$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/gDizkeCmwWyZlqK-UXh8tHqaaGs.roa File: gDizkeCmwWyZlqK-UXh8tHqaaGs.roa (raw, json) Hash identifier: U/hAfGYnGSLsWmVEytir34HUFZxZmUGYpmgTRyIRRlo= Subject key identifier: 80:38:B3:91:E0:A6:C1:6C:99:96:A2:BE:51:78:7C:B4:7A:9A:68:6B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1534 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/gDizkeCmwWyZlqK-UXh8tHqaaGs.roa Signing time: Tue 31 Mar 2026 07:59:10 +0000 ROA not before: Tue 31 Mar 2026 07:59:10 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.72.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5428 (0x1534) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:59:10 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=8038B391E0A6C16C9996A2BE51787CB47A9A686B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:02:3c:10:11:8f:a3:07:33:fe:15:48:e1:0c: d3:ae:4c:fc:0a:22:53:78:d4:65:b1:c2:a2:87:e0: 31:cd:59:cb:1b:a4:d4:9b:09:d8:f6:91:a2:64:b7: cd:e3:aa:c7:ac:1e:eb:9a:93:a1:23:a5:6f:86:6c: 7e:07:cf:51:a0:95:42:0c:74:24:a2:73:15:d6:83: 69:bf:cf:74:23:26:f7:fd:5c:5c:d9:44:de:66:13: f0:da:99:e7:97:3d:38:43:e6:25:35:16:bd:f2:0a: 4c:40:6b:5e:70:82:4f:13:b0:51:c4:44:9b:fa:ed: 8c:3f:93:e4:51:fe:5f:69:28:4c:4d:07:63:34:bc: b9:0d:de:f7:a8:ea:26:db:e6:d9:6f:d7:35:ab:6b: 17:ae:ae:4f:be:a4:e7:c1:98:db:c1:26:d6:77:ea: bd:ef:31:9f:90:57:a6:b8:01:08:34:e7:77:16:89: d7:d4:c5:6a:dc:9f:06:b1:04:26:6f:97:31:6e:c2: a3:53:94:92:fe:0c:b3:e5:02:d6:48:d5:a5:eb:67: bd:45:df:95:6a:eb:0a:0f:f8:04:c9:28:bc:5f:56: 2e:53:e1:66:9e:31:7d:f8:8c:35:a9:6d:34:73:b5: 16:22:08:0f:c4:d6:88:71:3b:19:42:c3:95:96:72: f3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:38:B3:91:E0:A6:C1:6C:99:96:A2:BE:51:78:7C:B4:7A:9A:68:6B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/gDizkeCmwWyZlqK-UXh8tHqaaGs.roa sbgp-ipAddrBlock: critical IPv4: 1.72.64.0/18 Signature Algorithm: sha256WithRSAEncryption 93:91:cf:e5:cd:79:0b:ae:de:42:77:c2:8d:7b:c2:45:11:0e: 7a:ff:42:8a:99:3a:97:c9:59:3f:af:9f:eb:00:23:3a:39:71: 93:7e:d9:22:34:25:49:25:da:3d:aa:77:33:3a:52:55:5a:8e: 9d:a1:3f:6d:6d:1a:79:75:80:ce:85:b9:e2:26:a4:86:59:1a: 27:a9:48:75:f2:9a:e6:48:3e:2f:07:b1:a5:53:95:3a:81:30: 70:fa:75:c1:1e:55:2f:45:b4:dc:c7:f6:0b:66:da:b7:19:b5: 52:65:d6:c2:e9:bb:41:27:c2:99:20:58:5a:44:64:fc:cd:8a: 26:4a:14:1c:c0:de:d4:88:68:53:60:e4:48:17:76:26:ac:f6: e6:82:1a:f6:98:ef:f0:e0:60:35:4d:0d:fb:3f:d9:cb:56:ff: 0d:71:b2:24:5e:01:80:39:4f:38:f8:28:5b:f7:72:06:4c:34: ba:39:96:70:95:1e:3f:27:01:7c:8e:a8:ca:d6:8c:20:f3:62: eb:d5:eb:fa:25:07:e2:79:f8:eb:dd:1c:32:8c:e0:00:4f:61: 95:01:93:5d:92:af:08:e9:47:25:87:d4:ee:3f:b3:77:b6:b5: 39:a0:c3:0d:eb:75:26:ff:3c:80:71:75:74:2b:5f:da:32:5e: ff:d7:f8:b4 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFTQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU5MTBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDgwMzhCMzkxRTBBNkMx NkM5OTk2QTJCRTUxNzg3Q0I0N0E5QTY4NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOAjwQEY+jBzP+FUjhDNOuTPwKIlN41GWxwqKH4DHNWcsbpNSb Cdj2kaJkt83jqsesHuuak6EjpW+GbH4Hz1GglUIMdCSicxXWg2m/z3QjJvf9XFzZ RN5mE/DameeXPThD5iU1Fr3yCkxAa15wgk8TsFHERJv67Yw/k+RR/l9pKExNB2M0 vLkN3veo6ibb5tlv1zWraxeurk++pOfBmNvBJtZ36r3vMZ+QV6a4AQg053cWidfU xWrcnwaxBCZvlzFuwqNTlJL+DLPlAtZI1aXrZ71F35Vq6woP+ATJKLxfVi5T4Wae MX34jDWpbTRztRYiCA/E1ohxOxlCw5WWcvP1AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUgDizkeCmwWyZlqK+UXh8tHqaaGswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2dEaXprZUNtd1d5WmxxSy1VWGg4dEhxYWFHcy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAYBSEAwDQYJKoZIhvcNAQELBQADggEB AJORz+XNeQuu3kJ3wo17wkURDnr/QoqZOpfJWT+vn+sAIzo5cZN+2SI0JUkl2j2q dzM6UlVajp2hP21tGnl1gM6FueImpIZZGiepSHXymuZIPi8HsaVTlTqBMHD6dcEe VS9FtNzH9gtm2rcZtVJl1sLpu0EnwpkgWFpEZPzNiiZKFBzA3tSIaFNg5EgXdias 9uaCGvaY7/DgYDVNDfs/2ctW/w1xsiReAYA5Tzj4KFv3cgZMNLo5lnCVHj8nAXyO qMrWjCDzYuvV6/olB+J5+OvdHDKM4ABPYZUBk12SrwjpRyWH1O4/s3e2tTmgww3r dSb/PIBxdXQrX9oyXv/X+LQ= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:31 2026 by rpki-client