$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KBaUGXClbtYlsplXYTOKkHCyKSU.roa File: KBaUGXClbtYlsplXYTOKkHCyKSU.roa (raw, json) Hash identifier: E59IiVu5zdzug2e2OK4kWlh0s891XwvvyhOwJ5U0tRg= Subject key identifier: 28:16:94:19:70:A5:6E:D6:25:B2:99:57:61:33:8A:90:70:B2:29:25 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 10AD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KBaUGXClbtYlsplXYTOKkHCyKSU.roa Signing time: Sun 01 Mar 2026 01:49:11 +0000 ROA not before: Sun 01 Mar 2026 01:49:11 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.78.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 05:15:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4269 (0x10ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 01:49:11 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=2816941970A56ED625B2995761338A9070B22925 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:87:81:e9:b3:d6:38:a9:6a:ac:d2:d6:9f:a2: 99:ae:a9:e7:bd:0a:f0:da:bc:ed:a1:b9:69:41:c1: 44:b6:ad:b3:5a:17:ae:02:f0:c3:d4:38:6b:e0:68: ae:62:a8:77:7b:83:f2:94:39:44:bd:d1:c5:b4:e6: 61:a6:53:5b:c0:0f:e8:e2:1c:48:4d:d6:d5:f1:cd: d3:ec:92:a6:c1:c8:dc:fa:b6:8d:27:a2:e1:c4:50: 37:7f:a1:be:b0:ba:65:59:4c:1d:a7:2e:46:59:7b: 63:25:f8:d1:97:61:9d:90:dc:9b:95:46:0e:19:28: e6:a0:f6:5b:13:4f:35:72:b5:31:66:98:50:91:96: 62:42:5e:1e:4f:f7:e3:d1:e1:9c:e1:91:96:1b:05: f0:65:0b:1a:38:73:21:6a:b0:54:05:da:ca:3d:87: c2:4e:33:41:a4:32:c3:5a:1a:96:08:e3:ec:10:ad: 0c:40:26:ce:09:bc:fc:24:f8:9b:05:e0:da:3f:94: 33:b1:f2:35:42:b6:20:e5:25:24:07:f3:be:9d:13: 46:ce:ff:d9:23:f3:ed:72:b2:09:2f:f5:9a:ea:f5: e7:35:3c:86:e3:f6:73:61:49:32:d5:8f:36:98:cb: 06:0d:19:94:d6:b2:e4:01:da:7e:57:fd:e2:c8:c8: 64:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:16:94:19:70:A5:6E:D6:25:B2:99:57:61:33:8A:90:70:B2:29:25 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KBaUGXClbtYlsplXYTOKkHCyKSU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.78.24.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:80:18:0c:b9:d8:3e:7e:e2:6e:9d:33:ea:5b:92:53:43:3b: b0:8a:90:c5:a2:5a:86:d4:4f:d4:9c:8e:ee:96:a9:1e:9b:d2: e3:83:c7:ca:c1:24:58:b4:99:bd:fc:17:d9:10:c9:80:26:c7: 3d:03:fc:f8:6a:69:6e:97:ae:df:39:2e:88:ec:4c:62:03:8e: 76:66:04:69:2a:75:d2:39:7f:54:c6:91:a1:60:bc:02:c0:65: 06:ed:5c:56:2c:54:5f:08:3d:50:52:80:db:7e:1c:74:b1:17: 64:be:48:33:b6:dc:f3:f0:30:5e:24:25:df:42:da:b4:b7:8d: 88:70:5e:8c:68:6f:f2:4c:d4:14:df:2e:df:6a:f4:81:7a:1a: 13:ea:44:a5:cb:80:19:30:fc:c0:83:10:e4:c5:c4:f9:d9:2f: 3b:5d:dd:b2:9a:9a:30:44:f4:10:5b:5a:a9:7d:51:77:06:bd: 10:9b:46:75:bb:e2:9f:9e:89:5e:bf:68:51:ef:86:e4:2e:fb: ce:da:02:f6:6e:9b:d6:8a:5a:4a:12:59:71:cb:0a:5a:8a:1d: 24:5b:30:c6:88:80:d8:e2:dc:c1:23:26:bf:25:cf:c6:4f:b1: 98:7a:85:88:5a:e0:bd:a1:1e:54:63:5a:6d:92:a0:5f:05:d3: f7:f5:47:8a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEK0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MTQ5MTFaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDI4MTY5NDE5NzBBNTZF RDYyNUIyOTk1NzYxMzM4QTkwNzBCMjI5MjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDih4Hps9Y4qWqs0tafopmuqee9CvDavO2huWlBwUS2rbNaF64C 8MPUOGvgaK5iqHd7g/KUOUS90cW05mGmU1vAD+jiHEhN1tXxzdPskqbByNz6to0n ouHEUDd/ob6wumVZTB2nLkZZe2Ml+NGXYZ2Q3JuVRg4ZKOag9lsTTzVytTFmmFCR lmJCXh5P9+PR4ZzhkZYbBfBlCxo4cyFqsFQF2so9h8JOM0GkMsNaGpYI4+wQrQxA Js4JvPwk+JsF4No/lDOx8jVCtiDlJSQH876dE0bO/9kj8+1ysgkv9Zrq9ec1PIbj 9nNhSTLVjzaYywYNGZTWsuQB2n5X/eLIyGT3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKBaUGXClbtYlsplXYTOKkHCyKSUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0tCYVVHWENsYnRZbHNwbFhZVE9La0hDeUtTVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBThgwDQYJKoZIhvcNAQELBQADggEBAJ+AGAy52D5+4m6dM+pbklNDO7CK kMWiWobUT9Scju6WqR6b0uODx8rBJFi0mb38F9kQyYAmxz0D/PhqaW6Xrt85Lojs TGIDjnZmBGkqddI5f1TGkaFgvALAZQbtXFYsVF8IPVBSgNt+HHSxF2S+SDO23PPw MF4kJd9C2rS3jYhwXoxob/JM1BTfLt9q9IF6GhPqRKXLgBkw/MCDEOTFxPnZLztd 3bKamjBE9BBbWql9UXcGvRCbRnW74p+eiV6/aFHvhuQu+87aAvZum9aKWkoSWXHL ClqKHSRbMMaIgNji3MEjJr8lz8ZPsZh6hYha4L2hHlRjWm2SoF8F0/f1R4o= -----END CERTIFICATE-----Generated at Mon Mar 2 09:57:43 2026 by rpki-client