$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/Z9mVO5mSxs2g7ayFfFyDc5Ku4k8.roa File: Z9mVO5mSxs2g7ayFfFyDc5Ku4k8.roa (raw, json) Hash identifier: 8kNGEsqaKcYmkErczHBMpYtWiwa5MC1dO0BYo+VhtgM= Subject key identifier: 67:D9:95:3B:99:92:C6:CD:A0:ED:AC:85:7C:5C:83:73:92:AE:E2:4F Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D Certificate serial: 01D6 Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/Z9mVO5mSxs2g7ayFfFyDc5Ku4k8.roa Signing time: Tue 31 Mar 2026 07:39:48 +0000 ROA not before: Tue 31 Mar 2026 07:39:48 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 2527 IP address blocks: 219.111.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D Validity Not Before: Mar 31 07:39:48 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=67D9953B9992C6CDA0EDAC857C5C837392AEE24F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b6:27:e3:bd:08:da:b9:42:ca:d4:82:48:f0: 89:21:36:84:74:ba:a8:50:58:7e:a6:91:2c:2c:34: 8d:4b:7e:e5:5d:95:f0:ac:cf:93:87:ba:48:be:ea: d9:d0:ba:b4:33:34:da:de:9c:b3:68:8e:1b:e9:8c: a2:ab:73:0a:c7:b0:26:98:01:48:2d:04:91:fa:96: cb:19:0f:43:93:ae:15:27:97:e1:62:5f:31:72:c2: a1:dc:69:3a:93:06:10:9a:7e:36:fc:d3:e5:af:54: b9:3f:97:38:8d:81:60:b9:47:cb:81:4a:81:6d:91: e7:6d:a1:2e:61:a5:90:dc:f2:75:4e:f2:a5:1e:bf: bc:23:45:00:6c:7a:1d:f7:a6:b6:bd:ac:53:9b:c7: 5f:25:42:f9:17:a5:77:34:59:9b:57:12:f8:b8:44: 4f:94:0b:09:0b:53:80:af:5d:f3:f4:40:e6:39:19: f3:48:04:d9:d8:cf:43:c7:6b:0b:da:1b:98:93:92: 90:ef:c5:97:07:f7:00:9e:c2:32:82:0d:ce:be:86: 5f:56:4a:f8:c2:c6:d5:af:f9:18:12:a7:ef:0d:86: b9:7a:25:c2:8d:c6:92:ee:85:9c:11:87:cd:e2:1a: da:52:d7:14:4e:4b:d9:4e:97:04:1e:3a:b8:b1:fd: e6:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:D9:95:3B:99:92:C6:CD:A0:ED:AC:85:7C:5C:83:73:92:AE:E2:4F X509v3 Authority Key Identifier: keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/Z9mVO5mSxs2g7ayFfFyDc5Ku4k8.roa sbgp-ipAddrBlock: critical IPv4: 219.111.128.0/18 Signature Algorithm: sha256WithRSAEncryption 14:a2:cc:da:8e:88:cf:5a:ba:ed:78:ab:86:ac:15:db:88:82: 0b:2e:db:87:40:c0:2f:49:12:90:e7:c8:fc:6f:86:bb:40:e9: 1c:bf:5b:d2:a2:fb:ef:4d:bd:e1:8c:d4:63:bf:6a:b4:6a:9a: 6b:89:88:7d:02:ca:8d:4c:6f:f1:91:f3:5e:8f:14:0c:87:2f: 53:51:a8:ad:37:af:d3:c7:d4:e0:f3:5f:70:9e:01:a0:93:5a: 1a:b5:c9:ca:ea:ef:9e:3d:be:e3:db:c4:25:e3:21:5c:11:ad: 7c:76:78:32:5f:f6:ab:7d:21:ee:a4:2e:c8:41:8a:00:b7:a4: 3c:65:46:39:37:2f:6b:2b:93:5c:cc:ac:a1:dd:ab:c0:c7:92: 1d:ed:71:df:7c:87:8a:36:9a:dd:66:e0:70:19:97:12:35:83: 04:58:10:39:19:5c:c3:ef:75:e9:db:64:a6:57:9c:07:86:07: e6:72:91:20:5e:d3:4f:bf:47:12:42:84:6a:a6:4d:ac:ef:f9: dc:32:b7:e3:b4:b1:f0:2b:d3:59:55:18:30:34:69:66:6e:dc: 0c:30:e1:93:97:98:54:7b:0d:f2:2f:c1:9e:b2:45:a0:25:aa: 09:5e:e4:a2:98:8f:a6:49:f4:99:50:2c:ea:3c:09:9a:75:42: a7:3f:6f:21 -----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1 QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yNjAzMzEw NzM5NDhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY3RDk5NTNCOTk5MkM2 Q0RBMEVEQUM4NTdDNUM4MzczOTJBRUUyNEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDftifjvQjauULK1IJI8IkhNoR0uqhQWH6mkSwsNI1LfuVdlfCs z5OHuki+6tnQurQzNNrenLNojhvpjKKrcwrHsCaYAUgtBJH6lssZD0OTrhUnl+Fi XzFywqHcaTqTBhCafjb80+WvVLk/lziNgWC5R8uBSoFtkedtoS5hpZDc8nVO8qUe v7wjRQBseh33pra9rFObx18lQvkXpXc0WZtXEvi4RE+UCwkLU4CvXfP0QOY5GfNI BNnYz0PHawvaG5iTkpDvxZcH9wCewjKCDc6+hl9WSvjCxtWv+RgSp+8Nhrl6JcKN xpLuhZwRh83iGtpS1xROS9lOlwQeOrix/eaBAgMBAAGjggHXMIIB0zAdBgNVHQ4E FgQUZ9mVO5mSxs2g7ayFfFyDc5Ku4k8wHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo 3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1 ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMHAGCCsGAQUFBwELBGQwYjBgBggrBgEF BQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC80My9aOW1WTzVtU3hzMmc3YXlGZkZ5RGM1S3U0azgucm9hMB8GCCsG AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQG22+AMA0GCSqGSIb3DQEBCwUAA4IBAQAU oszajojPWrrteKuGrBXbiIILLtuHQMAvSRKQ58j8b4a7QOkcv1vSovvvTb3hjNRj v2q0appriYh9AsqNTG/xkfNejxQMhy9TUaitN6/Tx9Tg819wngGgk1oatcnK6u+e Pb7j28Ql4yFcEa18dngyX/arfSHupC7IQYoAt6Q8ZUY5Ny9rK5NczKyh3avAx5Id 7XHffIeKNprdZuBwGZcSNYMEWBA5GVzD73Xp22SmV5wHhgfmcpEgXtNPv0cSQoRq pk2s7/ncMrfjtLHwK9NZVRgwNGlmbtwMMOGTl5hUew3yL8GeskWgJaoJXuSimI+m SfSZUCzqPAmadUKnP28h -----END CERTIFICATE-----Generated at Sun Apr 19 11:31:49 2026 by rpki-client