$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/aTmfwfTzWAZIPaWNa5uhDYf7SUw.roa File: aTmfwfTzWAZIPaWNa5uhDYf7SUw.roa (raw, json) Hash identifier: LKMnF65wJaf91cTbio4rR/Pjz4JpqAqzYRWMxJbkJAM= Subject key identifier: 69:39:9F:C1:F4:F3:58:06:48:3D:A5:8D:6B:9B:A1:0D:87:FB:49:4C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 10F8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aTmfwfTzWAZIPaWNa5uhDYf7SUw.roa Signing time: Sun 01 Mar 2026 01:58:49 +0000 ROA not before: Sun 01 Mar 2026 01:58:49 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.72.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4344 (0x10f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 01:58:49 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=69399FC1F4F35806483DA58D6B9BA10D87FB494C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:10:8b:e1:f2:b7:10:d2:c8:23:71:cf:30:a2: 10:a3:ad:36:85:19:46:3d:c4:79:4d:79:e2:f8:b2: ab:79:a8:ed:2d:9d:01:33:69:aa:28:5f:33:35:f8: d3:da:bd:f9:23:ae:0b:5e:ab:2f:57:7c:fd:55:fc: e5:bc:95:b9:99:3e:b5:b6:e7:29:c3:38:4d:b1:94: d2:3a:59:1a:d5:5e:8f:6a:fb:47:a5:2e:0a:5e:86: bb:de:e9:60:a8:47:a6:40:9a:28:f9:bf:3d:63:38: a9:97:ea:dc:a4:69:29:39:5d:a4:5d:b7:6b:b0:10: 47:87:52:b9:37:01:7b:ac:77:97:2d:75:ad:b7:17: c7:8b:5d:e9:63:11:55:f9:87:c9:a9:ff:ce:70:07: 07:c0:ec:0c:8b:58:91:8f:9d:3a:9d:6a:3f:b0:87: 40:c8:e0:20:03:30:6b:5b:3c:9f:56:f3:f8:70:d7: ef:ef:dd:c4:0b:59:6f:62:3f:e1:b7:9b:d2:a7:ba: b2:e5:47:4c:51:f7:69:69:29:51:35:a3:06:01:c5: ec:7f:98:35:9c:54:f4:fa:0f:e8:f3:4b:9a:c0:a7: 8e:3d:e3:5b:60:f9:ce:d1:7a:0c:63:da:fb:1f:94: d0:1a:dc:e8:3a:fd:2f:31:bc:5f:2e:40:e2:b8:dd: 38:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:39:9F:C1:F4:F3:58:06:48:3D:A5:8D:6B:9B:A1:0D:87:FB:49:4C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aTmfwfTzWAZIPaWNa5uhDYf7SUw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.128.0/18 Signature Algorithm: sha256WithRSAEncryption 62:fd:39:1f:0e:65:ea:66:1e:ce:c4:f3:91:97:66:35:c8:32: e5:73:aa:eb:6e:80:8a:de:64:7a:b1:63:8f:56:2a:e8:c1:90: 19:8e:39:18:48:18:fb:61:3f:f8:a7:1c:27:1e:3c:7b:cd:db: 53:e3:f9:4c:0d:f3:49:36:91:69:57:1f:72:ad:a5:b0:e8:aa: a7:f0:6c:00:5f:f8:b0:3d:6b:d4:5e:d4:5b:74:64:4a:1b:4b: c4:42:fc:9c:27:3b:0e:c3:10:c9:09:1e:52:71:05:45:32:ff: 10:c4:ed:9c:b1:a2:d9:ad:05:76:90:4c:58:7e:61:6a:72:48: b7:84:65:88:e7:e5:2a:ec:fc:fb:88:04:86:be:d9:60:ff:df: 3e:f7:df:ed:0b:b0:89:4d:eb:2f:67:0b:46:5d:9e:db:a7:28: 45:d0:20:e6:17:c6:46:cd:5e:71:c7:2a:c9:13:37:91:04:92: e9:f2:6d:41:db:34:32:32:0d:1a:83:5e:3a:16:12:82:3b:a7: 3a:17:76:ab:e0:e8:3e:d1:ac:0b:02:36:fa:f0:24:1c:67:4e: b2:07:3d:ec:bf:62:e9:a1:7d:fc:24:f9:e6:ea:37:08:80:e3: b6:f9:a7:38:32:83:c6:dc:7e:10:26:4c:19:c4:06:2a:09:53: 26:43:7c:53 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEPgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MTU4NDlaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY5Mzk5RkMxRjRGMzU4 MDY0ODNEQTU4RDZCOUJBMTBEODdGQjQ5NEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFEIvh8rcQ0sgjcc8wohCjrTaFGUY9xHlNeeL4sqt5qO0tnQEz aaooXzM1+NPavfkjrgteqy9XfP1V/OW8lbmZPrW25ynDOE2xlNI6WRrVXo9q+0el Lgpehrve6WCoR6ZAmij5vz1jOKmX6tykaSk5XaRdt2uwEEeHUrk3AXusd5ctda23 F8eLXeljEVX5h8mp/85wBwfA7AyLWJGPnTqdaj+wh0DI4CADMGtbPJ9W8/hw1+/v 3cQLWW9iP+G3m9KnurLlR0xR92lpKVE1owYBxex/mDWcVPT6D+jzS5rAp44941tg +c7Regxj2vsflNAa3Og6/S8xvF8uQOK43TiRAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUaTmfwfTzWAZIPaWNa5uhDYf7SUwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2FUbWZ3ZlR6V0FaSVBhV05hNXVoRFlmN1NVdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYBSIAwDQYJKoZIhvcNAQELBQADggEBAGL9OR8OZepmHs7E85GXZjXIMuVz qutugIreZHqxY49WKujBkBmOORhIGPthP/inHCcePHvN21Pj+UwN80k2kWlXH3Kt pbDoqqfwbABf+LA9a9Re1Ft0ZEobS8RC/JwnOw7DEMkJHlJxBUUy/xDE7Zyxotmt BXaQTFh+YWpySLeEZYjn5Srs/PuIBIa+2WD/3z733+0LsIlN6y9nC0ZdntunKEXQ IOYXxkbNXnHHKskTN5EEkunybUHbNDIyDRqDXjoWEoI7pzoXdqvg6D7RrAsCNvrw JBxnTrIHPey/Yumhffwk+ebqNwiA47b5pzgyg8bcfhAmTBnEBioJUyZDfFM= -----END CERTIFICATE-----Generated at Mon Mar 2 11:27:31 2026 by rpki-client