$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/aaM1E2OA7Y3OUxYPxcWEmaSKIdo.roa File: aaM1E2OA7Y3OUxYPxcWEmaSKIdo.roa (raw, json) Hash identifier: u8tqW2kvk+7HMbObBDuiEanUiaiaUunXyKmlF/l2TY4= Subject key identifier: 69:A3:35:13:63:80:ED:8D:CE:53:16:0F:C5:C5:84:99:A4:8A:21:DA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 14B4 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aaM1E2OA7Y3OUxYPxcWEmaSKIdo.roa Signing time: Tue 31 Mar 2026 07:58:06 +0000 ROA not before: Tue 31 Mar 2026 07:58:06 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.230.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5300 (0x14b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:58:06 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=69A335136380ED8DCE53160FC5C58499A48A21DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:cb:84:2e:90:1c:24:13:2f:cc:b9:c1:0e:2e: 88:0b:36:9e:3d:cf:3d:3e:ba:be:19:9c:8c:ea:94: bf:b6:90:65:75:3e:28:58:30:39:b0:3a:62:16:7d: 7a:f1:6b:51:17:f8:1a:2d:c5:71:6a:52:5a:b7:56: a1:44:04:ad:2f:36:4b:fc:12:dd:99:01:66:3f:23: 1f:c9:1f:f9:41:60:2d:b8:e1:e8:dc:df:ee:2d:67: 68:ab:a9:ff:3c:3f:79:3b:72:c1:31:d2:f7:60:39: ce:7a:3a:ec:a9:81:3a:19:ad:bb:27:db:d0:97:12: e6:bb:90:34:fa:16:56:fa:e1:30:e3:3a:e7:29:bb: d4:7a:93:85:c5:21:3d:3f:4d:2f:81:97:a6:20:f8: 14:be:67:9e:69:52:8b:29:85:66:0e:2c:0a:f5:64: b6:e6:dc:f5:c0:d1:c0:76:4e:56:53:a4:5b:d9:33: c2:52:54:57:bc:ab:55:23:b0:0e:24:b7:8f:43:d6: c6:48:d4:e4:80:95:34:68:b0:2e:8b:67:fd:cf:2c: bc:57:b4:24:ab:34:07:92:61:07:7c:33:8a:41:0f: 45:5d:82:cd:cd:7b:23:7e:ee:dc:dc:ca:0a:19:63: 21:c5:52:dd:ad:04:6e:6e:bf:13:ae:36:c4:70:a3: 98:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:A3:35:13:63:80:ED:8D:CE:53:16:0F:C5:C5:84:99:A4:8A:21:DA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aaM1E2OA7Y3OUxYPxcWEmaSKIdo.roa sbgp-ipAddrBlock: critical IPv4: 1.75.230.0/23 Signature Algorithm: sha256WithRSAEncryption d8:e3:0b:e7:5b:76:cf:71:01:79:25:ed:49:0e:7f:df:6c:a4: 6e:52:14:4d:f8:e9:84:87:5d:73:c2:47:35:44:2e:f6:ae:49: a1:a3:06:98:cb:72:1e:65:b8:9a:42:39:a5:2a:10:88:d6:02: 76:f2:9c:a8:54:ea:6a:0e:eb:d5:90:50:d1:0e:32:82:7a:33: 35:bc:fd:e0:89:e9:47:f7:8a:65:17:2c:45:4e:fa:dc:c8:8c: 47:7b:87:4b:c7:be:60:08:d3:09:c3:46:0c:e0:ad:58:f1:98: 92:a9:82:5b:d3:33:1e:4e:a2:8d:6c:23:e5:54:1c:ea:5b:a5: fc:96:4a:f7:76:1e:9b:db:86:9f:a0:c2:a2:fb:0f:64:c2:6e: 30:cd:f7:c8:ba:c4:54:23:61:e0:bd:f8:81:7d:4c:4f:22:53: 30:f4:62:ce:75:79:31:48:a1:a6:81:d0:c4:b8:29:62:12:f0: cd:0a:e1:03:89:d7:ea:96:b9:54:ae:38:fe:f8:a2:47:60:41: e3:53:2b:a7:18:69:e7:ab:cf:e2:4e:45:96:41:46:97:9c:52: 18:23:2d:55:26:9f:e3:78:b6:92:4b:22:02:86:c9:19:04:23: ee:3a:24:af:cb:d2:99:ce:41:7d:82:4d:c0:0b:e6:16:6a:2d: b6:79:73:a1 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFLQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU4MDZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY5QTMzNTEzNjM4MEVE OERDRTUzMTYwRkM1QzU4NDk5QTQ4QTIxREEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMy4QukBwkEy/MucEOLogLNp49zz0+ur4ZnIzqlL+2kGV1PihY MDmwOmIWfXrxa1EX+BotxXFqUlq3VqFEBK0vNkv8Et2ZAWY/Ix/JH/lBYC244ejc 3+4tZ2irqf88P3k7csEx0vdgOc56OuypgToZrbsn29CXEua7kDT6Flb64TDjOucp u9R6k4XFIT0/TS+Bl6Yg+BS+Z55pUosphWYOLAr1ZLbm3PXA0cB2TlZTpFvZM8JS VFe8q1UjsA4kt49D1sZI1OSAlTRosC6LZ/3PLLxXtCSrNAeSYQd8M4pBD0Vdgs3N eyN+7tzcygoZYyHFUt2tBG5uvxOuNsRwo5iPAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUaaM1E2OA7Y3OUxYPxcWEmaSKIdowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2FhTTFFMk9BN1kzT1V4WVB4Y1dFbWFTS0lkby5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEBS+YwDQYJKoZIhvcNAQELBQADggEB ANjjC+dbds9xAXkl7UkOf99spG5SFE346YSHXXPCRzVELvauSaGjBpjLch5luJpC OaUqEIjWAnbynKhU6moO69WQUNEOMoJ6MzW8/eCJ6Uf3imUXLEVO+tzIjEd7h0vH vmAI0wnDRgzgrVjxmJKpglvTMx5Ooo1sI+VUHOpbpfyWSvd2Hpvbhp+gwqL7D2TC bjDN98i6xFQjYeC9+IF9TE8iUzD0Ys51eTFIoaaB0MS4KWIS8M0K4QOJ1+qWuVSu OP74okdgQeNTK6cYaeerz+JORZZBRpecUhgjLVUmn+N4tpJLIgKGyRkEI+46JK/L 0pnOQX2CTcAL5hZqLbZ5c6E= -----END CERTIFICATE-----Generated at Tue Apr 7 19:42:57 2026 by rpki-client