$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/oNfx6GrlxY7B-0Ja5ImiXF0IPsU.roa File: oNfx6GrlxY7B-0Ja5ImiXF0IPsU.roa (raw, json) Hash identifier: 9sa8zChVXdVDBo049BpdYrdJfGc3PiydnvxI2PKNS4o= Subject key identifier: A0:D7:F1:E8:6A:E5:C5:8E:C1:FB:42:5A:E4:89:A2:5C:5D:08:3E:C5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 14A8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oNfx6GrlxY7B-0Ja5ImiXF0IPsU.roa Signing time: Tue 31 Mar 2026 07:57:59 +0000 ROA not before: Tue 31 Mar 2026 07:57:59 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.78.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5288 (0x14a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:57:59 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=A0D7F1E86AE5C58EC1FB425AE489A25C5D083EC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:69:bb:ce:83:92:fa:2d:ad:10:c3:43:6c:19: fb:7a:2a:f9:f8:fb:cc:d0:31:2e:8f:80:a0:e3:8b: 12:43:22:1a:60:0b:ec:58:f3:38:cd:ce:5d:3b:5b: c6:7d:8b:62:a6:36:e1:79:87:83:34:fc:ee:58:c2: 53:06:3d:19:21:c8:29:65:03:0d:67:2b:1a:3e:3f: e7:24:28:74:e4:38:71:6f:dd:98:7a:73:5b:7b:ed: 72:78:ac:6f:a9:8d:de:01:38:7c:25:32:bc:cd:8e: b0:c7:53:e4:d1:a7:f9:3a:72:cb:13:d9:d3:47:31: d5:c0:47:b9:97:82:94:dc:ac:13:16:42:ab:95:7e: f3:af:54:95:c2:0b:13:6c:e6:79:25:32:cd:ce:b6: e1:7e:c5:ca:ec:2e:4c:7a:f9:f7:48:3b:a0:87:ca: eb:f7:1a:96:de:fe:c1:18:95:8e:52:29:7f:5a:fd: a8:56:63:91:55:73:8b:29:78:c6:40:bf:e7:5d:61: fc:a8:82:0b:1d:1e:5b:34:6d:1c:40:71:8a:95:19: eb:96:0b:45:6c:ae:9d:9b:27:31:70:6b:d4:6f:29: 98:77:cb:c7:f9:84:5e:57:f6:0a:7e:f9:89:51:99: 01:b9:9f:9f:69:2d:f6:c4:3c:e3:f7:a8:f5:40:6d: df:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:D7:F1:E8:6A:E5:C5:8E:C1:FB:42:5A:E4:89:A2:5C:5D:08:3E:C5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oNfx6GrlxY7B-0Ja5ImiXF0IPsU.roa sbgp-ipAddrBlock: critical IPv4: 1.78.2.0/23 Signature Algorithm: sha256WithRSAEncryption 46:37:48:cc:7e:a6:73:46:00:0a:4b:74:1c:0a:78:fa:18:0d: fb:bb:d9:69:cc:a0:ad:2e:fc:87:69:b5:f2:9a:e2:ee:b5:6f: 3c:56:d1:df:fb:76:29:74:c8:27:73:07:8b:09:dd:06:43:af: b9:6e:30:28:b5:4f:2b:86:7c:9d:ea:de:c4:b6:c1:fa:7a:34: 34:c2:ff:fb:b6:23:2b:21:0f:3e:33:f8:86:88:1a:88:5c:1e: ba:92:5f:3a:35:b3:c1:97:31:0f:51:98:a6:26:a7:9b:c3:5c: 38:cf:4a:24:df:7c:29:5a:32:48:ce:97:f0:94:b1:be:2b:74: 2f:50:f8:51:80:d2:09:4a:71:92:3b:5c:3c:1c:24:89:43:0d: 2f:6b:74:ee:a0:a1:59:84:81:c6:ed:69:49:1b:0b:9c:6c:0f: 00:41:f2:be:6b:91:d6:d8:b5:8a:58:72:d1:41:d7:19:52:2c: 74:28:cf:34:5e:0d:7b:a4:57:cd:b8:b8:1f:fa:89:16:bb:ee: 86:9e:31:82:28:73:6d:02:b3:a3:8f:f2:23:38:4f:3a:57:e7: 9b:e7:bc:78:77:44:2b:78:9e:34:bf:db:b2:d2:ba:82:c4:6b: 47:d4:e8:1c:7d:ea:68:87:8c:ea:41:ee:c9:2d:99:9d:46:80: 83:5b:99:bc -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFKgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU3NTlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEEwRDdGMUU4NkFFNUM1 OEVDMUZCNDI1QUU0ODlBMjVDNUQwODNFQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6abvOg5L6La0Qw0NsGft6Kvn4+8zQMS6PgKDjixJDIhpgC+xY 8zjNzl07W8Z9i2KmNuF5h4M0/O5YwlMGPRkhyCllAw1nKxo+P+ckKHTkOHFv3Zh6 c1t77XJ4rG+pjd4BOHwlMrzNjrDHU+TRp/k6cssT2dNHMdXAR7mXgpTcrBMWQquV fvOvVJXCCxNs5nklMs3OtuF+xcrsLkx6+fdIO6CHyuv3Gpbe/sEYlY5SKX9a/ahW Y5FVc4speMZAv+ddYfyoggsdHls0bRxAcYqVGeuWC0Vsrp2bJzFwa9RvKZh3y8f5 hF5X9gp++YlRmQG5n59pLfbEPOP3qPVAbd+VAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUoNfx6GrlxY7B+0Ja5ImiXF0IPsUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L29OZng2R3JseFk3Qi0wSmE1SW1pWEYwSVBzVS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEBTgIwDQYJKoZIhvcNAQELBQADggEB AEY3SMx+pnNGAApLdBwKePoYDfu72WnMoK0u/IdptfKa4u61bzxW0d/7dil0yCdz B4sJ3QZDr7luMCi1TyuGfJ3q3sS2wfp6NDTC//u2IyshDz4z+IaIGohcHrqSXzo1 s8GXMQ9RmKYmp5vDXDjPSiTffClaMkjOl/CUsb4rdC9Q+FGA0glKcZI7XDwcJIlD DS9rdO6goVmEgcbtaUkbC5xsDwBB8r5rkdbYtYpYctFB1xlSLHQozzReDXukV824 uB/6iRa77oaeMYIoc20Cs6OP8iM4TzpX55vnvHh3RCt4njS/27LSuoLEa0fU6Bx9 6miHjOpB7sktmZ1GgINbmbw= -----END CERTIFICATE-----Generated at Tue Apr 7 22:24:05 2026 by rpki-client