17:36:1d: 16:b6:77:5a:f9:91:6a:b9:21:45:11:bb:1f:69:8a:40:06:1c: fa:1e:b8:11:78:c5:64:c7:29:7a:a3:63:78:01:8e:25:e8:35: e1:41:4b:d3:1c:23:8d:3b:d2:da:c6:1d:5f:ea:c1:73:2b:47: 81:51:6b:d6:81:40:90:ae:26:ee:4a:25:b0:04:af:62:3a:04: c5:86:b4:8e:40:2f:94:4b:ee:d1:b9:2b:a8:ee:c6:55:95:1a: 9c:da:9c:70:78:5b:38:25:b2:9e:eb:a4:9a:9b:00:c3:00:00: d6:04:3c:56:a8:e6:43:83:64:19:13:4f:e9:ad:76:19:98:b9: 63:ca:76:8a:3b:6c:49:54:b9:8a:7e:4c:96:64:f2:8e:81:2d: 85:a5:3c:ee:05:9c:2a:6c:b4:8c:f2:f2:ad:ae:fd:15:6c:65: dd:01:ee:7b:2c:b7:15:f3:4f:7c:a1:63:f3:70:db:40:c2:9f: bc:6a:9d:66:3f:28:2a:fe:45:18:27:a8:3e:b3:47:ad:9e:5b: 5a:29:18:42:64:f8:49:ed:cd:0d:e6:89:8c:32:3e:5b:85:ee: f0:ce:d3:61:d3:db:7b:77:c3:6c:7e:0f:12:9f:42:a9:fa:5b: fd:35:05:81 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFPgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU4NDBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEZGRDI5MURCRDUxNzE1 RjEyQUMxNzUxMjMxMDYxNjJCRTUwRjUxQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8o8SbeoucQi1gj1xkJfEtPcl+DGskLxPPVRH3wyJIUep39t9T UgfM4kxmCKtwLiJi03hyxzQmDysm4UJit/aRmzUNT5Yu4xfCY0L99Xo85IuY3UVs 1BpiJPTV1k+c7dQVeS6JToKGPaqCqKvhWXBE3bXoR+2ZOQnyxRA3U0V4nlXUA5tv 0UTNsPK61M3AqdQ+1PrGox0pGlPKLAdF7HmOkQQEj8t/hW/NGhaOrR41H7jlbXE2 emXz9ximKtyZVsC4tOxCnMwekCSO+nvuzWJInsBTw/go2q3OejsLm+0myJwt3dw5 oRKtJSXy4aqOOezTmBLh7S9ylEOxmBa6Z2PtAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU/9KR29UXFfEqwXUSMQYWK+UPUcswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L185S1IyOVVYRmZFcXdYVVNNUVlXSy1VUFVjcy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIBT6gwDQYJKoZIhvcNAQELBQADggEB ANRpYkByCH2rCg7Ou85YzBc2HRa2d1r5kWq5IUURux9pikAGHPoeuBF4xWTHKXqj Y3gBjiXoNeFBS9McI4070trGHV/qwXMrR4FRa9aBQJCuJu5KJbAEr2I6BMWGtI5A L5RL7tG5K6juxlWVGpzanHB4Wzglsp7rpJqbAMMAANYEPFao5kODZBkTT+mtdhmY uWPKdoo7bElUuYp+TJZk8o6BLYWlPO4FnCpstIzy8q2u/RVsZd0B7nsstxXzT3yh Y/Nw20DCn7xqnWY/KCr+RRgnqD6zR62eW1opGEJk+EntzQ3miYwyPluF7vDO02HT 23t3w2x+DxKfQqn6W/01BYE= -----END CERTIFICATE-----Generated at Tue Apr 7 19:42:55 2026 by rpki-client