$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/2KgQN94GnBJ5y1T-ZZtElz3CF2c.roa File: 2KgQN94GnBJ5y1T-ZZtElz3CF2c.roa (raw, json) Hash identifier: uhtTVPdUcKU8hwLXvnLqmadQNYiLHwNNXQheejKwQis= Subject key identifier: D8:A8:10:37:DE:06:9C:12:79:CB:54:FE:65:9B:44:97:3D:C2:17:67 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 15FE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2KgQN94GnBJ5y1T-ZZtElz3CF2c.roa Signing time: Tue 31 Mar 2026 08:00:51 +0000 ROA not before: Tue 31 Mar 2026 08:00:51 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5630 (0x15fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:00:51 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=D8A81037DE069C1279CB54FE659B44973DC21767 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:17:37:68:cc:f2:2a:ba:69:73:74:05:18:3d: 63:4a:3b:ab:51:c5:41:c4:b7:3e:79:f6:00:f5:0e: b4:cd:e9:6f:bd:dc:3c:2c:4a:26:d8:7c:b9:c8:81: 70:d5:7c:54:8e:1a:04:f6:d3:3c:57:d5:b5:f7:6b: 29:52:fd:af:71:1a:2e:17:da:b4:d9:8a:37:e7:df: 0c:72:f9:9e:a9:a8:fc:c8:fd:ed:58:8a:fc:46:c8: 5a:18:cf:ab:ec:62:0a:82:ea:cb:a1:fd:98:67:5c: b6:3c:bf:23:9d:0a:44:3d:67:a4:b6:28:45:0e:69: 24:a5:75:af:06:aa:98:60:87:d4:8b:73:d3:5a:e9: 0d:39:95:82:9c:42:48:9e:7e:0c:03:70:d1:ab:32: f2:a3:cb:11:0f:0d:3a:82:c8:c4:89:51:e2:de:57: de:59:dc:e7:9c:d0:76:6d:57:2b:d1:0f:91:6e:de: 99:16:bc:7f:b6:b4:d6:af:f6:f1:a4:1c:71:7f:c2: e3:98:34:21:54:7c:d5:d6:5d:8c:7f:67:64:bf:9e: dd:8c:f1:eb:12:39:eb:24:32:9a:e6:99:b2:56:58: 8f:0b:e9:64:50:9c:03:a9:55:d1:db:23:5b:07:bf: 15:34:dd:84:78:4c:5e:e3:3e:4a:25:a3:27:8b:55: d0:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:A8:10:37:DE:06:9C:12:79:CB:54:FE:65:9B:44:97:3D:C2:17:67 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2KgQN94GnBJ5y1T-ZZtElz3CF2c.roa sbgp-ipAddrBlock: critical IPv4: 49.96.52.0/22 Signature Algorithm: sha256WithRSAEncryption a5:a4:1a:77:12:0d:a5:a2:41:0f:3c:a9:2f:6d:59:3d:2a:6d: 46:e2:e8:6c:0f:46:a2:0a:b1:30:30:ae:77:bd:5b:98:65:c7: 5f:84:9a:63:f4:de:6c:09:46:99:09:e7:f1:d1:ea:f7:21:d0: 04:b6:a9:dd:59:35:60:0d:05:c4:fa:21:e4:00:66:ad:77:1a: 11:d5:08:f4:a9:6b:91:1e:08:ca:54:4a:35:bc:52:ef:9f:c4: 03:2e:72:84:d6:e9:36:0c:8e:80:29:79:ff:9d:aa:4b:99:7b: ae:cd:da:31:33:12:81:81:b1:a1:8a:49:b7:ee:9c:2b:30:6b: 53:10:76:9f:db:92:f8:8d:a4:52:d1:bf:c8:be:00:8b:b0:be: 81:cc:21:fa:c6:3c:a4:a4:13:d3:05:f6:34:62:1e:cc:f6:8b: 36:37:e1:ed:da:80:a6:97:ba:f1:3c:11:cf:d5:99:dc:38:50: a8:2f:bd:9d:77:9c:ab:1e:3c:63:8e:57:3b:df:f9:4d:c5:67: 40:82:a0:f9:e2:dc:f1:20:89:ee:4b:47:50:42:7c:bc:6c:33: 7d:3b:2a:e6:33:fa:8e:1d:d3:6d:26:11:0c:3f:89:70:78:36: d7:3a:32:21:bc:95:3e:94:40:86:21:1a:e7:6f:1a:f6:01:cc: 12:e8:c1:be -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFf4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAwNTFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEQ4QTgxMDM3REUwNjlD MTI3OUNCNTRGRTY1OUI0NDk3M0RDMjE3NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLFzdozPIqumlzdAUYPWNKO6tRxUHEtz559gD1DrTN6W+93Dws SibYfLnIgXDVfFSOGgT20zxX1bX3aylS/a9xGi4X2rTZijfn3wxy+Z6pqPzI/e1Y ivxGyFoYz6vsYgqC6suh/ZhnXLY8vyOdCkQ9Z6S2KEUOaSSlda8Gqphgh9SLc9Na 6Q05lYKcQkiefgwDcNGrMvKjyxEPDTqCyMSJUeLeV95Z3Oec0HZtVyvRD5Fu3pkW vH+2tNav9vGkHHF/wuOYNCFUfNXWXYx/Z2S/nt2M8esSOeskMprmmbJWWI8L6WRQ nAOpVdHbI1sHvxU03YR4TF7jPkoloyeLVdDdAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU2KgQN94GnBJ5y1T+ZZtElz3CF2cwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5LzJLZ1FOOTRHbkJKNXkxVC1aWnRFbHozQ0YyYy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIxYDQwDQYJKoZIhvcNAQELBQADggEB AKWkGncSDaWiQQ88qS9tWT0qbUbi6GwPRqIKsTAwrne9W5hlx1+EmmP03mwJRpkJ 5/HR6vch0AS2qd1ZNWANBcT6IeQAZq13GhHVCPSpa5EeCMpUSjW8Uu+fxAMucoTW 6TYMjoApef+dqkuZe67N2jEzEoGBsaGKSbfunCswa1MQdp/bkviNpFLRv8i+AIuw voHMIfrGPKSkE9MF9jRiHsz2izY34e3agKaXuvE8Ec/Vmdw4UKgvvZ13nKsePGOO Vzvf+U3FZ0CCoPni3PEgie5LR1BCfLxsM307KuYz+o4d020mEQw/iXB4Ntc6MiG8 lT6UQIYhGudvGvYBzBLowb4= -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:14 2026 by rpki-client