$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ibzqVCIyRdU1kZo3Hs5KbraNiXc.roa File: ibzqVCIyRdU1kZo3Hs5KbraNiXc.roa (raw, json) Hash identifier: iQTmPT875yUoT9MR+HLrek022szfnhNHmNupuXZvxNo= Subject key identifier: 89:BC:EA:54:22:32:45:D5:35:91:9A:37:1E:CE:4A:6E:B6:8D:89:77 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 145F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ibzqVCIyRdU1kZo3Hs5KbraNiXc.roa Signing time: Tue 31 Mar 2026 07:57:25 +0000 ROA not before: Tue 31 Mar 2026 07:57:25 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5215 (0x145f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:57:25 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=89BCEA54223245D535919A371ECE4A6EB68D8977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:33:95:09:79:5d:11:66:a0:4c:c3:06:0f:4d: 6a:e5:17:f7:14:db:82:08:80:7f:01:34:b1:8b:e1: 0f:74:e4:29:c6:d3:74:ce:8d:81:ed:43:f0:74:9c: a1:6a:4d:c3:01:90:e7:1e:08:25:4d:3e:a7:e9:7d: 92:50:a7:88:5c:df:2d:e9:61:97:55:1b:c9:d1:ad: c9:5f:50:48:02:8d:d3:fd:a1:1a:d6:03:31:9f:b5: 02:71:bb:c3:15:7b:fa:2f:fc:0e:83:52:bb:b5:c8: 0f:b1:c0:18:24:02:f3:b7:b9:f8:a6:bc:ca:74:e4: 6a:d6:bd:05:7b:1d:e7:d2:94:94:4c:b8:52:3d:29: 3f:ee:8f:80:e7:a1:30:03:b2:10:f2:0d:68:80:e3: 4b:10:49:f9:e4:46:f0:b8:a6:9e:d2:fd:b7:b4:9e: 5d:ad:4e:fe:21:9b:71:56:66:2a:ef:0e:e0:02:f7: 49:97:53:a3:be:5e:68:12:30:bf:b3:57:c6:23:72: d3:29:c7:6c:08:3c:d0:6c:bc:14:ca:03:85:6a:58: b8:1c:2e:2d:62:a0:19:2b:bc:98:ed:6e:11:5b:94: ad:bf:0c:ca:4a:b9:9f:df:09:13:71:5f:1d:21:95: 1e:b0:47:a3:6a:c6:fe:ff:c2:f8:6c:83:96:9c:68: 00:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:BC:EA:54:22:32:45:D5:35:91:9A:37:1E:CE:4A:6E:B6:8D:89:77 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ibzqVCIyRdU1kZo3Hs5KbraNiXc.roa sbgp-ipAddrBlock: critical IPv4: 1.79.176.0/23 Signature Algorithm: sha256WithRSAEncryption a7:ec:da:4f:03:94:d1:c7:b6:ae:b9:56:ef:8b:c4:95:e4:93: db:d6:ee:d5:24:ec:aa:f2:8a:ef:fb:1d:26:8a:27:75:ed:5a: 6f:1c:d6:27:d3:1d:9c:a3:5f:5e:2d:b4:b4:7c:e9:8c:b1:37: db:bd:80:7b:4d:3e:d9:48:15:17:60:62:23:fe:ea:f7:b3:64: 78:1b:41:d1:0e:5b:f6:4e:a3:42:cb:2d:76:1e:79:eb:df:7d: 21:1b:78:fa:ee:65:aa:14:cb:31:18:b1:f4:c7:ae:9c:42:0f: 3f:fa:5d:f3:dc:d0:cb:9a:70:20:d9:3c:a5:62:0c:a0:89:b5: 70:76:a4:c3:c1:0e:78:4c:25:07:fd:a1:f2:1c:b7:d7:86:b6: 5e:7b:53:57:fc:b1:65:b9:50:7e:45:aa:84:d7:a9:e8:ab:cc: 91:9a:74:3c:02:4a:3b:b9:f7:6a:03:ea:22:d0:e1:8f:79:78: 41:3b:bb:c8:df:57:64:2f:43:60:72:ce:2c:e6:18:c0:3e:ca: 53:09:9f:c9:d4:42:58:ff:2e:c6:9b:a4:6f:1a:c0:71:a6:33: e1:63:19:df:1b:46:12:6d:f3:79:9c:ee:34:8d:bd:f5:b1:ef: aa:cd:ad:e5:59:0a:d3:4c:56:be:17:d8:c8:73:7a:b4:b5:7d: 14:a8:7e:32 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFF8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU3MjVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg5QkNFQTU0MjIzMjQ1 RDUzNTkxOUEzNzFFQ0U0QTZFQjY4RDg5NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmM5UJeV0RZqBMwwYPTWrlF/cU24IIgH8BNLGL4Q905CnG03TO jYHtQ/B0nKFqTcMBkOceCCVNPqfpfZJQp4hc3y3pYZdVG8nRrclfUEgCjdP9oRrW AzGftQJxu8MVe/ov/A6DUru1yA+xwBgkAvO3ufimvMp05GrWvQV7HefSlJRMuFI9 KT/uj4DnoTADshDyDWiA40sQSfnkRvC4pp7S/be0nl2tTv4hm3FWZirvDuAC90mX U6O+XmgSML+zV8YjctMpx2wIPNBsvBTKA4VqWLgcLi1ioBkrvJjtbhFblK2/DMpK uZ/fCRNxXx0hlR6wR6Nqxv7/wvhsg5acaABPAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUibzqVCIyRdU1kZo3Hs5KbraNiXcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2lienFWQ0l5UmRVMWtabzNIczVLYnJhTmlYYy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEBT7AwDQYJKoZIhvcNAQELBQADggEB AKfs2k8DlNHHtq65Vu+LxJXkk9vW7tUk7Kryiu/7HSaKJ3XtWm8c1ifTHZyjX14t tLR86YyxN9u9gHtNPtlIFRdgYiP+6vezZHgbQdEOW/ZOo0LLLXYeeevffSEbePru ZaoUyzEYsfTHrpxCDz/6XfPc0MuacCDZPKViDKCJtXB2pMPBDnhMJQf9ofIct9eG tl57U1f8sWW5UH5FqoTXqeirzJGadDwCSju592oD6iLQ4Y95eEE7u8jfV2QvQ2By zizmGMA+ylMJn8nUQlj/LsabpG8awHGmM+FjGd8bRhJt83mc7jSNvfWx76rNreVZ CtNMVr4X2MhzerS1fRSofjI= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:11 2026 by rpki-client