$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/hnBt5BlOEa5F44_QqOV39MKLzCE.roa File: hnBt5BlOEa5F44_QqOV39MKLzCE.roa (raw, json) Hash identifier: 0vBjwDZ6UICVnnvG+7xJ2pnFuxhMD0J8nYfLyaRlqUw= Subject key identifier: 86:70:6D:E4:19:4E:11:AE:45:E3:8F:D0:A8:E5:77:F4:C2:8B:CC:21 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 12A8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hnBt5BlOEa5F44_QqOV39MKLzCE.roa Signing time: Sun 01 Mar 2026 03:12:30 +0000 ROA not before: Sun 01 Mar 2026 03:12:30 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.210.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 05:15:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4776 (0x12a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 03:12:30 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=86706DE4194E11AE45E38FD0A8E577F4C28BCC21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ba:86:c6:b6:03:a8:51:c9:0a:57:67:d9:3d: d0:76:2a:15:5f:8b:e3:3c:e6:30:5c:8b:23:19:25: b0:98:84:28:ed:8f:8a:0e:47:8e:c0:a3:f4:a2:f6: 10:f8:86:9a:1b:94:20:11:fe:3b:3e:c3:a2:da:16: f1:c5:4a:ea:83:34:96:47:05:c2:57:63:28:70:1b: 76:9d:78:5b:f6:d5:64:dd:b3:bb:85:18:2c:71:2b: 03:1a:02:63:07:b6:d3:16:65:d4:24:9e:1a:56:2b: 65:7e:11:f7:55:fc:e4:a9:67:2f:f7:e9:dd:ef:ce: cd:2f:6e:b7:c9:cf:9e:30:1a:0d:e5:b9:c8:06:37: 75:42:2b:bb:0e:8e:0d:f5:70:fe:67:f1:06:45:01: c5:ee:8e:9a:6c:8b:f8:55:b1:a0:d0:1c:e6:a8:eb: 10:52:27:7f:27:38:97:99:05:c4:cd:b4:5e:9b:86: be:78:14:c6:7d:0a:51:cf:93:41:8a:a9:c8:8f:f7: 6c:a8:2a:d4:ce:ad:9b:35:a2:83:b9:cc:81:79:cc: cc:ed:b8:87:01:74:b0:6e:d5:de:1c:10:7d:90:b0: b0:6e:86:33:07:16:67:bb:b9:d8:5f:52:49:66:fd: d8:8f:81:a3:ad:33:66:fa:68:b2:0a:9a:e8:c5:74: 86:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:70:6D:E4:19:4E:11:AE:45:E3:8F:D0:A8:E5:77:F4:C2:8B:CC:21 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hnBt5BlOEa5F44_QqOV39MKLzCE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.25.0/24 Signature Algorithm: sha256WithRSAEncryption 09:16:0e:91:75:a8:0a:e3:3c:d2:97:fe:fc:b8:03:31:b3:ba: 81:ff:9f:bf:f8:24:77:e2:6e:f9:1f:ef:58:2c:8a:b7:ff:24: b4:e3:21:c2:1e:16:cd:05:f6:61:b0:12:4a:3a:a1:bb:63:5d: bf:86:74:53:a0:32:31:14:69:32:99:71:db:6c:42:48:f6:49: f0:e3:0c:78:a4:fc:ef:0f:af:5e:cf:45:09:7a:3a:48:1e:13: d2:7c:1e:f3:f2:c1:a6:19:b5:b8:09:68:a0:24:70:4d:0f:74: d5:4a:27:47:08:05:6a:6a:00:19:4a:3c:f8:d7:02:5e:09:79: ae:85:21:a2:b5:a7:28:47:3d:12:5f:fc:cc:a2:a8:80:d8:9b: 25:1d:57:db:97:20:c7:6b:3c:12:a6:e5:46:95:6b:17:34:ed: 87:a9:aa:be:26:a8:af:e4:f6:41:45:6f:f2:6c:43:17:4e:52: 55:a5:08:30:f3:de:48:01:d6:d9:b2:a4:46:09:89:cc:27:07: 81:6a:0d:b9:ff:70:54:b5:c4:e3:02:4a:f6:7c:0d:cf:aa:cd: bc:e2:b9:3d:30:59:f1:a9:24:f9:09:36:e9:96:2c:1e:ea:dd: 1a:17:3e:f2:61:f9:f6:2d:0b:43:96:ef:45:ca:3a:1d:b9:b6: e1:48:6c:28 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEqgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MzEyMzBaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg2NzA2REU0MTk0RTEx QUU0NUUzOEZEMEE4RTU3N0Y0QzI4QkNDMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhuobGtgOoUckKV2fZPdB2KhVfi+M85jBciyMZJbCYhCjtj4oO R47Ao/Si9hD4hpoblCAR/js+w6LaFvHFSuqDNJZHBcJXYyhwG3adeFv21WTds7uF GCxxKwMaAmMHttMWZdQknhpWK2V+EfdV/OSpZy/36d3vzs0vbrfJz54wGg3lucgG N3VCK7sOjg31cP5n8QZFAcXujppsi/hVsaDQHOao6xBSJ38nOJeZBcTNtF6bhr54 FMZ9ClHPk0GKqciP92yoKtTOrZs1ooO5zIF5zMztuIcBdLBu1d4cEH2QsLBuhjMH Fme7udhfUklm/diPgaOtM2b6aLIKmujFdIabAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUhnBt5BlOEa5F44/QqOV39MKLzCEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2huQnQ1QmxPRWE1RjQ0X1FxT1YzOU1LTHpDRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADc0hkwDQYJKoZIhvcNAQELBQADggEBAAkWDpF1qArjPNKX/vy4AzGzuoH/ n7/4JHfibvkf71gsirf/JLTjIcIeFs0F9mGwEko6obtjXb+GdFOgMjEUaTKZcdts Qkj2SfDjDHik/O8Pr17PRQl6OkgeE9J8HvPywaYZtbgJaKAkcE0PdNVKJ0cIBWpq ABlKPPjXAl4Jea6FIaK1pyhHPRJf/MyiqIDYmyUdV9uXIMdrPBKm5UaVaxc07Yep qr4mqK/k9kFFb/JsQxdOUlWlCDDz3kgB1tmypEYJicwnB4FqDbn/cFS1xOMCSvZ8 Dc+qzbziuT0wWfGpJPkJNumWLB7q3RoXPvJh+fYtC0OW70XKOh25tuFIbCg= -----END CERTIFICATE-----Generated at Mon Mar 2 10:06:41 2026 by rpki-client