$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/orHRv2rqPrlQzbz7g3SjvyP_rq4.roa File: orHRv2rqPrlQzbz7g3SjvyP_rq4.roa (raw, json) Hash identifier: hHaXwrvkPnPKK73h2zcYZgHjwy+4EiPOmxyfupExdVE= Subject key identifier: A2:B1:D1:BF:6A:EA:3E:B9:50:CD:BC:FB:83:74:A3:BF:23:FF:AE:AE Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1582 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/orHRv2rqPrlQzbz7g3SjvyP_rq4.roa Signing time: Tue 31 Mar 2026 07:59:46 +0000 ROA not before: Tue 31 Mar 2026 07:59:46 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.76.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5506 (0x1582) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:59:46 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=A2B1D1BF6AEA3EB950CDBCFB8374A3BF23FFAEAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:bc:0c:02:2c:58:b3:1c:b3:b8:b8:b7:6b:70: 37:9d:91:b6:1b:89:49:83:3b:1e:59:18:ee:12:78: 7e:3d:55:77:d5:14:ed:64:87:04:d8:68:02:9f:f9: 3a:ca:f5:3a:f1:3b:f5:cd:a2:2f:06:e7:04:e6:9d: f3:e8:4b:51:a4:f4:c8:89:19:90:0f:ba:7e:c2:f2: c9:77:45:b4:5c:59:d8:28:60:d5:a6:ce:3c:6b:de: 3c:f9:51:5d:da:fa:38:ae:20:e0:3d:a4:0b:5d:df: 01:b4:cf:9b:bf:1c:dc:2a:4d:93:15:5a:d0:bf:4f: b8:4d:5f:69:e8:3c:5a:a5:f6:54:cb:f5:ff:6e:5d: 83:bc:7b:d4:e3:fa:54:2d:e1:2a:73:f2:44:c8:1f: 3c:df:d1:07:36:93:52:f5:9e:7d:fe:23:61:36:12: fb:88:4b:ef:24:ee:98:7c:50:a5:e0:2b:cc:a8:e0: a8:d3:51:4f:fb:cb:2f:26:ed:50:e6:b4:a1:a8:82: 65:71:63:ae:fe:01:54:eb:11:5e:ae:35:84:9a:a4: bb:82:d9:13:54:79:17:b1:67:6d:73:44:95:78:cf: 04:ff:60:69:87:14:55:d8:39:a7:ab:2b:b4:8f:75: 70:0d:b8:93:02:dd:68:0e:88:bc:e0:d9:0c:f3:5a: aa:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:B1:D1:BF:6A:EA:3E:B9:50:CD:BC:FB:83:74:A3:BF:23:FF:AE:AE X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/orHRv2rqPrlQzbz7g3SjvyP_rq4.roa sbgp-ipAddrBlock: critical IPv4: 1.76.160.0/19 Signature Algorithm: sha256WithRSAEncryption af:3f:fc:67:23:d7:6d:92:80:ad:d7:ab:ea:ad:31:13:ca:b1: 53:eb:32:ed:a6:62:c9:b0:f0:af:e5:6f:db:7d:0b:97:c6:c6: 11:1c:33:1b:de:a8:63:95:35:f4:02:b8:4f:2e:43:51:b0:fb: 91:3a:21:ec:d1:76:45:b2:33:a0:ef:75:ec:54:14:ee:97:4a: fb:d9:49:52:b3:3e:cc:6a:2f:af:62:89:ad:b0:ca:42:21:7f: f4:3f:92:41:f9:42:18:fe:97:d3:30:44:14:6a:b7:f8:73:57: 0e:d3:e6:79:d9:85:49:33:7b:19:12:71:0d:c8:75:61:f4:99: 33:29:86:a8:47:3d:f3:1e:22:0a:83:46:c0:dd:ef:b2:30:ce: f8:c3:ab:ad:87:db:e4:86:5a:ce:6e:aa:08:a6:be:f0:d7:8f: 4a:ee:40:3f:1e:6c:71:8e:16:22:52:76:13:c6:7c:1b:d3:71: 0f:d8:98:fe:77:2a:7e:10:7a:07:de:6e:8d:80:42:5f:0b:68: 08:03:53:8d:34:8e:70:f4:ed:e6:75:9c:ca:7f:3b:78:9f:52: 72:83:cb:6b:bb:d8:8b:78:68:f1:5e:b6:d8:cb:fa:3a:74:95: 9d:63:81:86:4b:74:73:1a:c0:e2:72:09:d1:fb:a9:bd:d5:b1: 08:53:1c:8f -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFYIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU5NDZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEEyQjFEMUJGNkFFQTNF Qjk1MENEQkNGQjgzNzRBM0JGMjNGRkFFQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIvAwCLFizHLO4uLdrcDedkbYbiUmDOx5ZGO4SeH49VXfVFO1k hwTYaAKf+TrK9TrxO/XNoi8G5wTmnfPoS1Gk9MiJGZAPun7C8sl3RbRcWdgoYNWm zjxr3jz5UV3a+jiuIOA9pAtd3wG0z5u/HNwqTZMVWtC/T7hNX2noPFql9lTL9f9u XYO8e9Tj+lQt4Spz8kTIHzzf0Qc2k1L1nn3+I2E2EvuIS+8k7ph8UKXgK8yo4KjT UU/7yy8m7VDmtKGogmVxY67+AVTrEV6uNYSapLuC2RNUeRexZ21zRJV4zwT/YGmH FFXYOaerK7SPdXANuJMC3WgOiLzg2QzzWqptAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUorHRv2rqPrlQzbz7g3SjvyP/rq4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L29ySFJ2MnJxUHJsUXpiejdnM1NqdnlQX3JxNC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAUBTKAwDQYJKoZIhvcNAQELBQADggEB AK8//Gcj122SgK3Xq+qtMRPKsVPrMu2mYsmw8K/lb9t9C5fGxhEcMxveqGOVNfQC uE8uQ1Gw+5E6IezRdkWyM6DvdexUFO6XSvvZSVKzPsxqL69iia2wykIhf/Q/kkH5 Qhj+l9MwRBRqt/hzVw7T5nnZhUkzexkScQ3IdWH0mTMphqhHPfMeIgqDRsDd77Iw zvjDq62H2+SGWs5uqgimvvDXj0ruQD8ebHGOFiJSdhPGfBvTcQ/YmP53Kn4Qegfe bo2AQl8LaAgDU400jnD07eZ1nMp/O3ifUnKDy2u72It4aPFettjL+jp0lZ1jgYZL dHMawOJyCdH7qb3VsQhTHI8= -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:35 2026 by rpki-client