$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/vEPhRYpW_zDibgZbb-VUPLkK2Zo.roa File: vEPhRYpW_zDibgZbb-VUPLkK2Zo.roa (raw, json) Hash identifier: 4VFg681uDQbL3UVkMhoPxoBrf8EkerhVZoxkY9s9fW4= Subject key identifier: BC:43:E1:45:8A:56:FF:30:E2:6E:06:5B:6F:E5:54:3C:B9:0A:D9:9A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 14DD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vEPhRYpW_zDibgZbb-VUPLkK2Zo.roa Signing time: Tue 31 Mar 2026 07:58:26 +0000 ROA not before: Tue 31 Mar 2026 07:58:26 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5341 (0x14dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:58:26 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=BC43E1458A56FF30E26E065B6FE5543CB90AD99A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:3f:1b:cc:b4:5c:eb:d0:e4:3d:92:37:ec:8c: 46:6c:28:27:73:27:24:f6:e3:f8:c2:87:a4:f3:79: f6:13:8a:8d:62:c4:34:7c:09:cb:1f:f2:bb:11:06: f4:8e:e5:a7:1c:9f:af:80:59:f6:d0:6c:53:5a:f8: c9:d2:e9:6f:26:40:d2:04:66:8b:cc:df:23:87:4e: 17:48:50:4b:e9:a1:cb:ed:53:f3:b0:ed:d2:ed:9d: da:4b:4d:91:97:f0:74:12:b0:4a:99:34:ba:10:27: c8:d1:5b:d4:08:be:40:15:a5:38:3c:c3:e7:0f:1b: 49:94:f6:10:42:bf:bf:60:bd:4e:47:4a:14:f6:86: 67:e5:51:47:50:4d:79:e8:02:61:f1:d4:7d:0f:58: 66:b0:d1:49:ed:a8:f4:df:81:df:3b:bd:22:c4:27: 5b:f7:90:f8:8b:e3:40:81:29:78:1e:05:a6:0a:a9: f6:ef:0b:21:6f:e9:57:93:53:88:5f:de:54:2f:37: c1:b3:a7:a3:ee:84:20:56:d1:e7:f3:3b:d5:0a:20: c3:d0:20:66:9a:78:25:e7:09:ca:6d:cb:d2:20:3e: 4f:c3:2a:8a:f4:84:67:bc:e4:3b:79:76:f0:b9:6a: 93:0e:1e:72:2f:a0:12:ca:16:09:bb:65:2d:31:9b: 76:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:43:E1:45:8A:56:FF:30:E2:6E:06:5B:6F:E5:54:3C:B9:0A:D9:9A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vEPhRYpW_zDibgZbb-VUPLkK2Zo.roa sbgp-ipAddrBlock: critical IPv4: 220.159.21.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:9c:ee:c6:cf:c0:6c:e1:62:13:e4:31:3f:53:c7:78:05:dc: e3:3b:91:0d:2a:e8:78:59:48:2f:0d:5b:56:e6:00:3b:5c:41: 8d:cc:22:2d:7a:ef:bf:84:75:81:21:c2:c7:f5:f4:4f:28:f4: 8e:96:5c:7b:4f:55:35:3b:24:62:0e:0d:0a:c4:9f:76:c7:27: 53:bd:bd:4a:3f:c8:cf:fa:da:a8:e4:17:9b:c3:c7:0e:67:6d: 15:2e:bf:33:a2:dc:b5:43:61:94:dd:eb:d5:10:c8:ae:03:c9: ff:ec:e0:47:bf:5c:44:83:ed:38:f6:9e:76:49:ba:37:6c:4d: b4:64:ba:c0:d2:2d:e1:dd:7f:50:f0:1b:6f:69:23:8c:97:11: 7f:e8:b0:a8:84:ee:06:64:6a:60:dd:47:21:c4:da:16:53:87: 85:8b:2c:ab:e9:3b:4c:4b:d1:d0:79:3b:d0:6c:94:c9:1f:af: d2:3a:14:fc:6c:96:3c:f3:f9:5b:b8:99:d1:65:2b:74:3f:71: 45:1c:1a:b3:e0:74:8e:fc:38:c6:5c:11:11:fc:13:fe:0e:b1: 4a:3a:22:19:da:cf:c9:f3:c8:55:de:d0:65:05:52:cb:f3:f6: 68:ab:29:c1:9b:52:ce:d8:05:f3:f1:6b:c0:1c:a3:63:b7:60: a1:17:0f:5e -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFN0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU4MjZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEJDNDNFMTQ1OEE1NkZG MzBFMjZFMDY1QjZGRTU1NDNDQjkwQUQ5OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLPxvMtFzr0OQ9kjfsjEZsKCdzJyT24/jCh6TzefYTio1ixDR8 Ccsf8rsRBvSO5accn6+AWfbQbFNa+MnS6W8mQNIEZovM3yOHThdIUEvpocvtU/Ow 7dLtndpLTZGX8HQSsEqZNLoQJ8jRW9QIvkAVpTg8w+cPG0mU9hBCv79gvU5HShT2 hmflUUdQTXnoAmHx1H0PWGaw0UntqPTfgd87vSLEJ1v3kPiL40CBKXgeBaYKqfbv CyFv6VeTU4hf3lQvN8Gzp6PuhCBW0efzO9UKIMPQIGaaeCXnCcpty9IgPk/DKor0 hGe85Dt5dvC5apMOHnIvoBLKFgm7ZS0xm3ZhAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUvEPhRYpW/zDibgZbb+VUPLkK2ZowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3ZFUGhSWXBXX3pEaWJnWmJiLVZVUExrSzJaby5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADcnxUwDQYJKoZIhvcNAQELBQADggEB AB+c7sbPwGzhYhPkMT9Tx3gF3OM7kQ0q6HhZSC8NW1bmADtcQY3MIi1677+EdYEh wsf19E8o9I6WXHtPVTU7JGIODQrEn3bHJ1O9vUo/yM/62qjkF5vDxw5nbRUuvzOi 3LVDYZTd69UQyK4Dyf/s4Ee/XESD7Tj2nnZJujdsTbRkusDSLeHdf1DwG29pI4yX EX/osKiE7gZkamDdRyHE2hZTh4WLLKvpO0xL0dB5O9BslMkfr9I6FPxsljzz+Vu4 mdFlK3Q/cUUcGrPgdI78OMZcERH8E/4OsUo6Ihnaz8nzyFXe0GUFUsvz9mirKcGb Us7YBfPxa8Aco2O3YKEXD14= -----END CERTIFICATE-----Generated at Tue Apr 7 21:01:09 2026 by rpki-client