$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/cZh4u8uG3adksAG2gQ8SHAcRR-4.roa File: cZh4u8uG3adksAG2gQ8SHAcRR-4.roa (raw, json) Hash identifier: ejweg4TdTeVmkBjs8Up3nti3bjnazCSMJEpSuBXWRsY= Subject key identifier: 71:98:78:BB:CB:86:DD:A7:64:B0:01:B6:81:0F:12:1C:07:11:47:EE Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1568 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cZh4u8uG3adksAG2gQ8SHAcRR-4.roa Signing time: Tue 31 Mar 2026 07:59:35 +0000 ROA not before: Tue 31 Mar 2026 07:59:35 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.66.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5480 (0x1568) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:59:35 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=719878BBCB86DDA764B001B6810F121C071147EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6d:3d:89:04:a4:32:8d:64:c9:3c:3b:3d:3a: 9b:9e:ba:a1:e8:e1:75:35:d2:2b:cd:18:0e:bf:e8: 6e:79:90:03:08:3b:05:ac:07:e5:b6:74:83:a4:7f: 98:fd:72:5b:c2:0f:f1:71:b4:62:b2:2d:15:16:73: 1c:5f:af:7d:84:ef:a4:8a:53:ed:c6:9e:e5:4f:8a: 60:94:8b:7f:42:b5:17:ef:02:2d:a0:f7:ca:8d:56: bc:a3:13:aa:a8:99:87:31:d6:e4:32:1d:1e:42:ce: e8:20:5c:51:8e:2d:0d:6f:9b:c5:75:dd:c6:c1:8f: 82:b1:5b:77:07:89:70:93:66:3c:00:bf:7f:0d:12: ce:a7:71:83:90:1d:f4:dd:3e:11:4b:86:20:b4:85: d8:97:6e:75:98:dc:36:14:2e:eb:fa:b2:94:8c:b1: 0f:87:66:5e:fc:e3:d4:a9:93:fb:d2:aa:9e:b7:be: be:b8:f0:f7:d3:a6:7f:6d:96:2d:39:1b:ea:0c:77: 1f:c5:7b:9a:9f:d9:f8:bb:0d:12:ec:af:06:4a:68: d9:55:0a:83:59:5a:f7:82:d1:8d:76:21:a9:15:56: 89:fe:cc:61:23:12:d9:be:e3:ff:e2:1d:e1:c8:67: f8:f0:36:10:29:a2:11:c2:b5:f4:75:94:10:3a:02: 80:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:98:78:BB:CB:86:DD:A7:64:B0:01:B6:81:0F:12:1C:07:11:47:EE X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cZh4u8uG3adksAG2gQ8SHAcRR-4.roa sbgp-ipAddrBlock: critical IPv4: 1.66.128.0/17 Signature Algorithm: sha256WithRSAEncryption 0d:07:04:0c:1a:ef:54:3a:2a:c9:46:f3:cc:b9:e3:22:fa:c5: 77:80:c1:6a:19:49:7a:e9:d3:dc:76:63:b3:88:a6:53:fb:43: 4a:8b:13:d9:b3:69:53:2f:69:86:5b:f1:bc:67:1d:99:8d:14: 6a:e0:67:2c:d7:b0:bb:79:d5:a5:b8:63:81:80:bf:88:05:b2: ac:2a:d6:5d:46:26:17:9c:03:a7:36:5f:ae:ea:70:09:2c:0d: a6:f6:f8:8d:14:f7:50:a9:51:89:54:e1:e3:c7:9a:14:87:63: 76:98:c6:0a:6e:5a:9e:10:25:69:d1:46:a4:2b:e4:82:ac:86: 72:ab:32:6b:91:06:a5:ae:81:0a:48:69:1f:fd:08:08:82:52: 50:cd:b9:7d:ff:85:a7:8b:e2:4b:cf:15:d5:57:66:31:ca:d5: ec:2f:31:f0:16:d4:9d:35:62:d7:27:58:98:5e:65:3c:f9:00: 02:f4:08:5d:44:fe:28:53:43:d3:d6:3b:9c:be:73:85:7d:a0: 1a:f1:aa:02:9c:4e:25:ec:a0:50:a7:80:90:8b:87:ff:8e:ca: e1:a3:30:ec:83:bf:b1:dc:20:ac:0c:ae:ef:dc:68:de:b0:d9: cd:7c:9b:42:8e:51:f4:3d:c5:09:28:e6:88:b9:17:dd:4e:94: 3f:5a:cc:0e -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFWgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU5MzVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDcxOTg3OEJCQ0I4NkRE QTc2NEIwMDFCNjgxMEYxMjFDMDcxMTQ3RUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBbT2JBKQyjWTJPDs9OpueuqHo4XU10ivNGA6/6G55kAMIOwWs B+W2dIOkf5j9clvCD/FxtGKyLRUWcxxfr32E76SKU+3GnuVPimCUi39CtRfvAi2g 98qNVryjE6qomYcx1uQyHR5CzuggXFGOLQ1vm8V13cbBj4KxW3cHiXCTZjwAv38N Es6ncYOQHfTdPhFLhiC0hdiXbnWY3DYULuv6spSMsQ+HZl7849Spk/vSqp63vr64 8PfTpn9tli05G+oMdx/Fe5qf2fi7DRLsrwZKaNlVCoNZWveC0Y12IakVVon+zGEj Etm+4//iHeHIZ/jwNhApohHCtfR1lBA6AoAHAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUcZh4u8uG3adksAG2gQ8SHAcRR+4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2NaaDR1OHVHM2Fka3NBRzJnUThTSEFjUlItNC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAcBQoAwDQYJKoZIhvcNAQELBQADggEB AA0HBAwa71Q6KslG88y54yL6xXeAwWoZSXrp09x2Y7OIplP7Q0qLE9mzaVMvaYZb 8bxnHZmNFGrgZyzXsLt51aW4Y4GAv4gFsqwq1l1GJhecA6c2X67qcAksDab2+I0U 91CpUYlU4ePHmhSHY3aYxgpuWp4QJWnRRqQr5IKshnKrMmuRBqWugQpIaR/9CAiC UlDNuX3/haeL4kvPFdVXZjHK1ewvMfAW1J01YtcnWJheZTz5AAL0CF1E/ihTQ9PW O5y+c4V9oBrxqgKcTiXsoFCngJCLh/+OyuGjMOyDv7HcIKwMru/caN6w2c18m0KO UfQ9xQko5oi5F91OlD9azA4= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:11 2026 by rpki-client