$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/tgWzfOWpfp-jNzmzbSbsQjPW1Zo.roa File: tgWzfOWpfp-jNzmzbSbsQjPW1Zo.roa (raw, json) Hash identifier: prOQ54OOZolhFqIJK/nGnjjWv0mNdxA6KyYt+Kn5CHA= Subject key identifier: B6:05:B3:7C:E5:A9:7E:9F:A3:37:39:B3:6D:26:EC:42:33:D6:D5:9A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 16CD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tgWzfOWpfp-jNzmzbSbsQjPW1Zo.roa Signing time: Tue 31 Mar 2026 08:02:31 +0000 ROA not before: Tue 31 Mar 2026 08:02:31 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5837 (0x16cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:02:31 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=B605B37CE5A97E9FA33739B36D26EC4233D6D59A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a8:dc:1b:01:b9:05:d5:f6:de:db:38:e8:ff: 6c:a3:78:1d:da:9f:4e:05:aa:77:26:21:8d:09:86: 05:23:95:f5:f3:fd:a2:46:da:be:6f:0b:af:70:c6: a0:71:90:fc:59:99:56:97:86:78:c5:bc:7d:93:ed: e2:0d:69:ef:9a:29:be:17:65:ad:53:bb:9f:8a:c9: d3:d5:04:30:9c:3b:bb:8d:8b:c8:47:0f:12:4b:1b: 6c:be:16:fb:b3:ae:c1:25:37:6a:79:d3:5e:93:01: a3:73:77:d5:eb:ba:a5:79:7b:67:2d:58:22:16:ea: 7e:8f:88:34:fc:2b:ad:a7:23:0b:e8:6a:83:d9:4b: 85:03:e7:bc:38:83:cf:72:83:3c:d0:f2:b9:42:e7: d2:c7:65:6f:9e:5d:e2:5a:69:a4:f8:dd:07:f2:d9: 44:07:75:3a:4b:5f:c7:5a:43:9f:55:8e:95:65:db: b4:8a:bc:7e:fa:73:2a:02:74:5b:11:8a:86:93:15: 0e:11:10:b6:8f:22:d5:79:d3:4d:4f:2a:e0:fe:3b: b1:04:7b:fe:6d:e6:0d:87:d5:d9:38:7b:77:34:5a: 89:27:d0:71:07:13:f7:2c:8d:40:39:6e:29:68:ac: c6:ab:42:14:92:1e:1e:61:aa:12:ed:31:ee:df:7f: 8c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:05:B3:7C:E5:A9:7E:9F:A3:37:39:B3:6D:26:EC:42:33:D6:D5:9A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tgWzfOWpfp-jNzmzbSbsQjPW1Zo.roa sbgp-ipAddrBlock: critical IPv4: 220.159.232.0/24 Signature Algorithm: sha256WithRSAEncryption 02:26:4b:08:34:f1:4e:3d:89:4d:62:af:3f:fd:d7:01:aa:70: e7:9b:3c:0f:a1:5c:cc:50:9c:3b:47:f5:4d:00:10:df:73:77: 28:4c:c3:43:c0:34:a3:7b:b2:af:cc:d4:8b:a5:13:5d:fe:a0: c8:bb:c6:48:83:0f:00:ce:24:9d:90:e1:eb:02:3d:b6:d0:8c: b5:ee:80:c8:17:d1:3b:dd:fb:5b:95:db:3e:fb:c3:f0:58:86: ea:c1:d4:93:01:b4:51:06:6e:32:25:40:92:57:43:07:bb:bd: 92:9b:f0:3a:f6:6a:b8:21:f7:7e:f1:db:c0:ca:ce:8a:08:88: 42:62:9b:b4:3a:3f:2a:d5:e8:8a:6b:13:d3:53:bc:d1:de:db: 8a:dd:8c:e0:93:e4:c4:65:94:f5:f7:67:24:cd:04:61:76:4c: 1a:eb:d4:5b:44:9b:33:af:b7:4a:71:1d:05:ad:4f:31:7c:a4: 91:7b:04:5b:63:13:d6:0b:e9:04:a8:54:04:de:69:11:20:0d: a5:ff:8e:ec:6a:8f:2f:de:3e:9f:87:15:2e:bf:04:02:37:bd: 2d:38:b2:4f:91:38:93:53:ee:4c:ad:a7:6a:27:f8:8e:fd:19: fc:c0:9b:ac:97:c7:2d:86:31:28:3b:8e:68:2f:0b:bb:26:45: 01:59:0c:90 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFs0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAyMzFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEI2MDVCMzdDRTVBOTdF OUZBMzM3MzlCMzZEMjZFQzQyMzNENkQ1OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDqNwbAbkF1fbe2zjo/2yjeB3an04FqncmIY0JhgUjlfXz/aJG 2r5vC69wxqBxkPxZmVaXhnjFvH2T7eINae+aKb4XZa1Tu5+KydPVBDCcO7uNi8hH DxJLG2y+FvuzrsElN2p5016TAaNzd9XruqV5e2ctWCIW6n6PiDT8K62nIwvoaoPZ S4UD57w4g89ygzzQ8rlC59LHZW+eXeJaaaT43Qfy2UQHdTpLX8daQ59VjpVl27SK vH76cyoCdFsRioaTFQ4RELaPItV5001PKuD+O7EEe/5t5g2H1dk4e3c0Wokn0HEH E/csjUA5bilorMarQhSSHh5hqhLtMe7ff4yhAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUtgWzfOWpfp+jNzmzbSbsQjPW1ZowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3RnV3pmT1dwZnAtak56bXpiU2JzUWpQVzFaby5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADcn+gwDQYJKoZIhvcNAQELBQADggEB AAImSwg08U49iU1irz/91wGqcOebPA+hXMxQnDtH9U0AEN9zdyhMw0PANKN7sq/M 1IulE13+oMi7xkiDDwDOJJ2Q4esCPbbQjLXugMgX0Tvd+1uV2z77w/BYhurB1JMB tFEGbjIlQJJXQwe7vZKb8Dr2argh937x28DKzooIiEJim7Q6PyrV6IprE9NTvNHe 24rdjOCT5MRllPX3ZyTNBGF2TBrr1FtEmzOvt0pxHQWtTzF8pJF7BFtjE9YL6QSo VATeaREgDaX/juxqjy/ePp+HFS6/BAI3vS04sk+ROJNT7kytp2on+I79GfzAm6yX xy2GMSg7jmgvC7smRQFZDJA= -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:11 2026 by rpki-client