$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4OS_h3Z3X0-wTGmKayAkjXDXOkg.roa File: 4OS_h3Z3X0-wTGmKayAkjXDXOkg.roa (raw, json) Hash identifier: Fty51K+2CAzd1OqPmopRmKl1OzMwrYFfdTp4Y5IqBnw= Subject key identifier: E0:E4:BF:87:76:77:5F:4F:B0:4C:69:8A:6B:20:24:8D:70:D7:3A:48 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 10DD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4OS_h3Z3X0-wTGmKayAkjXDXOkg.roa Signing time: Sun 01 Mar 2026 01:58:36 +0000 ROA not before: Sun 01 Mar 2026 01:58:36 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.76.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4317 (0x10dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 01:58:36 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=E0E4BF8776775F4FB04C698A6B20248D70D73A48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:a2:17:6e:f9:b2:74:02:ac:41:c2:ed:47:bb: 17:3b:95:34:fd:89:56:a6:ce:cd:4a:9d:42:35:48: 65:1d:0b:93:fb:68:6f:98:48:da:46:89:c7:6a:b0: 8a:2a:29:46:cc:74:1b:b7:1a:0a:e0:8b:b0:c2:fd: 04:aa:69:3b:37:c5:29:52:67:00:a0:3d:39:cd:2c: 79:68:d1:02:52:03:86:0e:19:b4:d3:c4:b8:66:10: ac:9c:2d:f1:86:91:ec:b9:9e:8f:f2:4a:27:eb:80: f3:1c:ff:db:59:9a:a8:8a:4f:71:3b:ca:d1:1c:ee: c4:ea:91:98:fe:07:5f:53:49:3a:0c:14:98:f3:ec: 4b:fd:e1:1d:e3:0f:ee:f2:15:35:ab:ee:24:47:2c: 0e:18:e3:3b:1b:dd:15:ff:ad:d6:6d:6c:8f:76:57: f4:e3:bd:31:88:e1:f7:ea:fc:9e:65:56:1c:54:9d: 18:71:cc:8a:1e:96:68:21:60:ad:9a:c8:96:b5:00: 74:24:71:d0:92:01:2d:61:1d:f9:da:90:53:4f:4d: b4:5a:03:61:f5:38:a9:a3:55:a0:c4:6c:8a:94:71: 55:cb:24:1f:88:6d:e4:9f:c1:7f:2e:6a:1f:77:96: a5:07:b2:74:ce:a6:49:2b:f5:ee:8e:88:d4:c6:ee: 92:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:E4:BF:87:76:77:5F:4F:B0:4C:69:8A:6B:20:24:8D:70:D7:3A:48 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4OS_h3Z3X0-wTGmKayAkjXDXOkg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.152.0/21 Signature Algorithm: sha256WithRSAEncryption 94:a3:82:28:94:df:dc:23:27:2e:7e:cc:96:a0:7f:d6:0b:c8: 6a:48:19:6b:57:62:d3:c5:de:22:44:9e:7f:0f:3d:90:3a:99: 95:07:d9:c2:b8:c1:42:c6:79:de:6f:b1:c2:60:84:9d:04:a6: 58:bf:e3:0e:21:12:06:2d:da:0a:3b:09:58:ab:db:11:f4:90: f7:7d:15:46:2d:99:c1:5f:65:31:57:05:e8:1d:89:2d:3a:5e: b7:9a:f1:d2:ba:46:b4:14:55:10:2d:70:46:8b:e0:65:d2:82: ac:8d:3a:9e:6c:1a:5d:02:9e:ef:b5:f5:d8:b0:ba:98:b1:6a: 67:6d:ef:7d:90:d9:22:1b:ea:83:8e:25:a1:16:85:c2:a6:f0: f7:06:47:0c:9b:bf:44:eb:fb:33:a2:83:0b:48:4f:7e:bd:21: a0:48:91:e8:d3:8d:80:31:30:f4:a8:01:4e:70:4c:b8:cc:4c: d1:ff:2b:7a:fe:0c:14:5e:98:0a:28:fc:53:e8:8c:35:54:d8: 70:21:88:00:01:b1:29:4d:5b:40:85:17:4a:6f:a1:51:3b:62: a8:6d:40:b1:20:af:7f:5d:3a:48:19:2b:ce:41:4f:db:3a:7c: f1:7f:85:04:91:48:32:df:1d:7e:91:7c:72:ce:13:28:9b:75: a1:0a:c3:83 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEN0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MTU4MzZaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEUwRTRCRjg3NzY3NzVG NEZCMDRDNjk4QTZCMjAyNDhENzBENzNBNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqohdu+bJ0AqxBwu1Huxc7lTT9iVamzs1KnUI1SGUdC5P7aG+Y SNpGicdqsIoqKUbMdBu3Ggrgi7DC/QSqaTs3xSlSZwCgPTnNLHlo0QJSA4YOGbTT xLhmEKycLfGGkey5no/ySifrgPMc/9tZmqiKT3E7ytEc7sTqkZj+B19TSToMFJjz 7Ev94R3jD+7yFTWr7iRHLA4Y4zsb3RX/rdZtbI92V/TjvTGI4ffq/J5lVhxUnRhx zIoelmghYK2ayJa1AHQkcdCSAS1hHfnakFNPTbRaA2H1OKmjVaDEbIqUcVXLJB+I beSfwX8uah93lqUHsnTOpkkr9e6OiNTG7pIlAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU4OS/h3Z3X0+wTGmKayAkjXDXOkgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzRPU19oM1ozWDAtd1RHbUtheUFralhEWE9rZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBTJgwDQYJKoZIhvcNAQELBQADggEBAJSjgiiU39wjJy5+zJagf9YLyGpI GWtXYtPF3iJEnn8PPZA6mZUH2cK4wULGed5vscJghJ0Epli/4w4hEgYt2go7CVir 2xH0kPd9FUYtmcFfZTFXBegdiS06Xrea8dK6RrQUVRAtcEaL4GXSgqyNOp5sGl0C nu+19diwupixamdt732Q2SIb6oOOJaEWhcKm8PcGRwybv0Tr+zOigwtIT369IaBI kejTjYAxMPSoAU5wTLjMTNH/K3r+DBRemAoo/FPojDVU2HAhiAABsSlNW0CFF0pv oVE7YqhtQLEgr39dOkgZK85BT9s6fPF/hQSRSDLfHX6RfHLOEyibdaEKw4M= -----END CERTIFICATE-----Generated at Mon Mar 2 14:49:43 2026 by rpki-client