$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/IlAyjOqRt-uCwPfCwI1jS9Xk69U.roa File: IlAyjOqRt-uCwPfCwI1jS9Xk69U.roa (raw, json) Hash identifier: BWiP9lP95q2yWxRQJEc7tr6rtq7yLEyA9GSYAHjdlWw= Subject key identifier: 22:50:32:8C:EA:91:B7:EB:82:C0:F7:C2:C0:8D:63:4B:D5:E4:EB:D5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 12FD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IlAyjOqRt-uCwPfCwI1jS9Xk69U.roa Signing time: Sun 01 Mar 2026 03:27:58 +0000 ROA not before: Sun 01 Mar 2026 03:27:58 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.250.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4861 (0x12fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 03:27:58 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=2250328CEA91B7EB82C0F7C2C08D634BD5E4EBD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7d:e2:27:7f:60:16:cc:32:55:03:46:16:2f: 80:01:39:a5:75:30:c1:25:f9:f1:8a:b1:b7:76:00: af:6f:41:f9:9c:df:2e:0d:f7:f1:87:14:dd:b9:8d: 87:4b:ea:9a:29:80:2c:45:f5:9b:cd:4b:95:70:18: 7b:39:c3:75:3a:d7:ed:f4:49:53:06:07:29:db:3f: 2b:37:bc:f0:2f:a2:0d:5a:33:36:6f:4e:63:76:7a: 66:27:8d:cf:72:ec:92:30:7b:a6:f0:80:30:ac:03: ec:b8:cb:f1:74:e9:7a:4f:65:39:ce:bc:ba:2f:da: ca:5e:14:8e:ce:c0:86:cf:3a:23:a9:58:3f:d0:97: 02:d0:71:b9:f1:2d:02:64:06:a0:20:d0:bd:7f:b5: d8:19:94:af:22:10:b7:3c:49:af:90:f7:d0:38:9e: a7:97:b1:78:3b:e4:ef:af:7b:d4:1f:76:36:b6:a3: 13:f8:16:da:27:dc:ed:1f:4a:8c:96:91:21:83:e0: 78:04:d1:ea:95:50:3b:56:d7:13:4e:56:e2:d2:08: fa:e4:84:19:87:2c:48:cb:5a:d2:84:27:10:41:6c: 13:11:dc:07:d1:47:7b:f0:82:d5:f9:ad:3e:67:ff: c0:0b:90:bb:53:d4:b7:2b:7d:41:3c:8a:65:aa:76: c9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:50:32:8C:EA:91:B7:EB:82:C0:F7:C2:C0:8D:63:4B:D5:E4:EB:D5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IlAyjOqRt-uCwPfCwI1jS9Xk69U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.250.0/23 Signature Algorithm: sha256WithRSAEncryption d5:54:11:bb:8f:ae:50:d6:86:a7:0f:19:6f:1a:11:9e:41:b8: a0:c7:d3:78:25:cb:be:a6:e8:ab:54:93:d6:aa:ad:4e:15:4c: 0a:8e:5f:d2:5c:fe:d0:1d:62:c0:93:95:70:9c:b2:5c:e5:4e: ce:7d:f4:96:13:e6:a0:56:d4:a6:cb:3f:33:bf:26:73:bd:30: 3a:8f:4b:ae:36:c0:92:b3:02:d0:7a:9d:26:c9:5b:fb:f6:27: b8:10:24:89:9a:cc:33:de:a2:20:00:16:2b:a7:b0:c0:35:f5: 03:a7:9e:db:49:b4:d7:de:aa:52:fa:32:ec:a0:32:bb:7a:32: 18:ea:1e:38:98:1f:5f:b0:38:82:92:7c:3f:5a:84:eb:ab:30: bf:a0:3b:7b:b3:9a:24:cb:5d:e1:25:f1:dc:7f:f7:a3:4a:66: 34:19:b1:02:76:bd:d1:5a:e5:77:66:25:37:76:20:70:84:bd: 05:a6:d4:25:4a:aa:80:52:92:f9:4a:98:4a:8c:2c:c1:c7:a9: da:ec:6a:cf:13:5e:73:b8:cf:08:78:53:3d:24:3f:f3:38:51: 03:a0:83:7f:3d:0d:2b:69:48:18:3e:66:88:f6:c4:76:db:ec: 45:c4:be:2a:3c:56:e6:04:5d:88:4c:4c:62:97:4f:c7:15:fa: ff:e8:92:48 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEv0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MzI3NThaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDIyNTAzMjhDRUE5MUI3 RUI4MkMwRjdDMkMwOEQ2MzRCRDVFNEVCRDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGfeInf2AWzDJVA0YWL4ABOaV1MMEl+fGKsbd2AK9vQfmc3y4N 9/GHFN25jYdL6popgCxF9ZvNS5VwGHs5w3U61+30SVMGBynbPys3vPAvog1aMzZv TmN2emYnjc9y7JIwe6bwgDCsA+y4y/F06XpPZTnOvLov2speFI7OwIbPOiOpWD/Q lwLQcbnxLQJkBqAg0L1/tdgZlK8iELc8Sa+Q99A4nqeXsXg75O+ve9Qfdja2oxP4 Fton3O0fSoyWkSGD4HgE0eqVUDtW1xNOVuLSCPrkhBmHLEjLWtKEJxBBbBMR3AfR R3vwgtX5rT5n/8ALkLtT1LcrfUE8imWqdsklAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUIlAyjOqRt+uCwPfCwI1jS9Xk69UwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0lsQXlqT3FSdC11Q3dQZkN3STFqUzlYazY5VS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHcn/owDQYJKoZIhvcNAQELBQADggEBANVUEbuPrlDWhqcPGW8aEZ5BuKDH 03gly76m6KtUk9aqrU4VTAqOX9Jc/tAdYsCTlXCcslzlTs599JYT5qBW1KbLPzO/ JnO9MDqPS642wJKzAtB6nSbJW/v2J7gQJImazDPeoiAAFiunsMA19QOnnttJtNfe qlL6MuygMrt6MhjqHjiYH1+wOIKSfD9ahOurML+gO3uzmiTLXeEl8dx/96NKZjQZ sQJ2vdFa5XdmJTd2IHCEvQWm1CVKqoBSkvlKmEqMLMHHqdrsas8TXnO4zwh4Uz0k P/M4UQOgg389DStpSBg+Zoj2xHbb7EXEvio8VuYEXYhMTGKXT8cV+v/okkg= -----END CERTIFICATE-----Generated at Mon Mar 2 04:00:52 2026 by rpki-client