$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/7qVJR8KsHYc48AeAOB170PE83K8.roa File: 7qVJR8KsHYc48AeAOB170PE83K8.roa (raw, json) Hash identifier: CynKMKxxfI2Tjnq2uWuNp8j8rurxLm5Uj+jzDaMybxE= Subject key identifier: EE:A5:49:47:C2:AC:1D:87:38:F0:07:80:38:1D:7B:D0:F1:3C:DC:AF Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 15BF Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7qVJR8KsHYc48AeAOB170PE83K8.roa Signing time: Tue 31 Mar 2026 08:00:20 +0000 ROA not before: Tue 31 Mar 2026 08:00:20 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.105.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5567 (0x15bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:00:20 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=EEA54947C2AC1D8738F00780381D7BD0F13CDCAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ce:77:5c:8a:0c:fb:9a:c0:92:64:34:8c:50: f7:ab:d9:74:b3:0e:62:03:4d:2f:53:90:16:38:32: 05:3b:f4:db:fb:8d:6c:15:c2:c5:70:11:31:78:15: 60:a0:c7:cf:11:2f:6e:b3:e5:65:22:85:57:bf:5b: 71:c7:f2:cc:2c:da:5c:d5:57:78:d8:57:7d:20:41: 46:1a:7a:64:6d:06:23:5b:df:b0:72:11:b1:c1:36: ab:86:21:ba:dd:68:d4:9e:45:09:14:84:32:59:eb: 67:0e:72:74:a0:0f:c4:1d:83:45:80:3a:f3:1e:32: 0e:fd:43:47:37:1a:0c:a6:88:80:b1:e8:04:aa:d5: e6:94:9c:85:4d:d7:8d:ce:a4:69:50:1e:f0:83:1b: 67:90:40:61:05:bc:2d:68:1b:ab:6a:13:a8:cd:cb: 23:04:42:6d:63:d3:a3:57:80:9e:ce:bc:04:79:d5: 54:94:ac:aa:b9:49:49:9f:a8:0e:0f:06:ab:6d:26: 50:8c:6a:2a:dc:81:1a:75:0b:ef:e6:67:35:4a:ba: a7:5c:b8:bc:c3:3e:75:86:76:17:72:cf:87:a8:74: bf:1e:4a:76:71:1a:b8:11:da:cc:a9:4e:e6:a3:18: a4:b5:a5:4f:25:5a:f4:ba:22:36:d7:a1:e2:c8:92: ef:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:A5:49:47:C2:AC:1D:87:38:F0:07:80:38:1D:7B:D0:F1:3C:DC:AF X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7qVJR8KsHYc48AeAOB170PE83K8.roa sbgp-ipAddrBlock: critical IPv4: 49.105.128.0/18 Signature Algorithm: sha256WithRSAEncryption a2:8b:f3:e8:68:91:5a:00:00:f1:8a:27:24:08:8b:35:4e:6f: 05:53:79:c7:5b:4b:c9:db:26:e3:70:9c:3d:a9:02:c7:dd:77: 75:02:1b:0e:e4:d2:2c:56:24:23:c2:53:a1:73:f1:38:27:60: 40:b1:79:85:8a:b9:e9:a8:82:31:ee:d1:28:43:3e:aa:fd:57: e1:08:7f:15:46:81:bd:fd:29:61:ca:ab:7c:d7:fc:91:ee:a4: 57:a3:53:f4:0e:5a:56:23:c3:bc:15:c9:59:e2:d5:66:90:cb: 8b:26:af:f9:4d:45:01:11:ec:3d:fc:dc:44:60:87:6a:81:d0: 67:80:20:ad:94:99:de:cd:6f:ac:9c:11:7b:df:2d:f1:01:bc: 13:03:6f:ee:59:c4:b0:e2:6e:d8:57:cd:09:54:62:9e:5e:68: 25:9b:e6:5e:83:a6:56:ba:22:76:ae:33:ef:87:d8:46:97:bc: f0:eb:36:4d:7a:b1:b6:b1:1f:80:4e:dd:aa:67:44:2a:2b:be: f7:71:dd:29:c5:c4:97:7d:08:fb:ba:fd:64:06:3e:0b:9d:19: 94:be:64:9b:a1:26:64:b3:30:be:d7:91:fb:16:9c:73:c4:43: f1:be:11:a5:34:39:c6:c8:99:f1:ea:11:cc:4d:96:93:33:0d: 9c:bd:4a:7b -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFb8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAwMjBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEVFQTU0OTQ3QzJBQzFE ODczOEYwMDc4MDM4MUQ3QkQwRjEzQ0RDQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLzndcigz7msCSZDSMUPer2XSzDmIDTS9TkBY4MgU79Nv7jWwV wsVwETF4FWCgx88RL26z5WUihVe/W3HH8sws2lzVV3jYV30gQUYaemRtBiNb37By EbHBNquGIbrdaNSeRQkUhDJZ62cOcnSgD8Qdg0WAOvMeMg79Q0c3GgymiICx6ASq 1eaUnIVN143OpGlQHvCDG2eQQGEFvC1oG6tqE6jNyyMEQm1j06NXgJ7OvAR51VSU rKq5SUmfqA4PBqttJlCMaircgRp1C+/mZzVKuqdcuLzDPnWGdhdyz4eodL8eSnZx GrgR2sypTuajGKS1pU8lWvS6IjbXoeLIku//AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQU7qVJR8KsHYc48AeAOB170PE83K8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5LzdxVkpSOEtzSFljNDhBZUFPQjE3MFBFODNLOC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAYxaYAwDQYJKoZIhvcNAQELBQADggEB AKKL8+hokVoAAPGKJyQIizVObwVTecdbS8nbJuNwnD2pAsfdd3UCGw7k0ixWJCPC U6Fz8TgnYECxeYWKuemogjHu0ShDPqr9V+EIfxVGgb39KWHKq3zX/JHupFejU/QO WlYjw7wVyVni1WaQy4smr/lNRQER7D383ERgh2qB0GeAIK2Umd7Nb6ycEXvfLfEB vBMDb+5ZxLDibthXzQlUYp5eaCWb5l6Dpla6InauM++H2EaXvPDrNk16sbaxH4BO 3apnRCorvvdx3SnFxJd9CPu6/WQGPgudGZS+ZJuhJmSzML7XkfsWnHPEQ/G+EaU0 OcbImfHqEcxNlpMzDZy9Sns= -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:09 2026 by rpki-client