$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/AUmK8v2k-wf3ocrTnf2zZKLFTbk.roa File: AUmK8v2k-wf3ocrTnf2zZKLFTbk.roa (raw, json) Hash identifier: h97fP8eb6aJeLvyoMouXUaRRtG+sfNfPjBuh/pxo7u4= Subject key identifier: 01:49:8A:F2:FD:A4:FB:07:F7:A1:CA:D3:9D:FD:B3:64:A2:C5:4D:B9 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 139D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/AUmK8v2k-wf3ocrTnf2zZKLFTbk.roa Signing time: Tue 31 Mar 2026 07:55:56 +0000 ROA not before: Tue 31 Mar 2026 07:55:56 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.97.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5021 (0x139d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:55:56 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=01498AF2FDA4FB07F7A1CAD39DFDB364A2C54DB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:54:19:85:98:4c:48:d6:26:bf:19:aa:64:5f: 53:4a:b8:2c:0f:c9:b5:0a:03:e5:82:9d:5d:b2:cd: a6:6c:05:5a:c6:74:8d:54:ef:63:09:e3:d2:cb:64: 95:6b:a9:56:05:07:56:ac:8e:6f:2a:1b:e7:29:3c: c4:82:fe:10:52:f8:90:7b:a9:04:36:5b:d1:06:20: 7c:a1:76:ca:59:01:36:d6:33:af:0c:53:95:d2:b0: a9:64:be:d8:c0:7a:73:7f:96:48:48:65:c1:9c:e2: 96:f2:e1:c6:27:dc:4c:50:8b:b5:50:e0:62:51:2e: da:0b:c3:f6:6c:ae:82:f8:10:cc:18:72:b9:83:4c: cd:85:25:5f:bd:10:91:de:62:27:6f:69:e2:48:41: 54:57:41:50:90:30:56:cd:6d:78:8f:5d:a3:11:90: 3a:90:24:a6:73:70:eb:41:53:a4:c1:9d:50:ed:fa: c1:b5:3e:13:63:31:d2:0f:74:27:5d:88:ef:7a:68: 0c:ab:37:77:47:0a:1c:a7:c8:a2:d9:6e:83:d1:80: b4:b2:12:91:0b:3f:bf:23:f4:ac:05:cf:e4:3d:97: 64:07:65:a0:c5:f3:80:80:15:35:3f:17:01:cb:72: 07:c7:e5:dd:b2:90:d0:39:63:5d:62:85:27:3e:cf: 6a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:49:8A:F2:FD:A4:FB:07:F7:A1:CA:D3:9D:FD:B3:64:A2:C5:4D:B9 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/AUmK8v2k-wf3ocrTnf2zZKLFTbk.roa sbgp-ipAddrBlock: critical IPv4: 49.97.97.0/24 Signature Algorithm: sha256WithRSAEncryption 27:07:22:f6:ec:63:16:9f:31:e0:d2:61:aa:e9:a5:93:36:82: bc:2a:0a:95:08:ac:5a:e3:20:07:f9:bd:c3:c5:fa:e0:35:2d: 63:07:54:e9:32:4b:eb:a0:a5:d4:b0:f1:f4:cf:71:e2:99:41: 4f:ba:63:d9:6a:f7:33:70:52:f5:ed:84:d6:2f:1d:19:21:75: 47:42:50:51:b3:42:cb:7d:64:8b:3a:6f:48:a0:8c:0b:13:b0: 0d:bb:99:92:d0:16:b3:53:c7:6d:27:70:e8:8d:a6:93:9a:f3: 7c:a9:ea:b5:9c:b2:3b:3c:22:76:8f:9a:fe:3d:3b:c4:3b:f2: 90:6e:fe:15:14:36:ac:22:aa:bf:7b:ad:03:c7:91:1b:dd:1a: 75:e4:ee:de:d3:3a:04:95:35:65:29:01:7e:c7:99:7a:ca:10: de:d3:8c:8f:f5:c1:9b:ce:59:0b:d2:6e:58:e5:25:b1:a5:f3: 1c:2f:63:d9:f4:31:22:5f:8f:7a:44:f2:0e:53:2f:6b:ed:7c: 09:cd:53:c7:d6:96:09:2d:c7:5c:f4:7b:01:3d:7e:75:19:7a: 5b:77:6e:f3:75:b4:b5:f6:ae:ca:4a:8b:dc:a5:bd:87:be:f2: 03:db:36:cd:3f:eb:bd:56:63:5f:53:4f:8b:a8:2d:b9:0e:72: c4:d4:65:57 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICE50wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU1NTZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDAxNDk4QUYyRkRBNEZC MDdGN0ExQ0FEMzlERkRCMzY0QTJDNTREQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxVBmFmExI1ia/GapkX1NKuCwPybUKA+WCnV2yzaZsBVrGdI1U 72MJ49LLZJVrqVYFB1asjm8qG+cpPMSC/hBS+JB7qQQ2W9EGIHyhdspZATbWM68M U5XSsKlkvtjAenN/lkhIZcGc4pby4cYn3ExQi7VQ4GJRLtoLw/ZsroL4EMwYcrmD TM2FJV+9EJHeYidvaeJIQVRXQVCQMFbNbXiPXaMRkDqQJKZzcOtBU6TBnVDt+sG1 PhNjMdIPdCddiO96aAyrN3dHChynyKLZboPRgLSyEpELP78j9KwFz+Q9l2QHZaDF 84CAFTU/FwHLcgfH5d2ykNA5Y11ihSc+z2pbAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUAUmK8v2k+wf3ocrTnf2zZKLFTbkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0FVbUs4djJrLXdmM29jclRuZjJ6WktMRlRiay5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAxYWEwDQYJKoZIhvcNAQELBQADggEB ACcHIvbsYxafMeDSYarppZM2grwqCpUIrFrjIAf5vcPF+uA1LWMHVOkyS+ugpdSw 8fTPceKZQU+6Y9lq9zNwUvXthNYvHRkhdUdCUFGzQst9ZIs6b0igjAsTsA27mZLQ FrNTx20ncOiNppOa83yp6rWcsjs8InaPmv49O8Q78pBu/hUUNqwiqr97rQPHkRvd GnXk7t7TOgSVNWUpAX7HmXrKEN7TjI/1wZvOWQvSbljlJbGl8xwvY9n0MSJfj3pE 8g5TL2vtfAnNU8fWlgktx1z0ewE9fnUZelt3bvN1tLX2rspKi9ylvYe+8gPbNs0/ 671WY19TT4uoLbkOcsTUZVc= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:53 2026 by rpki-client