$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/pNlq_hXRi-EkDkPR3TevPSP1fGc.roa File: pNlq_hXRi-EkDkPR3TevPSP1fGc.roa (raw, json) Hash identifier: COXIMrg2tUdxxzq/E7s2KS3pE6wIZEXIHq+K/GMEk20= Subject key identifier: A4:D9:6A:FE:15:D1:8B:E1:24:0E:43:D1:DD:37:AF:3D:23:F5:7C:67 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1716 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/pNlq_hXRi-EkDkPR3TevPSP1fGc.roa Signing time: Tue 31 Mar 2026 08:03:08 +0000 ROA not before: Tue 31 Mar 2026 08:03:08 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.104.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5910 (0x1716) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:03:08 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=A4D96AFE15D18BE1240E43D1DD37AF3D23F57C67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:51:8a:c2:a6:01:4f:9c:b9:ed:cf:79:13:9e: 57:f2:42:22:73:b1:d2:db:43:f4:18:49:98:48:e6: 10:85:8c:1e:0d:10:1e:89:7c:5d:f3:36:cc:c5:cc: 61:49:91:e5:16:20:2c:0a:63:d5:96:84:a0:cb:5b: 3f:67:1f:7c:c1:be:03:0f:80:0a:58:6d:58:33:d7: 84:c9:4a:2c:df:1d:40:fd:f1:cf:5e:4c:ea:87:16: ce:bc:83:f0:39:ab:34:6e:08:d0:f1:8d:3b:6a:9e: 4d:d5:2d:8c:54:ed:b1:53:c8:05:83:b0:c3:12:66: 5f:4e:e6:b7:ce:cc:f6:21:0f:b1:84:c7:ce:0f:44: 6e:0a:e6:58:77:e8:3f:db:7d:48:8a:30:24:ca:4b: 4c:7c:83:52:67:08:5d:f7:c7:2c:44:f9:d7:47:5a: b8:3b:a2:63:82:6c:57:53:28:39:f9:ab:46:b5:e0: cc:92:0d:53:49:67:12:b8:26:26:a1:ff:3a:d4:49: d5:dc:4e:35:b9:13:3c:5b:54:f0:e0:8c:51:f3:b8: 6b:40:27:84:e6:f0:29:28:4d:6f:3d:bc:2f:51:5b: d7:c1:53:8a:8c:b5:fd:8e:0a:a7:2b:ff:8d:32:8d: ba:20:9e:dc:27:8a:f4:a1:c2:3f:39:fa:3d:5b:49: 40:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:D9:6A:FE:15:D1:8B:E1:24:0E:43:D1:DD:37:AF:3D:23:F5:7C:67 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/pNlq_hXRi-EkDkPR3TevPSP1fGc.roa sbgp-ipAddrBlock: critical IPv4: 1.79.104.0/22 Signature Algorithm: sha256WithRSAEncryption 93:3b:b6:36:e4:b7:d7:80:46:48:f7:f4:26:50:2d:bf:4f:84: 58:b9:5e:37:5f:1a:30:10:d7:67:49:79:e4:01:23:f9:e8:1b: b8:31:1d:d3:68:bb:01:3e:07:d4:bd:56:79:0e:bd:d7:6c:c5: 0e:ba:7e:9e:13:30:d4:97:5e:1e:80:91:23:58:06:06:5b:07: f0:3c:95:6d:7a:9c:b0:f9:79:80:2f:16:24:aa:f1:e4:85:63: ea:7e:75:f9:4f:8a:b1:84:4c:7e:44:c4:dc:18:66:d1:64:fa: 90:5b:5d:65:fd:96:eb:28:4f:04:66:d5:87:4c:65:c5:ce:4d: 8f:9f:42:f9:fd:91:9c:d4:ae:7b:62:31:9c:f6:65:06:ff:7a: d9:54:c2:b4:4c:50:4c:85:95:5b:fd:b5:0c:66:e2:b3:de:b3: b5:47:5a:d1:57:ee:5d:55:fe:e9:97:18:df:80:9f:f8:90:6a: 03:1f:bb:4b:94:8a:38:73:9c:86:92:60:e4:8d:df:80:eb:ae: 1f:eb:fa:bd:22:d2:32:04:8a:91:36:2a:18:e2:46:64:73:d6: b0:13:33:d4:12:e9:26:b1:c0:c8:9e:d2:ac:58:00:c4:93:2b: 6c:95:29:7c:07:19:99:bb:d3:ac:f9:70:e8:bf:6c:76:aa:84: 36:4d:8b:b4 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFxYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAzMDhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEE0RDk2QUZFMTVEMThC RTEyNDBFNDNEMUREMzdBRjNEMjNGNTdDNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5UYrCpgFPnLntz3kTnlfyQiJzsdLbQ/QYSZhI5hCFjB4NEB6J fF3zNszFzGFJkeUWICwKY9WWhKDLWz9nH3zBvgMPgApYbVgz14TJSizfHUD98c9e TOqHFs68g/A5qzRuCNDxjTtqnk3VLYxU7bFTyAWDsMMSZl9O5rfOzPYhD7GEx84P RG4K5lh36D/bfUiKMCTKS0x8g1JnCF33xyxE+ddHWrg7omOCbFdTKDn5q0a14MyS DVNJZxK4Jiah/zrUSdXcTjW5EzxbVPDgjFHzuGtAJ4Tm8CkoTW89vC9RW9fBU4qM tf2OCqcr/40yjbogntwnivShwj85+j1bSUBfAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUpNlq/hXRi+EkDkPR3TevPSP1fGcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3BObHFfaFhSaS1Fa0RrUFIzVGV2UFNQMWZHYy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIBT2gwDQYJKoZIhvcNAQELBQADggEB AJM7tjbkt9eARkj39CZQLb9PhFi5XjdfGjAQ12dJeeQBI/noG7gxHdNouwE+B9S9 VnkOvddsxQ66fp4TMNSXXh6AkSNYBgZbB/A8lW16nLD5eYAvFiSq8eSFY+p+dflP irGETH5ExNwYZtFk+pBbXWX9lusoTwRm1YdMZcXOTY+fQvn9kZzUrntiMZz2ZQb/ etlUwrRMUEyFlVv9tQxm4rPes7VHWtFX7l1V/umXGN+An/iQagMfu0uUijhznIaS YOSN34Drrh/r+r0i0jIEipE2KhjiRmRz1rATM9QS6SaxwMie0qxYAMSTK2yVKXwH GZm706z5cOi/bHaqhDZNi7Q= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:34 2026 by rpki-client