$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/cjVumZiXyetVCMcVp5c2luFW2sI.roa File: cjVumZiXyetVCMcVp5c2luFW2sI.roa (raw, json) Hash identifier: cIiycWoeAqSpeqyOjCADsDebBDAhcpc77Jci8Ul7vrU= Subject key identifier: 72:35:6E:99:98:97:C9:EB:55:08:C7:15:A7:97:36:96:E1:56:DA:C2 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1567 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cjVumZiXyetVCMcVp5c2luFW2sI.roa Signing time: Tue 31 Mar 2026 07:59:35 +0000 ROA not before: Tue 31 Mar 2026 07:59:35 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5479 (0x1567) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:59:35 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=72356E999897C9EB5508C715A7973696E156DAC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d1:75:67:8a:55:b1:f7:60:02:63:ee:a2:d2: fd:f3:a6:65:e7:92:f9:05:08:09:c1:c1:0e:cf:1e: 0b:84:54:70:9d:e6:22:0d:5a:00:2e:de:ce:91:5d: 15:5c:71:d5:d3:6f:82:b4:04:b9:1e:1d:46:ab:22: 1e:a6:0a:c7:54:d0:55:98:e3:fa:4a:df:a8:55:97: ec:f3:f9:47:f6:71:5d:9b:3c:58:94:5b:a2:a6:22: 12:3b:e8:70:b8:a0:b1:e7:bb:da:a2:25:8d:29:36: 84:43:73:9f:7e:4c:89:e8:b4:81:d5:32:13:dd:bc: 23:4e:a1:45:f5:87:f7:2f:59:a6:47:04:f2:e9:e1: 99:01:60:73:4b:22:45:d6:7d:30:f8:fc:e2:96:3a: ef:b3:9c:b0:0d:69:77:7b:f5:ce:53:08:ce:0e:a7: ab:21:d1:c6:e1:94:9a:d3:42:b6:7d:c2:ab:f3:40: 2a:a8:48:34:0b:c2:d3:05:31:a1:90:65:ce:ff:29: 23:bc:6e:52:4b:24:a4:a2:46:e7:b5:5f:b0:c3:16: 14:39:1b:6e:77:a2:df:ca:fa:53:6a:57:e4:a5:bb: 87:1b:2d:fc:05:15:74:a1:3f:b2:cc:3c:da:a4:17: 28:ba:d4:87:48:6e:38:4c:6c:f0:ab:f3:d7:e9:13: 9c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:35:6E:99:98:97:C9:EB:55:08:C7:15:A7:97:36:96:E1:56:DA:C2 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cjVumZiXyetVCMcVp5c2luFW2sI.roa sbgp-ipAddrBlock: critical IPv4: 220.159.53.0/24 Signature Algorithm: sha256WithRSAEncryption d6:8e:b4:cd:a4:8a:d6:f3:55:da:83:f2:cc:69:a0:a3:e9:59: fd:9a:a2:d5:9a:02:23:6d:e3:8b:96:e4:3c:7c:67:c8:29:96: ed:4a:5d:80:9c:4f:15:6e:40:50:dd:0a:b4:7c:c2:d5:6e:a5: 82:cc:f2:26:fa:71:55:ab:eb:11:36:cd:3d:75:d2:b6:3a:aa: c5:e8:3c:fa:5d:d0:73:24:3f:c1:78:4b:b8:ea:d2:60:67:07: b5:e6:14:4c:6c:35:0e:49:07:20:b8:e4:71:47:d5:4e:ac:5c: 13:6c:6a:16:15:13:41:ad:14:cf:e7:b7:da:d1:eb:fd:21:9e: e2:39:86:cb:6d:74:c9:34:1c:e3:21:b0:d2:4a:77:48:99:73: 30:04:3c:bb:1a:64:cd:31:79:ca:c5:4e:7d:26:ef:eb:0a:91: a5:15:8e:0b:14:02:0d:22:dd:15:bd:dc:81:0f:66:d4:62:b2: 60:c1:0a:cd:68:e5:41:60:52:db:3c:da:4d:65:3a:bf:4b:b8: 2b:72:0e:3f:66:23:15:a3:00:80:12:bd:6e:9c:13:5e:f6:28: b4:4b:e7:5f:75:03:2c:b5:64:71:25:7b:34:ba:7d:60:db:b3: aa:40:38:29:85:82:e6:14:44:1c:2e:b2:8e:97:65:f9:79:6c: 62:a7:46:e9 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFWcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU5MzVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDcyMzU2RTk5OTg5N0M5 RUI1NTA4QzcxNUE3OTczNjk2RTE1NkRBQzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx0XVnilWx92ACY+6i0v3zpmXnkvkFCAnBwQ7PHguEVHCd5iIN WgAu3s6RXRVccdXTb4K0BLkeHUarIh6mCsdU0FWY4/pK36hVl+zz+Uf2cV2bPFiU W6KmIhI76HC4oLHnu9qiJY0pNoRDc59+TInotIHVMhPdvCNOoUX1h/cvWaZHBPLp 4ZkBYHNLIkXWfTD4/OKWOu+znLANaXd79c5TCM4Op6sh0cbhlJrTQrZ9wqvzQCqo SDQLwtMFMaGQZc7/KSO8blJLJKSiRue1X7DDFhQ5G253ot/K+lNqV+Slu4cbLfwF FXShP7LMPNqkFyi61IdIbjhMbPCr89fpE5yVAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUcjVumZiXyetVCMcVp5c2luFW2sIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2NqVnVtWmlYeWV0VkNNY1ZwNWMybHVGVzJzSS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADcnzUwDQYJKoZIhvcNAQELBQADggEB ANaOtM2kitbzVdqD8sxpoKPpWf2aotWaAiNt44uW5Dx8Z8gplu1KXYCcTxVuQFDd CrR8wtVupYLM8ib6cVWr6xE2zT110rY6qsXoPPpd0HMkP8F4S7jq0mBnB7XmFExs NQ5JByC45HFH1U6sXBNsahYVE0GtFM/nt9rR6/0hnuI5hsttdMk0HOMhsNJKd0iZ czAEPLsaZM0xecrFTn0m7+sKkaUVjgsUAg0i3RW93IEPZtRismDBCs1o5UFgUts8 2k1lOr9LuCtyDj9mIxWjAIASvW6cE172KLRL5191Ayy1ZHElezS6fWDbs6pAOCmF guYURBwuso6XZfl5bGKnRuk= -----END CERTIFICATE-----Generated at Tue Apr 7 19:42:55 2026 by rpki-client