$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/yXQkkfSNLI2k8yKky-EuS3X8FAw.roa File: yXQkkfSNLI2k8yKky-EuS3X8FAw.roa (raw, json) Hash identifier: c0WeWJDPg3EyHPGYy9hBkLSvs6oGal156DNZnOnR57Q= Subject key identifier: C9:74:24:91:F4:8D:2C:8D:A4:F3:22:A4:CB:E1:2E:4B:75:FC:14:0C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 17D9 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yXQkkfSNLI2k8yKky-EuS3X8FAw.roa Signing time: Tue 31 Mar 2026 08:04:40 +0000 ROA not before: Tue 31 Mar 2026 08:04:40 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.210.78.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6105 (0x17d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:04:40 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=C9742491F48D2C8DA4F322A4CBE12E4B75FC140C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:be:9d:b3:56:7c:d4:72:ea:5c:20:c0:f1:a4: 9f:e4:32:5a:be:66:82:af:23:93:c0:a4:e4:5a:7b: 1d:58:24:2d:43:a1:08:2d:cd:de:04:ad:fc:2d:eb: 4e:92:59:e4:30:fe:2b:59:b9:06:3f:d0:a7:c2:c9: 25:a8:71:af:cf:12:fe:d7:51:db:65:c4:a0:50:c9: 86:e4:06:6e:d3:75:ae:4b:32:85:c3:76:2c:cc:a8: 2c:05:2e:18:5b:ea:6c:8d:05:1a:4a:31:75:5d:12: 65:d1:c9:64:fb:8a:da:0f:00:1d:76:0d:0d:83:65: 45:fa:f0:46:ee:e1:63:91:33:9a:4c:18:84:d2:9a: bb:a5:94:76:0e:ec:67:b3:c2:8c:a9:a8:95:e6:59: 5a:a1:e2:18:59:4f:86:2f:e9:7c:94:36:f1:51:78: f3:1e:46:91:55:e1:8a:26:31:5b:9d:d1:16:18:c2: d3:37:3f:c8:cc:49:a2:6e:81:55:67:7f:23:97:77: 42:8d:62:f1:6d:2b:83:53:d3:ea:e4:45:4d:d6:cc: 30:1c:59:f7:33:6a:6a:60:72:15:8f:b4:bb:f8:18: 71:54:6b:d6:d0:c4:e1:1c:e8:22:19:a8:77:c0:81: c7:65:aa:a9:4c:27:bb:4e:01:2f:bb:3e:ef:9a:ee: 78:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:74:24:91:F4:8D:2C:8D:A4:F3:22:A4:CB:E1:2E:4B:75:FC:14:0C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yXQkkfSNLI2k8yKky-EuS3X8FAw.roa sbgp-ipAddrBlock: critical IPv4: 220.210.78.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:4c:8d:a4:fa:9f:58:48:63:aa:fd:54:26:8f:e9:2b:f1:3e: 51:d6:83:22:09:72:44:76:df:43:ce:f1:f5:60:c1:da:af:24: f4:8d:02:43:b5:e4:27:54:68:2c:81:a0:77:08:6d:17:50:b5: 7a:c7:4e:5d:d3:4c:2e:20:0f:da:91:11:60:f4:79:62:c6:b1: 9b:31:36:8e:9b:ee:ca:ad:b8:05:0a:2c:34:d0:2c:1a:cc:3e: f0:49:c3:54:b4:ad:57:80:04:77:e7:61:d5:a9:72:68:98:15: e4:19:db:f3:07:1b:06:7f:d1:66:ec:42:a2:e8:62:52:4c:eb: 18:3b:87:14:de:0d:df:92:a4:8e:d4:35:88:8b:82:96:bd:03: 04:79:00:9a:61:a8:75:f2:25:66:54:f6:7e:8b:04:96:57:cd: 3d:51:80:7b:a6:38:c8:9f:46:58:ac:5c:f9:3d:bd:48:cd:95: aa:df:2d:a2:89:7b:b0:67:0c:b5:a9:0d:d3:bd:e3:8f:9c:ed: e0:4f:16:fe:b1:11:d7:27:0a:c8:3d:ab:49:d5:8c:f7:01:21: 9d:4b:5a:43:8a:80:45:cf:1e:ea:34:66:8c:f8:ec:e7:95:1e: 88:21:d1:76:b8:45:8c:2d:3c:0e:81:3a:79:26:1c:82:95:b7: 8d:0b:ff:1c -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICF9kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODA0NDBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM5NzQyNDkxRjQ4RDJD OERBNEYzMjJBNENCRTEyRTRCNzVGQzE0MEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxvp2zVnzUcupcIMDxpJ/kMlq+ZoKvI5PApORaex1YJC1DoQgt zd4Erfwt606SWeQw/itZuQY/0KfCySWoca/PEv7XUdtlxKBQyYbkBm7Tda5LMoXD dizMqCwFLhhb6myNBRpKMXVdEmXRyWT7itoPAB12DQ2DZUX68Ebu4WORM5pMGITS mrullHYO7GezwoypqJXmWVqh4hhZT4Yv6XyUNvFRePMeRpFV4YomMVud0RYYwtM3 P8jMSaJugVVnfyOXd0KNYvFtK4NT0+rkRU3WzDAcWfczampgchWPtLv4GHFUa9bQ xOEc6CIZqHfAgcdlqqlMJ7tOAS+7Pu+a7ng1AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUyXQkkfSNLI2k8yKky+EuS3X8FAwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3lYUWtrZlNOTEkyazh5S2t5LUV1UzNYOEZBdy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHc0k4wDQYJKoZIhvcNAQELBQADggEB AC5MjaT6n1hIY6r9VCaP6SvxPlHWgyIJckR230PO8fVgwdqvJPSNAkO15CdUaCyB oHcIbRdQtXrHTl3TTC4gD9qREWD0eWLGsZsxNo6b7sqtuAUKLDTQLBrMPvBJw1S0 rVeABHfnYdWpcmiYFeQZ2/MHGwZ/0WbsQqLoYlJM6xg7hxTeDd+SpI7UNYiLgpa9 AwR5AJphqHXyJWZU9n6LBJZXzT1RgHumOMifRlisXPk9vUjNlarfLaKJe7BnDLWp DdO944+c7eBPFv6xEdcnCsg9q0nVjPcBIZ1LWkOKgEXPHuo0Zoz47OeVHogh0Xa4 RYwtPA6BOnkmHIKVt40L/xw= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:28 2026 by rpki-client