$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/YSUrH7yRm4n25ZWZAzQbfusAAT4.roa File: YSUrH7yRm4n25ZWZAzQbfusAAT4.roa (raw, json) Hash identifier: 7jRn6tVUUv76vgZ/sj5PHY/8DNhBldyHVe3S0IYJiaY= Subject key identifier: 61:25:2B:1F:BC:91:9B:89:F6:E5:95:99:03:34:1B:7E:EB:00:01:3E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 10EE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YSUrH7yRm4n25ZWZAzQbfusAAT4.roa Signing time: Sun 01 Mar 2026 01:58:43 +0000 ROA not before: Sun 01 Mar 2026 01:58:43 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 27.230.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4334 (0x10ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 01:58:43 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=61252B1FBC919B89F6E5959903341B7EEB00013E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:53:cb:63:c3:bf:32:31:0a:43:3b:5b:54:f7: cc:bb:f7:ef:49:0f:53:e5:54:08:9b:cc:42:39:88: 09:d5:e2:fb:53:42:43:a2:47:32:26:89:38:ba:10: eb:6f:a1:43:1f:c9:51:f7:19:aa:fa:47:c1:7f:39: ba:dd:5f:58:00:7f:bf:ba:f9:77:67:08:ca:f1:3d: a9:59:ec:58:27:1d:c3:92:b3:f3:61:a9:7b:2b:ba: 78:11:e8:5b:42:3e:0a:29:9d:8d:4a:05:a1:d8:95: 14:34:44:63:4c:e0:21:f1:60:0e:e1:e8:70:88:98: 25:fb:36:5b:c1:01:e2:d7:58:71:9a:62:de:6f:87: 4a:69:b2:c8:51:e0:54:c4:43:42:9c:a8:2a:17:0d: a2:85:69:e2:7d:6a:1f:b5:a5:56:0d:3c:7b:65:c9: 92:34:83:90:9b:af:7e:e4:4b:14:67:62:96:f6:60: 6b:68:66:6e:67:da:fe:2d:82:e9:e5:36:6b:94:ce: 15:f7:db:25:e3:52:0f:5b:1a:90:14:b0:bb:8a:77: 7a:51:dc:de:65:9c:25:9d:5b:26:91:1b:3d:dc:65: ed:f3:9f:11:12:2a:ca:5e:1e:19:a8:1a:d7:40:9e: 5e:07:ea:54:7d:ba:33:44:b8:40:83:17:73:a6:82: 77:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:25:2B:1F:BC:91:9B:89:F6:E5:95:99:03:34:1B:7E:EB:00:01:3E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YSUrH7yRm4n25ZWZAzQbfusAAT4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.230.64.0/20 Signature Algorithm: sha256WithRSAEncryption df:a6:2a:91:33:dd:f9:05:63:49:d3:e6:6d:45:c6:9c:57:17: 0e:98:40:54:65:ba:e1:9a:31:b0:78:2a:66:15:5b:e6:04:e3: f4:1e:5d:9e:b0:82:ae:6a:91:cb:ad:34:53:f9:93:05:81:9a: bc:a3:55:28:a3:80:a9:80:06:8f:01:2b:00:4a:a8:cf:81:87: 30:62:b7:97:50:ab:25:ea:2a:09:cd:e3:67:35:66:12:b8:a2: e6:00:ae:14:f7:61:41:53:62:7c:18:6a:22:ea:ec:71:dc:dd: 23:e4:ff:bd:15:79:5b:7c:13:a7:eb:41:85:fd:c5:76:d6:32: 4d:77:56:c6:50:4b:67:bd:29:25:8e:0d:4a:ea:04:95:74:18: 26:7a:96:5e:8f:92:52:ed:14:be:a8:56:7a:c0:2b:6f:6c:c5: 85:b3:0c:59:cb:03:46:4e:69:c2:cd:da:69:b7:80:23:18:0e: 9b:3f:9f:ef:0a:62:80:22:f8:1f:23:5f:d8:fc:28:61:25:77: d5:e7:d9:2c:ff:7c:a3:e9:1a:dd:2e:e2:24:51:af:1e:88:f4: b4:2b:32:39:76:de:09:7a:07:36:5a:00:ce:31:5d:44:53:7a: ae:ac:ef:7c:ec:4a:e8:62:85:bf:38:c7:bd:b5:10:72:4d:15: 92:5c:dc:e7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEO4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MTU4NDNaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDYxMjUyQjFGQkM5MTlC ODlGNkU1OTU5OTAzMzQxQjdFRUIwMDAxM0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3U8tjw78yMQpDO1tU98y79+9JD1PlVAibzEI5iAnV4vtTQkOi RzImiTi6EOtvoUMfyVH3Gar6R8F/ObrdX1gAf7+6+XdnCMrxPalZ7FgnHcOSs/Nh qXsrungR6FtCPgopnY1KBaHYlRQ0RGNM4CHxYA7h6HCImCX7NlvBAeLXWHGaYt5v h0ppsshR4FTEQ0KcqCoXDaKFaeJ9ah+1pVYNPHtlyZI0g5Cbr37kSxRnYpb2YGto Zm5n2v4tgunlNmuUzhX32yXjUg9bGpAUsLuKd3pR3N5lnCWdWyaRGz3cZe3znxES KspeHhmoGtdAnl4H6lR9ujNEuECDF3OmgndzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYSUrH7yRm4n25ZWZAzQbfusAAT4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1lTVXJIN3lSbTRuMjVaV1pBelFiZnVzQUFUNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQb5kAwDQYJKoZIhvcNAQELBQADggEBAN+mKpEz3fkFY0nT5m1FxpxXFw6Y QFRluuGaMbB4KmYVW+YE4/QeXZ6wgq5qkcutNFP5kwWBmryjVSijgKmABo8BKwBK qM+BhzBit5dQqyXqKgnN42c1ZhK4ouYArhT3YUFTYnwYaiLq7HHc3SPk/70VeVt8 E6frQYX9xXbWMk13VsZQS2e9KSWODUrqBJV0GCZ6ll6PklLtFL6oVnrAK29sxYWz DFnLA0ZOacLN2mm3gCMYDps/n+8KYoAi+B8jX9j8KGEld9Xn2Sz/fKPpGt0u4iRR rx6I9LQrMjl23gl6BzZaAM4xXURTeq6s73zsSuhihb84x721EHJNFZJc3Oc= -----END CERTIFICATE-----Generated at Mon Mar 2 11:26:38 2026 by rpki-client