$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/iCzp-HF76IVWAjV-PF_Ae_e07yo.roa File: iCzp-HF76IVWAjV-PF_Ae_e07yo.roa (raw, json) Hash identifier: 13Izh64g4fbftHS5B3wLivQz0DkaJPyrYwE+TnzeHYc= Subject key identifier: 88:2C:E9:F8:71:7B:E8:85:56:02:35:7E:3C:5F:C0:7B:F7:B4:EF:2A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 16C1 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iCzp-HF76IVWAjV-PF_Ae_e07yo.roa Signing time: Tue 31 Mar 2026 08:02:26 +0000 ROA not before: Tue 31 Mar 2026 08:02:26 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.67.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5825 (0x16c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:02:26 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=882CE9F8717BE8855602357E3C5FC07BF7B4EF2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:54:56:1d:c7:17:ad:90:18:3e:0b:31:51:59: ee:f3:86:63:69:0b:af:3b:ea:4f:00:d9:ff:bc:66: df:ab:78:b0:16:82:f2:9b:ce:84:0b:a8:0a:bc:ac: 22:54:3e:cd:9f:16:67:8f:f1:be:d7:69:6c:b1:70: df:d0:b2:cf:15:f7:07:c3:d4:da:63:14:8c:a8:7b: 6a:cf:61:6b:33:04:07:1c:47:26:13:1e:82:1c:18: 05:7e:d8:f4:64:42:ce:63:f5:d4:cd:b0:c6:c1:b7: d0:d4:30:62:e8:dd:b3:c5:8c:b1:27:14:7f:6d:09: e9:64:19:da:b0:2b:1b:f8:0a:2b:83:e1:d4:2c:15: 98:75:b1:00:66:04:15:f2:45:56:d7:dd:f8:27:7b: a4:86:2e:bd:a4:a4:80:7d:af:ac:bc:4b:98:33:f3: 50:8c:cb:e2:b4:1c:ed:97:09:91:24:80:88:7c:3a: a2:cc:8d:08:5b:fa:c7:2b:d3:f0:95:c9:c0:df:41: 4f:7a:55:cd:34:19:97:f2:0e:a5:4d:66:db:d4:b3: 44:9c:cc:92:62:9b:be:65:ef:4a:00:aa:5c:27:62: 92:1b:5f:a7:98:7b:24:6d:2e:12:d0:23:db:75:a9: 87:ef:a6:13:8d:34:0e:87:5f:33:29:d1:95:61:0b: 83:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:2C:E9:F8:71:7B:E8:85:56:02:35:7E:3C:5F:C0:7B:F7:B4:EF:2A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iCzp-HF76IVWAjV-PF_Ae_e07yo.roa sbgp-ipAddrBlock: critical IPv4: 1.67.236.0/24 Signature Algorithm: sha256WithRSAEncryption 98:47:df:1e:3c:86:38:fc:85:14:a3:c1:b8:7e:3e:35:2b:77: e9:ee:5d:21:66:2b:57:b3:11:b4:9b:41:66:d1:d9:58:17:68: 72:c1:28:e5:46:b0:6b:47:b9:6c:b1:90:af:d4:b5:83:10:82: c1:b2:af:c2:e6:6a:b9:74:9d:3b:15:c2:da:46:f5:f8:92:4c: 4b:de:c7:27:1b:f8:6d:1f:e4:23:3f:ad:ab:4a:32:1d:17:e8: 25:e0:ed:bd:4d:96:be:ae:77:4b:5d:43:55:a1:97:a1:7f:97: 06:3e:02:46:6d:38:9f:aa:cd:e0:48:d8:a3:78:f2:09:10:98: 3b:ac:96:ac:79:b8:36:06:7e:fe:d5:d3:d0:57:8b:ec:1e:8d: 7f:fb:49:83:77:15:bf:f4:a8:01:09:08:e4:9e:80:57:4a:bc: c1:be:a9:d5:7b:79:4e:31:8c:26:95:5f:85:4c:9b:24:22:57: df:a4:e5:de:b7:d9:30:96:3a:c0:db:6d:9d:9f:95:92:d4:16: 82:36:4e:eb:47:35:71:ca:cd:75:1d:34:8c:89:7c:8d:6c:27: b3:58:0e:3e:58:cc:56:26:50:0c:e4:b5:55:d6:e7:0c:52:5e: 26:ce:59:ef:6e:37:7d:22:ce:2d:78:65:6c:42:c7:56:44:26: 66:50:76:9e -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFsEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAyMjZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg4MkNFOUY4NzE3QkU4 ODU1NjAyMzU3RTNDNUZDMDdCRjdCNEVGMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKVFYdxxetkBg+CzFRWe7zhmNpC6876k8A2f+8Zt+reLAWgvKb zoQLqAq8rCJUPs2fFmeP8b7XaWyxcN/Qss8V9wfD1NpjFIyoe2rPYWszBAccRyYT HoIcGAV+2PRkQs5j9dTNsMbBt9DUMGLo3bPFjLEnFH9tCelkGdqwKxv4CiuD4dQs FZh1sQBmBBXyRVbX3fgne6SGLr2kpIB9r6y8S5gz81CMy+K0HO2XCZEkgIh8OqLM jQhb+scr0/CVycDfQU96Vc00GZfyDqVNZtvUs0SczJJim75l70oAqlwnYpIbX6eY eyRtLhLQI9t1qYfvphONNA6HXzMp0ZVhC4OnAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUiCzp+HF76IVWAjV+PF/Ae/e07yowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2lDenAtSEY3NklWV0FqVi1QRl9BZV9lMDd5by5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAABQ+wwDQYJKoZIhvcNAQELBQADggEB AJhH3x48hjj8hRSjwbh+PjUrd+nuXSFmK1ezEbSbQWbR2VgXaHLBKOVGsGtHuWyx kK/UtYMQgsGyr8Lmarl0nTsVwtpG9fiSTEvexycb+G0f5CM/ratKMh0X6CXg7b1N lr6ud0tdQ1Whl6F/lwY+AkZtOJ+qzeBI2KN48gkQmDuslqx5uDYGfv7V09BXi+we jX/7SYN3Fb/0qAEJCOSegFdKvMG+qdV7eU4xjCaVX4VMmyQiV9+k5d632TCWOsDb bZ2flZLUFoI2TutHNXHKzXUdNIyJfI1sJ7NYDj5YzFYmUAzktVXW5wxSXibOWe9u N30izi14ZWxCx1ZEJmZQdp4= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:35 2026 by rpki-client