$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/iw9GiKHO1hMZr-aQkBrnuWHGb3g.roa File: iw9GiKHO1hMZr-aQkBrnuWHGb3g.roa (raw, json) Hash identifier: y187KjScPyxYyPRrScssuKGtlAAvF/WYsinwPkeRk6k= Subject key identifier: 8B:0F:46:88:A1:CE:D6:13:19:AF:E6:90:90:1A:E7:B9:61:C6:6F:78 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 16D0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iw9GiKHO1hMZr-aQkBrnuWHGb3g.roa Signing time: Tue 31 Mar 2026 08:02:33 +0000 ROA not before: Tue 31 Mar 2026 08:02:33 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 61.195.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5840 (0x16d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:02:33 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=8B0F4688A1CED61319AFE690901AE7B961C66F78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:db:82:77:fd:97:97:ad:d6:a0:45:f8:69:2a: b1:31:52:6f:d7:6e:38:89:45:7f:c8:17:e4:10:da: 66:90:49:ab:81:39:08:39:89:6f:4d:61:df:3d:04: 1d:03:5c:aa:2f:e7:1d:34:b5:2f:84:49:d3:e4:af: 1c:63:52:dc:2a:25:0e:68:01:76:1e:4b:b1:13:bf: 11:90:b6:52:2a:86:a6:d8:6e:4c:c3:22:45:a1:dc: 4b:34:70:d7:f6:4d:20:a4:68:ef:5a:3c:f9:77:9e: 92:38:a5:61:be:0c:98:6c:05:a4:5e:be:1a:f1:a3: 14:f3:31:d9:85:f0:ba:e3:44:aa:60:52:a1:63:30: aa:b3:cf:1b:77:0b:6c:3b:2d:ab:fc:86:ee:81:1f: 71:5d:97:56:cf:22:25:89:e5:b0:a9:da:79:c8:7b: 66:04:48:d5:73:51:80:4c:f4:0a:23:08:71:d8:49: ad:f0:c9:a3:59:ce:ae:9a:1e:58:73:69:7a:c6:3f: 12:72:f5:03:45:11:b9:39:f4:d3:64:d3:da:ed:2c: 1f:93:bf:d6:86:f0:d8:5e:6f:dd:b2:24:12:b7:93: e0:bb:ee:64:96:da:1f:a5:d3:83:a5:36:10:20:6d: fa:58:02:2b:9f:c4:32:88:9a:81:6b:2b:0a:98:c6: c5:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:0F:46:88:A1:CE:D6:13:19:AF:E6:90:90:1A:E7:B9:61:C6:6F:78 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iw9GiKHO1hMZr-aQkBrnuWHGb3g.roa sbgp-ipAddrBlock: critical IPv4: 61.195.220.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:74:23:6c:35:42:a7:8f:24:98:77:6e:92:28:dc:3b:92:32: f1:66:8e:3c:0f:ad:58:35:0d:9e:f1:10:b7:56:77:18:ce:06: d6:81:4e:4a:c2:c6:63:26:4e:f5:0b:49:de:d6:fe:e5:f4:5c: bb:a6:8b:58:f7:ef:f7:f1:4f:76:78:d9:5e:09:6c:54:14:d1: 03:2d:33:7e:c4:69:32:5e:47:7d:54:7d:4d:c2:60:10:d3:e6: 3b:22:e1:27:01:02:e8:63:7c:3e:4c:9d:06:92:72:23:82:cd: 3c:f6:bd:58:6d:78:45:68:e7:41:44:81:92:88:d7:0f:7c:20: 60:84:d4:ab:4d:af:96:a8:97:e4:ae:77:60:72:4c:43:75:0b: 70:62:f3:4c:1f:7c:a4:39:fa:c6:9e:60:07:56:77:db:be:2b: 60:57:d9:b0:0d:02:77:49:04:74:11:41:8a:45:ac:9e:80:bc: 19:29:71:5b:a2:80:fa:a2:16:4f:5d:04:aa:f7:fd:04:19:f3: 33:9a:e9:c0:29:4b:f3:45:83:c5:80:b8:d0:a8:4e:71:03:81: fb:e2:10:a8:ac:a5:45:15:87:d5:35:cd:71:04:38:fb:7c:94: ea:17:cd:e4:30:10:ea:73:ec:da:c2:4e:3f:65:10:e7:3c:6c: 44:92:e8:44 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFtAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAyMzNaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDhCMEY0Njg4QTFDRUQ2 MTMxOUFGRTY5MDkwMUFFN0I5NjFDNjZGNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC724J3/ZeXrdagRfhpKrExUm/XbjiJRX/IF+QQ2maQSauBOQg5 iW9NYd89BB0DXKov5x00tS+ESdPkrxxjUtwqJQ5oAXYeS7ETvxGQtlIqhqbYbkzD IkWh3Es0cNf2TSCkaO9aPPl3npI4pWG+DJhsBaRevhrxoxTzMdmF8LrjRKpgUqFj MKqzzxt3C2w7Lav8hu6BH3Fdl1bPIiWJ5bCp2nnIe2YESNVzUYBM9AojCHHYSa3w yaNZzq6aHlhzaXrGPxJy9QNFEbk59NNk09rtLB+Tv9aG8Nheb92yJBK3k+C77mSW 2h+l04OlNhAgbfpYAiufxDKImoFrKwqYxsX3AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUiw9GiKHO1hMZr+aQkBrnuWHGb3gwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2l3OUdpS0hPMWhNWnItYVFrQnJudVdIR2IzZy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9w9wwDQYJKoZIhvcNAQELBQADggEB AF90I2w1QqePJJh3bpIo3DuSMvFmjjwPrVg1DZ7xELdWdxjOBtaBTkrCxmMmTvUL Sd7W/uX0XLumi1j37/fxT3Z42V4JbFQU0QMtM37EaTJeR31UfU3CYBDT5jsi4ScB AuhjfD5MnQaSciOCzTz2vVhteEVo50FEgZKI1w98IGCE1KtNr5aol+Sud2ByTEN1 C3Bi80wffKQ5+saeYAdWd9u+K2BX2bANAndJBHQRQYpFrJ6AvBkpcVuigPqiFk9d BKr3/QQZ8zOa6cApS/NFg8WAuNCoTnEDgfviEKispUUVh9U1zXEEOPt8lOoXzeQw EOpz7NrCTj9lEOc8bESS6EQ= -----END CERTIFICATE-----Generated at Tue Apr 7 22:26:38 2026 by rpki-client