$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/2YiMnnC8Ha8J5DQTCRgOtJ8GbHI.roa File: 2YiMnnC8Ha8J5DQTCRgOtJ8GbHI.roa (raw, json) Hash identifier: KDI+nG7NGQ7TQrCWsGshCrjRsjd/pfiIB/8KAI2y9dQ= Subject key identifier: D9:88:8C:9E:70:BC:1D:AF:09:E4:34:13:09:18:0E:B4:9F:06:6C:72 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1796 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2YiMnnC8Ha8J5DQTCRgOtJ8GbHI.roa Signing time: Tue 31 Mar 2026 08:04:09 +0000 ROA not before: Tue 31 Mar 2026 08:04:09 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.108.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6038 (0x1796) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:04:09 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=D9888C9E70BC1DAF09E4341309180EB49F066C72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:30:4f:11:34:c0:13:24:56:0e:10:71:12:06: 09:f1:d5:e5:3d:94:04:3d:b8:f6:4b:64:81:29:c3: a3:3e:24:ac:d0:e0:24:8d:9d:d4:46:ca:c1:3f:b4: 27:8a:c6:4e:72:43:ab:aa:53:01:23:03:fb:bc:d4: 89:37:b4:9d:71:61:76:9e:0d:49:22:14:6a:2a:b2: 73:f2:8e:1a:db:3f:54:32:4a:73:8e:b1:a3:46:6e: ca:a3:bf:bb:41:1e:fd:99:80:40:3c:a5:e3:18:76: 50:01:02:9d:a1:ac:e6:c8:af:e3:db:81:8b:09:bf: af:93:9f:65:a7:4f:2a:76:2e:47:0f:ad:8a:7f:5c: bc:7e:46:69:04:36:85:43:a6:a6:83:77:81:fc:e6: 54:99:1e:71:6b:91:f2:9f:e5:9a:6a:ff:43:07:e9: 8f:f8:a2:1c:71:8e:4f:d6:a2:a4:3e:8a:19:05:bc: c6:8b:33:36:bb:fd:79:79:06:c6:73:0b:10:02:d7: ef:a0:76:13:59:41:a0:d5:ce:1d:c1:3d:50:90:18: b1:d1:5d:f1:4b:33:f9:81:75:38:ae:8a:17:de:62: 53:62:7f:e3:5d:4d:b4:c5:48:da:58:a7:fe:a5:2b: 99:0c:6f:dc:31:76:38:2e:d3:a4:52:b9:f5:36:38: f8:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:88:8C:9E:70:BC:1D:AF:09:E4:34:13:09:18:0E:B4:9F:06:6C:72 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2YiMnnC8Ha8J5DQTCRgOtJ8GbHI.roa sbgp-ipAddrBlock: critical IPv4: 49.108.160.0/19 Signature Algorithm: sha256WithRSAEncryption 75:d9:04:03:b6:01:98:bd:f0:e5:79:54:0d:34:f6:1b:bf:68: 5b:43:38:8e:fd:69:df:de:21:4c:68:3a:14:19:2c:5c:27:70: 1f:74:46:e7:94:ad:13:d7:b5:b9:e2:45:e6:90:96:02:5f:c7: ea:f1:39:e1:fb:b2:df:33:cb:c3:3b:9a:95:6a:c3:55:42:77: 5d:d9:34:e0:76:6e:b8:26:93:af:6b:5f:04:28:f2:cb:c6:ab: 8c:0b:9f:fa:ee:12:fc:f7:de:14:26:91:1b:f1:be:fd:32:fb: 2c:53:c6:c8:4c:c1:ab:24:0c:fc:16:11:2a:a7:16:49:e9:ed: 83:d6:2a:d0:72:91:08:12:ab:dd:cd:b3:66:59:48:11:39:18: 9e:50:08:33:76:69:00:5e:ad:02:51:d7:b5:ed:0d:cf:2e:ea: f0:89:4f:95:f6:85:99:55:38:82:8b:cd:57:c5:0b:12:c3:92: 1e:9b:2c:ef:b6:4a:3a:52:4c:28:7a:79:00:1a:dc:ef:44:4e: d6:8c:d7:d5:a9:44:58:b2:28:58:8f:0b:9e:ee:c2:6f:aa:91: 7b:16:8d:df:dc:0f:96:94:ae:70:1f:b2:8d:38:66:63:de:8a: eb:05:c7:0c:17:2b:07:57:92:12:59:89:e3:cb:06:8d:6a:9c: 53:de:3d:b5 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICF5YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODA0MDlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEQ5ODg4QzlFNzBCQzFE QUYwOUU0MzQxMzA5MTgwRUI0OUYwNjZDNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCVME8RNMATJFYOEHESBgnx1eU9lAQ9uPZLZIEpw6M+JKzQ4CSN ndRGysE/tCeKxk5yQ6uqUwEjA/u81Ik3tJ1xYXaeDUkiFGoqsnPyjhrbP1QySnOO saNGbsqjv7tBHv2ZgEA8peMYdlABAp2hrObIr+PbgYsJv6+Tn2WnTyp2LkcPrYp/ XLx+RmkENoVDpqaDd4H85lSZHnFrkfKf5Zpq/0MH6Y/4ohxxjk/WoqQ+ihkFvMaL Mza7/Xl5BsZzCxAC1++gdhNZQaDVzh3BPVCQGLHRXfFLM/mBdTiuihfeYlNif+Nd TbTFSNpYp/6lK5kMb9wxdjgu06RSufU2OPgzAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU2YiMnnC8Ha8J5DQTCRgOtJ8GbHIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5LzJZaU1ubkM4SGE4SjVEUVRDUmdPdEo4R2JISS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAUxbKAwDQYJKoZIhvcNAQELBQADggEB AHXZBAO2AZi98OV5VA009hu/aFtDOI79ad/eIUxoOhQZLFwncB90RueUrRPXtbni ReaQlgJfx+rxOeH7st8zy8M7mpVqw1VCd13ZNOB2brgmk69rXwQo8svGq4wLn/ru Evz33hQmkRvxvv0y+yxTxshMwaskDPwWESqnFknp7YPWKtBykQgSq93Ns2ZZSBE5 GJ5QCDN2aQBerQJR17XtDc8u6vCJT5X2hZlVOIKLzVfFCxLDkh6bLO+2SjpSTCh6 eQAa3O9ETtaM19WpRFiyKFiPC57uwm+qkXsWjd/cD5aUrnAfso04ZmPeiusFxwwX KwdXkhJZiePLBo1qnFPePbU= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:47 2026 by rpki-client