$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/05GEUFQh7yRO6IkMfNGanqt1jDI.roa File: 05GEUFQh7yRO6IkMfNGanqt1jDI.roa (raw, json) Hash identifier: iJPw0bm1e3RByRSX/tBWiz2GR/Eu2s8kOmtgqG2/7BA= Subject key identifier: D3:91:84:50:54:21:EF:24:4E:E8:89:0C:7C:D1:9A:9E:AB:75:8C:32 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1681 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/05GEUFQh7yRO6IkMfNGanqt1jDI.roa Signing time: Tue 31 Mar 2026 08:01:55 +0000 ROA not before: Tue 31 Mar 2026 08:01:55 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.104.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5761 (0x1681) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:01:55 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=D39184505421EF244EE8890C7CD19A9EAB758C32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:02:40:81:81:9c:db:36:e9:bb:5b:03:18:07: a5:8d:b8:36:ea:eb:07:7b:39:3b:4f:c5:e3:4f:ab: c6:b3:1f:0e:09:3d:ff:aa:de:95:ed:7c:eb:6f:2a: 30:f9:c1:29:36:c5:3d:b4:8c:8e:79:e8:62:85:c4: d6:4c:c9:79:75:e6:a7:e0:54:b3:7f:c7:a9:91:71: d8:81:2d:a3:fe:e5:06:a0:35:e6:a5:8a:65:5b:2b: 77:4c:5f:88:19:89:f6:f0:70:de:f2:11:78:94:fb: f5:b5:fd:18:d7:7b:55:ae:be:b1:e0:14:6c:59:36: 5d:5b:b8:d3:81:4d:4b:3e:c5:12:63:8c:cc:15:91: fe:b5:23:12:e9:2a:8a:02:9b:fa:8b:66:b4:1e:e0: a1:15:46:d1:13:e2:7b:62:c7:f2:ec:4e:c1:93:d0: 18:2c:c9:20:ab:c1:1f:04:91:9c:32:72:24:c4:5f: 51:74:4e:f7:32:26:b8:a2:d3:0b:5e:63:24:30:21: 88:1e:3e:88:36:8c:a6:13:31:f8:f0:f6:59:7a:d6: ed:02:45:45:8f:d9:22:b1:d2:9f:69:b5:45:15:6b: e3:d9:5b:dd:83:a9:72:d3:27:39:6e:79:40:4b:f0: b5:75:91:16:18:8f:39:5d:6f:dc:c9:90:85:43:fa: 4a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:91:84:50:54:21:EF:24:4E:E8:89:0C:7C:D1:9A:9E:AB:75:8C:32 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/05GEUFQh7yRO6IkMfNGanqt1jDI.roa sbgp-ipAddrBlock: critical IPv4: 49.104.252.0/24 Signature Algorithm: sha256WithRSAEncryption db:c0:73:be:7d:d4:d4:9c:c8:b7:ce:10:af:00:17:51:1b:4b: 8a:bd:c8:b1:31:0d:41:e3:63:68:60:79:0d:d9:07:a6:a9:dc: 44:77:26:68:94:6a:a1:9c:d1:22:3e:c8:b6:80:f4:05:84:4d: b0:05:a4:ef:d7:e1:17:a9:e6:e6:fc:89:a3:92:9b:a9:9c:09: e8:b6:82:02:c9:b2:90:f7:9e:72:d7:7d:a2:8b:0b:71:a1:d9: 81:f7:8f:e7:ca:ee:3a:db:93:15:70:d9:36:2e:6b:88:e2:52: 32:bb:88:b6:4d:24:ec:18:aa:2e:ff:c5:6a:03:ed:a2:c6:c9: 82:81:85:62:9e:78:f9:a8:36:2f:4e:8f:7c:16:43:c2:9b:7b: 6d:f4:6b:57:b6:ba:91:e1:f7:8a:6e:98:db:cd:62:00:a6:74: c2:2c:47:04:a7:c7:3c:f0:e4:ca:b7:ca:52:d1:a2:80:80:4b: 7b:b3:62:17:8e:a1:ac:58:e1:89:ad:16:cc:f4:c2:0b:14:43: bd:c9:e7:de:f6:31:8f:45:e8:9f:76:2a:34:3f:4e:10:07:6e: 4d:e8:05:2e:aa:0d:4e:67:41:ac:bd:e8:cf:83:13:6f:99:e9: be:f2:a4:67:e3:c0:0f:0b:81:78:54:94:be:3c:89:55:4a:54: c9:12:6a:e1 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFoEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAxNTVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEQzOTE4NDUwNTQyMUVG MjQ0RUU4ODkwQzdDRDE5QTlFQUI3NThDMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwAkCBgZzbNum7WwMYB6WNuDbq6wd7OTtPxeNPq8azHw4JPf+q 3pXtfOtvKjD5wSk2xT20jI556GKFxNZMyXl15qfgVLN/x6mRcdiBLaP+5QagNeal imVbK3dMX4gZifbwcN7yEXiU+/W1/RjXe1WuvrHgFGxZNl1buNOBTUs+xRJjjMwV kf61IxLpKooCm/qLZrQe4KEVRtET4ntix/LsTsGT0BgsySCrwR8EkZwyciTEX1F0 TvcyJrii0wteYyQwIYgePog2jKYTMfjw9ll61u0CRUWP2SKx0p9ptUUVa+PZW92D qXLTJzlueUBL8LV1kRYYjzldb9zJkIVD+ko1AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU05GEUFQh7yRO6IkMfNGanqt1jDIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5LzA1R0VVRlFoN3lSTzZJa01mTkdhbnF0MWpESS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAxaPwwDQYJKoZIhvcNAQELBQADggEB ANvAc7591NScyLfOEK8AF1EbS4q9yLExDUHjY2hgeQ3ZB6ap3ER3JmiUaqGc0SI+ yLaA9AWETbAFpO/X4Rep5ub8iaOSm6mcCei2ggLJspD3nnLXfaKLC3Gh2YH3j+fK 7jrbkxVw2TYua4jiUjK7iLZNJOwYqi7/xWoD7aLGyYKBhWKeePmoNi9Oj3wWQ8Kb e230a1e2upHh94pumNvNYgCmdMIsRwSnxzzw5Mq3ylLRooCAS3uzYheOoaxY4Ymt Fsz0wgsUQ73J5972MY9F6J92KjQ/ThAHbk3oBS6qDU5nQay96M+DE2+Z6b7ypGfj wA8LgXhUlL48iVVKVMkSauE= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:59 2026 by rpki-client