$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4rzpMw2RLD3UiU4ssuFh4hyoxss.roa File: 4rzpMw2RLD3UiU4ssuFh4hyoxss.roa (raw, json) Hash identifier: bjnmuqZrtqn8nz2S4wKKLrDBfgV5HVDPLTpgj41dwOE= Subject key identifier: E2:BC:E9:33:0D:91:2C:3D:D4:89:4E:2C:B2:E1:61:E2:1C:A8:C6:CB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1389 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4rzpMw2RLD3UiU4ssuFh4hyoxss.roa Signing time: Tue 31 Mar 2026 07:55:47 +0000 ROA not before: Tue 31 Mar 2026 07:55:47 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.97.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5001 (0x1389) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:55:47 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=E2BCE9330D912C3DD4894E2CB2E161E21CA8C6CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f7:21:c5:0b:a3:b4:6c:4c:09:51:9f:83:96: b2:96:65:6a:7e:2e:f0:bc:6e:52:22:0a:79:b7:7e: 71:d9:38:6b:c8:7d:a8:19:6d:64:fa:c2:43:86:2f: 50:df:0e:ef:42:04:89:16:08:7d:be:e7:f3:18:86: 3b:13:4f:de:5e:d0:01:fa:d4:81:8c:ff:57:75:28: a4:a2:a7:79:1b:7d:13:3a:77:00:c1:84:86:9f:0c: 11:aa:13:c7:a6:24:ba:fe:e0:9f:9a:45:99:ae:29: 68:19:4a:c2:f1:30:46:48:39:2a:be:e3:0d:bb:6a: 6b:78:b1:8d:6e:1a:ec:14:f5:36:a7:cb:b0:04:5f: 28:3a:35:7b:fe:b9:f8:64:df:ad:c3:00:e5:7a:96: 08:0e:88:32:d6:3d:78:55:d6:63:75:da:12:fa:51: e6:c6:fb:39:d1:78:96:c4:e2:7e:64:09:4a:a4:45: 3a:e2:c7:a9:5e:6d:b7:27:64:66:dd:c4:c1:f2:57: 55:a2:40:de:39:34:44:05:ec:13:d0:c4:5c:e5:40: c8:32:bc:3c:fd:5c:1a:42:d6:6f:e8:d7:5e:b9:76: 97:f0:ac:80:e3:45:87:7c:e7:28:7e:12:9b:e2:85: 63:02:c2:be:fa:01:48:f1:af:7b:24:be:c8:00:bf: 01:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:BC:E9:33:0D:91:2C:3D:D4:89:4E:2C:B2:E1:61:E2:1C:A8:C6:CB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4rzpMw2RLD3UiU4ssuFh4hyoxss.roa sbgp-ipAddrBlock: critical IPv4: 49.97.124.0/22 Signature Algorithm: sha256WithRSAEncryption 33:54:e6:6b:3e:de:00:7d:2d:31:62:5a:12:1e:59:da:81:22: d0:0e:ef:e0:f9:75:d6:00:06:15:f6:2a:6b:8b:1c:a0:c1:25: 61:68:aa:d5:45:56:52:ba:bf:5a:ab:9b:48:5c:a8:93:a4:14: 19:ff:21:05:71:39:74:b4:2a:cd:26:1e:98:48:ce:59:62:41: b5:b5:1e:6c:a3:d3:9c:27:c4:7f:65:fd:6f:79:b0:29:45:f6: f2:92:9d:dd:30:61:c5:17:f5:e4:7a:68:3b:c2:13:8e:d5:b3: 67:8d:03:94:6c:a9:32:a2:96:d9:c9:8a:b0:ad:23:b8:84:28: 92:cd:db:32:3b:3e:80:fd:d0:65:28:90:25:6c:df:45:cf:3c: ee:9d:42:83:6a:4e:a5:93:15:4c:70:db:90:de:75:af:6c:68: 50:86:27:b4:39:62:dd:dc:47:59:95:28:ac:3b:22:b6:cb:ff: 69:7b:8e:23:ae:f9:c1:27:7a:98:b7:3c:37:ab:c5:e3:d2:83: 49:6f:43:40:5f:bd:cf:09:b2:45:1d:cf:ee:d3:ad:6a:ec:da: 90:8f:44:93:03:a7:0e:ae:db:bd:e7:70:71:c5:be:43:0b:cc: 1b:aa:d1:83:2d:3d:3c:4a:3c:14:6c:6e:f7:14:f2:6f:e2:df: 44:0f:42:9b -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICE4kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU1NDdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEUyQkNFOTMzMEQ5MTJD M0RENDg5NEUyQ0IyRTE2MUUyMUNBOEM2Q0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT9yHFC6O0bEwJUZ+DlrKWZWp+LvC8blIiCnm3fnHZOGvIfagZ bWT6wkOGL1DfDu9CBIkWCH2+5/MYhjsTT95e0AH61IGM/1d1KKSip3kbfRM6dwDB hIafDBGqE8emJLr+4J+aRZmuKWgZSsLxMEZIOSq+4w27amt4sY1uGuwU9Tany7AE Xyg6NXv+ufhk363DAOV6lggOiDLWPXhV1mN12hL6UebG+znReJbE4n5kCUqkRTri x6lebbcnZGbdxMHyV1WiQN45NEQF7BPQxFzlQMgyvDz9XBpC1m/o1165dpfwrIDj RYd85yh+EpvihWMCwr76AUjxr3skvsgAvwGNAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU4rzpMw2RLD3UiU4ssuFh4hyoxsswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5LzRyenBNdzJSTEQzVWlVNHNzdUZoNGh5b3hzcy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIxYXwwDQYJKoZIhvcNAQELBQADggEB ADNU5ms+3gB9LTFiWhIeWdqBItAO7+D5ddYABhX2KmuLHKDBJWFoqtVFVlK6v1qr m0hcqJOkFBn/IQVxOXS0Ks0mHphIzlliQbW1Hmyj05wnxH9l/W95sClF9vKSnd0w YcUX9eR6aDvCE47Vs2eNA5RsqTKiltnJirCtI7iEKJLN2zI7PoD90GUokCVs30XP PO6dQoNqTqWTFUxw25Deda9saFCGJ7Q5Yt3cR1mVKKw7IrbL/2l7jiOu+cEnepi3 PDerxePSg0lvQ0Bfvc8JskUdz+7TrWrs2pCPRJMDpw6u273ncHHFvkMLzBuq0YMt PTxKPBRsbvcU8m/i30QPQps= -----END CERTIFICATE-----Generated at Tue Apr 7 21:02:12 2026 by rpki-client