$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/yqfn10N8HRcRvgQqVVUGoATUrNU.roa File: yqfn10N8HRcRvgQqVVUGoATUrNU.roa (raw, json) Hash identifier: 9ZmLi/PfdcaPMVoe0Mk7cJfWKIjT4bnvk0r1Ac2/L5M= Subject key identifier: CA:A7:E7:D7:43:7C:1D:17:11:BE:04:2A:55:55:06:A0:04:D4:AC:D5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1497 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yqfn10N8HRcRvgQqVVUGoATUrNU.roa Signing time: Tue 31 Mar 2026 07:57:51 +0000 ROA not before: Tue 31 Mar 2026 07:57:51 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.76.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5271 (0x1497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:57:51 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=CAA7E7D7437C1D1711BE042A555506A004D4ACD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8b:36:43:81:36:c7:2e:60:6c:20:cd:17:20: 8b:b8:c8:ec:a0:69:36:57:1a:58:96:02:11:76:eb: 70:45:fe:fa:4e:75:e0:0e:80:a4:94:b5:1b:7c:8e: 86:f2:a2:90:a3:0d:0c:b0:5d:36:c6:61:a4:20:63: 7a:39:3b:91:05:e7:77:c1:e6:41:23:b5:c2:9e:ff: cc:ec:3a:95:8b:44:f1:0c:bb:b0:35:14:b2:47:03: 8f:32:d2:23:76:f8:bf:68:17:3c:25:52:e7:fc:fd: fd:98:f1:ec:d9:81:d4:d3:0a:94:c0:26:c7:73:f2: a9:6a:6a:a4:e0:c3:cc:c7:ec:a2:e6:6c:a5:1f:c9: b3:69:ff:b8:7d:44:b4:ff:03:51:e0:69:19:b7:cc: 19:56:28:d0:c2:4a:90:e5:e6:b7:50:ef:66:8c:db: e4:38:69:4a:e2:4f:a9:be:45:4c:95:f6:bb:ec:5b: 2c:1e:6b:99:db:29:e9:a5:e2:c9:ed:57:67:b2:25: 7b:2f:bc:20:f1:d1:23:51:3d:fc:c7:13:57:e0:05: 64:c3:0b:47:8e:33:86:3e:a1:c3:ab:6f:24:f2:d8: 11:d1:ad:b2:5d:14:8a:bd:6f:a2:b6:ae:f5:65:e5: ad:de:e1:f2:2d:70:45:f9:a6:09:c3:9d:81:c2:a4: 9d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:A7:E7:D7:43:7C:1D:17:11:BE:04:2A:55:55:06:A0:04:D4:AC:D5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yqfn10N8HRcRvgQqVVUGoATUrNU.roa sbgp-ipAddrBlock: critical IPv4: 1.79.76.0/23 Signature Algorithm: sha256WithRSAEncryption cc:83:f7:6e:1d:26:20:f0:8b:e5:2e:a3:b3:b9:63:1c:db:62: 3b:c5:1e:c8:20:bf:6a:cc:53:92:8c:fc:41:9b:46:64:58:f8: ad:43:ba:54:32:3e:0e:04:8e:3f:e2:be:1b:66:f3:f3:86:49: bf:de:6f:03:f8:6b:d8:de:e5:d3:c0:7a:b6:ee:97:e4:6d:a0: 08:fd:1a:93:cd:cd:0f:77:72:9e:f0:46:e0:79:33:f8:72:3c: 50:5b:53:1a:ee:3b:ea:30:88:07:46:cc:2d:fc:17:54:ad:dc: 74:7d:58:71:15:e1:9a:d1:f8:3e:14:bf:b1:01:2b:1f:9f:61: 40:b4:82:6c:92:66:a3:5b:79:79:84:bc:e2:46:03:4e:da:f0: c9:2a:95:fb:9c:b0:2e:53:33:f6:70:0d:b1:fb:01:d2:db:30: 57:b5:0e:3b:0e:50:37:e5:a8:ce:3e:c8:e1:26:31:37:76:65: d2:ec:0c:6a:fc:d1:89:37:f6:bc:61:39:12:1d:ad:69:70:17: 12:88:4e:40:80:59:37:13:ec:68:66:62:19:b4:f0:05:31:45: d5:b9:89:e6:95:24:28:70:bd:bf:49:a3:2c:e6:22:f1:5f:43: b0:25:33:f6:ba:d7:7f:e4:42:fa:4b:c0:58:04:1c:39:62:c3: 7c:19:22:47 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFJcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU3NTFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKENBQTdFN0Q3NDM3QzFE MTcxMUJFMDQyQTU1NTUwNkEwMDRENEFDRDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClizZDgTbHLmBsIM0XIIu4yOygaTZXGliWAhF263BF/vpOdeAO gKSUtRt8jobyopCjDQywXTbGYaQgY3o5O5EF53fB5kEjtcKe/8zsOpWLRPEMu7A1 FLJHA48y0iN2+L9oFzwlUuf8/f2Y8ezZgdTTCpTAJsdz8qlqaqTgw8zH7KLmbKUf ybNp/7h9RLT/A1HgaRm3zBlWKNDCSpDl5rdQ72aM2+Q4aUriT6m+RUyV9rvsWywe a5nbKeml4sntV2eyJXsvvCDx0SNRPfzHE1fgBWTDC0eOM4Y+ocOrbyTy2BHRrbJd FIq9b6K2rvVl5a3e4fItcEX5pgnDnYHCpJ3vAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUyqfn10N8HRcRvgQqVVUGoATUrNUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3lxZm4xME44SFJjUnZnUXFWVlVHb0FUVXJOVS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEBT0wwDQYJKoZIhvcNAQELBQADggEB AMyD924dJiDwi+Uuo7O5YxzbYjvFHsggv2rMU5KM/EGbRmRY+K1DulQyPg4Ejj/i vhtm8/OGSb/ebwP4a9je5dPAerbul+RtoAj9GpPNzQ93cp7wRuB5M/hyPFBbUxru O+owiAdGzC38F1St3HR9WHEV4ZrR+D4Uv7EBKx+fYUC0gmySZqNbeXmEvOJGA07a 8MkqlfucsC5TM/ZwDbH7AdLbMFe1DjsOUDflqM4+yOEmMTd2ZdLsDGr80Yk39rxh ORIdrWlwFxKITkCAWTcT7GhmYhm08AUxRdW5ieaVJChwvb9JoyzmIvFfQ7AlM/a6 13/kQvpLwFgEHDliw3wZIkc= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:57 2026 by rpki-client