$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3Tfr2Q5RSjjwNlrYCh3_dXxy7fI.roa File: 3Tfr2Q5RSjjwNlrYCh3_dXxy7fI.roa (raw, json) Hash identifier: OaI+o3tuTWpEHsuHBTnX/3XEaSohW+H8tiXODWhYWb4= Subject key identifier: DD:37:EB:D9:0E:51:4A:38:F0:36:5A:D8:0A:1D:FF:75:7C:72:ED:F2 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1652 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3Tfr2Q5RSjjwNlrYCh3_dXxy7fI.roa Signing time: Tue 31 Mar 2026 08:01:34 +0000 ROA not before: Tue 31 Mar 2026 08:01:34 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.106.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5714 (0x1652) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:01:34 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=DD37EBD90E514A38F0365AD80A1DFF757C72EDF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7e:4c:6a:7f:31:02:94:2e:9e:e3:5e:d5:77: 03:b0:c1:99:a7:a3:eb:ab:25:38:d9:60:93:e7:c3: 28:9c:e2:1f:08:ad:0b:88:42:91:a2:57:aa:5a:ce: 04:67:18:33:09:67:dc:eb:37:03:e5:a0:a7:33:ca: 25:90:ad:ce:4e:cf:04:8d:22:1a:e0:70:59:03:94: 3e:3a:24:d2:90:a5:a5:fc:37:00:79:67:bb:50:86: bf:8e:7c:64:8a:99:ff:c6:f9:6d:3a:8b:d2:23:39: b4:f7:79:16:ff:82:f3:bf:2d:fb:eb:da:9b:f6:d5: af:ac:22:2d:dc:ac:b7:69:16:14:6e:b2:a4:03:3a: ed:7b:ea:ee:82:4b:56:26:96:53:2d:28:7f:1e:69: 7f:ee:95:9a:31:8a:ae:bb:c5:bb:f1:a2:95:d1:58: b0:bd:c6:8b:8f:3e:3d:09:f5:82:c6:db:4b:c8:97: 64:52:a7:a8:3a:20:5c:d4:ee:ea:fa:a2:52:83:d5: 1a:59:e4:f9:c5:2b:4e:70:3d:35:53:c8:05:a2:a6: 16:0f:bd:7a:f4:72:46:96:4a:9b:b9:98:fc:8b:32: fe:71:ae:57:19:a1:07:72:34:e5:dd:75:36:0e:7e: f1:b7:93:c9:2d:fd:64:95:f7:34:a0:95:c6:38:d9: 82:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:37:EB:D9:0E:51:4A:38:F0:36:5A:D8:0A:1D:FF:75:7C:72:ED:F2 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3Tfr2Q5RSjjwNlrYCh3_dXxy7fI.roa sbgp-ipAddrBlock: critical IPv4: 49.106.208.0/24 Signature Algorithm: sha256WithRSAEncryption c2:46:98:6c:07:80:ec:93:28:45:6c:d7:a9:2e:59:d8:22:23: 7a:c0:bb:2b:9b:c2:b5:a8:ea:9f:ae:80:97:96:5c:fc:f9:76: 59:87:6f:61:72:ba:34:ae:5f:18:a2:ad:2c:f4:73:81:55:89: 94:cc:29:71:70:bc:66:1b:40:61:23:52:ea:77:e5:d2:41:9e: 64:d3:93:90:7a:68:07:d8:9a:ee:dd:6c:d6:8a:cf:35:c6:78: 77:4e:04:e0:2f:d8:d5:9f:a0:80:e5:44:f2:5b:e9:14:ed:8f: 38:65:9c:67:0c:9a:cb:91:19:74:72:01:eb:23:c5:49:61:48: b3:f4:88:89:07:f0:27:db:89:49:cb:7b:f5:4c:b1:ae:c0:b7: e4:c1:8b:d4:a8:1f:04:24:0e:19:9f:88:db:2f:ac:2c:bc:64: d5:5a:f2:37:6c:54:ca:62:9e:42:44:24:cd:17:91:da:30:42: 84:f4:6d:1b:a4:53:db:b5:96:c9:3f:5d:d5:f1:ee:7a:6e:0c: f5:36:3e:b2:f6:77:8b:87:7c:60:99:4a:4a:30:7e:46:10:5d: 57:c1:02:e0:5d:f3:6a:dd:46:8b:8e:ad:70:5b:e4:33:21:ed: df:29:f7:fa:b8:08:f4:26:2e:9b:ef:a5:c9:58:c0:a4:1a:e4: ea:90:ae:e1 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFlIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAxMzRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEREMzdFQkQ5MEU1MTRB MzhGMDM2NUFEODBBMURGRjc1N0M3MkVERjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+fkxqfzEClC6e417VdwOwwZmno+urJTjZYJPnwyic4h8IrQuI QpGiV6pazgRnGDMJZ9zrNwPloKczyiWQrc5OzwSNIhrgcFkDlD46JNKQpaX8NwB5 Z7tQhr+OfGSKmf/G+W06i9IjObT3eRb/gvO/Lfvr2pv21a+sIi3crLdpFhRusqQD Ou176u6CS1YmllMtKH8eaX/ulZoxiq67xbvxopXRWLC9xouPPj0J9YLG20vIl2RS p6g6IFzU7ur6olKD1RpZ5PnFK05wPTVTyAWiphYPvXr0ckaWSpu5mPyLMv5xrlcZ oQdyNOXddTYOfvG3k8kt/WSV9zSglcY42YKjAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU3Tfr2Q5RSjjwNlrYCh3/dXxy7fIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5LzNUZnIyUTVSU2pqd05scllDaDNfZFh4eTdmSS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAxatAwDQYJKoZIhvcNAQELBQADggEB AMJGmGwHgOyTKEVs16kuWdgiI3rAuyubwrWo6p+ugJeWXPz5dlmHb2FyujSuXxii rSz0c4FViZTMKXFwvGYbQGEjUup35dJBnmTTk5B6aAfYmu7dbNaKzzXGeHdOBOAv 2NWfoIDlRPJb6RTtjzhlnGcMmsuRGXRyAesjxUlhSLP0iIkH8CfbiUnLe/VMsa7A t+TBi9SoHwQkDhmfiNsvrCy8ZNVa8jdsVMpinkJEJM0XkdowQoT0bRukU9u1lsk/ XdXx7npuDPU2PrL2d4uHfGCZSkowfkYQXVfBAuBd82rdRouOrXBb5DMh7d8p9/q4 CPQmLpvvpclYwKQa5OqQruE= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:26 2026 by rpki-client