$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ad-HEsDesfVtu-r7sM6tgUQXM5c.roa File: ad-HEsDesfVtu-r7sM6tgUQXM5c.roa (raw, json) Hash identifier: mUDEw1kSDnfKNSgrIBtoBEx796DjJJ3T17Ku15mZYFY= Subject key identifier: 69:DF:87:12:C0:DE:B1:F5:6D:BB:EA:FB:B0:CE:AD:81:44:17:33:97 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 150F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ad-HEsDesfVtu-r7sM6tgUQXM5c.roa Signing time: Tue 31 Mar 2026 07:58:50 +0000 ROA not before: Tue 31 Mar 2026 07:58:50 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.210.16.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5391 (0x150f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:58:50 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=69DF8712C0DEB1F56DBBEAFBB0CEAD8144173397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:02:e1:18:3a:96:19:7f:45:b7:0b:9e:d0:2c: 31:dc:6a:30:09:b8:4b:c3:27:4e:5c:62:fa:6e:44: 6e:80:7b:b5:78:92:4a:bc:98:b9:a6:bb:d7:0d:d9: 2d:7e:3a:9b:b7:32:05:42:fc:af:1b:65:80:80:6b: e4:37:11:65:d8:56:c5:cb:b6:eb:80:fd:6b:d4:67: 37:c0:a9:cd:f0:55:61:65:fc:39:9f:ad:60:5a:d0: 09:c2:77:3f:24:32:b9:04:2e:96:84:59:0b:33:93: 5e:e2:5b:27:de:6c:3a:32:12:31:6f:5d:67:ff:14: 0c:87:c8:e1:3d:c2:40:85:f4:a4:5f:68:e7:ec:c8: c3:42:e0:66:1c:ba:54:02:a5:e2:15:82:44:98:ec: 12:de:ed:c4:87:c2:a7:b1:8c:60:ec:0f:40:ed:66: fa:ab:02:78:9e:07:cd:bb:71:df:da:10:8d:47:1d: 5a:2c:ff:98:93:f3:bb:1f:f6:17:2b:52:c9:76:db: c7:2b:c9:2c:47:68:cc:a6:e1:6c:b8:9a:3d:41:46: 19:85:0c:69:88:ab:4a:0d:ee:7e:59:11:d7:a6:12: 92:8b:5a:29:29:57:f5:27:79:94:c9:db:71:de:17: 50:1b:ff:d1:a1:94:94:32:4b:c6:f5:dd:c6:ce:24: d8:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:DF:87:12:C0:DE:B1:F5:6D:BB:EA:FB:B0:CE:AD:81:44:17:33:97 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ad-HEsDesfVtu-r7sM6tgUQXM5c.roa sbgp-ipAddrBlock: critical IPv4: 220.210.16.0/22 Signature Algorithm: sha256WithRSAEncryption e2:4e:00:01:a9:c1:7b:17:ee:5e:99:d0:5c:a5:64:9c:97:f7: 06:ce:26:82:68:51:ae:d7:bc:43:19:81:bf:b4:29:0c:61:c6: f1:7c:8d:d2:c9:da:e7:cb:b0:47:01:85:35:91:ab:59:6f:0a: f2:de:36:c0:f3:d0:59:ae:ae:c6:30:66:3b:48:8e:c1:fd:f9: 49:5e:24:32:fc:a4:d5:a2:4d:2d:a2:76:ba:e0:72:01:c3:78: 0a:f6:8b:ff:c3:58:8a:22:a7:34:51:68:25:62:08:3e:08:6b: f3:dd:61:f2:b9:43:2b:1f:0e:3c:42:4b:47:0f:51:1a:97:ac: 85:07:20:78:c7:25:bd:cf:7f:37:31:d5:1b:3e:a4:ac:88:74: 40:ef:1a:79:9c:70:14:4e:d4:80:5a:29:c1:72:72:c4:c4:65: ae:e6:cf:c3:10:f2:7b:ba:1e:4b:44:81:be:46:ea:18:72:32: ee:89:bf:70:3d:c6:07:44:85:51:7c:41:3b:bb:27:f0:ce:ce: 9b:71:d8:dc:50:48:8f:e4:1a:07:d5:8e:f5:3f:46:d8:2c:50: 2f:76:54:e8:25:f8:16:dc:18:97:27:3e:ae:f7:99:34:58:83: 70:97:cd:15:20:66:43:91:95:2d:90:36:52:bb:5f:59:7c:0d: da:0c:70:0a -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFQ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU4NTBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY5REY4NzEyQzBERUIx RjU2REJCRUFGQkIwQ0VBRDgxNDQxNzMzOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnAuEYOpYZf0W3C57QLDHcajAJuEvDJ05cYvpuRG6Ae7V4kkq8 mLmmu9cN2S1+Opu3MgVC/K8bZYCAa+Q3EWXYVsXLtuuA/WvUZzfAqc3wVWFl/Dmf rWBa0AnCdz8kMrkELpaEWQszk17iWyfebDoyEjFvXWf/FAyHyOE9wkCF9KRfaOfs yMNC4GYculQCpeIVgkSY7BLe7cSHwqexjGDsD0DtZvqrAnieB827cd/aEI1HHVos /5iT87sf9hcrUsl228crySxHaMym4Wy4mj1BRhmFDGmIq0oN7n5ZEdemEpKLWikp V/UneZTJ23HeF1Ab/9GhlJQyS8b13cbOJNjdAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUad+HEsDesfVtu+r7sM6tgUQXM5cwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2FkLUhFc0Rlc2ZWdHUtcjdzTTZ0Z1VRWE01Yy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALc0hAwDQYJKoZIhvcNAQELBQADggEB AOJOAAGpwXsX7l6Z0FylZJyX9wbOJoJoUa7XvEMZgb+0KQxhxvF8jdLJ2ufLsEcB hTWRq1lvCvLeNsDz0FmursYwZjtIjsH9+UleJDL8pNWiTS2idrrgcgHDeAr2i//D WIoipzRRaCViCD4Ia/PdYfK5QysfDjxCS0cPURqXrIUHIHjHJb3Pfzcx1Rs+pKyI dEDvGnmccBRO1IBaKcFycsTEZa7mz8MQ8nu6HktEgb5G6hhyMu6Jv3A9xgdEhVF8 QTu7J/DOzptx2NxQSI/kGgfVjvU/RtgsUC92VOgl+BbcGJcnPq73mTRYg3CXzRUg ZkORlS2QNlK7X1l8DdoMcAo= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:38 2026 by rpki-client