$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/hw5c4S60DD4oI_7YIPSoGGsdvJI.roa File: hw5c4S60DD4oI_7YIPSoGGsdvJI.roa (raw, json) Hash identifier: yoPdsAODyiNHwnCUYh21f7bvmUd5SBh9Cye9clgXs0A= Subject key identifier: 87:0E:5C:E1:2E:B4:0C:3E:28:23:FE:D8:20:F4:A8:18:6B:1D:BC:92 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 10E8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hw5c4S60DD4oI_7YIPSoGGsdvJI.roa Signing time: Sun 01 Mar 2026 01:58:40 +0000 ROA not before: Sun 01 Mar 2026 01:58:40 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.230.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:24:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4328 (0x10e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 01:58:40 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=870E5CE12EB40C3E2823FED820F4A8186B1DBC92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c7:b1:bc:19:9b:fe:77:c0:c0:09:0e:10:60: 57:00:94:98:07:fd:b0:c6:9f:97:ec:39:a9:74:a2: 6a:25:80:0b:94:91:6a:9d:34:aa:00:1e:d1:e6:d9: 10:d8:1a:02:7c:9f:31:1e:da:0f:1b:c5:4f:35:35: 88:ad:b0:4e:28:ad:72:c3:55:3f:f1:77:0c:6b:4a: 2a:0e:dd:d8:69:2d:0b:50:fc:62:d1:d8:9a:bb:c5: 78:a4:18:83:e3:79:de:95:30:c1:fb:03:be:ef:b6: 44:10:3c:fc:98:e7:63:73:06:c5:2b:d8:c1:3c:ff: 60:5a:4c:66:28:13:41:8d:98:cf:e4:e3:cf:ba:47: 17:09:36:de:52:d5:3a:52:15:48:28:99:86:93:19: 16:1d:22:9f:e5:c2:71:8c:e9:e0:54:4c:7f:53:24: 15:17:d9:a3:ae:42:11:8c:1f:c5:16:ee:3c:c3:70: 01:c0:9b:34:84:95:98:17:8d:e6:21:e2:d1:71:12: 8a:61:ee:24:79:c5:c1:96:94:be:ef:d5:33:d1:09: 08:36:1b:c4:3c:46:36:a7:a9:a6:a9:94:bc:da:4c: 81:a0:b9:eb:1b:61:7c:0e:56:65:6e:23:71:cd:17: 0b:33:32:5f:a4:08:74:cb:5a:d8:a9:68:1e:27:2c: d2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:0E:5C:E1:2E:B4:0C:3E:28:23:FE:D8:20:F4:A8:18:6B:1D:BC:92 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hw5c4S60DD4oI_7YIPSoGGsdvJI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.230.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:dc:84:77:72:f8:61:cd:f0:ed:c6:b2:fd:bf:a3:03:31:99: 97:f9:dc:8f:6d:86:d8:82:7f:a8:35:7f:d8:d6:bf:3c:de:66: 0a:59:d2:a6:e7:52:a1:a0:ea:3f:70:04:4d:64:b2:5d:e0:1c: e3:ef:7f:ab:83:a3:78:05:3f:74:81:fc:68:b2:96:c2:e2:a1: f4:0e:6f:5f:2a:06:d2:4a:62:64:c7:f1:fc:12:3a:4d:28:c4: 8f:25:96:e2:6f:56:a5:ee:3c:91:da:4a:28:7a:5c:16:96:5d: d8:5c:30:35:6d:ae:fd:78:de:ed:61:92:22:7d:44:f0:d6:bc: 76:b2:cc:98:55:67:d7:9b:b6:18:82:2f:b6:d6:e9:91:16:c5: 08:94:dc:4a:f9:da:2a:11:a2:7c:1c:56:70:8e:1a:1d:15:1a: 3b:e0:d6:2a:3c:58:2a:f8:f9:39:6b:a7:ea:8e:5c:06:e7:5a: 63:2b:60:cf:74:b2:1e:02:0e:a2:0c:79:fe:95:a9:25:f3:ca: 59:42:7e:fc:c5:8d:b7:ad:91:77:1f:6e:72:03:5f:17:1f:5b: 58:56:c4:e5:aa:89:a3:64:46:38:c7:38:57:1a:b6:52:25:6f: 8c:d4:16:0c:aa:dd:48:d6:dc:17:24:f9:89:f1:01:dc:7a:c1: 6f:82:8a:2a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEOgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MTU4NDBaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg3MEU1Q0UxMkVCNDBD M0UyODIzRkVEODIwRjRBODE4NkIxREJDOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0x7G8GZv+d8DACQ4QYFcAlJgH/bDGn5fsOal0omolgAuUkWqd NKoAHtHm2RDYGgJ8nzEe2g8bxU81NYitsE4orXLDVT/xdwxrSioO3dhpLQtQ/GLR 2Jq7xXikGIPjed6VMMH7A77vtkQQPPyY52NzBsUr2ME8/2BaTGYoE0GNmM/k48+6 RxcJNt5S1TpSFUgomYaTGRYdIp/lwnGM6eBUTH9TJBUX2aOuQhGMH8UW7jzDcAHA mzSElZgXjeYh4tFxEoph7iR5xcGWlL7v1TPRCQg2G8Q8RjanqaaplLzaTIGguesb YXwOVmVuI3HNFwszMl+kCHTLWtipaB4nLNL5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUhw5c4S60DD4oI/7YIPSoGGsdvJIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2h3NWM0UzYwREQ0b0lfN1lJUFNvR0dzZHZKSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHcn+YwDQYJKoZIhvcNAQELBQADggEBAEvchHdy+GHN8O3Gsv2/owMxmZf5 3I9thtiCf6g1f9jWvzzeZgpZ0qbnUqGg6j9wBE1ksl3gHOPvf6uDo3gFP3SB/Giy lsLiofQOb18qBtJKYmTH8fwSOk0oxI8lluJvVqXuPJHaSih6XBaWXdhcMDVtrv14 3u1hkiJ9RPDWvHayzJhVZ9ebthiCL7bW6ZEWxQiU3Er52ioRonwcVnCOGh0VGjvg 1io8WCr4+Tlrp+qOXAbnWmMrYM90sh4CDqIMef6VqSXzyllCfvzFjbetkXcfbnID XxcfW1hWxOWqiaNkRjjHOFcatlIlb4zUFgyq3UjW3Bck+YnxAdx6wW+Ciio= -----END CERTIFICATE-----Generated at Mon Mar 2 06:54:26 2026 by rpki-client