$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/lFhkXVXiHpqCeBlngNWfV_ydQX8.roa File: lFhkXVXiHpqCeBlngNWfV_ydQX8.roa (raw, json) Hash identifier: Gnh2MYwDqghWMxIS5fw7koayI/x5Gn8DD37oOQYzaaU= Subject key identifier: 94:58:64:5D:55:E2:1E:9A:82:78:19:67:80:D5:9F:57:FC:9D:41:7F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 16DA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lFhkXVXiHpqCeBlngNWfV_ydQX8.roa Signing time: Tue 31 Mar 2026 08:02:37 +0000 ROA not before: Tue 31 Mar 2026 08:02:37 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 219.114.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5850 (0x16da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:02:37 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=9458645D55E21E9A8278196780D59F57FC9D417F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c8:09:42:db:59:f8:bb:26:bd:0a:b9:4d:80: df:a7:32:1a:7f:6a:10:98:ec:e2:2b:a3:d4:8a:ce: ee:f2:58:72:f0:f5:c3:ab:8c:09:1e:4f:4d:cb:d2: a3:81:26:0f:cb:ec:bc:63:7a:30:ea:0c:dc:68:4e: 50:9c:86:1a:47:6b:d4:3c:f2:ab:3c:8a:6a:86:34: 8d:65:d8:1d:22:5b:99:fc:27:bb:06:6a:2c:bb:6c: 32:3e:e8:8a:7f:f2:0e:37:37:27:45:f4:f9:d5:3d: d5:95:22:4d:45:63:52:d8:da:2e:b8:85:da:84:e9: c7:5e:da:47:2d:75:d2:e3:fc:1f:42:92:d8:d9:e4: be:8d:de:53:fc:ce:96:aa:bb:0e:42:78:79:71:ee: 71:06:89:76:b1:64:d8:21:bb:08:c1:f2:3b:4a:18: 40:61:f8:65:89:5c:8f:34:e7:24:6a:7e:1d:44:44: b6:b1:9b:88:7c:b2:b4:0c:79:8f:f4:3f:34:80:12: 66:2f:e4:94:5d:27:fc:b6:d1:17:11:09:cc:4c:4b: 4a:90:56:dc:21:1a:aa:24:5d:de:63:ae:9e:4c:e7: c7:93:98:41:02:7b:90:b4:1a:7f:57:4b:09:42:91: 02:48:f4:bc:e5:12:3b:53:69:25:59:be:a5:87:7f: f3:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:58:64:5D:55:E2:1E:9A:82:78:19:67:80:D5:9F:57:FC:9D:41:7F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lFhkXVXiHpqCeBlngNWfV_ydQX8.roa sbgp-ipAddrBlock: critical IPv4: 219.114.172.0/22 Signature Algorithm: sha256WithRSAEncryption cd:16:b1:e0:ea:25:e1:07:1e:25:ad:ff:ba:2f:a9:0b:5d:91: ae:b4:49:0a:13:8e:ec:0c:87:4c:39:ad:a8:5d:ef:68:c0:f2: f1:f0:1f:a5:70:3f:07:a2:79:e9:9b:95:ee:9c:1f:e4:ee:bf: 56:6f:d8:78:a2:28:6a:b3:67:83:15:90:7c:07:7c:fc:5e:46: 84:7b:4c:7d:14:c0:05:d9:22:35:37:8c:b7:1e:59:06:d4:6d: b6:eb:c3:f0:12:d0:a2:fd:d2:58:03:98:4c:23:2e:54:a5:e6: d1:8d:72:d7:77:56:fd:37:b3:89:37:18:b4:18:64:25:25:b5: 6e:6c:42:2b:d1:c6:29:da:fa:d7:15:57:71:0e:74:8e:8e:7b: 8c:ab:d4:a4:91:71:b2:58:f9:5d:46:a0:c5:3a:9e:0d:06:88: 50:ad:ff:b4:20:15:8e:94:2e:67:d0:79:cf:a3:00:9c:b9:56: d0:52:c4:d9:ca:98:60:0d:1a:f1:2e:b8:12:01:a6:62:b9:84: d7:e3:6a:42:69:e6:43:1d:6c:b8:e9:15:dd:c4:c1:8b:73:af: 00:26:fa:76:b3:be:c4:ad:39:aa:4b:c1:b9:e1:73:fd:6a:20: 63:8d:9f:fe:80:86:a0:e9:8d:a1:fe:49:67:f1:23:8f:79:1d: 1c:c4:2b:2f -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFtowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAyMzdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDk0NTg2NDVENTVFMjFF OUE4Mjc4MTk2NzgwRDU5RjU3RkM5RDQxN0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCyAlC21n4uya9CrlNgN+nMhp/ahCY7OIro9SKzu7yWHLw9cOr jAkeT03L0qOBJg/L7LxjejDqDNxoTlCchhpHa9Q88qs8imqGNI1l2B0iW5n8J7sG aiy7bDI+6Ip/8g43NydF9PnVPdWVIk1FY1LY2i64hdqE6cde2kctddLj/B9CktjZ 5L6N3lP8zpaquw5CeHlx7nEGiXaxZNghuwjB8jtKGEBh+GWJXI805yRqfh1ERLax m4h8srQMeY/0PzSAEmYv5JRdJ/y20RcRCcxMS0qQVtwhGqokXd5jrp5M58eTmEEC e5C0Gn9XSwlCkQJI9LzlEjtTaSVZvqWHf/P/AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUlFhkXVXiHpqCeBlngNWfV/ydQX8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2xGaGtYVlhpSHBxQ2VCbG5nTldmVl95ZFFYOC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALbcqwwDQYJKoZIhvcNAQELBQADggEB AM0WseDqJeEHHiWt/7ovqQtdka60SQoTjuwMh0w5rahd72jA8vHwH6VwPweieemb le6cH+Tuv1Zv2HiiKGqzZ4MVkHwHfPxeRoR7TH0UwAXZIjU3jLceWQbUbbbrw/AS 0KL90lgDmEwjLlSl5tGNctd3Vv03s4k3GLQYZCUltW5sQivRxina+tcVV3EOdI6O e4yr1KSRcbJY+V1GoMU6ng0GiFCt/7QgFY6ULmfQec+jAJy5VtBSxNnKmGANGvEu uBIBpmK5hNfjakJp5kMdbLjpFd3EwYtzrwAm+nazvsStOapLwbnhc/1qIGONn/6A hqDpjaH+SWfxI495HRzEKy8= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:12 2026 by rpki-client