$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/xJrGZAMjhSHGQYVTu_YYS7WuZDY.roa File: xJrGZAMjhSHGQYVTu_YYS7WuZDY.roa (raw, json) Hash identifier: J4oqsqfVqPu2FR7e9onJeYemaQX6tWfEX6SxU6SpHcA= Subject key identifier: C4:9A:C6:64:03:23:85:21:C6:41:85:53:BB:F6:18:4B:B5:AE:64:36 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1331 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xJrGZAMjhSHGQYVTu_YYS7WuZDY.roa Signing time: Sun 01 Mar 2026 03:36:24 +0000 ROA not before: Sun 01 Mar 2026 03:36:24 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:24:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4913 (0x1331) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 03:36:24 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=C49AC66403238521C6418553BBF6184BB5AE6436 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:05:aa:2c:70:50:39:78:ea:be:b1:46:c0:7b: 21:6a:0b:be:85:73:11:8d:61:71:b5:0b:e7:21:8d: 60:a0:b8:29:d4:a8:9b:3e:77:33:20:11:23:f7:ad: 3b:91:d8:56:26:dd:cc:78:12:33:93:4c:24:46:dc: 29:0b:13:15:aa:8b:b4:92:d9:8c:f5:05:98:8a:4a: 8d:3e:df:9c:d7:6b:7a:03:d6:9d:50:3f:f8:b6:ac: dc:c3:04:9b:42:73:cf:5b:1f:d2:58:84:d1:d0:7a: a5:48:46:41:35:93:e3:14:46:52:0a:ac:24:b7:8c: 46:57:33:7e:a0:a2:fc:dd:ba:7a:f4:06:90:94:ba: b2:29:13:b4:a7:b6:0f:94:09:52:a0:72:c1:f5:dd: 16:64:33:9e:73:03:1d:20:e3:77:2b:54:25:f3:ba: f2:fa:c1:5d:b4:05:1d:23:f7:57:f0:ef:22:1f:df: f1:7a:54:a1:a6:e5:24:b5:b2:eb:58:fc:ee:cc:9c: ee:bb:41:05:db:41:a4:03:78:c8:e7:95:98:95:a6: 1f:b7:98:40:87:bd:d3:f9:6e:72:fa:1f:95:68:3c: bd:2b:93:d6:ff:bf:fa:5f:a7:24:75:3d:3f:a8:1f: 73:0b:61:3b:8b:36:96:06:2d:ba:cb:26:76:08:d0: c6:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:9A:C6:64:03:23:85:21:C6:41:85:53:BB:F6:18:4B:B5:AE:64:36 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xJrGZAMjhSHGQYVTu_YYS7WuZDY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.6.0/24 Signature Algorithm: sha256WithRSAEncryption ad:0b:75:87:11:6d:9e:fa:63:84:bc:f5:b0:5f:ff:91:72:a0: 76:ed:e5:52:d1:61:1a:16:31:e6:fe:af:e0:8a:e8:cf:5c:38: 9c:61:e5:98:18:7b:98:24:33:6f:4e:6d:cd:71:db:8f:52:8d: c5:e1:b0:17:99:aa:15:ad:58:9c:62:f7:c5:f3:1c:80:82:4b: 5b:19:7e:51:ad:6e:c1:01:9c:84:13:3a:19:c9:08:6e:2a:7d: 0b:e5:b1:f5:51:3e:08:a9:18:91:f9:be:0a:59:10:3c:47:be: 79:8d:1e:11:04:e9:01:15:97:c1:6f:6a:db:ef:75:a7:74:74: 54:9e:17:ef:6f:32:36:5f:28:50:25:41:7c:27:18:ed:a1:60: 72:bc:ae:61:f5:25:05:02:6b:f8:35:c9:a6:28:d9:a2:4f:91: 3e:95:e1:4a:92:18:b9:34:55:8d:35:0f:a1:27:89:9f:b4:90: 20:2a:d8:5b:c4:74:1c:eb:e1:1e:81:9a:b0:94:a8:eb:40:81: 79:79:75:d1:ee:0b:86:1c:7c:11:03:cc:47:64:a2:36:8f:d5: 65:db:3f:78:d9:52:38:47:fe:72:d8:73:b3:87:81:1f:74:a1: 3b:4e:7d:9a:3f:dd:f3:b5:a7:0e:75:33:27:54:f1:32:de:09: f5:09:48:53 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEzEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MzM2MjRaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM0OUFDNjY0MDMyMzg1 MjFDNjQxODU1M0JCRjYxODRCQjVBRTY0MzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPBaoscFA5eOq+sUbAeyFqC76FcxGNYXG1C+chjWCguCnUqJs+ dzMgESP3rTuR2FYm3cx4EjOTTCRG3CkLExWqi7SS2Yz1BZiKSo0+35zXa3oD1p1Q P/i2rNzDBJtCc89bH9JYhNHQeqVIRkE1k+MURlIKrCS3jEZXM36govzdunr0BpCU urIpE7Sntg+UCVKgcsH13RZkM55zAx0g43crVCXzuvL6wV20BR0j91fw7yIf3/F6 VKGm5SS1sutY/O7MnO67QQXbQaQDeMjnlZiVph+3mECHvdP5bnL6H5VoPL0rk9b/ v/pfpyR1PT+oH3MLYTuLNpYGLbrLJnYI0MafAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUxJrGZAMjhSHGQYVTu/YYS7WuZDYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3hKckdaQU1qaFNIR1FZVlR1X1lZUzdXdVpEWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABTwYwDQYJKoZIhvcNAQELBQADggEBAK0LdYcRbZ76Y4S89bBf/5FyoHbt 5VLRYRoWMeb+r+CK6M9cOJxh5ZgYe5gkM29Obc1x249SjcXhsBeZqhWtWJxi98Xz HICCS1sZflGtbsEBnIQTOhnJCG4qfQvlsfVRPgipGJH5vgpZEDxHvnmNHhEE6QEV l8Fvatvvdad0dFSeF+9vMjZfKFAlQXwnGO2hYHK8rmH1JQUCa/g1yaYo2aJPkT6V 4UqSGLk0VY01D6EniZ+0kCAq2FvEdBzr4R6BmrCUqOtAgXl5ddHuC4YcfBEDzEdk ojaP1WXbP3jZUjhH/nLYc7OHgR90oTtOfZo/3fO1pw51MydU8TLeCfUJSFM= -----END CERTIFICATE-----Generated at Mon Mar 2 06:54:28 2026 by rpki-client