$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/r03gHzYip2BA-oSWJJNWqRkFDJc.roa File: r03gHzYip2BA-oSWJJNWqRkFDJc.roa (raw, json) Hash identifier: pWVtpBqvc6Fn+qw79VJDqnMbMkgNLppApzFmHz01Q54= Subject key identifier: AF:4D:E0:1F:36:22:A7:60:40:FA:84:96:24:93:56:A9:19:05:0C:97 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 134F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/r03gHzYip2BA-oSWJJNWqRkFDJc.roa Signing time: Wed 25 Mar 2026 08:42:51 +0000 ROA not before: Wed 25 Mar 2026 08:42:51 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 1.66.32.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 05:36:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4943 (0x134f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 25 08:42:51 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=AF4DE01F3622A76040FA8496249356A919050C97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:0e:65:31:ad:55:0b:a2:ab:84:05:c8:bd:0f: ba:9a:07:90:16:7b:ae:ba:42:4b:f4:00:2f:de:31: e8:91:67:d9:06:53:d5:08:3f:c1:b6:95:5d:72:89: 9c:19:1e:59:16:24:c3:b4:32:cc:95:c4:e2:20:74: d5:31:0d:99:57:fb:5d:99:08:97:d1:f6:4b:2a:85: cd:b5:f6:86:64:68:18:91:1e:f3:0b:50:38:9b:6f: 5d:c8:17:28:8c:9d:21:4e:ce:79:1c:d6:b5:4f:5b: 08:17:fc:53:fe:16:fb:47:12:d5:2d:8f:2f:18:41: 22:6f:92:e7:a5:43:d4:95:55:66:7c:5e:57:2d:be: 8c:8a:f8:e3:9b:b8:82:fc:45:01:ce:95:de:d1:04: 3b:53:dd:62:80:22:eb:9b:c8:01:a4:ad:7a:80:42: aa:b9:e2:7e:9b:b8:1e:f5:44:93:8a:47:58:6c:9f: a7:97:46:51:4d:76:4a:9c:ae:f6:bb:c6:b3:ef:df: 7a:14:ed:e3:f4:13:c0:35:c2:b3:f7:8e:5a:74:30: 2c:2f:d9:58:32:7f:3d:0b:5e:22:72:4b:8b:fe:15: 28:f6:c8:ce:a0:a0:12:7d:1c:0d:d4:c5:ef:e9:6d: ab:ab:31:d0:32:e3:74:1f:38:f6:07:4f:9e:4a:9c: 6d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:4D:E0:1F:36:22:A7:60:40:FA:84:96:24:93:56:A9:19:05:0C:97 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/r03gHzYip2BA-oSWJJNWqRkFDJc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.32.0/23 Signature Algorithm: sha256WithRSAEncryption 65:68:4d:ed:69:8f:0a:0c:c4:3e:c6:ed:67:d8:15:1b:7f:a1: 7c:7c:a8:c8:b8:9b:8c:22:f8:a2:27:5a:34:c5:18:17:97:6f: c3:95:30:47:fa:28:ae:f5:b5:e3:90:06:fa:64:9d:95:7c:c7: 2e:52:28:81:b5:b0:2a:59:3d:e7:bf:ad:0c:d3:c2:9f:9f:d5: 3e:c1:e1:2d:2b:af:07:1d:be:dc:3d:8b:77:95:dd:11:67:2a: c5:b3:0a:ac:bb:19:8a:ff:de:66:5b:cf:f6:3c:9d:01:b3:9a: b2:a2:e7:e3:0f:a7:36:85:f6:ec:78:32:5f:55:8c:ae:87:05: 51:dc:67:27:44:bd:c6:02:d8:2e:e2:50:3b:79:4f:50:f0:d7: 23:95:d7:6f:d9:c5:a6:2d:06:7c:4a:08:9f:d1:19:bf:ae:27: c4:bc:97:56:cf:4b:27:67:90:ed:10:2f:44:38:06:ae:50:a8: fa:ea:c8:9e:e7:49:84:09:da:4e:73:f5:3b:cb:74:22:61:2e: a9:8e:0f:35:7e:47:e4:34:49:18:1b:65:8c:f8:b7:99:6d:46: 0e:bf:79:8d:c6:69:77:f4:2e:cb:98:ee:f8:bb:67:8a:9c:b1: 4c:8e:c8:42:2c:39:c7:4d:f5:c9:be:b7:c5:cf:3f:37:9b:98: e4:e2:02:fc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICE08wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMjUw ODQyNTFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEFGNERFMDFGMzYyMkE3 NjA0MEZBODQ5NjI0OTM1NkE5MTkwNTBDOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCcDmUxrVULoquEBci9D7qaB5AWe666Qkv0AC/eMeiRZ9kGU9UI P8G2lV1yiZwZHlkWJMO0MsyVxOIgdNUxDZlX+12ZCJfR9ksqhc219oZkaBiRHvML UDibb13IFyiMnSFOznkc1rVPWwgX/FP+FvtHEtUtjy8YQSJvkuelQ9SVVWZ8Xlct voyK+OObuIL8RQHOld7RBDtT3WKAIuubyAGkrXqAQqq54n6buB71RJOKR1hsn6eX RlFNdkqcrva7xrPv33oU7eP0E8A1wrP3jlp0MCwv2Vgyfz0LXiJyS4v+FSj2yM6g oBJ9HA3Uxe/pbaurMdAy43QfOPYHT55KnG0XAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUr03gHzYip2BA+oSWJJNWqRkFDJcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3IwM2dIellpcDJCQS1vU1dKSk5XcVJrRkRKYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBQiAwDQYJKoZIhvcNAQELBQADggEBAGVoTe1pjwoMxD7G7WfYFRt/oXx8 qMi4m4wi+KInWjTFGBeXb8OVMEf6KK71teOQBvpknZV8xy5SKIG1sCpZPee/rQzT wp+f1T7B4S0rrwcdvtw9i3eV3RFnKsWzCqy7GYr/3mZbz/Y8nQGzmrKi5+MPpzaF 9ux4Ml9VjK6HBVHcZydEvcYC2C7iUDt5T1Dw1yOV12/ZxaYtBnxKCJ/RGb+uJ8S8 l1bPSydnkO0QL0Q4Bq5QqPrqyJ7nSYQJ2k5z9TvLdCJhLqmODzV+R+Q0SRgbZYz4 t5ltRg6/eY3GaXf0LsuY7vi7Z4qcsUyOyEIsOcdN9cm+t8XPPzebmOTiAvw= -----END CERTIFICATE-----Generated at Thu Mar 26 11:42:38 2026 by rpki-client