$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/hYPiS8qDTSt-lUzi5CIlMolKZIo.roa File: hYPiS8qDTSt-lUzi5CIlMolKZIo.roa (raw, json) Hash identifier: W3ntEkIYOgeBWgrvI/KDATCuoeZQ33rAeXrZ1Lb6c3Y= Subject key identifier: 85:83:E2:4B:CA:83:4D:2B:7E:95:4C:E2:E4:22:25:32:89:4A:64:8A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 181C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hYPiS8qDTSt-lUzi5CIlMolKZIo.roa Signing time: Tue 31 Mar 2026 08:05:17 +0000 ROA not before: Tue 31 Mar 2026 08:05:17 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.210.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6172 (0x181c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:05:17 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=8583E24BCA834D2B7E954CE2E4222532894A648A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:43:54:61:29:a9:3a:14:ea:2e:72:99:c6:a7: 8e:42:c7:ac:93:49:24:75:6c:fc:6d:1e:59:4b:14: ed:db:90:f9:8e:13:9e:79:ac:90:a2:f1:45:ec:89: 24:c9:0a:71:06:2e:c4:7a:4f:51:0c:df:63:16:4b: 98:1d:34:37:8e:c1:90:7c:29:68:ea:79:8b:38:1b: dd:7f:2d:c2:1a:b9:80:f0:62:ac:82:57:de:b7:11: a0:d5:ed:3c:a8:17:fd:67:09:53:33:52:37:8c:e8: 77:ce:4d:11:4f:de:32:0a:a3:79:8f:62:aa:fb:f6: a5:fa:3f:54:15:ff:bb:7c:10:76:f3:5d:16:6b:bb: a7:92:91:e1:3f:1c:60:2c:c9:cf:96:e7:05:11:c2: be:ae:61:20:7f:34:9b:4e:84:54:4a:3c:97:6b:39: 96:5a:d3:f7:e7:44:cd:59:8d:f7:79:cd:4f:59:06: aa:cd:5e:fb:51:0d:04:75:57:ba:37:8a:66:39:2e: 2c:96:c7:5e:39:ef:f1:10:b9:25:be:18:10:cc:aa: 55:a1:7b:63:97:0b:09:6d:e7:eb:a8:c3:89:80:10: 02:37:30:55:30:11:21:ab:84:6e:c3:f7:d2:68:f2: c6:e5:1d:c8:d9:44:d6:46:22:9e:67:61:21:db:f5: 0e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:83:E2:4B:CA:83:4D:2B:7E:95:4C:E2:E4:22:25:32:89:4A:64:8A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hYPiS8qDTSt-lUzi5CIlMolKZIo.roa sbgp-ipAddrBlock: critical IPv4: 220.210.21.0/24 Signature Algorithm: sha256WithRSAEncryption de:f9:43:30:aa:7f:0e:ef:26:ac:eb:51:82:b9:55:19:1e:50: f2:59:f2:6e:7a:b9:bb:65:97:a0:80:ba:75:8b:e6:2a:78:8c: 36:47:54:7c:cd:5a:f8:15:43:1a:26:f6:e5:2d:0f:a0:87:ef: 0b:b6:50:3f:66:30:3b:e6:79:30:ff:90:bb:db:e2:57:b9:29: be:40:3b:40:a2:e4:26:53:d0:35:2b:b9:2a:2b:e4:4e:cf:d5: a3:7d:8b:5f:af:e1:c1:a9:53:96:be:ad:2e:aa:09:d5:b6:4d: 7c:c1:7e:fe:c4:21:e2:1d:0f:c1:0a:a8:a0:ed:37:62:a1:16: f7:aa:b7:b8:3e:57:2a:ec:96:dc:79:81:bf:3e:fa:b7:06:bd: 71:7d:9a:a1:f0:bb:31:a9:b4:b5:45:cd:5e:22:e5:40:bd:01: d5:fc:d7:3e:4b:ad:81:78:28:c7:8a:e5:69:8d:df:51:bf:77: 3b:b9:d7:62:db:27:48:78:80:3d:b3:9d:08:54:a7:3e:37:82: 4f:e8:a9:ea:7e:01:c1:49:87:93:3d:01:1b:73:b3:dc:e8:2b: 27:a7:be:ab:b9:bd:2b:59:b7:f3:6e:94:64:e2:15:e8:26:f6: ae:34:99:64:45:27:66:7e:9e:5a:cd:9d:8a:b2:a8:21:6e:48: 96:b1:b7:96 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICGBwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODA1MTdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg1ODNFMjRCQ0E4MzRE MkI3RTk1NENFMkU0MjIyNTMyODk0QTY0OEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9Q1RhKak6FOoucpnGp45Cx6yTSSR1bPxtHllLFO3bkPmOE555 rJCi8UXsiSTJCnEGLsR6T1EM32MWS5gdNDeOwZB8KWjqeYs4G91/LcIauYDwYqyC V963EaDV7TyoF/1nCVMzUjeM6HfOTRFP3jIKo3mPYqr79qX6P1QV/7t8EHbzXRZr u6eSkeE/HGAsyc+W5wURwr6uYSB/NJtOhFRKPJdrOZZa0/fnRM1Zjfd5zU9ZBqrN XvtRDQR1V7o3imY5LiyWx1457/EQuSW+GBDMqlWhe2OXCwlt5+uow4mAEAI3MFUw ESGrhG7D99Jo8sblHcjZRNZGIp5nYSHb9Q5/AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUhYPiS8qDTSt+lUzi5CIlMolKZIowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2hZUGlTOHFEVFN0LWxVemk1Q0lsTW9sS1pJby5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADc0hUwDQYJKoZIhvcNAQELBQADggEB AN75QzCqfw7vJqzrUYK5VRkeUPJZ8m56ubtll6CAunWL5ip4jDZHVHzNWvgVQxom 9uUtD6CH7wu2UD9mMDvmeTD/kLvb4le5Kb5AO0Ci5CZT0DUruSor5E7P1aN9i1+v 4cGpU5a+rS6qCdW2TXzBfv7EIeIdD8EKqKDtN2KhFveqt7g+Vyrsltx5gb8++rcG vXF9mqHwuzGptLVFzV4i5UC9AdX81z5LrYF4KMeK5WmN31G/dzu512LbJ0h4gD2z nQhUpz43gk/oqep+AcFJh5M9ARtzs9zoKyenvqu5vStZt/NulGTiFegm9q40mWRF J2Z+nlrNnYqyqCFuSJaxt5Y= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:33 2026 by rpki-client