$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/qD6G7113F89pX1krcm0DJ0hnXOM.roa File: qD6G7113F89pX1krcm0DJ0hnXOM.roa (raw, json) Hash identifier: /009VEHPsizhRYYfVdAnq3NH+13rNHmKOja9M/McMbs= Subject key identifier: A8:3E:86:EF:5D:77:17:CF:69:5F:59:2B:72:6D:03:27:48:67:5C:E3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1366 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qD6G7113F89pX1krcm0DJ0hnXOM.roa Signing time: Tue 31 Mar 2026 07:55:30 +0000 ROA not before: Tue 31 Mar 2026 07:55:30 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.66.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4966 (0x1366) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:55:30 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=A83E86EF5D7717CF695F592B726D032748675CE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:95:95:a8:04:89:4e:53:08:93:45:c2:50:9d: 27:30:82:92:6d:69:f1:ec:e2:37:49:0e:ec:a3:83: be:97:9d:ff:a8:93:75:c3:39:ce:35:b8:44:f0:59: 77:8b:18:38:dd:8c:31:db:8d:c5:69:48:54:df:fb: 5c:22:ec:b3:ee:a4:2e:5f:9d:39:bf:3d:58:1a:9b: 1a:24:69:bf:9b:44:66:1a:fd:b3:ad:2e:b2:0d:06: c4:32:7d:e4:94:25:bd:00:2d:d6:21:83:ff:0b:6c: b7:6d:fd:ec:be:f9:cc:32:9e:13:3a:ce:44:16:b7: b7:bb:50:1d:27:43:a3:44:a3:89:68:ab:ea:af:41: 87:3f:4b:61:75:01:8e:21:35:48:e8:3f:0c:07:93: 10:83:7d:d5:ca:fb:8f:96:0c:36:49:a5:c2:59:96: 44:0f:6b:0e:e5:0e:2a:77:34:44:4c:ca:1a:c3:21: c8:1a:cb:39:7f:89:e4:4a:5b:fc:e3:7f:c1:20:78: 38:a6:b4:09:da:54:cb:cf:f7:c4:9b:6f:c3:0c:ca: d9:00:2b:02:9e:ac:d0:54:b0:0a:0f:ce:c2:65:8b: 6c:7a:8e:d8:59:af:f4:93:e6:3e:7c:c3:96:e2:c7: 88:73:09:6e:99:5e:73:99:a2:d7:36:0f:14:2b:1b: d2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:3E:86:EF:5D:77:17:CF:69:5F:59:2B:72:6D:03:27:48:67:5C:E3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qD6G7113F89pX1krcm0DJ0hnXOM.roa sbgp-ipAddrBlock: critical IPv4: 1.66.100.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:22:d1:83:03:05:8b:3c:52:b8:49:9e:3e:ad:6b:25:fd:0a: f7:33:bd:9a:b3:37:90:97:ac:8f:3c:0e:04:8a:50:9c:b7:f5: 06:73:9e:99:fe:15:d5:e6:af:9d:de:76:02:f9:f7:7b:db:28: 79:00:2d:1f:3a:ed:4a:db:d9:d0:c0:ca:41:5f:b2:23:05:2e: e3:8a:2d:14:7d:70:d8:e7:4e:a9:e2:ae:95:bd:75:37:30:52: 2b:5d:26:28:05:b2:a7:28:c9:4f:ad:61:ae:8e:ff:92:6e:4d: e2:be:07:97:9c:62:25:e7:87:f4:e6:1d:59:7f:f0:4d:83:92: 4d:70:25:ea:b3:ec:e8:f8:2a:e3:a7:f6:39:66:de:19:da:c9: 91:f2:76:43:ef:ea:57:73:99:61:35:91:3d:9f:61:2b:bb:40: 50:98:46:98:db:25:36:15:33:1c:09:2b:e5:d0:5a:9e:b5:bf: 34:0f:68:ac:f0:49:fc:2b:ec:43:a6:8f:3a:67:01:74:7d:95: 21:5d:23:30:ff:15:49:c7:de:74:e1:70:5c:0c:85:b5:e7:6e: 56:d7:a3:d3:e9:14:50:c9:3c:9a:e4:51:54:2b:0b:df:a7:99: 75:c3:e1:af:65:4c:63:62:1a:e8:f8:f6:37:e0:ab:25:4f:2f: d9:fd:92:86 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICE2YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU1MzBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEE4M0U4NkVGNUQ3NzE3 Q0Y2OTVGNTkyQjcyNkQwMzI3NDg2NzVDRTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMlZWoBIlOUwiTRcJQnScwgpJtafHs4jdJDuyjg76Xnf+ok3XD Oc41uETwWXeLGDjdjDHbjcVpSFTf+1wi7LPupC5fnTm/PVgamxokab+bRGYa/bOt LrINBsQyfeSUJb0ALdYhg/8LbLdt/ey++cwynhM6zkQWt7e7UB0nQ6NEo4loq+qv QYc/S2F1AY4hNUjoPwwHkxCDfdXK+4+WDDZJpcJZlkQPaw7lDip3NERMyhrDIcga yzl/ieRKW/zjf8EgeDimtAnaVMvP98Sbb8MMytkAKwKerNBUsAoPzsJli2x6jthZ r/ST5j58w5bix4hzCW6ZXnOZotc2DxQrG9JPAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUqD6G7113F89pX1krcm0DJ0hnXOMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3FENkc3MTEzRjg5cFgxa3JjbTBESjBoblhPTS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIBQmQwDQYJKoZIhvcNAQELBQADggEB AGwi0YMDBYs8UrhJnj6tayX9CvczvZqzN5CXrI88DgSKUJy39QZznpn+FdXmr53e dgL593vbKHkALR867Urb2dDAykFfsiMFLuOKLRR9cNjnTqnirpW9dTcwUitdJigF sqcoyU+tYa6O/5JuTeK+B5ecYiXnh/TmHVl/8E2Dkk1wJeqz7Oj4KuOn9jlm3hna yZHydkPv6ldzmWE1kT2fYSu7QFCYRpjbJTYVMxwJK+XQWp61vzQPaKzwSfwr7EOm jzpnAXR9lSFdIzD/FUnH3nThcFwMhbXnblbXo9PpFFDJPJrkUVQrC9+nmXXD4a9l TGNiGuj49jfgqyVPL9n9koY= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:11 2026 by rpki-client