$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/sQRPg4xIVIFx0prePWL6BamBXEM.roa File: sQRPg4xIVIFx0prePWL6BamBXEM.roa (raw, json) Hash identifier: soVTNgdLY9gehCjqUq+u+pvk+C5JlVTh0i80hJfQepg= Subject key identifier: B1:04:4F:83:8C:48:54:81:71:D2:9A:DE:3D:62:FA:05:A9:81:5C:43 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 12FE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sQRPg4xIVIFx0prePWL6BamBXEM.roa Signing time: Sun 01 Mar 2026 03:27:58 +0000 ROA not before: Sun 01 Mar 2026 03:27:58 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.78.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4862 (0x12fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 03:27:58 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=B1044F838C48548171D29ADE3D62FA05A9815C43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:41:d8:99:52:23:52:40:9d:aa:54:01:a0:91: 3d:93:44:14:39:6e:7f:0c:61:15:fb:92:d8:81:0c: 6f:a0:f8:43:85:19:18:b7:e6:70:e4:c0:99:e5:8c: 57:0f:ca:21:30:97:9a:89:12:2f:35:0b:c3:d1:ee: 49:06:90:15:36:8c:49:58:d1:b0:6a:29:9e:0c:bd: e5:da:72:bf:5c:5b:69:a7:f0:56:82:d1:5f:d2:54: 8a:d7:e8:1f:9c:2d:7b:d5:0f:7b:3b:1e:23:41:25: f1:ba:ba:07:54:17:ec:4d:f7:7c:a1:a3:81:6e:89: ed:85:b7:97:ea:5d:52:aa:f3:9f:07:cc:b8:42:3e: f2:82:e3:4c:42:f6:13:6b:19:a2:87:65:7f:87:7a: ff:2a:21:11:5d:f6:be:69:f5:de:09:73:57:e8:2b: 50:bc:c9:ab:24:1e:d9:71:8e:83:65:6b:90:56:14: 6e:2e:68:3d:ba:88:18:66:42:06:e5:4b:e2:82:96: fb:24:22:b4:70:45:57:22:2f:0f:a5:b8:a7:ff:62: b8:ee:3f:56:85:70:b4:d2:94:b0:81:9c:66:23:52: 30:19:ab:a3:c4:6c:0d:bd:21:40:c1:0d:dc:e9:3c: 6a:50:b0:a9:d5:ef:8b:8d:f6:04:a5:af:ee:3c:35: 59:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:04:4F:83:8C:48:54:81:71:D2:9A:DE:3D:62:FA:05:A9:81:5C:43 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sQRPg4xIVIFx0prePWL6BamBXEM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.78.40.0/22 Signature Algorithm: sha256WithRSAEncryption a3:80:53:f0:91:49:07:b9:d6:3d:b1:29:66:05:ca:ec:b9:8c: aa:ad:f7:e2:b2:7d:9e:7a:73:40:6e:28:82:61:0c:66:a3:ce: 01:c8:9d:7b:26:e7:44:20:f4:98:a9:b5:e8:a4:96:d8:9a:2f: 3a:26:43:1c:6e:b7:56:0e:fd:fd:96:a1:b9:66:9b:f2:f4:9e: 49:bb:d8:9d:db:6b:56:a3:76:b2:04:24:59:b4:71:99:64:71: 37:85:2a:d6:58:c5:4c:87:b4:b2:15:a3:a6:2c:72:89:67:19: d6:89:77:a3:d8:a6:7e:33:42:81:b8:a6:bc:5c:b9:b0:4c:b7: 61:e8:23:64:22:81:46:9a:65:19:2b:8f:d5:c0:42:37:0c:e8: 6a:34:84:c9:43:8d:b6:59:a3:74:4e:f4:13:9e:5a:d2:01:c3: 00:df:f8:8b:f3:92:48:d3:88:fa:37:05:b4:de:f6:dc:a3:2a: f2:1f:80:9d:94:52:02:cf:1d:02:ce:95:15:54:09:2a:57:0b: 88:81:6c:7d:2d:28:30:2d:2e:49:16:fc:e8:24:61:e9:ca:a3: 80:fa:c5:65:25:b6:56:ab:1c:b1:c7:f0:fb:96:9c:e0:07:a8: 8e:1b:b6:69:18:ea:45:c6:76:0c:e1:e6:39:e2:2c:78:b8:62: 37:9e:22:c6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEv4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MzI3NThaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEIxMDQ0RjgzOEM0ODU0 ODE3MUQyOUFERTNENjJGQTA1QTk4MTVDNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCiQdiZUiNSQJ2qVAGgkT2TRBQ5bn8MYRX7ktiBDG+g+EOFGRi3 5nDkwJnljFcPyiEwl5qJEi81C8PR7kkGkBU2jElY0bBqKZ4MveXacr9cW2mn8FaC 0V/SVIrX6B+cLXvVD3s7HiNBJfG6ugdUF+xN93yho4Fuie2Ft5fqXVKq858HzLhC PvKC40xC9hNrGaKHZX+Hev8qIRFd9r5p9d4Jc1foK1C8yaskHtlxjoNla5BWFG4u aD26iBhmQgblS+KClvskIrRwRVciLw+luKf/YrjuP1aFcLTSlLCBnGYjUjAZq6PE bA29IUDBDdzpPGpQsKnV74uN9gSlr+48NVkvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUsQRPg4xIVIFx0prePWL6BamBXEMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3NRUlBnNHhJVklGeDBwcmVQV0w2QmFtQlhFTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTigwDQYJKoZIhvcNAQELBQADggEBAKOAU/CRSQe51j2xKWYFyuy5jKqt 9+KyfZ56c0BuKIJhDGajzgHInXsm50Qg9JipteikltiaLzomQxxut1YO/f2Woblm m/L0nkm72J3ba1ajdrIEJFm0cZlkcTeFKtZYxUyHtLIVo6YscolnGdaJd6PYpn4z QoG4prxcubBMt2HoI2QigUaaZRkrj9XAQjcM6Go0hMlDjbZZo3RO9BOeWtIBwwDf +IvzkkjTiPo3BbTe9tyjKvIfgJ2UUgLPHQLOlRVUCSpXC4iBbH0tKDAtLkkW/Ogk YenKo4D6xWUltlarHLHH8PuWnOAHqI4btmkY6kXGdgzh5jniLHi4YjeeIsY= -----END CERTIFICATE-----Generated at Mon Mar 2 13:10:29 2026 by rpki-client