$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/rG47WIjoxrWNP83hcpZ-3dCLtes.roa File: rG47WIjoxrWNP83hcpZ-3dCLtes.roa (raw, json) Hash identifier: 0OLfohnBtwSYQbMRxwNjhSY+7Jh5BMP8c+kgCcm6yNw= Subject key identifier: AC:6E:3B:58:88:E8:C6:B5:8D:3F:CD:E1:72:96:7E:DD:D0:8B:B5:EB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1721 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/rG47WIjoxrWNP83hcpZ-3dCLtes.roa Signing time: Tue 31 Mar 2026 08:03:12 +0000 ROA not before: Tue 31 Mar 2026 08:03:12 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.74.248.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5921 (0x1721) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:03:12 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=AC6E3B5888E8C6B58D3FCDE172967EDDD08BB5EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:45:0d:0e:65:03:74:2d:94:46:f0:29:7a:11: c5:7e:ea:b0:ce:c0:0b:e1:bb:7d:55:3e:f6:6f:e6: f2:89:d0:47:e2:a1:e2:c5:cb:0a:83:88:01:08:e8: 6c:5c:3a:c4:f6:e7:0d:cc:bf:b9:bb:10:02:77:eb: a8:5f:d4:ea:0b:9c:03:40:80:32:53:7d:b6:7a:00: 08:9d:7a:28:0e:ee:cb:ba:ed:b9:29:74:58:2d:be: 29:f7:61:1f:43:5e:56:f7:04:98:1d:fd:39:fb:00: 8f:20:e4:3c:d7:41:05:98:c8:3a:c5:0d:20:00:1b: 3a:0b:0f:cb:ce:66:80:bb:df:97:1a:14:c0:79:ac: 9d:19:bd:f3:c9:fa:43:e9:51:17:43:1a:6a:4f:cc: de:8e:aa:53:26:18:05:2b:1f:21:48:9f:e8:32:7d: b1:b1:c5:66:44:3e:eb:6b:12:0d:ec:1b:2e:6f:3f: 5b:df:01:b5:64:31:36:b3:a4:f8:d1:6a:40:0e:23: 4d:45:61:44:24:d3:63:7f:f7:9f:b1:7a:cd:42:76: 49:a0:96:dc:5b:79:06:f7:a2:13:9b:cb:20:16:46: c9:0d:8c:be:e5:1b:43:16:a7:f5:97:ca:23:a3:e2: 1a:bc:b8:0a:ee:d7:2c:cd:43:4f:b5:fe:88:a0:33: 78:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:6E:3B:58:88:E8:C6:B5:8D:3F:CD:E1:72:96:7E:DD:D0:8B:B5:EB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/rG47WIjoxrWNP83hcpZ-3dCLtes.roa sbgp-ipAddrBlock: critical IPv4: 1.74.248.0/21 Signature Algorithm: sha256WithRSAEncryption 0b:e0:e1:31:8d:8c:40:61:e1:74:6a:c1:15:de:c4:3f:07:c7: a3:e6:95:8c:c6:aa:f5:0a:ff:97:d4:a7:33:33:5b:18:88:4b: 8d:f2:4c:e2:e9:9b:53:4b:32:47:79:f4:0e:cd:4a:b0:9b:28: 66:8d:0f:b9:dd:26:76:8b:6a:17:8e:32:a5:b8:3d:47:9a:1d: 2f:1a:4e:7a:14:d8:f5:e4:28:65:24:4e:ea:67:82:71:ca:60: fe:90:18:27:bb:ff:2e:2d:13:3e:36:b7:25:d3:51:18:39:65: 13:a9:ab:c9:00:72:ac:89:cd:b2:73:54:18:e2:b7:83:56:b4: 10:79:0b:5f:ea:72:d5:f8:1e:b6:31:cb:65:b7:7f:81:9f:3d: c4:fb:ef:c3:1e:71:ff:a3:9f:04:44:25:ee:9f:d9:07:31:d5: 32:83:b4:f1:16:d5:f4:eb:0b:80:20:5d:79:a2:28:6b:58:cb: f3:c1:43:7d:8c:be:da:77:39:c7:10:ac:fe:3c:01:a1:b0:b6: 02:86:24:92:13:95:c8:a2:9c:7d:14:e6:fa:2c:3e:8b:af:45: 14:e2:3a:ca:d0:fd:d8:29:01:15:b6:bb:26:d1:e6:b6:3e:e3: 20:88:21:52:ae:a4:02:b5:44:00:87:51:11:37:73:b3:ba:b8: 3a:41:84:3e -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFyEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAzMTJaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEFDNkUzQjU4ODhFOEM2 QjU4RDNGQ0RFMTcyOTY3RURERDA4QkI1RUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClRQ0OZQN0LZRG8Cl6EcV+6rDOwAvhu31VPvZv5vKJ0EfioeLF ywqDiAEI6GxcOsT25w3Mv7m7EAJ366hf1OoLnANAgDJTfbZ6AAideigO7su67bkp dFgtvin3YR9DXlb3BJgd/Tn7AI8g5DzXQQWYyDrFDSAAGzoLD8vOZoC735caFMB5 rJ0ZvfPJ+kPpURdDGmpPzN6OqlMmGAUrHyFIn+gyfbGxxWZEPutrEg3sGy5vP1vf AbVkMTazpPjRakAOI01FYUQk02N/95+xes1CdkmgltxbeQb3ohObyyAWRskNjL7l G0MWp/WXyiOj4hq8uAru1yzNQ0+1/oigM3iTAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUrG47WIjoxrWNP83hcpZ+3dCLteswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3JHNDdXSWpveHJXTlA4M2hjcFotM2RDTHRlcy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMBSvgwDQYJKoZIhvcNAQELBQADggEB AAvg4TGNjEBh4XRqwRXexD8Hx6PmlYzGqvUK/5fUpzMzWxiIS43yTOLpm1NLMkd5 9A7NSrCbKGaND7ndJnaLaheOMqW4PUeaHS8aTnoU2PXkKGUkTupngnHKYP6QGCe7 /y4tEz42tyXTURg5ZROpq8kAcqyJzbJzVBjit4NWtBB5C1/qctX4HrYxy2W3f4Gf PcT778Mecf+jnwREJe6f2Qcx1TKDtPEW1fTrC4AgXXmiKGtYy/PBQ32Mvtp3OccQ rP48AaGwtgKGJJITlciinH0U5vosPouvRRTiOsrQ/dgpARW2uybR5rY+4yCIIVKu pAK1RACHURE3c7O6uDpBhD4= -----END CERTIFICATE-----Generated at Tue Apr 7 19:42:56 2026 by rpki-client