$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/jc2-D_0Nw7WIgX3OXfhKna8XoNw.roa File: jc2-D_0Nw7WIgX3OXfhKna8XoNw.roa (raw, json) Hash identifier: rbrcrvtzoSo6HG+1bjBsUM+12E2/tUnV1oRAuwlA0vc= Subject key identifier: 8D:CD:BE:0F:FD:0D:C3:B5:88:81:7D:CE:5D:F8:4A:9D:AF:17:A0:DC Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1551 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/jc2-D_0Nw7WIgX3OXfhKna8XoNw.roa Signing time: Tue 31 Mar 2026 07:59:25 +0000 ROA not before: Tue 31 Mar 2026 07:59:25 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.67.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5457 (0x1551) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:59:25 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=8DCDBE0FFD0DC3B588817DCE5DF84A9DAF17A0DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:1c:0f:cf:74:8c:8a:ed:8e:09:72:58:4d:c9: d2:3f:1b:29:ed:33:3b:1a:01:ee:72:8e:dc:68:d7: ba:4f:19:6d:34:c5:09:68:67:57:3f:ee:7c:b1:22: 5a:a2:25:e2:2c:77:d1:72:a3:0a:99:57:b0:a7:68: 49:62:c7:67:d9:be:a3:63:1a:44:12:ce:44:c0:1e: f1:9c:01:cf:04:79:a4:16:70:84:fb:29:33:4c:71: b8:e8:a8:74:18:dd:4a:53:03:11:06:a9:3a:bc:4a: 79:5e:b2:8d:9a:07:45:f5:37:81:8c:b8:bd:ca:48: ea:ad:a7:dc:5d:de:c9:2d:64:b7:f9:51:e4:50:8c: 2c:32:1f:27:6f:00:d1:a4:73:97:a9:a8:97:f2:10: f4:00:32:01:b8:5e:5a:7d:4a:6e:28:4e:82:e5:1d: 90:ea:76:f9:2a:78:27:d5:e7:36:a9:c4:25:3c:e9: 76:a2:b5:21:a5:a5:d5:7f:ce:f7:ce:d8:40:09:eb: 85:5f:64:c7:8d:8b:75:7c:80:e1:56:7c:25:d6:1e: 2b:95:e0:78:cd:9d:47:6a:2f:f1:14:65:b0:2d:b6: e8:2c:9b:db:6e:8f:38:b6:8c:fc:54:89:5e:8c:42: 28:d0:68:e6:fd:8b:1e:13:54:29:6a:64:e2:49:00: 67:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:CD:BE:0F:FD:0D:C3:B5:88:81:7D:CE:5D:F8:4A:9D:AF:17:A0:DC X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/jc2-D_0Nw7WIgX3OXfhKna8XoNw.roa sbgp-ipAddrBlock: critical IPv4: 1.67.0.0/17 Signature Algorithm: sha256WithRSAEncryption 8b:51:76:32:82:4a:9c:77:35:36:49:45:b4:f2:47:3b:86:78: 31:3b:18:97:bb:38:55:2b:cb:b4:92:aa:0f:af:81:0e:a0:c9: c6:e0:8a:22:62:02:ff:f1:91:7b:41:82:f0:db:88:88:93:1f: 72:bd:97:04:ec:16:ed:72:a3:db:d1:b7:4d:c0:36:72:fd:71: b9:fd:4d:a5:d9:d6:82:99:a8:38:b9:86:43:e8:c5:39:4a:45: 9f:50:ce:bb:85:a1:17:04:0c:f1:6e:2d:53:a8:d2:3b:52:d0: 87:b3:97:83:14:fb:2f:ff:3b:78:46:85:8a:04:04:06:3d:c9: b6:bb:28:2f:79:ed:8b:01:f7:85:a4:26:63:ce:72:9d:ab:85: e1:ab:da:c4:35:45:39:ff:6d:4c:c2:69:2f:5b:48:87:97:ea: 18:80:c9:d9:2a:4b:57:da:e5:5e:0a:f4:4e:27:c4:c5:52:fd: 62:15:a1:ac:0d:a4:35:79:b6:43:d9:1e:f6:f0:de:23:84:9f: a4:fb:26:9e:8b:9d:df:75:3e:84:40:3b:87:2f:e9:45:c0:29: 2f:94:b3:cd:f7:47:f6:d6:86:31:42:f2:a9:f3:af:73:b9:71: 80:09:58:21:ef:5f:45:f2:ad:bd:09:5d:58:51:66:3e:cd:de: 3f:19:f3:1b -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFVEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU5MjVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDhEQ0RCRTBGRkQwREMz QjU4ODgxN0RDRTVERjg0QTlEQUYxN0EwREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD3HA/PdIyK7Y4JclhNydI/GyntMzsaAe5yjtxo17pPGW00xQlo Z1c/7nyxIlqiJeIsd9FyowqZV7CnaElix2fZvqNjGkQSzkTAHvGcAc8EeaQWcIT7 KTNMcbjoqHQY3UpTAxEGqTq8Snleso2aB0X1N4GMuL3KSOqtp9xd3sktZLf5UeRQ jCwyHydvANGkc5epqJfyEPQAMgG4Xlp9Sm4oToLlHZDqdvkqeCfV5zapxCU86Xai tSGlpdV/zvfO2EAJ64VfZMeNi3V8gOFWfCXWHiuV4HjNnUdqL/EUZbAttugsm9tu jzi2jPxUiV6MQijQaOb9ix4TVClqZOJJAGfHAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUjc2+D/0Nw7WIgX3OXfhKna8XoNwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2pjMi1EXzBOdzdXSWdYM09YZmhLbmE4WG9Ody5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAcBQwAwDQYJKoZIhvcNAQELBQADggEB AItRdjKCSpx3NTZJRbTyRzuGeDE7GJe7OFUry7SSqg+vgQ6gycbgiiJiAv/xkXtB gvDbiIiTH3K9lwTsFu1yo9vRt03ANnL9cbn9TaXZ1oKZqDi5hkPoxTlKRZ9QzruF oRcEDPFuLVOo0jtS0Iezl4MU+y//O3hGhYoEBAY9yba7KC957YsB94WkJmPOcp2r heGr2sQ1RTn/bUzCaS9bSIeX6hiAydkqS1fa5V4K9E4nxMVS/WIVoawNpDV5tkPZ Hvbw3iOEn6T7Jp6Lnd91PoRAO4cv6UXAKS+Us833R/bWhjFC8qnzr3O5cYAJWCHv X0Xyrb0JXVhRZj7N3j8Z8xs= -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:53 2026 by rpki-client