$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWKR_lyaXsaw1scXrKHOhVaF4vU.roa File: aWKR_lyaXsaw1scXrKHOhVaF4vU.roa (raw, json) Hash identifier: mI2tc/Ngq4DzHFgA7iLZqIfOVEIdTZI+DzIBp00F5DE= Subject key identifier: 69:62:91:FE:5C:9A:5E:C6:B0:D6:C7:17:AC:A1:CE:85:56:85:E2:F5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1552 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWKR_lyaXsaw1scXrKHOhVaF4vU.roa Signing time: Tue 31 Mar 2026 07:59:26 +0000 ROA not before: Tue 31 Mar 2026 07:59:26 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.66.106.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5458 (0x1552) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:59:26 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=696291FE5C9A5EC6B0D6C717ACA1CE855685E2F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:69:37:4a:b4:1a:c0:6f:a2:8c:4d:a8:05:41: 93:14:ea:2f:43:6c:ff:ad:1f:d4:db:e9:ea:12:70: ee:9a:de:da:40:5b:83:85:25:e2:dc:88:dc:74:33: 68:b8:78:34:be:41:19:95:05:8e:51:3d:d5:09:a3: 47:5a:57:50:98:4d:5e:c5:a0:84:b5:00:2b:36:3e: fe:41:19:d0:71:15:ad:ed:ee:17:03:92:f4:ab:96: 8f:e4:0e:8c:7c:97:21:bb:0e:db:a4:8c:0a:f6:97: 6c:87:f3:3c:44:3b:e3:6f:90:5f:dc:d2:3c:e8:a1: 85:09:30:5a:5e:02:cd:55:00:7f:b7:78:8a:e6:34: b8:bf:ef:5e:24:50:3b:25:a5:c9:09:4b:2e:85:56: 31:bd:44:55:a8:17:b2:bc:e1:a5:d1:4b:0a:ff:28: f7:cb:cf:a3:a8:46:fb:58:85:b4:f7:b7:07:03:f5: 2e:b3:60:02:93:65:03:11:41:dd:e1:0e:ce:e8:4f: 62:8c:85:44:f0:9c:85:3c:7c:ed:0c:5f:3d:cc:eb: fb:36:08:4c:7c:b2:93:eb:2c:5e:ea:14:28:13:55: a3:6d:94:28:08:db:a3:32:b5:c0:c6:a8:af:d8:d8: b0:8f:81:e9:53:8f:01:3d:8b:1a:31:49:b3:d0:a0: 4b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:62:91:FE:5C:9A:5E:C6:B0:D6:C7:17:AC:A1:CE:85:56:85:E2:F5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWKR_lyaXsaw1scXrKHOhVaF4vU.roa sbgp-ipAddrBlock: critical IPv4: 1.66.106.0/23 Signature Algorithm: sha256WithRSAEncryption 73:70:de:15:ae:3f:77:3d:18:ee:9e:df:5f:af:d3:1a:62:1f: e9:ad:e3:47:b0:4a:53:53:c7:d9:42:eb:b8:95:43:3a:6b:d6: 9e:e5:11:72:d6:64:81:a4:a7:52:a6:37:81:f7:1f:83:9c:bc: f7:9e:dc:f3:5f:ba:7f:41:71:5a:43:37:9d:bc:a4:eb:23:9d: c4:05:b7:63:7b:d9:8b:de:c1:b9:4a:70:8b:db:3d:17:3a:48: 60:5a:f9:92:18:45:26:42:8f:0a:ef:ca:12:47:05:b1:ad:64: ba:b7:2d:73:73:29:08:8e:db:af:9f:b5:a0:85:18:9f:c2:58: 3e:2b:5c:71:97:3e:d7:05:e4:37:17:c1:04:af:57:d6:07:01: 46:8d:a2:6e:95:26:1d:c4:9a:d1:64:bd:a1:c2:09:d4:f2:5c: 4a:ad:54:42:9d:67:8b:78:1b:8d:43:53:f0:11:6b:97:79:1f: dd:4f:68:92:46:c3:84:04:10:13:af:0b:3f:79:7c:31:63:40: 64:43:7e:a9:e3:90:77:fd:64:df:3a:8b:32:e1:ae:6a:e9:c6: 33:db:61:10:c2:e2:6a:0f:6f:84:81:db:11:78:ad:a4:4b:dd: e2:4f:ec:58:33:53:f4:8f:05:10:df:f1:93:eb:f4:db:52:d3: 54:3d:75:3e -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFVIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU5MjZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY5NjI5MUZFNUM5QTVF QzZCMEQ2QzcxN0FDQTFDRTg1NTY4NUUyRjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLaTdKtBrAb6KMTagFQZMU6i9DbP+tH9Tb6eoScO6a3tpAW4OF JeLciNx0M2i4eDS+QRmVBY5RPdUJo0daV1CYTV7FoIS1ACs2Pv5BGdBxFa3t7hcD kvSrlo/kDox8lyG7DtukjAr2l2yH8zxEO+NvkF/c0jzooYUJMFpeAs1VAH+3eIrm NLi/714kUDslpckJSy6FVjG9RFWoF7K84aXRSwr/KPfLz6OoRvtYhbT3twcD9S6z YAKTZQMRQd3hDs7oT2KMhUTwnIU8fO0MXz3M6/s2CEx8spPrLF7qFCgTVaNtlCgI 26MytcDGqK/Y2LCPgelTjwE9ixoxSbPQoEsRAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUaWKR/lyaXsaw1scXrKHOhVaF4vUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2FXS1JfbHlhWHNhdzFzY1hyS0hPaFZhRjR2VS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEBQmowDQYJKoZIhvcNAQELBQADggEB AHNw3hWuP3c9GO6e31+v0xpiH+mt40ewSlNTx9lC67iVQzpr1p7lEXLWZIGkp1Km N4H3H4OcvPee3PNfun9BcVpDN528pOsjncQFt2N72YvewblKcIvbPRc6SGBa+ZIY RSZCjwrvyhJHBbGtZLq3LXNzKQiO26+ftaCFGJ/CWD4rXHGXPtcF5DcXwQSvV9YH AUaNom6VJh3EmtFkvaHCCdTyXEqtVEKdZ4t4G41DU/ARa5d5H91PaJJGw4QEEBOv Cz95fDFjQGRDfqnjkHf9ZN86izLhrmrpxjPbYRDC4moPb4SB2xF4raRL3eJP7Fgz U/SPBRDf8ZPr9NtS01Q9dT4= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:02 2026 by rpki-client