$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/oSanq3WDZKSEUl-h1U62H4hw93o.roa File: oSanq3WDZKSEUl-h1U62H4hw93o.roa (raw, json) Hash identifier: 3/9Y8/F5YEmYooj7CyUyWrIFd+BhT8iM4rm7rhcMfBA= Subject key identifier: A1:26:A7:AB:75:83:64:A4:84:52:5F:A1:D5:4E:B6:1F:88:70:F7:7A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1597 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oSanq3WDZKSEUl-h1U62H4hw93o.roa Signing time: Tue 31 Mar 2026 07:59:56 +0000 ROA not before: Tue 31 Mar 2026 07:59:56 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.210.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5527 (0x1597) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:59:56 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=A126A7AB758364A484525FA1D54EB61F8870F77A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e0:d6:77:20:53:ce:97:06:0d:3d:be:c6:97: 2d:bf:a6:03:16:1f:8b:a4:e5:0f:8a:f9:6e:c7:b0: df:f4:c6:cb:31:46:a7:d5:36:74:c5:87:36:a5:8f: c2:06:65:e1:7f:ea:4d:ce:8b:19:02:dd:e7:c3:28: c8:ca:d4:57:7d:b2:2a:bc:0a:22:e0:4c:97:db:20: 86:7b:42:14:eb:7c:a3:2f:0b:b9:56:e3:0f:a0:f5: 6f:3f:40:cb:ed:50:0d:71:42:5a:09:f2:fd:fa:8d: 23:be:21:0f:f9:ca:09:45:c1:16:0a:e6:3b:f0:da: d5:d4:a9:12:65:a3:4f:92:c1:86:5a:3f:80:10:6b: df:04:f1:f7:47:15:9e:9b:8a:d6:18:b9:93:0b:64: 8a:33:1f:66:34:bd:ae:a1:12:33:a1:59:c1:2a:7f: ff:c2:4f:bc:c8:ef:14:d6:89:ca:f9:9e:a2:20:1d: 16:54:e6:3a:3e:68:d9:98:02:da:c0:a0:c3:fb:ef: 2f:94:89:5c:7a:3a:8f:49:1d:1b:5a:ee:21:9d:1c: 19:57:87:9e:ae:af:4b:a2:e0:39:24:81:dc:7c:c0: 19:6e:25:bb:b4:22:b6:9a:2e:ee:40:c1:1e:8f:f3: 4c:5a:d9:f2:0c:4a:6e:82:21:7b:9c:91:50:9f:bd: a4:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:26:A7:AB:75:83:64:A4:84:52:5F:A1:D5:4E:B6:1F:88:70:F7:7A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oSanq3WDZKSEUl-h1U62H4hw93o.roa sbgp-ipAddrBlock: critical IPv4: 220.210.76.0/22 Signature Algorithm: sha256WithRSAEncryption 80:3d:85:59:be:63:82:c2:6f:7a:33:de:c8:27:11:9c:14:86: 5e:ab:5c:14:63:41:fd:24:6d:64:d1:be:02:df:ea:91:33:5d: 77:02:76:bf:69:8e:06:a7:5a:a1:9b:d6:7c:95:d0:38:5e:72: 53:9d:ee:22:0e:c4:ae:1e:26:47:d9:71:63:ff:cf:3f:db:87: 3f:63:ab:64:74:0e:09:03:dc:db:38:b5:f7:71:67:59:e0:a5: 20:af:2d:71:af:7e:5e:2a:82:95:35:50:1a:8a:d6:4f:9d:47: 43:33:79:15:1e:20:8b:56:77:28:d1:5f:43:f8:20:57:39:55: 3c:2b:ed:b1:24:a3:7d:53:cc:15:fc:e8:84:31:f7:4f:9e:18: 2c:aa:92:4c:6a:7d:0c:2d:5c:11:74:cf:a1:63:d3:95:3c:ab: 91:27:bb:ab:a9:d8:ef:2a:8b:e2:52:81:b3:d0:c4:1a:cc:2c: 15:2d:bc:ab:ef:94:61:39:9a:51:65:30:d0:c6:75:00:de:9b: c7:91:97:22:8c:5b:17:40:18:e3:79:40:f5:20:f3:c0:7f:1b: e9:1b:74:09:d4:dc:20:ae:a7:14:e9:d7:0a:b9:56:dc:fc:92: 8d:3a:6a:b5:39:7b:3f:44:4b:60:21:9e:3b:1d:b0:01:87:d8: b7:9b:c4:22 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFZcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU5NTZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEExMjZBN0FCNzU4MzY0 QTQ4NDUyNUZBMUQ1NEVCNjFGODg3MEY3N0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZ4NZ3IFPOlwYNPb7Gly2/pgMWH4uk5Q+K+W7HsN/0xssxRqfV NnTFhzalj8IGZeF/6k3OixkC3efDKMjK1Fd9siq8CiLgTJfbIIZ7QhTrfKMvC7lW 4w+g9W8/QMvtUA1xQloJ8v36jSO+IQ/5yglFwRYK5jvw2tXUqRJlo0+SwYZaP4AQ a98E8fdHFZ6bitYYuZMLZIozH2Y0va6hEjOhWcEqf//CT7zI7xTWicr5nqIgHRZU 5jo+aNmYAtrAoMP77y+UiVx6Oo9JHRta7iGdHBlXh56ur0ui4Dkkgdx8wBluJbu0 IraaLu5AwR6P80xa2fIMSm6CIXuckVCfvaShAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUoSanq3WDZKSEUl+h1U62H4hw93owHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L29TYW5xM1dEWktTRVVsLWgxVTYySDRodzkzby5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALc0kwwDQYJKoZIhvcNAQELBQADggEB AIA9hVm+Y4LCb3oz3sgnEZwUhl6rXBRjQf0kbWTRvgLf6pEzXXcCdr9pjganWqGb 1nyV0DheclOd7iIOxK4eJkfZcWP/zz/bhz9jq2R0DgkD3Ns4tfdxZ1ngpSCvLXGv fl4qgpU1UBqK1k+dR0MzeRUeIItWdyjRX0P4IFc5VTwr7bEko31TzBX86IQx90+e GCyqkkxqfQwtXBF0z6Fj05U8q5Enu6up2O8qi+JSgbPQxBrMLBUtvKvvlGE5mlFl MNDGdQDem8eRlyKMWxdAGON5QPUg88B/G+kbdAnU3CCupxTp1wq5Vtz8ko06arU5 ez9ES2AhnjsdsAGH2LebxCI= -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:05 2026 by rpki-client