$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/u3WLAJ1RjTCijvYSJAovJxAbXXk.roa File: u3WLAJ1RjTCijvYSJAovJxAbXXk.roa (raw, json) Hash identifier: C3219/QQcKEJwRUrLnXFIOZ8Ew59Ra1IUfm3SfzaNq0= Subject key identifier: BB:75:8B:00:9D:51:8D:30:A2:8E:F6:12:24:0A:2F:27:10:1B:5D:79 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 16E8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/u3WLAJ1RjTCijvYSJAovJxAbXXk.roa Signing time: Tue 31 Mar 2026 08:02:44 +0000 ROA not before: Tue 31 Mar 2026 08:02:44 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.210.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5864 (0x16e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:02:44 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=BB758B009D518D30A28EF612240A2F27101B5D79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:91:19:3e:d2:90:1f:f3:33:68:b7:90:2f:07: 90:55:34:a0:b8:03:c2:7a:14:11:42:05:33:0f:98: 73:15:6a:bc:81:10:55:28:31:c1:5f:f1:e5:f4:50: 75:dc:c6:39:c9:e0:81:96:4f:bb:3a:b7:20:ee:f7: 0b:c9:1a:bb:10:06:a3:84:b8:56:1b:e5:2b:40:15: 02:c3:0c:20:a5:94:5c:1e:3f:fa:f2:52:54:b4:74: be:85:42:a5:be:60:20:2c:2c:72:8f:de:4f:1c:5b: ff:98:61:3b:d0:d0:08:52:52:24:e5:e9:39:d3:24: db:61:1e:86:44:f8:b4:38:6e:c8:03:28:30:61:5d: 6e:47:13:93:96:eb:e5:bd:3f:c3:f4:37:ff:2d:22: 4c:71:b2:9f:71:e7:d0:f0:42:53:68:b2:a2:56:1f: 93:b1:1c:63:9f:6d:94:63:24:ed:8b:15:6b:87:65: 60:e1:bc:51:12:1f:5d:18:f6:3a:8f:39:d0:46:37: 5b:d4:7e:09:ca:b4:b6:7a:65:e5:4f:75:73:7d:57: bc:c1:a9:aa:15:1b:4d:f5:9b:37:f3:cc:b7:50:0b: 7b:4f:37:85:21:56:56:aa:c7:c8:b2:ba:5c:6e:7c: 19:20:ea:f9:b8:d8:3d:80:9b:a2:03:14:10:51:02: ee:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:75:8B:00:9D:51:8D:30:A2:8E:F6:12:24:0A:2F:27:10:1B:5D:79 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/u3WLAJ1RjTCijvYSJAovJxAbXXk.roa sbgp-ipAddrBlock: critical IPv4: 220.210.20.0/24 Signature Algorithm: sha256WithRSAEncryption d1:07:7f:0f:21:86:b4:8e:85:b5:85:b4:54:a0:5d:a5:bd:64: 8a:83:4b:19:ea:86:42:8b:4e:7c:31:01:ff:be:4b:a8:7a:a3: ba:e3:9f:1a:78:3a:a0:cd:9c:0e:b9:9f:03:e9:7f:23:51:ea: 87:07:3b:4b:82:1e:21:9d:c1:3a:0b:38:a6:c8:3a:67:15:23: 88:44:12:a8:d4:5f:fe:5c:de:89:14:3f:3d:f5:34:3c:f9:ba: 5e:2c:db:38:60:7a:1f:5a:cd:74:fd:55:34:14:50:56:05:a1: e0:04:66:5a:d3:33:08:2c:c0:a1:8f:82:5b:66:cd:0d:6b:0e: 05:2f:f5:52:9e:cf:50:59:cc:98:fb:df:4d:61:3f:39:1d:d5: b9:e2:62:03:5b:cd:b2:3e:c1:b3:b7:69:32:7f:35:d3:8f:a2: 96:29:e8:1f:b2:0f:6b:cf:7c:fe:7f:26:84:b1:15:a4:a9:9f: 3b:e0:71:84:e7:07:91:6a:67:ab:24:49:0e:bf:24:cc:fa:7f: 99:9b:c3:29:91:e6:4e:be:05:bf:f1:e6:8d:5c:1b:43:10:40: 8a:3e:e4:a0:5e:30:02:f8:1f:3b:f3:73:56:50:84:4e:03:e6: 57:90:df:45:83:c0:03:dc:c6:f6:12:6b:44:5e:08:0f:3e:28: ab:c8:e1:1e -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFugwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAyNDRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEJCNzU4QjAwOUQ1MThE MzBBMjhFRjYxMjI0MEEyRjI3MTAxQjVENzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZkRk+0pAf8zNot5AvB5BVNKC4A8J6FBFCBTMPmHMVaryBEFUo McFf8eX0UHXcxjnJ4IGWT7s6tyDu9wvJGrsQBqOEuFYb5StAFQLDDCCllFweP/ry UlS0dL6FQqW+YCAsLHKP3k8cW/+YYTvQ0AhSUiTl6TnTJNthHoZE+LQ4bsgDKDBh XW5HE5OW6+W9P8P0N/8tIkxxsp9x59DwQlNosqJWH5OxHGOfbZRjJO2LFWuHZWDh vFESH10Y9jqPOdBGN1vUfgnKtLZ6ZeVPdXN9V7zBqaoVG031mzfzzLdQC3tPN4Uh Vlaqx8iyulxufBkg6vm42D2Am6IDFBBRAu7bAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUu3WLAJ1RjTCijvYSJAovJxAbXXkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3UzV0xBSjFSalRDaWp2WVNKQW92SnhBYlhYay5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADc0hQwDQYJKoZIhvcNAQELBQADggEB ANEHfw8hhrSOhbWFtFSgXaW9ZIqDSxnqhkKLTnwxAf++S6h6o7rjnxp4OqDNnA65 nwPpfyNR6ocHO0uCHiGdwToLOKbIOmcVI4hEEqjUX/5c3okUPz31NDz5ul4s2zhg eh9azXT9VTQUUFYFoeAEZlrTMwgswKGPgltmzQ1rDgUv9VKez1BZzJj7301hPzkd 1bniYgNbzbI+wbO3aTJ/NdOPopYp6B+yD2vPfP5/JoSxFaSpnzvgcYTnB5FqZ6sk SQ6/JMz6f5mbwymR5k6+Bb/x5o1cG0MQQIo+5KBeMAL4Hzvzc1ZQhE4D5leQ30WD wAPcxvYSa0ReCA8+KKvI4R4= -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:04 2026 by rpki-client