$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/fFiNl1Gf1lOU3QlOem9qtZr8qzQ.roa File: fFiNl1Gf1lOU3QlOem9qtZr8qzQ.roa (raw, json) Hash identifier: xJuym1U+jYCXguktUs4B5gWvNa6O2ZtWpYNoPXrZ2dI= Subject key identifier: 7C:58:8D:97:51:9F:D6:53:94:DD:09:4E:7A:6F:6A:B5:9A:FC:AB:34 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 16BB Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fFiNl1Gf1lOU3QlOem9qtZr8qzQ.roa Signing time: Tue 31 Mar 2026 08:02:24 +0000 ROA not before: Tue 31 Mar 2026 08:02:24 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.66.68.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5819 (0x16bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:02:24 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=7C588D97519FD65394DD094E7A6F6AB59AFCAB34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f8:59:7e:f6:35:a8:f4:f8:1f:d6:0a:52:22: ce:64:26:37:a2:f2:2a:f0:22:85:25:7f:1e:d4:3b: 59:86:25:46:f5:d1:18:2f:78:31:0f:52:39:c6:8f: cf:81:42:fb:32:83:19:20:38:10:e0:70:3e:fd:2a: 53:cb:23:fe:c2:a3:40:40:fa:70:7f:63:97:cf:25: 3e:1e:0a:7f:68:38:e6:ce:88:83:ab:54:12:c1:5f: 95:04:83:3d:6c:dc:7f:2a:39:e5:4a:db:f7:c7:56: b5:be:ea:2b:26:c5:7e:86:71:6f:d5:0b:bd:bd:fa: 1f:f8:39:68:17:89:8d:34:5c:b1:65:b6:92:19:79: 7f:5d:69:c8:fb:99:9e:13:4b:98:c5:13:44:31:90: 7c:2b:e2:f1:eb:3a:76:67:c8:d6:82:e5:e9:bd:b1: cd:4a:fe:07:28:bf:f1:cc:c1:36:ed:1d:14:43:75: c1:04:df:a4:1c:cf:70:80:2f:87:72:ea:4f:84:dc: 0e:3b:2e:de:73:8b:13:a1:06:5d:d7:d2:47:de:44: 7c:bc:aa:54:2d:c0:50:c6:e3:09:d9:4e:c1:b6:3d: 83:92:bd:55:89:5f:6e:99:d9:34:6e:17:4b:eb:10: 9f:62:b2:bc:eb:a3:0a:0a:15:34:5a:6c:9c:7c:88: 2c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:58:8D:97:51:9F:D6:53:94:DD:09:4E:7A:6F:6A:B5:9A:FC:AB:34 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fFiNl1Gf1lOU3QlOem9qtZr8qzQ.roa sbgp-ipAddrBlock: critical IPv4: 1.66.68.0/23 Signature Algorithm: sha256WithRSAEncryption c9:3b:c6:cd:cc:df:d0:37:f8:bf:96:bd:8a:ab:d0:79:e4:5b: 71:75:64:f9:8d:d9:c4:29:9e:bc:a0:a1:9b:4a:d4:80:df:16: a8:b4:7a:91:c7:18:38:50:31:17:a5:28:cb:8e:91:86:33:41: ed:54:37:4a:0e:73:ff:6e:2c:da:44:3a:77:f2:88:0d:ea:39: ad:7a:ee:df:04:5d:c1:53:d7:a0:9a:2b:73:f9:fe:60:b6:03: 2e:15:35:a3:2f:08:9b:b6:c1:15:fc:4f:67:15:97:c8:d3:d4: 3a:ee:c0:7d:2a:04:39:c6:8c:27:eb:ea:4a:0f:c6:52:87:b7: a0:c7:ed:82:7f:78:6b:cb:a3:60:12:93:2d:0a:79:8e:34:bc: d3:de:ee:66:e4:02:72:25:1b:a2:4a:60:04:c4:47:b5:55:b9: ac:7f:75:f7:41:08:99:d6:c8:dd:11:1f:bd:49:fd:ce:d4:22: dd:ba:1c:72:cb:ae:63:42:41:92:e0:7c:35:f0:f5:74:02:85: 72:75:32:8a:bd:2e:b1:36:40:4d:7f:ad:74:b0:0f:31:cc:aa: e9:d1:f3:07:a8:9e:6e:4a:d8:18:24:81:64:c0:9f:9e:f4:f5: 87:b8:7b:85:3d:98:9b:d7:73:48:24:0b:ac:01:69:bf:44:21: b4:1b:7d:5f -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFrswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAyMjRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDdDNTg4RDk3NTE5RkQ2 NTM5NEREMDk0RTdBNkY2QUI1OUFGQ0FCMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6+Fl+9jWo9Pgf1gpSIs5kJjei8irwIoUlfx7UO1mGJUb10Rgv eDEPUjnGj8+BQvsygxkgOBDgcD79KlPLI/7Co0BA+nB/Y5fPJT4eCn9oOObOiIOr VBLBX5UEgz1s3H8qOeVK2/fHVrW+6ismxX6GcW/VC729+h/4OWgXiY00XLFltpIZ eX9dacj7mZ4TS5jFE0QxkHwr4vHrOnZnyNaC5em9sc1K/gcov/HMwTbtHRRDdcEE 36Qcz3CAL4dy6k+E3A47Lt5zixOhBl3X0kfeRHy8qlQtwFDG4wnZTsG2PYOSvVWJ X26Z2TRuF0vrEJ9isrzrowoKFTRabJx8iCx9AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUfFiNl1Gf1lOU3QlOem9qtZr8qzQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2ZGaU5sMUdmMWxPVTNRbE9lbTlxdFpyOHF6US5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEBQkQwDQYJKoZIhvcNAQELBQADggEB AMk7xs3M39A3+L+WvYqr0HnkW3F1ZPmN2cQpnrygoZtK1IDfFqi0epHHGDhQMRel KMuOkYYzQe1UN0oOc/9uLNpEOnfyiA3qOa167t8EXcFT16CaK3P5/mC2Ay4VNaMv CJu2wRX8T2cVl8jT1DruwH0qBDnGjCfr6koPxlKHt6DH7YJ/eGvLo2ASky0KeY40 vNPe7mbkAnIlG6JKYATER7VVuax/dfdBCJnWyN0RH71J/c7UIt26HHLLrmNCQZLg fDXw9XQChXJ1Moq9LrE2QE1/rXSwDzHMqunR8weonm5K2BgkgWTAn5709Ye4e4U9 mJvXc0gkC6wBab9EIbQbfV8= -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:02 2026 by rpki-client