$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/kJgKiP3ceZ6kgRzWbU5LySlUkz0.roa File: kJgKiP3ceZ6kgRzWbU5LySlUkz0.roa (raw, json) Hash identifier: wShClgXOHUvjnxfnEgHR+MBXHkvJop82Q2eTH/AisW0= Subject key identifier: 90:98:0A:88:FD:DC:79:9E:A4:81:1C:D6:6D:4E:4B:C9:29:54:93:3D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 16EA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kJgKiP3ceZ6kgRzWbU5LySlUkz0.roa Signing time: Tue 31 Mar 2026 08:02:45 +0000 ROA not before: Tue 31 Mar 2026 08:02:45 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5866 (0x16ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:02:45 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=90980A88FDDC799EA4811CD66D4E4BC92954933D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:bc:3d:eb:f5:28:a9:45:e3:65:d4:88:79:10: 6c:ed:6e:74:16:32:61:58:42:4e:70:5c:11:05:22: 70:43:3a:09:9e:c3:38:12:3e:75:48:d5:b8:5a:2c: 24:96:04:28:37:bc:14:58:1a:82:eb:37:46:a7:e6: d6:26:5a:93:99:5d:7a:48:99:4b:bb:f7:dd:b8:44: 7a:a8:55:0c:a7:45:45:86:65:e0:92:7d:88:d9:ff: 6e:cf:c6:49:b5:32:d5:a4:f4:61:cf:2b:7d:9d:a3: c9:aa:ce:72:64:9f:38:6d:34:c8:0f:d9:18:5e:f7: 80:cd:cc:c2:1c:a0:17:cf:b8:1e:68:88:44:a7:22: 47:99:b1:73:ff:95:ac:03:23:ac:ef:35:94:40:df: 50:de:94:1b:9e:67:af:05:bf:51:b7:3f:dd:af:62: 31:24:32:11:fa:11:71:72:22:76:70:98:69:8d:27: b5:91:14:b4:0c:6a:ca:e3:a7:ec:40:1f:fe:40:97: 62:ce:a6:14:62:cc:89:c2:cb:75:a0:19:cb:50:58: 62:0c:9d:05:ae:5d:13:2b:93:38:fa:56:96:06:8d: 0e:2f:b0:22:c1:a7:2c:70:05:12:5c:94:48:b9:64: 28:38:32:64:ea:22:7d:b9:2e:6e:86:9f:c9:c8:8e: 05:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:98:0A:88:FD:DC:79:9E:A4:81:1C:D6:6D:4E:4B:C9:29:54:93:3D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kJgKiP3ceZ6kgRzWbU5LySlUkz0.roa sbgp-ipAddrBlock: critical IPv4: 1.79.220.0/22 Signature Algorithm: sha256WithRSAEncryption bd:0d:29:ce:50:0f:02:ae:e7:17:3e:91:02:40:a5:f0:30:f8: 8b:74:28:16:dc:24:ef:20:7f:9a:ad:35:e4:e0:3a:f2:47:ee: ff:96:54:92:23:30:e7:b5:05:74:6e:20:3d:6d:db:eb:03:6e: 7b:1d:c2:fd:ca:72:33:00:f9:65:09:90:05:1c:78:4c:d6:81: c9:ed:18:ac:b7:69:85:8a:86:27:3a:b8:40:25:3c:7c:be:5a: 68:52:e4:3a:12:8f:0b:31:53:23:7a:f5:74:5d:6f:96:7f:92: 7a:38:9c:92:27:4e:8c:d2:3d:84:67:23:a4:88:ca:a8:bc:6a: 53:cf:e6:1b:6e:83:68:bc:a4:28:5c:50:4a:02:c2:1a:b1:29: b5:00:bc:57:66:fc:e6:76:c9:53:fe:b6:43:8e:10:6e:32:c9: da:8f:97:49:ce:14:26:ba:0f:ca:c0:07:a4:b0:bf:ac:c4:45: 09:49:35:74:ae:54:4b:cf:5f:65:36:10:a5:96:8a:8e:0a:59: b5:59:db:3e:a7:b8:fc:db:0e:65:3e:c0:98:38:23:1e:56:47: e6:92:5f:44:e5:f4:0c:44:1f:18:c0:77:91:ac:70:15:b2:55: 10:3e:d0:42:9e:aa:f4:23:4c:8b:3b:23:d1:23:c8:b0:64:c5: 80:01:b1:ec -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFuowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAyNDVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDkwOTgwQTg4RkREQzc5 OUVBNDgxMUNENjZENEU0QkM5Mjk1NDkzM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjvD3r9SipReNl1Ih5EGztbnQWMmFYQk5wXBEFInBDOgmewzgS PnVI1bhaLCSWBCg3vBRYGoLrN0an5tYmWpOZXXpImUu79924RHqoVQynRUWGZeCS fYjZ/27Pxkm1MtWk9GHPK32do8mqznJknzhtNMgP2Rhe94DNzMIcoBfPuB5oiESn IkeZsXP/lawDI6zvNZRA31DelBueZ68Fv1G3P92vYjEkMhH6EXFyInZwmGmNJ7WR FLQMasrjp+xAH/5Al2LOphRizInCy3WgGctQWGIMnQWuXRMrkzj6VpYGjQ4vsCLB pyxwBRJclEi5ZCg4MmTqIn25Lm6Gn8nIjgXZAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUkJgKiP3ceZ6kgRzWbU5LySlUkz0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2tKZ0tpUDNjZVo2a2dSeldiVTVMeVNsVWt6MC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIBT9wwDQYJKoZIhvcNAQELBQADggEB AL0NKc5QDwKu5xc+kQJApfAw+It0KBbcJO8gf5qtNeTgOvJH7v+WVJIjMOe1BXRu ID1t2+sDbnsdwv3KcjMA+WUJkAUceEzWgcntGKy3aYWKhic6uEAlPHy+WmhS5DoS jwsxUyN69XRdb5Z/kno4nJInTozSPYRnI6SIyqi8alPP5htug2i8pChcUEoCwhqx KbUAvFdm/OZ2yVP+tkOOEG4yydqPl0nOFCa6D8rAB6Swv6zERQlJNXSuVEvPX2U2 EKWWio4KWbVZ2z6nuPzbDmU+wJg4Ix5WR+aSX0Tl9AxEHxjAd5GscBWyVRA+0EKe qvQjTIs7I9EjyLBkxYABsew= -----END CERTIFICATE-----Generated at Tue Apr 7 21:02:14 2026 by rpki-client