$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/1aY7sD2HBPvZzdducuTqEYoD2Zc.roa File: 1aY7sD2HBPvZzdducuTqEYoD2Zc.roa (raw, json) Hash identifier: WKcaAosAvgeBJ6ozgAKpyOymtVAE111BPjeF/n8v5y8= Subject key identifier: D5:A6:3B:B0:3D:87:04:FB:D9:CD:D7:6E:72:E4:EA:11:8A:03:D9:97 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 16BD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1aY7sD2HBPvZzdducuTqEYoD2Zc.roa Signing time: Tue 31 Mar 2026 08:02:25 +0000 ROA not before: Tue 31 Mar 2026 08:02:25 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.108.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5821 (0x16bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:02:25 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=D5A63BB03D8704FBD9CDD76E72E4EA118A03D997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:fa:55:1d:eb:1a:dd:7a:c6:de:d7:a2:59:18: 9a:09:f7:70:0f:24:ea:c7:a4:7a:dc:b1:9b:9d:fe: 00:13:3a:60:cf:c7:90:f6:12:d6:65:23:f8:b2:b5: 6f:f1:74:21:be:c2:e8:ac:43:0a:92:6e:27:a4:e8: 8f:f4:64:8e:88:c9:12:1b:10:fe:71:62:83:17:bb: 73:21:79:92:21:4e:0e:d0:a3:3b:d3:0b:96:8c:9d: 64:d8:9e:b7:fd:cf:d8:13:86:37:b4:06:c5:cb:80: d2:60:ef:a0:e1:37:3f:e0:af:00:32:b7:97:cd:a8: 3e:49:ca:1d:b8:1a:ad:f5:ed:ce:97:f1:f8:fb:49: e5:a6:98:e0:8f:d1:5b:2c:3e:6b:67:a6:00:ab:3c: 58:f1:5c:5c:f8:62:6a:ff:ed:ff:68:ef:f2:e5:d6: 07:0a:99:87:21:6a:71:7c:63:36:87:d2:96:e4:84: fd:bb:fe:1b:9f:41:30:39:cc:10:44:5c:a1:5e:5d: e3:8a:0c:e6:20:86:fc:b7:b5:50:22:b6:b2:a7:26: 43:a4:2f:1a:90:b7:f3:17:03:f5:30:a0:31:84:71: 0a:b2:76:e2:59:92:6c:36:36:4d:b3:b1:b5:66:16: 3a:b1:e3:ff:64:5a:28:a5:4a:f8:d4:a3:8d:11:4c: fc:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:A6:3B:B0:3D:87:04:FB:D9:CD:D7:6E:72:E4:EA:11:8A:03:D9:97 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1aY7sD2HBPvZzdducuTqEYoD2Zc.roa sbgp-ipAddrBlock: critical IPv4: 49.108.0.0/18 Signature Algorithm: sha256WithRSAEncryption 08:71:d9:36:da:73:01:d4:c1:a0:a4:b3:6b:2d:88:e4:30:ef: 9c:d1:7b:0e:13:f0:18:3c:23:a4:04:a3:59:5a:23:4b:1c:89: 9f:4c:51:f2:20:18:d7:2c:2d:63:5e:ab:5a:6d:e7:a0:93:5c: 04:e2:7d:5c:47:9c:4e:35:96:f5:5a:b3:df:de:1a:7f:51:00: 5c:b0:02:b9:6a:91:d9:53:a1:be:c2:19:67:b5:da:bb:71:99: aa:64:c2:17:0e:6f:12:1e:2f:7d:bc:3c:6d:cf:f0:15:bc:ef: d0:d8:e5:8d:f0:dd:27:e3:eb:dd:b1:3d:d1:29:b7:57:7b:63: b3:6d:54:83:4b:15:da:40:b5:d3:dd:56:3d:5f:5e:fd:30:ed: 78:94:89:47:6b:43:90:25:80:cc:19:85:c8:d1:1a:cd:ae:b2: fb:91:d7:e7:c5:dd:7d:29:df:7f:46:6a:90:88:75:3c:35:67: cc:3a:e8:b3:f8:39:ef:12:8c:51:3c:a1:f9:f1:6f:d4:6e:01: ab:e7:26:0c:16:f7:f0:93:35:d0:39:0a:ae:cc:86:38:57:19: 8e:96:8e:c2:0a:cd:29:9e:79:fc:84:88:35:e5:cf:f7:ab:c0: 8c:b6:cb:20:32:2c:a9:9f:c0:80:5c:4f:2b:af:20:53:26:31: 1f:b7:33:d9 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFr0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAyMjVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEQ1QTYzQkIwM0Q4NzA0 RkJEOUNERDc2RTcyRTRFQTExOEEwM0Q5OTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCX+lUd6xrdesbe16JZGJoJ93APJOrHpHrcsZud/gATOmDPx5D2 EtZlI/iytW/xdCG+wuisQwqSbiek6I/0ZI6IyRIbEP5xYoMXu3MheZIhTg7QozvT C5aMnWTYnrf9z9gThje0BsXLgNJg76DhNz/grwAyt5fNqD5Jyh24Gq317c6X8fj7 SeWmmOCP0VssPmtnpgCrPFjxXFz4Ymr/7f9o7/Ll1gcKmYchanF8YzaH0pbkhP27 /hufQTA5zBBEXKFeXeOKDOYghvy3tVAitrKnJkOkLxqQt/MXA/UwoDGEcQqyduJZ kmw2Nk2zsbVmFjqx4/9kWiilSvjUo40RTPzHAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU1aY7sD2HBPvZzdducuTqEYoD2ZcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5LzFhWTdzRDJIQlB2WnpkZHVjdVRxRVlvRDJaYy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAYxbAAwDQYJKoZIhvcNAQELBQADggEB AAhx2TbacwHUwaCks2stiOQw75zRew4T8Bg8I6QEo1laI0sciZ9MUfIgGNcsLWNe q1pt56CTXATifVxHnE41lvVas9/eGn9RAFywArlqkdlTob7CGWe12rtxmapkwhcO bxIeL328PG3P8BW879DY5Y3w3Sfj692xPdEpt1d7Y7NtVINLFdpAtdPdVj1fXv0w 7XiUiUdrQ5AlgMwZhcjRGs2usvuR1+fF3X0p339GapCIdTw1Z8w66LP4Oe8SjFE8 ofnxb9RuAavnJgwW9/CTNdA5Cq7MhjhXGY6WjsIKzSmeefyEiDXlz/erwIy2yyAy LKmfwIBcTyuvIFMmMR+3M9k= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:37 2026 by rpki-client