$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/bXZIWRhhunbE843f49UMUjeBR_c.roa File: bXZIWRhhunbE843f49UMUjeBR_c.roa (raw, json) Hash identifier: SKoOuoLDq+tb+FUzXPTYOYnuRnkjfOhFITPalJBDpZ8= Subject key identifier: 6D:76:48:59:18:61:BA:76:C4:F3:8D:DF:E3:D5:0C:52:37:81:47:F7 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 11BD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bXZIWRhhunbE843f49UMUjeBR_c.roa Signing time: Sun 01 Mar 2026 02:36:27 +0000 ROA not before: Sun 01 Mar 2026 02:36:27 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.210.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4541 (0x11bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 02:36:27 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=6D7648591861BA76C4F38DDFE3D50C52378147F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a5:2c:06:bb:56:cb:ff:7f:cf:23:22:6c:5b: e9:90:64:36:ac:7b:e1:ff:ae:2c:95:cc:d4:fa:7b: 43:84:7e:92:0b:a4:ef:f2:6b:f4:92:98:d3:45:7d: a5:f1:90:94:ca:87:f4:6f:20:e0:87:4d:de:3b:58: 62:96:27:75:4b:7a:99:bd:61:6c:be:27:ee:6d:99: cf:1a:b2:7a:e9:25:13:e0:fa:3c:6f:bc:d0:4c:df: c2:cc:a6:3f:59:6c:a5:d0:9f:51:93:ba:39:7f:a6: 91:14:f5:01:1f:4f:b9:db:e6:26:89:bb:c7:4c:6e: e9:6a:19:89:df:f2:06:e6:4c:14:2f:83:be:17:36: ed:46:41:7e:f0:66:dc:4e:e1:40:85:f1:f2:ae:94: 51:23:87:f0:e1:8a:7d:32:a6:55:5f:2b:5c:33:3c: 88:3c:0e:d0:16:97:c4:cc:b7:2c:c6:40:f3:30:b3: 61:6d:b3:68:d9:eb:33:b9:91:29:76:27:e1:f2:8e: c3:a0:c1:7d:df:be:f0:8d:1f:c8:45:b6:02:5c:5e: d6:2e:f6:93:3b:f9:04:95:02:6f:6a:00:91:33:e6: 11:c7:21:58:6f:01:f9:94:17:66:30:df:e5:0c:ea: 2c:61:87:6f:e9:a6:60:d4:d2:08:13:24:85:1c:59: 77:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:76:48:59:18:61:BA:76:C4:F3:8D:DF:E3:D5:0C:52:37:81:47:F7 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bXZIWRhhunbE843f49UMUjeBR_c.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.112.0/20 Signature Algorithm: sha256WithRSAEncryption e5:4f:5c:f3:31:99:11:2d:98:51:2f:95:6a:63:e7:d5:05:fb: e9:62:2d:84:aa:4d:36:80:23:16:85:91:5d:fc:70:57:e5:b2: 62:4d:2f:a2:92:de:1b:5f:4d:26:ba:e2:4a:c3:e4:06:ea:13: a1:47:a3:b5:37:67:49:d6:5f:68:06:aa:a5:ec:fb:a9:d9:1a: 7e:e7:2f:19:da:91:37:28:84:74:99:43:10:1c:7d:0c:de:a4: 95:43:34:3e:cc:23:f3:18:54:c0:96:ba:f3:ff:30:32:65:9d: 44:57:b4:01:56:8e:ce:35:d7:72:dc:dc:d9:f4:be:2f:90:47: e3:3d:89:fb:de:27:2d:98:9d:c4:14:e8:db:c7:c9:98:7e:88: fe:64:b2:ef:2b:f1:fd:f5:a8:cb:66:db:ff:fc:1f:57:54:19: 2f:32:4f:9c:4d:eb:fb:5c:08:4d:24:ed:96:b1:d3:ec:44:e9: f8:18:d1:9e:6a:df:ca:37:53:0f:bf:e6:e3:23:7f:32:c2:fb: 04:8e:bc:fc:ad:f5:cb:3d:14:e1:16:4a:ea:d7:0d:11:5b:9f: 6f:d4:ad:e7:1c:54:89:4d:0a:49:50:20:9a:20:48:06:88:59: 71:af:c3:b6:59:f0:d8:44:d9:25:f3:a2:32:3f:14:5b:d3:56: 7e:e6:7a:42 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEb0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MjM2MjdaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDZENzY0ODU5MTg2MUJB NzZDNEYzOERERkUzRDUwQzUyMzc4MTQ3RjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmpSwGu1bL/3/PIyJsW+mQZDase+H/riyVzNT6e0OEfpILpO/y a/SSmNNFfaXxkJTKh/RvIOCHTd47WGKWJ3VLepm9YWy+J+5tmc8asnrpJRPg+jxv vNBM38LMpj9ZbKXQn1GTujl/ppEU9QEfT7nb5iaJu8dMbulqGYnf8gbmTBQvg74X Nu1GQX7wZtxO4UCF8fKulFEjh/Dhin0yplVfK1wzPIg8DtAWl8TMtyzGQPMws2Ft s2jZ6zO5kSl2J+HyjsOgwX3fvvCNH8hFtgJcXtYu9pM7+QSVAm9qAJEz5hHHIVhv AfmUF2Yw3+UM6ixhh2/ppmDU0ggTJIUcWXcPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUbXZIWRhhunbE843f49UMUjeBR/cwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2JYWklXUmhodW5iRTg0M2Y0OVVNVWplQlJfYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATc0nAwDQYJKoZIhvcNAQELBQADggEBAOVPXPMxmREtmFEvlWpj59UF++li LYSqTTaAIxaFkV38cFflsmJNL6KS3htfTSa64krD5AbqE6FHo7U3Z0nWX2gGqqXs +6nZGn7nLxnakTcohHSZQxAcfQzepJVDND7MI/MYVMCWuvP/MDJlnURXtAFWjs41 13Lc3Nn0vi+QR+M9ifveJy2YncQU6NvHyZh+iP5ksu8r8f31qMtm2//8H1dUGS8y T5xN6/tcCE0k7Zax0+xE6fgY0Z5q38o3Uw+/5uMjfzLC+wSOvPyt9cs9FOEWSurX DRFbn2/UreccVIlNCklQIJogSAaIWXGvw7ZZ8NhE2SXzojI/FFvTVn7mekI= -----END CERTIFICATE-----Generated at Mon Mar 2 05:18:28 2026 by rpki-client