$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/rGXObe04sIk83Hng-_gJoSLZpEE.roa File: rGXObe04sIk83Hng-_gJoSLZpEE.roa (raw, json) Hash identifier: zDG7sUsPS534ZG0Q9MoMW4x6cxooqpAgVZdZErzDNrs= Subject key identifier: AC:65:CE:6D:ED:38:B0:89:3C:DC:79:E0:FB:F8:09:A1:22:D9:A4:41 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 10D7 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/rGXObe04sIk83Hng-_gJoSLZpEE.roa Signing time: Sun 01 Mar 2026 01:54:49 +0000 ROA not before: Sun 01 Mar 2026 01:54:49 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4311 (0x10d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 01:54:49 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=AC65CE6DED38B0893CDC79E0FBF809A122D9A441 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:2b:76:a9:32:75:ed:a2:38:ba:82:cb:90:ec: e8:71:84:d3:fd:74:7d:6d:7a:dd:b5:c2:43:9f:7a: d8:06:d0:e1:b5:91:8c:89:33:d3:ea:f6:a2:69:54: 8d:01:40:89:50:06:2d:31:d6:43:6c:1c:f3:2d:87: e9:40:dc:3a:73:e8:49:76:04:35:49:d7:37:c5:22: 90:e2:86:2d:41:35:e7:38:fb:8a:04:11:36:d9:67: 0d:e6:98:8b:6c:4a:72:46:6f:cb:bb:f9:85:39:41: f5:d0:ed:20:8a:a3:64:2a:6b:13:6c:3a:9e:4e:e5: 68:96:0e:13:b6:78:d2:a7:6f:57:dc:68:26:2b:38: 58:db:8a:25:fc:1f:40:1e:53:be:b9:6d:12:bc:a3: d2:26:6c:54:c5:ff:89:56:28:e5:ed:c8:8d:14:87: 09:dc:a7:7b:02:6a:3f:44:36:ed:16:7d:e8:c8:44: 93:1f:cb:14:52:3d:bd:c4:fe:18:14:6a:16:43:ba: 7b:68:7d:a3:27:70:c3:67:24:76:50:1b:91:a2:95: de:d0:32:aa:54:8f:c4:ae:a7:5b:fd:22:d3:cc:ab: 74:70:f1:cd:c2:d0:1b:50:2e:94:9e:64:08:9e:72: 4e:41:3b:83:c8:d6:b7:5f:73:d7:cd:e2:0f:75:23: 7e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:65:CE:6D:ED:38:B0:89:3C:DC:79:E0:FB:F8:09:A1:22:D9:A4:41 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/rGXObe04sIk83Hng-_gJoSLZpEE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.168.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:a4:4a:6d:4d:fd:15:4c:13:98:75:86:d2:06:1b:19:e5:1b: b9:ab:e7:12:d2:ae:32:eb:e0:c2:d3:9d:9c:b8:d3:79:ce:05: 85:fb:4f:4b:21:8e:40:0c:ae:91:c4:b5:50:76:f9:40:75:ce: 72:94:c8:83:c1:fa:59:a3:e4:43:37:92:fd:b2:02:fb:94:a1: 9f:5e:25:8b:78:79:59:03:45:71:ec:e1:c4:d0:bb:3e:87:9b: 0f:5a:57:6d:0a:95:17:7b:2e:64:45:c1:f8:2c:f1:2c:b3:f1: 26:e3:b7:65:cf:c3:96:3f:e8:aa:69:83:ec:de:57:45:5a:0f: cb:38:65:b1:dd:ec:e3:83:67:1a:32:34:17:c8:7d:9f:b5:e8: ef:a7:55:f2:e9:5e:1b:43:6c:ab:93:16:06:b7:bd:e2:1b:fd: 38:e0:14:27:f8:c2:dc:18:38:a6:f8:69:e8:84:6a:e7:0b:52: 90:37:5d:5c:70:e9:3a:31:27:a2:7d:9b:39:99:4e:f9:5a:32: 6c:14:7e:df:25:84:0e:a9:b3:c9:97:09:ae:68:f2:b7:d0:db: f4:f4:ca:e1:c9:67:ea:34:88:3f:61:8b:41:e6:be:e7:c2:82: a1:b5:7a:3e:cc:f5:1d:f2:a5:c7:70:5c:90:6f:d7:65:2a:b3: d5:c2:f1:f7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICENcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MTU0NDlaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEFDNjVDRTZERUQzOEIw ODkzQ0RDNzlFMEZCRjgwOUExMjJEOUE0NDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsK3apMnXtoji6gsuQ7OhxhNP9dH1tet21wkOfetgG0OG1kYyJ M9Pq9qJpVI0BQIlQBi0x1kNsHPMth+lA3Dpz6El2BDVJ1zfFIpDihi1BNec4+4oE ETbZZw3mmItsSnJGb8u7+YU5QfXQ7SCKo2QqaxNsOp5O5WiWDhO2eNKnb1fcaCYr OFjbiiX8H0AeU765bRK8o9ImbFTF/4lWKOXtyI0Uhwncp3sCaj9ENu0WfejIRJMf yxRSPb3E/hgUahZDuntofaMncMNnJHZQG5Gild7QMqpUj8Sup1v9ItPMq3Rw8c3C 0BtQLpSeZAieck5BO4PI1rdfc9fN4g91I35bAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUrGXObe04sIk83Hng+/gJoSLZpEEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3JHWE9iZTA0c0lrODNIbmctX2dKb1NMWnBFRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBT6gwDQYJKoZIhvcNAQELBQADggEBAIqkSm1N/RVME5h1htIGGxnlG7mr 5xLSrjLr4MLTnZy403nOBYX7T0shjkAMrpHEtVB2+UB1znKUyIPB+lmj5EM3kv2y AvuUoZ9eJYt4eVkDRXHs4cTQuz6Hmw9aV20KlRd7LmRFwfgs8Syz8Sbjt2XPw5Y/ 6Kppg+zeV0VaD8s4ZbHd7OODZxoyNBfIfZ+16O+nVfLpXhtDbKuTFga3veIb/Tjg FCf4wtwYOKb4aeiEaucLUpA3XVxw6ToxJ6J9mzmZTvlaMmwUft8lhA6ps8mXCa5o 8rfQ2/T0yuHJZ+o0iD9hi0HmvufCgqG1ej7M9R3ypcdwXJBv12Uqs9XC8fc= -----END CERTIFICATE-----Generated at Mon Mar 2 05:17:28 2026 by rpki-client