$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/vrYxYwL9wyX_r-vbX0N5L30h7hk.roa File: vrYxYwL9wyX_r-vbX0N5L30h7hk.roa (raw, json) Hash identifier: IH2vqRMu/zej5wtZXslAizE5l8NWXxviS5SB7Zt8qUg= Subject key identifier: BE:B6:31:63:02:FD:C3:25:FF:AF:EB:DB:5F:43:79:2F:7D:21:EE:19 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 12B1 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vrYxYwL9wyX_r-vbX0N5L30h7hk.roa Signing time: Sun 01 Mar 2026 03:12:34 +0000 ROA not before: Sun 01 Mar 2026 03:12:34 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.72.10.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4785 (0x12b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 03:12:34 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=BEB6316302FDC325FFAFEBDB5F43792F7D21EE19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:41:67:87:4b:2c:e1:a6:0d:1f:da:e6:23:e5: 58:c4:2a:d9:4d:61:a4:5e:53:60:4e:70:c6:5b:09: d6:91:9e:47:b1:14:bc:84:4c:d0:fd:46:3a:53:0c: 4f:a0:f0:3c:cb:29:4f:4a:e5:57:b0:79:2d:5b:50: 1f:8b:68:ad:fd:4f:08:29:41:26:9d:f4:be:62:f5: 29:ca:ee:cb:15:25:87:bb:43:0b:30:23:fd:d3:6f: b0:8a:e9:12:43:a3:70:10:a9:bc:1f:2c:2e:d4:8b: 4e:84:3b:fd:c5:dd:7c:ee:74:b6:c6:9a:cd:56:dc: 23:e1:cd:17:40:4e:2b:05:db:4f:22:63:01:06:a0: 91:67:9c:15:d5:38:4d:5f:3f:a1:ae:a9:b4:2c:25: 59:cf:54:4b:f1:b4:22:e0:f3:28:85:c9:d9:77:cf: 05:31:d1:53:f8:9d:f5:19:34:38:f1:ec:3f:14:91: 1d:fe:99:b2:dc:1b:56:87:b8:3f:11:70:d8:a0:eb: 8e:9b:b4:1d:7a:a7:f4:4f:02:8f:2e:34:2c:9b:4c: 39:a7:92:4c:f5:c1:eb:5b:91:82:2d:f2:61:32:05: 42:1c:63:f6:13:fa:38:d2:7e:98:a0:9a:c9:a0:8d: 52:2a:15:cc:93:bd:8d:ae:d2:c2:88:62:ea:08:cf: 55:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:B6:31:63:02:FD:C3:25:FF:AF:EB:DB:5F:43:79:2F:7D:21:EE:19 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vrYxYwL9wyX_r-vbX0N5L30h7hk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.10.0/23 Signature Algorithm: sha256WithRSAEncryption ba:59:e5:98:bc:ed:a2:49:21:a4:36:ab:f6:7e:cc:c2:cb:e6: d3:a5:da:d3:70:50:0d:ba:85:dd:e0:89:14:d2:9d:6b:d3:9a: 81:9a:17:be:34:23:37:65:79:9c:9a:43:e0:d4:aa:b9:66:c6: 8e:3e:f0:f2:2f:d0:29:d8:1e:f9:5b:87:ec:00:cd:01:b6:43: 58:5a:2e:b9:0e:c7:fc:54:71:e2:0a:e2:2f:71:c6:dd:1d:65: 1c:63:b8:eb:88:f5:43:19:da:2c:48:a7:e9:ae:02:ac:de:f5: df:df:8f:56:e0:06:be:90:8c:c7:df:10:90:91:84:72:05:78: 96:27:20:fb:b7:7b:7f:25:a0:59:8d:7a:0d:77:ef:a5:23:c3: da:85:c7:78:45:07:89:05:c9:1b:0d:17:cf:77:92:91:22:89: 33:4b:38:6d:1c:77:74:cf:a1:b8:93:52:bf:82:0e:cb:39:c5: 71:c6:61:fa:b3:e7:75:cf:6c:ea:73:86:02:4a:ca:9a:37:9d: 66:1e:39:9d:06:02:49:c5:9f:a0:d1:2a:8b:5a:14:09:cf:19: ad:9d:b6:78:d6:ed:12:a7:18:20:ff:84:12:e9:54:fb:82:7c: db:68:37:e7:50:02:50:5a:76:7c:d4:90:20:34:95:9a:46:ec: 44:f7:e1:c6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICErEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MzEyMzRaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEJFQjYzMTYzMDJGREMz MjVGRkFGRUJEQjVGNDM3OTJGN0QyMUVFMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2QWeHSyzhpg0f2uYj5VjEKtlNYaReU2BOcMZbCdaRnkexFLyE TND9RjpTDE+g8DzLKU9K5VeweS1bUB+LaK39TwgpQSad9L5i9SnK7ssVJYe7Qwsw I/3Tb7CK6RJDo3AQqbwfLC7Ui06EO/3F3XzudLbGms1W3CPhzRdATisF208iYwEG oJFnnBXVOE1fP6GuqbQsJVnPVEvxtCLg8yiFydl3zwUx0VP4nfUZNDjx7D8UkR3+ mbLcG1aHuD8RcNig646btB16p/RPAo8uNCybTDmnkkz1wetbkYIt8mEyBUIcY/YT +jjSfpigmsmgjVIqFcyTvY2u0sKIYuoIz1UhAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUvrYxYwL9wyX/r+vbX0N5L30h7hkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3ZyWXhZd0w5d3lYX3ItdmJYME41TDMwaDdoay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBSAowDQYJKoZIhvcNAQELBQADggEBALpZ5Zi87aJJIaQ2q/Z+zMLL5tOl 2tNwUA26hd3giRTSnWvTmoGaF740IzdleZyaQ+DUqrlmxo4+8PIv0CnYHvlbh+wA zQG2Q1haLrkOx/xUceIK4i9xxt0dZRxjuOuI9UMZ2ixIp+muAqze9d/fj1bgBr6Q jMffEJCRhHIFeJYnIPu3e38loFmNeg1376Ujw9qFx3hFB4kFyRsNF893kpEiiTNL OG0cd3TPobiTUr+CDss5xXHGYfqz53XPbOpzhgJKypo3nWYeOZ0GAknFn6DRKota FAnPGa2dtnjW7RKnGCD/hBLpVPuCfNtoN+dQAlBadnzUkCA0lZpG7ET34cY= -----END CERTIFICATE-----Generated at Mon Mar 2 13:12:23 2026 by rpki-client