$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/-MbsEebNO9FtTnMR8qAFmceXaKs.roa File: -MbsEebNO9FtTnMR8qAFmceXaKs.roa (raw, json) Hash identifier: qcycKvyc1MzZlt7C+PGh120+en38WIJ7HztJvZoECj0= Subject key identifier: F8:C6:EC:11:E6:CD:3B:D1:6D:4E:73:11:F2:A0:05:99:C7:97:68:AB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1672 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-MbsEebNO9FtTnMR8qAFmceXaKs.roa Signing time: Tue 31 Mar 2026 08:01:49 +0000 ROA not before: Tue 31 Mar 2026 08:01:49 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.106.104.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5746 (0x1672) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:01:49 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=F8C6EC11E6CD3BD16D4E7311F2A00599C79768AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9b:74:ff:59:11:2f:48:7b:61:f5:b0:10:92: 02:d1:db:28:4e:b2:90:0b:91:97:40:ef:b1:d5:28: ca:71:39:40:72:9d:d9:a3:4a:04:d8:37:c5:4f:d1: 53:90:76:b7:5b:70:54:28:92:a7:6a:05:28:cd:d1: 4e:03:d0:bd:16:6a:db:d8:22:5f:bf:ce:5d:cc:2d: 70:a9:ae:cf:cb:83:f6:7e:6a:b8:ae:63:df:78:6c: e1:35:f3:8b:b0:0c:ad:e3:ca:56:a2:c8:44:26:4e: 98:99:5e:d3:30:5f:bf:07:c2:c4:6c:8a:4b:cb:da: ed:ca:0c:d3:84:dd:0b:78:a6:a1:1f:b2:e1:86:66: c4:f3:e8:5e:6b:76:ea:56:cd:20:4c:d5:e4:fa:0a: d5:b2:d2:11:e4:a6:0b:c1:fa:f9:92:66:c3:b5:63: 3e:1f:f8:e6:f8:a6:8c:66:ce:e9:be:9c:2a:d3:5e: d9:05:a8:58:61:8d:59:f9:ba:bc:e3:07:18:61:80: f4:1b:3c:88:8d:87:81:30:96:c3:1f:9e:35:68:33: 9a:6a:90:64:f5:94:f4:70:fd:76:4a:ad:70:a0:d5: b3:28:2f:f7:16:19:5d:4b:30:f3:6a:16:ed:d1:9f: e8:3e:7e:3d:03:39:10:f7:74:5d:ef:86:42:aa:ed: 74:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:C6:EC:11:E6:CD:3B:D1:6D:4E:73:11:F2:A0:05:99:C7:97:68:AB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-MbsEebNO9FtTnMR8qAFmceXaKs.roa sbgp-ipAddrBlock: critical IPv4: 49.106.104.0/21 Signature Algorithm: sha256WithRSAEncryption 6d:23:6d:65:8c:0b:f3:1d:94:2c:b0:86:9e:42:23:6f:50:59: 80:98:4e:52:f4:1c:4a:68:44:cf:12:ed:07:bc:cc:5d:d7:6c: 84:46:00:7d:a7:38:a5:ed:cb:f2:9e:e2:a4:84:ad:7b:c2:32: c7:7d:5c:97:d3:b5:5c:05:6e:14:ba:fb:d5:d7:61:3f:38:3d: a6:94:83:9f:75:18:c1:dc:60:47:cb:36:22:38:ab:aa:18:c6: 05:82:a5:26:1d:62:b9:78:82:83:50:27:1d:d2:be:ed:45:8c: ee:ef:d4:e5:0c:bc:0b:48:61:f7:ea:04:77:50:e6:0f:c3:61: 5e:45:cc:3e:4b:8b:bb:53:b1:b2:9e:98:c3:02:ac:cd:f5:72: 70:2d:d0:96:84:6b:aa:7a:18:9d:2f:8c:16:8f:a1:fd:b4:74: c7:20:7b:75:d0:7b:17:d1:19:b5:b7:38:74:ed:d1:f4:4a:19: ef:45:e3:85:6e:30:34:66:83:53:57:48:28:90:2a:1a:70:0c: 5f:f6:43:f4:45:48:12:44:92:72:51:95:9a:e4:b5:c1:79:9c: aa:52:1f:28:32:59:84:72:ca:80:f1:66:ad:ca:fd:c8:ad:18: 51:ad:b7:70:25:b5:0c:49:6d:df:7c:5d:6a:75:51:e1:43:e8: 7b:67:b3:78 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFnIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAxNDlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEY4QzZFQzExRTZDRDNC RDE2RDRFNzMxMUYyQTAwNTk5Qzc5NzY4QUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWm3T/WREvSHth9bAQkgLR2yhOspALkZdA77HVKMpxOUByndmj SgTYN8VP0VOQdrdbcFQokqdqBSjN0U4D0L0WatvYIl+/zl3MLXCprs/Lg/Z+ariu Y994bOE184uwDK3jylaiyEQmTpiZXtMwX78HwsRsikvL2u3KDNOE3Qt4pqEfsuGG ZsTz6F5rdupWzSBM1eT6CtWy0hHkpgvB+vmSZsO1Yz4f+Ob4poxmzum+nCrTXtkF qFhhjVn5urzjBxhhgPQbPIiNh4EwlsMfnjVoM5pqkGT1lPRw/XZKrXCg1bMoL/cW GV1LMPNqFu3Rn+g+fj0DORD3dF3vhkKq7XT5AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU+MbsEebNO9FtTnMR8qAFmceXaKswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5Ly1NYnNFZWJOTzlGdFRuTVI4cUFGbWNlWGFLcy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMxamgwDQYJKoZIhvcNAQELBQADggEB AG0jbWWMC/MdlCywhp5CI29QWYCYTlL0HEpoRM8S7Qe8zF3XbIRGAH2nOKXty/Ke 4qSErXvCMsd9XJfTtVwFbhS6+9XXYT84PaaUg591GMHcYEfLNiI4q6oYxgWCpSYd Yrl4goNQJx3Svu1FjO7v1OUMvAtIYffqBHdQ5g/DYV5FzD5Li7tTsbKemMMCrM31 cnAt0JaEa6p6GJ0vjBaPof20dMcge3XQexfRGbW3OHTt0fRKGe9F44VuMDRmg1NX SCiQKhpwDF/2Q/RFSBJEknJRlZrktcF5nKpSHygyWYRyyoDxZq3K/citGFGtt3Al tQxJbd98XWp1UeFD6Htns3g= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:53 2026 by rpki-client