$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ueU91xOjbsgDyOML5etKy-kcpQc.roa File: ueU91xOjbsgDyOML5etKy-kcpQc.roa (raw, json) Hash identifier: pUxwHgQuvBsxsyj2bNHVKDKQkP2MgeT7XsBd+rQUqgc= Subject key identifier: B9:E5:3D:D7:13:A3:6E:C8:03:C8:E3:0B:E5:EB:4A:CB:E9:1C:A5:07 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1714 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ueU91xOjbsgDyOML5etKy-kcpQc.roa Signing time: Tue 31 Mar 2026 08:03:07 +0000 ROA not before: Tue 31 Mar 2026 08:03:07 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 219.114.188.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5908 (0x1714) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:03:07 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=B9E53DD713A36EC803C8E30BE5EB4ACBE91CA507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d0:7c:09:64:59:4d:14:00:75:f4:eb:8f:f7: fb:69:ea:49:b9:ac:6c:9d:7c:8f:17:31:23:30:1d: d4:3e:09:07:20:1b:da:be:93:4a:60:ab:20:13:9b: 44:f3:ec:fd:3c:2e:67:98:80:ee:57:61:42:c2:d0: d0:ab:56:fe:5d:07:3d:19:1b:8b:ce:47:42:d4:14: a5:a3:f8:f8:26:20:e4:7f:40:2d:4f:9c:e9:65:46: a8:e3:a1:4f:68:5a:7c:0b:d4:86:60:85:f7:c8:6c: c1:1e:29:aa:b7:27:4e:b6:85:d3:e5:47:81:12:3d: 0b:b2:1f:cf:00:2c:fd:7b:d5:4a:43:55:5a:54:48: 4b:04:8c:c3:9e:45:43:e6:4d:d6:96:a1:14:d2:dd: 61:d8:05:ff:b7:5c:0d:cb:7c:73:c7:2c:92:2d:4d: 86:e5:1a:4b:f4:49:54:1b:b3:16:51:0f:05:c9:6e: ae:d7:9d:3a:00:60:41:b5:36:fa:3c:4b:18:88:d5: b4:47:0f:55:11:4b:35:ee:8d:13:60:b4:e6:6c:e1: f9:a7:1d:4e:fd:d8:4b:d2:d5:3f:14:94:7a:fb:38: e4:ef:8e:b2:62:cb:60:7b:fc:35:76:45:af:6f:92: bc:cd:fa:c7:e6:a6:19:c4:d5:3e:ad:de:4c:3d:34: a7:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:E5:3D:D7:13:A3:6E:C8:03:C8:E3:0B:E5:EB:4A:CB:E9:1C:A5:07 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ueU91xOjbsgDyOML5etKy-kcpQc.roa sbgp-ipAddrBlock: critical IPv4: 219.114.188.0/23 Signature Algorithm: sha256WithRSAEncryption 61:41:b6:90:d4:86:09:9d:b6:9e:b5:bf:cb:0d:99:7d:34:61: f2:29:fa:31:5b:b8:0a:59:b7:cb:03:fb:8f:a1:b1:b1:8a:70: 63:dd:bd:90:2e:f3:a4:ed:28:ad:2a:d8:a1:3e:bb:fd:03:57: e5:17:d3:8e:7a:99:10:eb:f6:27:8c:a3:9b:26:a5:e4:ad:77: 75:c1:e9:6c:5a:7e:3a:ab:77:43:6e:85:ec:3a:07:65:e5:d2: 61:7e:e3:96:ae:6f:22:36:9a:31:cc:a4:21:85:2d:f9:14:e0: a1:1f:8d:dd:18:a7:34:ea:a7:a0:42:88:8f:7a:97:59:08:e6: cf:4c:62:69:94:31:47:58:72:1c:77:81:da:0f:7d:dc:93:77: c0:d0:73:99:60:9c:4a:94:1d:ab:18:aa:2b:bd:f2:2e:4a:88: 0c:be:cf:71:b9:0b:ea:52:98:b1:8a:9a:5e:53:09:ba:4f:c7: e0:98:6c:32:de:82:b0:64:5a:32:2e:54:48:3e:56:30:6e:41: 43:0f:cd:da:cb:4c:c0:76:f5:4e:9d:0e:ab:be:27:01:e2:45: 0a:39:2a:4c:76:c4:b5:5e:08:0b:3a:7b:de:90:a6:ca:45:e7: 5a:96:f1:46:7c:67:c8:85:72:c8:3f:e8:b4:28:3c:6b:7a:05: a6:5e:2e:ea -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFxQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAzMDdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEI5RTUzREQ3MTNBMzZF QzgwM0M4RTMwQkU1RUI0QUNCRTkxQ0E1MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDK0HwJZFlNFAB19OuP9/tp6km5rGydfI8XMSMwHdQ+CQcgG9q+ k0pgqyATm0Tz7P08LmeYgO5XYULC0NCrVv5dBz0ZG4vOR0LUFKWj+PgmIOR/QC1P nOllRqjjoU9oWnwL1IZghffIbMEeKaq3J062hdPlR4ESPQuyH88ALP171UpDVVpU SEsEjMOeRUPmTdaWoRTS3WHYBf+3XA3LfHPHLJItTYblGkv0SVQbsxZRDwXJbq7X nToAYEG1Nvo8SxiI1bRHD1URSzXujRNgtOZs4fmnHU792EvS1T8UlHr7OOTvjrJi y2B7/DV2Ra9vkrzN+sfmphnE1T6t3kw9NKeNAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUueU91xOjbsgDyOML5etKy+kcpQcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3VlVTkxeE9qYnNnRHlPTUw1ZXRLeS1rY3BRYy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHbcrwwDQYJKoZIhvcNAQELBQADggEB AGFBtpDUhgmdtp61v8sNmX00YfIp+jFbuApZt8sD+4+hsbGKcGPdvZAu86TtKK0q 2KE+u/0DV+UX0456mRDr9ieMo5smpeStd3XB6Wxafjqrd0Nuhew6B2Xl0mF+45au byI2mjHMpCGFLfkU4KEfjd0YpzTqp6BCiI96l1kI5s9MYmmUMUdYchx3gdoPfdyT d8DQc5lgnEqUHasYqiu98i5KiAy+z3G5C+pSmLGKml5TCbpPx+CYbDLegrBkWjIu VEg+VjBuQUMPzdrLTMB29U6dDqu+JwHiRQo5Kkx2xLVeCAs6e96QpspF51qW8UZ8 Z8iFcsg/6LQoPGt6BaZeLuo= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:09 2026 by rpki-client