$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CfSjMXTXRMdAzKiXw4uJ6II1MjA.roa File: CfSjMXTXRMdAzKiXw4uJ6II1MjA.roa (raw, json) Hash identifier: kLrWQALeDVU+K+Zn3OqKCudv4LtXnQF2tONRBWaFxJg= Subject key identifier: 09:F4:A3:31:74:D7:44:C7:40:CC:A8:97:C3:8B:89:E8:82:35:32:30 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 10A1 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CfSjMXTXRMdAzKiXw4uJ6II1MjA.roa Signing time: Sun 01 Mar 2026 01:44:49 +0000 ROA not before: Sun 01 Mar 2026 01:44:49 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 05:15:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4257 (0x10a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 01:44:49 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=09F4A33174D744C740CCA897C38B89E882353230 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:77:34:ce:f4:ff:1d:98:22:48:10:b2:3b:93: 7b:0e:0d:6f:4c:10:c2:1e:4f:5f:9e:b4:ee:9b:94: ef:5f:8b:a1:66:2e:3c:0b:72:d5:2f:a4:5f:d1:b0: 15:71:dc:91:d6:33:82:70:28:c2:fb:fb:29:a1:fa: 9f:8e:49:f5:28:58:dd:61:47:1b:44:65:05:29:13: 69:47:7e:da:b4:58:2c:a1:b3:46:53:cb:a6:21:05: 3b:ae:13:58:e9:cd:b7:fe:cb:96:94:3a:59:13:67: 6b:7d:49:86:90:87:2d:4f:94:e6:74:85:95:34:f8: d2:d7:ca:43:3a:75:bd:c4:0f:a5:70:f1:4e:89:88: 5c:15:85:e6:c7:6b:8d:03:7a:6e:e9:26:dd:86:bc: 1b:f3:69:2d:d1:38:6f:d8:0e:d6:6a:36:d3:02:11: 3d:ee:be:05:ba:74:23:4d:be:0b:3c:de:04:c9:61: 69:63:8b:85:ef:5f:08:eb:9f:e7:26:f9:44:93:35: 9f:a6:c3:6c:35:87:c0:46:45:8a:2f:ac:76:14:e6: d4:4d:d2:4d:a1:02:26:a4:85:69:2e:a6:c2:9c:1d: 93:15:0f:61:ad:99:90:3b:a5:60:26:92:84:8b:69: 6a:9d:a1:0f:37:d5:f4:c5:52:15:99:3d:88:9b:a2: d5:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:F4:A3:31:74:D7:44:C7:40:CC:A8:97:C3:8B:89:E8:82:35:32:30 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CfSjMXTXRMdAzKiXw4uJ6II1MjA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.232.0/22 Signature Algorithm: sha256WithRSAEncryption e5:dd:ab:d1:2a:6e:8c:9c:81:1f:1f:9f:92:23:f7:ff:47:7a: 9a:8b:d4:4a:ad:26:e6:67:df:57:2f:c2:20:b2:96:ce:6d:f0: 9a:db:22:63:64:25:9e:e8:5c:c5:5c:3f:9a:45:cf:10:45:93: 74:d9:a4:fb:b4:7f:fe:db:84:d3:90:8a:a5:0a:34:0f:39:ad: ab:5a:a3:d9:8d:94:85:f7:b0:7b:46:33:c8:ea:6e:cc:77:67: 6b:d4:d8:0f:22:dd:6d:53:b3:ed:dd:73:19:61:12:b0:37:94: 6f:a0:77:a6:9e:75:d6:76:fd:32:43:04:34:9f:d4:22:8c:a1: 37:4b:91:c0:81:67:1a:28:2d:04:32:d7:f7:1b:9a:a4:d9:26: ae:d3:e0:d2:2f:41:bb:e5:5b:e0:e3:3c:9c:77:83:2b:27:f7: da:85:33:4b:06:6f:7e:00:28:f8:d9:a1:69:9b:e5:10:81:21: d3:a2:2f:68:1f:46:dc:47:e8:e0:32:99:ef:c3:b7:60:b0:8e: 79:6b:c0:8b:3a:40:79:1f:f1:88:5c:89:26:95:e7:94:36:88: eb:85:e4:2d:1c:b3:6b:c3:86:d7:94:2e:ac:66:f1:46:ce:46: cf:1f:97:e8:bb:d6:dd:1d:98:8c:57:2e:9f:53:18:c7:a6:9d: 85:18:f0:68 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEKEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MTQ0NDlaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA5RjRBMzMxNzRENzQ0 Qzc0MENDQTg5N0MzOEI4OUU4ODIzNTMyMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIdzTO9P8dmCJIELI7k3sODW9MEMIeT1+etO6blO9fi6FmLjwL ctUvpF/RsBVx3JHWM4JwKML7+ymh+p+OSfUoWN1hRxtEZQUpE2lHftq0WCyhs0ZT y6YhBTuuE1jpzbf+y5aUOlkTZ2t9SYaQhy1PlOZ0hZU0+NLXykM6db3ED6Vw8U6J iFwVhebHa40Dem7pJt2GvBvzaS3ROG/YDtZqNtMCET3uvgW6dCNNvgs83gTJYWlj i4XvXwjrn+cm+USTNZ+mw2w1h8BGRYovrHYU5tRN0k2hAiakhWkupsKcHZMVD2Gt mZA7pWAmkoSLaWqdoQ831fTFUhWZPYibotUPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCfSjMXTXRMdAzKiXw4uJ6II1MjAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0NmU2pNWFRYUk1kQXpLaVh3NHVKNklJMU1qQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBS+gwDQYJKoZIhvcNAQELBQADggEBAOXdq9EqboycgR8fn5Ij9/9HepqL 1EqtJuZn31cvwiCyls5t8JrbImNkJZ7oXMVcP5pFzxBFk3TZpPu0f/7bhNOQiqUK NA85ratao9mNlIX3sHtGM8jqbsx3Z2vU2A8i3W1Ts+3dcxlhErA3lG+gd6aeddZ2 /TJDBDSf1CKMoTdLkcCBZxooLQQy1/cbmqTZJq7T4NIvQbvlW+DjPJx3gysn99qF M0sGb34AKPjZoWmb5RCBIdOiL2gfRtxH6OAyme/Dt2CwjnlrwIs6QHkf8YhciSaV 55Q2iOuF5C0cs2vDhteULqxm8UbORs8fl+i71t0dmIxXLp9TGMemnYUY8Gg= -----END CERTIFICATE-----Generated at Mon Mar 2 09:57:57 2026 by rpki-client