$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/wDCdXSxqWVxsiEJVwArE1kuh1pc.roa File: wDCdXSxqWVxsiEJVwArE1kuh1pc.roa (raw, json) Hash identifier: tT7ZXUDrry3BU/W1jTa6MZ9gX0G7YNd2rc7ODkKcpR8= Subject key identifier: C0:30:9D:5D:2C:6A:59:5C:6C:88:42:55:C0:0A:C4:D6:4B:A1:D6:97 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 14E6 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/wDCdXSxqWVxsiEJVwArE1kuh1pc.roa Signing time: Tue 31 Mar 2026 07:58:30 +0000 ROA not before: Tue 31 Mar 2026 07:58:30 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5350 (0x14e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:58:30 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=C0309D5D2C6A595C6C884255C00AC4D64BA1D697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:15:dc:2f:20:dc:be:4e:09:cc:73:c5:bc:d0: d0:10:e1:dc:bc:1a:ee:bb:1a:7d:6f:bb:81:f3:aa: 08:46:1e:82:bb:50:1b:7a:d6:05:2a:15:0d:98:60: ad:2b:35:f8:35:b5:ac:8c:b7:54:b6:4b:86:31:bc: a7:7d:e6:7e:46:54:67:8a:f0:b4:8c:71:3d:9f:96: 34:6c:2b:26:1d:ab:d8:29:07:39:c2:c0:49:57:83: de:59:17:24:06:01:33:89:83:01:b9:42:2c:72:9e: f6:2a:1a:70:4f:d8:7e:ff:a1:f7:d2:16:f7:71:66: 6e:65:a4:cc:7c:47:1b:94:9d:53:83:df:43:6b:1f: 95:10:ab:ea:2d:50:02:56:92:23:4b:61:e9:7c:45: 8d:45:6e:bb:71:ff:ab:e8:42:14:db:d5:15:05:37: 3d:48:8d:4a:68:53:a5:f1:22:4f:71:d0:5b:99:d6: 4b:df:ce:e2:71:d9:b7:19:c1:e3:a3:29:d8:3c:99: c0:30:16:20:27:f6:dd:8f:a8:a8:82:8b:46:3f:d6: 08:81:ca:64:4c:89:f0:07:32:36:4f:51:e2:8f:dd: 0b:88:41:69:48:fc:76:68:11:22:fb:d5:a4:f5:01: 10:20:c6:14:cd:66:9f:68:4f:24:18:37:37:16:2f: 74:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:30:9D:5D:2C:6A:59:5C:6C:88:42:55:C0:0A:C4:D6:4B:A1:D6:97 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/wDCdXSxqWVxsiEJVwArE1kuh1pc.roa sbgp-ipAddrBlock: critical IPv4: 220.159.64.0/18 Signature Algorithm: sha256WithRSAEncryption b1:43:8b:c9:c9:fc:c0:8e:62:a9:c8:2b:e4:c3:42:5b:fe:3a: ad:43:1b:8b:00:2a:60:6d:46:ed:81:1a:6e:d2:63:31:b6:ff: 87:17:8c:61:36:50:4c:ba:be:ad:4f:b9:46:eb:ee:75:19:2e: 4a:0a:10:a8:34:a4:25:61:9a:7b:93:24:e7:e9:58:4f:d8:c7: dc:25:b1:69:ce:7e:d3:83:5a:18:29:9e:be:74:16:1f:53:ed: 66:de:53:cd:96:c4:ed:f4:ff:4f:a1:7d:a3:ac:e4:7c:3a:07: 43:01:67:00:cc:b2:fe:ed:aa:e9:43:a6:f9:5b:10:17:46:03: 1a:d6:1a:75:85:be:44:8f:bf:f8:db:81:70:b3:ef:76:54:cd: a4:18:46:6b:33:d0:c2:ce:10:96:61:d7:af:87:a7:2d:32:80: d8:ee:1c:48:1a:f6:3d:2d:24:72:33:ae:74:72:14:c1:6b:dc: 7c:6a:45:25:b8:4e:56:d0:89:ca:44:d9:97:11:f2:ac:84:ae: d5:8f:cb:19:3e:04:06:b7:b5:5d:c4:c3:a4:c1:1f:e0:3f:fa: ad:c3:25:40:8d:6c:b5:4f:e5:4a:2c:6e:32:01:9b:1b:01:07: 98:96:ca:7a:57:e3:d0:09:89:58:ae:8c:92:2d:0f:cf:58:7a: cf:44:db:88 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFOYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU4MzBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEMwMzA5RDVEMkM2QTU5 NUM2Qzg4NDI1NUMwMEFDNEQ2NEJBMUQ2OTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQFdwvINy+TgnMc8W80NAQ4dy8Gu67Gn1vu4HzqghGHoK7UBt6 1gUqFQ2YYK0rNfg1tayMt1S2S4YxvKd95n5GVGeK8LSMcT2fljRsKyYdq9gpBznC wElXg95ZFyQGATOJgwG5QixynvYqGnBP2H7/offSFvdxZm5lpMx8RxuUnVOD30Nr H5UQq+otUAJWkiNLYel8RY1Fbrtx/6voQhTb1RUFNz1IjUpoU6XxIk9x0FuZ1kvf zuJx2bcZweOjKdg8mcAwFiAn9t2PqKiCi0Y/1giBymRMifAHMjZPUeKP3QuIQWlI /HZoESL71aT1ARAgxhTNZp9oTyQYNzcWL3TdAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUwDCdXSxqWVxsiEJVwArE1kuh1pcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3dEQ2RYU3hxV1Z4c2lFSlZ3QXJFMWt1aDFwYy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbcn0AwDQYJKoZIhvcNAQELBQADggEB ALFDi8nJ/MCOYqnIK+TDQlv+Oq1DG4sAKmBtRu2BGm7SYzG2/4cXjGE2UEy6vq1P uUbr7nUZLkoKEKg0pCVhmnuTJOfpWE/Yx9wlsWnOftODWhgpnr50Fh9T7WbeU82W xO30/0+hfaOs5Hw6B0MBZwDMsv7tqulDpvlbEBdGAxrWGnWFvkSPv/jbgXCz73ZU zaQYRmsz0MLOEJZh16+Hpy0ygNjuHEga9j0tJHIzrnRyFMFr3HxqRSW4TlbQicpE 2ZcR8qyErtWPyxk+BAa3tV3Ew6TBH+A/+q3DJUCNbLVP5UosbjIBmxsBB5iWynpX 49AJiViujJItD89Yes9E24g= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:58 2026 by rpki-client