$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/5mTocRFyWrxwVZf7SBgEuOSI7pA.roa File: 5mTocRFyWrxwVZf7SBgEuOSI7pA.roa (raw, json) Hash identifier: McIc4d/OdDESIc8Hl0YrHp/7sZUcbSCjhqWyTsyEjZ8= Subject key identifier: E6:64:E8:71:11:72:5A:BC:70:55:97:FB:48:18:04:B8:E4:88:EE:90 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 15E1 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5mTocRFyWrxwVZf7SBgEuOSI7pA.roa Signing time: Tue 31 Mar 2026 08:00:37 +0000 ROA not before: Tue 31 Mar 2026 08:00:37 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.38.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5601 (0x15e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:00:37 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=E664E87111725ABC705597FB481804B8E488EE90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f4:53:c3:9a:82:ff:b1:34:ab:44:27:41:df: 27:9f:d7:22:fb:fc:5f:24:41:49:d9:a9:10:59:8f: f1:ea:4e:7f:98:49:59:74:d4:2d:eb:ae:0a:d0:ab: 3b:0b:31:36:fe:ca:0a:51:94:ce:69:c5:01:39:f2: 85:c9:e9:54:bd:5c:b7:49:1e:e4:fe:de:b3:16:6d: d5:ad:60:de:0b:a4:ac:a2:02:45:65:fd:f0:1b:f7: 2e:7f:4d:75:79:cb:12:1c:a9:ed:34:0d:a5:0e:10: b9:de:0a:b5:97:df:fa:97:a6:d7:fe:63:4b:e7:03: c2:5e:25:02:39:e7:f8:62:1d:7a:81:9a:ce:3d:6b: 84:e2:d6:d7:c8:1a:ed:ee:49:1d:ae:b7:97:2d:65: 88:30:81:00:f1:b3:2d:a9:ba:72:b4:c5:86:44:39: fc:23:2d:16:40:c4:58:0b:73:fd:4b:27:69:32:07: f3:3a:8a:b8:b2:b8:c5:28:3d:ca:77:a3:c4:de:50: c8:1b:5a:09:b6:4e:fa:b0:86:55:8d:ac:5f:89:76: 00:02:77:29:a0:cc:2b:1b:50:85:61:da:26:65:16: 42:08:04:c5:fe:f0:6c:72:57:4e:ad:ac:7b:af:5e: 3f:23:50:c0:ec:be:bf:1a:49:c0:a6:fc:fe:bc:f6: bf:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:64:E8:71:11:72:5A:BC:70:55:97:FB:48:18:04:B8:E4:88:EE:90 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5mTocRFyWrxwVZf7SBgEuOSI7pA.roa sbgp-ipAddrBlock: critical IPv4: 49.96.38.0/23 Signature Algorithm: sha256WithRSAEncryption 94:3b:9e:a3:0e:10:ad:a1:41:45:32:5d:ab:2d:18:f9:6f:37: df:ed:44:2d:66:8c:c2:40:b8:26:40:64:75:14:6c:7f:ba:35: 44:5e:4d:49:bb:df:26:1c:3e:71:73:81:ba:f6:cd:c0:c9:52: 4a:fd:dc:be:b3:4c:18:f2:0f:d0:ce:9b:02:44:6e:4a:05:63: 36:9f:6f:8c:5e:ef:11:55:f3:d4:2a:13:9a:9c:71:06:77:da: d8:a6:9c:54:b7:a2:1e:78:2e:50:38:51:75:51:b0:1c:68:23: 27:e6:f7:9e:6e:9e:1b:1a:69:e9:e7:fc:9a:68:4d:ab:4b:57: da:d8:10:9f:76:1e:54:20:5c:db:9b:67:59:44:56:8a:34:d8: 10:9d:73:3b:f6:79:f3:d2:88:f4:10:15:a8:6e:eb:a2:ea:bb: c9:9a:37:16:1b:6c:79:93:7d:06:e0:de:c8:1c:ce:06:6b:ec: 0a:99:62:4d:e8:16:54:20:60:20:9d:0f:8d:ad:15:b8:04:cf: 79:4a:e5:5e:2e:65:31:21:58:20:e3:70:66:10:df:a4:e4:43: c0:5f:b4:bb:6d:ed:2e:c7:73:eb:6f:8e:aa:13:9e:75:b3:90: ff:42:16:2c:7d:bb:c0:4b:d0:ae:71:57:b4:5b:eb:eb:5f:97: 02:ab:e3:cb -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFeEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAwMzdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEU2NjRFODcxMTE3MjVB QkM3MDU1OTdGQjQ4MTgwNEI4RTQ4OEVFOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCv9FPDmoL/sTSrRCdB3yef1yL7/F8kQUnZqRBZj/HqTn+YSVl0 1C3rrgrQqzsLMTb+ygpRlM5pxQE58oXJ6VS9XLdJHuT+3rMWbdWtYN4LpKyiAkVl /fAb9y5/TXV5yxIcqe00DaUOELneCrWX3/qXptf+Y0vnA8JeJQI55/hiHXqBms49 a4Ti1tfIGu3uSR2ut5ctZYgwgQDxsy2punK0xYZEOfwjLRZAxFgLc/1LJ2kyB/M6 iriyuMUoPcp3o8TeUMgbWgm2TvqwhlWNrF+JdgACdymgzCsbUIVh2iZlFkIIBMX+ 8GxyV06trHuvXj8jUMDsvr8aScCm/P689r/9AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU5mTocRFyWrxwVZf7SBgEuOSI7pAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5LzVtVG9jUkZ5V3J4d1ZaZjdTQmdFdU9TSTdwQS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAExYCYwDQYJKoZIhvcNAQELBQADggEB AJQ7nqMOEK2hQUUyXastGPlvN9/tRC1mjMJAuCZAZHUUbH+6NUReTUm73yYcPnFz gbr2zcDJUkr93L6zTBjyD9DOmwJEbkoFYzafb4xe7xFV89QqE5qccQZ32timnFS3 oh54LlA4UXVRsBxoIyfm955unhsaaenn/JpoTatLV9rYEJ92HlQgXNubZ1lEVoo0 2BCdczv2efPSiPQQFahu66Lqu8maNxYbbHmTfQbg3sgczgZr7AqZYk3oFlQgYCCd D42tFbgEz3lK5V4uZTEhWCDjcGYQ36TkQ8BftLtt7S7Hc+tvjqoTnnWzkP9CFix9 u8BL0K5xV7Rb6+tflwKr48s= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:01 2026 by rpki-client