$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/hLeB4KbZ5uqmUIEmVegF_I2sOng.roa File: hLeB4KbZ5uqmUIEmVegF_I2sOng.roa (raw, json) Hash identifier: S015DLCPG8T78sqXJhMD6GKn9S6y3bGiMeQHfzkVAoM= Subject key identifier: 84:B7:81:E0:A6:D9:E6:EA:A6:50:81:26:55:E8:05:FC:8D:AC:3A:78 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 16AC Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hLeB4KbZ5uqmUIEmVegF_I2sOng.roa Signing time: Tue 31 Mar 2026 08:02:16 +0000 ROA not before: Tue 31 Mar 2026 08:02:16 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.210.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5804 (0x16ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:02:16 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=84B781E0A6D9E6EAA650812655E805FC8DAC3A78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ac:dd:97:36:92:96:2b:7b:00:c9:30:cf:59: 56:2b:6b:7c:df:3a:c0:f2:81:0f:7d:a6:b8:9b:54: b9:7e:5e:38:8e:bd:37:40:0b:df:62:c5:aa:04:9d: 97:6b:cc:db:10:8d:70:c9:6d:ed:94:82:d4:dc:f9: 08:53:1e:57:ad:93:5e:11:e4:d3:c0:0c:35:4b:6f: 51:b7:f1:42:0f:bb:92:c9:1b:6c:e3:48:00:f8:99: 86:e2:08:fd:98:7e:f5:ac:07:9f:fb:f7:37:b9:2d: b8:1b:23:32:12:21:35:98:88:ff:28:b3:0e:6e:e5: c8:86:dd:57:78:8f:cb:4c:31:ec:0e:13:8c:99:f4: 9d:3c:40:d1:83:71:dd:7c:f9:ff:43:24:88:e5:e0: 3c:1f:6d:02:0f:f5:c3:d9:9e:c4:a8:2f:7e:d3:a9: a2:f2:d3:79:68:c8:7a:c3:2c:cb:46:78:59:1b:c5: 0e:bb:df:98:43:48:d0:ac:4f:20:ff:0f:19:38:da: 4b:a1:87:96:31:b5:ba:83:64:44:13:26:df:5c:79: 0e:fd:fb:65:50:5a:ba:d1:fa:b7:29:1d:31:aa:cf: ce:7c:f3:59:60:8a:8a:e2:2b:06:f6:7e:5c:9b:c9: a5:72:18:a4:ac:96:23:4e:25:71:22:a4:3f:14:00: cf:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B7:81:E0:A6:D9:E6:EA:A6:50:81:26:55:E8:05:FC:8D:AC:3A:78 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hLeB4KbZ5uqmUIEmVegF_I2sOng.roa sbgp-ipAddrBlock: critical IPv4: 220.210.70.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:4c:0e:db:bf:5e:ea:5a:af:7d:bc:8b:ba:cb:1a:82:f0:dd: 87:19:2f:cc:c9:9f:a0:f4:1f:2f:a3:11:fa:5f:92:6e:31:f4: ee:49:7c:1c:2b:76:81:8a:3e:16:4a:36:83:76:0a:7c:97:37: 87:98:2a:c3:c1:53:70:dc:ed:3c:37:ae:c9:1b:19:2a:83:96: 74:8c:00:1a:bf:2d:7f:7b:43:90:38:59:92:b4:77:15:05:4e: 5b:b3:da:18:57:c1:f0:c3:82:b5:4a:62:88:92:c3:b9:62:5a: a8:00:13:7e:20:b3:80:11:c3:8e:2e:fe:ec:21:77:c3:05:1a: 07:4d:84:77:92:21:e0:f7:87:39:c2:2a:4c:55:11:ee:7f:fe: 05:82:a3:3d:91:9c:be:bb:51:03:74:d6:64:54:5c:a5:44:94: 37:cf:12:22:7a:44:a6:4c:00:08:a1:40:86:3f:22:8f:17:61: 4d:03:94:7f:54:1e:27:2a:ee:a6:19:35:56:82:a2:78:7a:16: d9:90:a9:9e:f5:64:2d:23:2e:54:2c:59:28:cd:7e:d1:9b:b6: b8:38:dc:00:9d:c7:5a:2a:e4:6e:e9:dc:63:37:e6:28:66:9e: c8:5f:3a:79:5e:22:fd:60:b9:57:96:8d:4e:8f:41:69:2a:6a: c1:ca:95:72 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFqwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAyMTZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg0Qjc4MUUwQTZEOUU2 RUFBNjUwODEyNjU1RTgwNUZDOERBQzNBNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLrN2XNpKWK3sAyTDPWVYra3zfOsDygQ99pribVLl+XjiOvTdA C99ixaoEnZdrzNsQjXDJbe2UgtTc+QhTHletk14R5NPADDVLb1G38UIPu5LJG2zj SAD4mYbiCP2YfvWsB5/79ze5LbgbIzISITWYiP8osw5u5ciG3Vd4j8tMMewOE4yZ 9J08QNGDcd18+f9DJIjl4DwfbQIP9cPZnsSoL37TqaLy03loyHrDLMtGeFkbxQ67 35hDSNCsTyD/Dxk42kuhh5YxtbqDZEQTJt9ceQ79+2VQWrrR+rcpHTGqz85881lg ioriKwb2flybyaVyGKSsliNOJXEipD8UAM9/AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUhLeB4KbZ5uqmUIEmVegF/I2sOngwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2hMZUI0S2JaNXVxbVVJRW1WZWdGX0kyc09uZy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADc0kYwDQYJKoZIhvcNAQELBQADggEB AJ5MDtu/Xupar328i7rLGoLw3YcZL8zJn6D0Hy+jEfpfkm4x9O5JfBwrdoGKPhZK NoN2CnyXN4eYKsPBU3Dc7Tw3rskbGSqDlnSMABq/LX97Q5A4WZK0dxUFTluz2hhX wfDDgrVKYoiSw7liWqgAE34gs4ARw44u/uwhd8MFGgdNhHeSIeD3hznCKkxVEe5/ /gWCoz2RnL67UQN01mRUXKVElDfPEiJ6RKZMAAihQIY/Io8XYU0DlH9UHicq7qYZ NVaConh6FtmQqZ71ZC0jLlQsWSjNftGbtrg43ACdx1oq5G7p3GM35ihmnshfOnle Iv1guVeWjU6PQWkqasHKlXI= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:54 2026 by rpki-client