$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/UpNkI7idCv6MSZMrvuyLZLBTvUU.roa File: UpNkI7idCv6MSZMrvuyLZLBTvUU.roa (raw, json) Hash identifier: a2JMbZi4l1mXwMG8joI7EyuS+J8Svr45zxlSZExglcU= Subject key identifier: 52:93:64:23:B8:9D:0A:FE:8C:49:93:2B:BE:EC:8B:64:B0:53:BD:45 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1144 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UpNkI7idCv6MSZMrvuyLZLBTvUU.roa Signing time: Sun 01 Mar 2026 02:12:50 +0000 ROA not before: Sun 01 Mar 2026 02:12:50 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.210.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:24:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4420 (0x1144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 02:12:50 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=52936423B89D0AFE8C49932BBEEC8B64B053BD45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:94:ed:0f:3e:0e:f7:31:11:64:1e:a4:80:2f: ca:dd:fa:5c:86:b8:46:72:62:ef:94:a3:45:51:27: 8e:d9:7c:ed:14:db:cd:7c:6d:d8:78:84:c2:a6:8e: 25:4e:51:ed:65:b4:92:76:5d:c6:0d:87:b3:50:df: ad:fa:8c:00:67:0c:0f:cc:dc:c1:69:bf:cd:2d:60: 67:80:73:7f:9a:62:10:41:d6:27:6e:22:33:c7:4a: 51:1a:f6:eb:31:83:b8:ad:ae:c2:01:fc:d8:4e:8c: d5:a2:4b:3d:c6:87:f0:22:40:fd:7f:71:e9:4d:61: a3:2b:5e:c1:9d:05:6c:05:f9:03:14:cd:64:69:99: 97:43:dd:bc:5c:8f:95:50:85:e0:f6:73:fc:88:66: 98:88:1d:be:3f:75:ea:41:71:70:b5:43:59:74:88: 49:c5:2f:f4:02:a9:72:ac:a6:57:6b:8f:6a:72:46: 84:0f:c2:2e:4b:e8:a0:68:eb:7a:59:13:3d:6e:d3: e3:69:21:33:45:a7:f8:97:a5:84:d6:69:49:6e:b3: 61:ba:24:3d:29:2e:6b:47:2f:6b:23:39:cd:09:6c: 3b:c7:ea:ad:2b:17:d4:58:b9:1c:2e:61:cf:a1:50: c9:c0:9c:ef:0d:55:0a:52:9d:13:46:ee:f5:f6:15: 88:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:93:64:23:B8:9D:0A:FE:8C:49:93:2B:BE:EC:8B:64:B0:53:BD:45 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UpNkI7idCv6MSZMrvuyLZLBTvUU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.60.0/22 Signature Algorithm: sha256WithRSAEncryption 15:f1:20:cc:84:40:cb:87:f3:ea:1a:40:7a:cc:35:a3:8f:3b: 6f:a7:ea:59:fc:8e:eb:8a:d6:bb:b3:59:07:dc:87:5e:47:37: 5f:01:ea:71:52:21:b4:c7:30:5a:46:0f:79:61:31:fa:83:68: bb:52:2b:39:da:a0:71:92:d5:33:f0:ba:a7:fc:07:27:1e:34: 7f:2f:64:67:e1:b3:33:0e:1e:e8:40:63:84:11:64:dd:1d:f6: 08:ad:d5:1b:ff:5b:29:b1:63:49:a1:c5:64:32:39:d7:83:b3: a8:7a:3f:99:e4:34:b3:fb:e9:82:a5:4d:10:2d:87:2c:1e:bb: 9b:d1:4c:63:b1:a3:bf:0a:22:04:91:28:71:1c:7a:7d:17:7b: 2f:10:65:42:2a:2d:64:52:40:36:57:10:9e:d1:58:e7:a5:62: ee:0b:f2:a1:17:f5:6e:fd:ac:bb:28:d1:b3:25:f7:23:28:1d: 3d:35:09:fd:2a:92:57:07:66:a4:da:dd:c4:ae:8c:c4:75:10: 78:56:21:1f:65:75:83:fc:82:6d:77:07:e7:00:72:98:b5:70: 94:0f:37:93:7c:97:3c:dc:6b:3d:6f:6e:d5:8c:bd:2e:7b:7d: 4f:1e:14:fb:01:a4:3f:de:62:d0:05:54:79:dc:b7:97:1c:50: 75:44:0b:e8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEUQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MjEyNTBaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDUyOTM2NDIzQjg5RDBB RkU4QzQ5OTMyQkJFRUM4QjY0QjA1M0JENDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmlO0PPg73MRFkHqSAL8rd+lyGuEZyYu+Uo0VRJ47ZfO0U2818 bdh4hMKmjiVOUe1ltJJ2XcYNh7NQ3636jABnDA/M3MFpv80tYGeAc3+aYhBB1idu IjPHSlEa9usxg7itrsIB/NhOjNWiSz3Gh/AiQP1/celNYaMrXsGdBWwF+QMUzWRp mZdD3bxcj5VQheD2c/yIZpiIHb4/depBcXC1Q1l0iEnFL/QCqXKspldrj2pyRoQP wi5L6KBo63pZEz1u0+NpITNFp/iXpYTWaUlus2G6JD0pLmtHL2sjOc0JbDvH6q0r F9RYuRwuYc+hUMnAnO8NVQpSnRNG7vX2FYh/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUUpNkI7idCv6MSZMrvuyLZLBTvUUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1VwTmtJN2lkQ3Y2TVNaTXJ2dXlMWkxCVHZVVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALc0jwwDQYJKoZIhvcNAQELBQADggEBABXxIMyEQMuH8+oaQHrMNaOPO2+n 6ln8juuK1ruzWQfch15HN18B6nFSIbTHMFpGD3lhMfqDaLtSKznaoHGS1TPwuqf8 ByceNH8vZGfhszMOHuhAY4QRZN0d9git1Rv/WymxY0mhxWQyOdeDs6h6P5nkNLP7 6YKlTRAthyweu5vRTGOxo78KIgSRKHEcen0Xey8QZUIqLWRSQDZXEJ7RWOelYu4L 8qEX9W79rLso0bMl9yMoHT01Cf0qklcHZqTa3cSujMR1EHhWIR9ldYP8gm13B+cA cpi1cJQPN5N8lzzcaz1vbtWMvS57fU8eFPsBpD/eYtAFVHnct5ccUHVEC+g= -----END CERTIFICATE-----Generated at Mon Mar 2 06:54:26 2026 by rpki-client