$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/j543HA_iozNu6nceVGkIUhP5jSE.roa File: j543HA_iozNu6nceVGkIUhP5jSE.roa (raw, json) Hash identifier: uV6VdfCMtzU4+LzugS5dEb1Ua4g3spG0GitncAkzWUY= Subject key identifier: 8F:9E:37:1C:0F:E2:A3:33:6E:EA:77:1E:54:69:08:52:13:F9:8D:21 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 173F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/j543HA_iozNu6nceVGkIUhP5jSE.roa Signing time: Tue 31 Mar 2026 08:03:26 +0000 ROA not before: Tue 31 Mar 2026 08:03:26 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 110.158.160.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5951 (0x173f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:03:26 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=8F9E371C0FE2A3336EEA771E5469085213F98D21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:62:dd:85:a0:bf:f9:3a:4e:85:a2:57:a5:fa: 74:7f:18:b2:6a:97:7a:ff:45:8c:44:2a:81:74:61: 3a:7b:e1:29:35:17:72:74:34:9a:f6:68:4c:5b:ae: 1e:01:be:0c:06:93:40:6f:92:4d:d2:16:5b:44:94: 2d:f8:85:74:33:a1:61:8a:bf:39:48:48:8b:40:5f: 53:74:6a:d5:b4:9e:0c:3a:2c:70:cb:b8:e2:23:4e: f8:51:63:ba:79:32:b7:d6:ef:e7:22:0e:fe:54:76: dd:99:ac:de:1f:63:90:59:ae:db:e3:c2:57:70:e8: b9:a2:2d:2e:c3:ef:c2:0a:9b:52:48:07:55:42:e3: 8d:90:ec:58:d1:41:38:27:31:2f:64:33:47:86:3f: b1:36:c0:5e:c7:d6:64:6c:7c:56:a1:4f:f0:5b:94: 9e:eb:d0:c0:aa:2b:70:89:8a:26:e9:0d:f8:e6:76: 27:ec:88:f9:75:06:82:41:17:1b:f8:5e:c2:b1:fb: 05:8e:96:0d:04:37:9d:87:4f:51:1c:16:b8:ed:9b: e4:60:32:7a:d3:40:e4:c6:20:34:90:50:05:0a:ef: 2d:5e:43:ef:f8:4e:93:73:cc:72:17:75:80:ad:9f: 7d:8e:00:02:06:46:85:12:28:9e:9e:3c:39:59:13: 25:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:9E:37:1C:0F:E2:A3:33:6E:EA:77:1E:54:69:08:52:13:F9:8D:21 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/j543HA_iozNu6nceVGkIUhP5jSE.roa sbgp-ipAddrBlock: critical IPv4: 110.158.160.0/21 Signature Algorithm: sha256WithRSAEncryption 0f:e6:d4:93:58:78:d4:6d:cd:1b:2f:24:c1:8e:98:6d:e6:17: db:a3:a9:22:3e:85:55:67:24:51:af:02:a1:99:d1:db:30:b7: 75:58:d5:ce:f2:56:87:39:a5:24:31:a7:44:d2:93:4b:8c:cc: 51:d2:00:3e:11:ce:f7:46:35:4a:a4:99:3b:ad:d2:dc:f9:ef: 25:38:b3:ab:f8:d5:48:a2:a6:79:43:53:37:01:b5:95:2a:63: d6:7e:ba:6f:8f:e1:6b:ec:9c:c5:c0:de:b3:81:33:b9:03:d3: cb:fc:43:a8:10:1a:cb:a7:9a:51:52:34:75:40:d8:8d:6d:74: 54:ca:97:03:c5:ba:e4:0e:e5:ce:c6:12:45:29:f4:c3:bd:d8: c8:b0:81:82:ef:a4:66:b8:3a:4a:bd:69:2f:ac:87:ba:e1:b1: 03:d0:37:a3:ba:29:c6:f8:d4:95:3f:fd:49:54:52:43:47:d5: 26:b6:8a:b5:a9:eb:c7:93:68:c8:48:0b:07:7c:c5:20:3c:0a: 57:c0:5a:4b:9e:4e:1f:87:12:4f:a6:c3:fc:26:f0:f7:96:a2: b2:0f:1c:e3:f0:fe:17:88:c7:eb:f7:b3:8b:6c:f5:f8:69:60: 41:50:da:7f:ed:43:f8:76:81:34:48:88:79:48:46:d9:97:c1: 3c:ea:36:14 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFz8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAzMjZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDhGOUUzNzFDMEZFMkEz MzM2RUVBNzcxRTU0NjkwODUyMTNGOThEMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCVYt2FoL/5Ok6Folel+nR/GLJql3r/RYxEKoF0YTp74Sk1F3J0 NJr2aExbrh4BvgwGk0Bvkk3SFltElC34hXQzoWGKvzlISItAX1N0atW0ngw6LHDL uOIjTvhRY7p5MrfW7+ciDv5Udt2ZrN4fY5BZrtvjwldw6LmiLS7D78IKm1JIB1VC 442Q7FjRQTgnMS9kM0eGP7E2wF7H1mRsfFahT/BblJ7r0MCqK3CJiibpDfjmdifs iPl1BoJBFxv4XsKx+wWOlg0EN52HT1EcFrjtm+RgMnrTQOTGIDSQUAUK7y1eQ+/4 TpNzzHIXdYCtn32OAAIGRoUSKJ6ePDlZEyUHAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUj543HA/iozNu6nceVGkIUhP5jSEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2o1NDNIQV9pb3pOdTZuY2VWR2tJVWhQNWpTRS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANunqAwDQYJKoZIhvcNAQELBQADggEB AA/m1JNYeNRtzRsvJMGOmG3mF9ujqSI+hVVnJFGvAqGZ0dswt3VY1c7yVoc5pSQx p0TSk0uMzFHSAD4RzvdGNUqkmTut0tz57yU4s6v41UiipnlDUzcBtZUqY9Z+um+P 4WvsnMXA3rOBM7kD08v8Q6gQGsunmlFSNHVA2I1tdFTKlwPFuuQO5c7GEkUp9MO9 2MiwgYLvpGa4Okq9aS+sh7rhsQPQN6O6Kcb41JU//UlUUkNH1Sa2irWp68eTaMhI Cwd8xSA8ClfAWkueTh+HEk+mw/wm8PeWorIPHOPw/heIx+v3s4ts9fhpYEFQ2n/t Q/h2gTRIiHlIRtmXwTzqNhQ= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:13 2026 by rpki-client