$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/At-cQ-ohm3wqZnhWduyFszIdz1E.roa File: At-cQ-ohm3wqZnhWduyFszIdz1E.roa (raw, json) Hash identifier: 5KCE/Z0+LKqEl96cIZlc6PIDi6IPzbLkGuBfht5WesM= Subject key identifier: 02:DF:9C:43:EA:21:9B:7C:2A:66:78:56:76:EC:85:B3:32:1D:CF:51 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 13F9 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/At-cQ-ohm3wqZnhWduyFszIdz1E.roa Signing time: Tue 31 Mar 2026 07:56:38 +0000 ROA not before: Tue 31 Mar 2026 07:56:38 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.164.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5113 (0x13f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:56:38 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=02DF9C43EA219B7C2A66785676EC85B3321DCF51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b0:41:d1:3c:72:e4:31:a4:b1:f6:8b:a2:80: c1:20:6a:ff:57:3c:c9:9b:0f:b9:2f:75:3e:7a:3b: a4:71:ab:26:15:fd:1f:04:07:d3:cd:39:1e:16:44: ae:64:eb:c0:0e:bf:ef:08:86:93:8d:29:c6:fb:b5: 52:b5:15:34:33:a0:82:d3:25:2f:1a:44:eb:0c:50: 0c:21:e1:d9:fc:4e:bd:4f:53:89:1e:a9:d7:e8:c5: d6:47:6d:ca:0c:9b:bc:74:ba:41:2e:5d:e6:77:30: 23:07:a8:d3:ae:59:d8:7f:e8:51:e9:8d:42:a5:07: 3d:53:44:62:d6:fe:e4:9f:24:72:e8:92:25:dc:c0: 7f:bd:ee:7a:91:52:b1:2f:a8:86:20:21:73:a4:37: f6:78:66:b1:dc:ac:dd:be:f2:4c:44:f6:b4:76:84: 1f:12:d9:14:4e:96:f3:e0:df:c9:73:e3:52:99:ef: 70:87:1b:8a:fb:0c:1c:4f:fd:91:02:96:75:d1:9f: 8a:48:2a:70:e6:9c:d3:09:0d:d4:fb:af:86:a0:5f: a8:e5:98:d1:36:7e:eb:c2:1a:d2:a8:a4:dd:31:24: 8a:a7:ed:8b:33:ba:62:9f:f2:b2:6e:4c:f2:61:c1: 09:86:fb:64:90:3a:23:57:9a:25:5f:eb:b8:7b:df: b3:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:DF:9C:43:EA:21:9B:7C:2A:66:78:56:76:EC:85:B3:32:1D:CF:51 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/At-cQ-ohm3wqZnhWduyFszIdz1E.roa sbgp-ipAddrBlock: critical IPv4: 49.98.164.0/22 Signature Algorithm: sha256WithRSAEncryption 97:d2:08:05:ae:a9:bd:5f:65:19:5e:6a:7f:41:7a:1e:09:69: fa:49:7e:72:3c:cb:8c:dc:b9:05:dd:4d:a3:ee:b3:61:df:8d: 42:75:e9:4e:37:0b:24:50:ee:90:a5:76:89:f0:6d:88:b4:d5: 1a:de:f2:f3:35:15:fb:31:9a:7e:9b:84:21:aa:56:55:38:11: 48:4b:f9:08:ee:41:53:1f:60:1b:1e:0d:61:6d:bb:e4:75:9c: 17:9e:5f:fa:12:1c:3b:cf:30:5e:cf:04:9b:a1:a0:90:bf:fa: 27:a7:7d:cb:39:b1:a3:25:04:1b:2c:e6:ee:eb:6d:d5:fc:b8: 4e:57:ac:1c:11:21:54:5c:ef:ec:96:ab:5e:c5:5b:de:d9:60: c0:38:30:fd:7e:f9:8e:83:1c:14:38:ca:c0:55:cd:4a:ee:58: 30:1b:7a:a0:60:af:de:ed:5c:56:30:a1:0f:4a:e7:07:c1:f2: b4:27:ec:bd:2e:05:04:44:99:9e:ab:e6:f7:e7:7c:42:bf:94: 9b:a8:ea:bc:28:40:24:37:14:70:3b:eb:56:36:38:4c:4a:6c: 5b:1c:1e:8a:b7:5d:ca:8b:3f:52:e7:2a:36:01:40:fe:70:03: 0c:f3:20:08:2a:48:dc:6f:2e:4c:4d:22:fe:93:5f:c9:f4:00: 0b:d6:ac:ae -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICE/kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU2MzhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDAyREY5QzQzRUEyMTlC N0MyQTY2Nzg1Njc2RUM4NUIzMzIxRENGNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIsEHRPHLkMaSx9ouigMEgav9XPMmbD7kvdT56O6RxqyYV/R8E B9PNOR4WRK5k68AOv+8IhpONKcb7tVK1FTQzoILTJS8aROsMUAwh4dn8Tr1PU4ke qdfoxdZHbcoMm7x0ukEuXeZ3MCMHqNOuWdh/6FHpjUKlBz1TRGLW/uSfJHLokiXc wH+97nqRUrEvqIYgIXOkN/Z4ZrHcrN2+8kxE9rR2hB8S2RROlvPg38lz41KZ73CH G4r7DBxP/ZEClnXRn4pIKnDmnNMJDdT7r4agX6jlmNE2fuvCGtKopN0xJIqn7Ysz umKf8rJuTPJhwQmG+2SQOiNXmiVf67h737ONAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUAt+cQ+ohm3wqZnhWduyFszIdz1EwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0F0LWNRLW9obTN3cVpuaFdkdXlGc3pJZHoxRS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIxYqQwDQYJKoZIhvcNAQELBQADggEB AJfSCAWuqb1fZRlean9Beh4JafpJfnI8y4zcuQXdTaPus2HfjUJ16U43CyRQ7pCl donwbYi01Rre8vM1Ffsxmn6bhCGqVlU4EUhL+QjuQVMfYBseDWFtu+R1nBeeX/oS HDvPMF7PBJuhoJC/+ienfcs5saMlBBss5u7rbdX8uE5XrBwRIVRc7+yWq17FW97Z YMA4MP1++Y6DHBQ4ysBVzUruWDAbeqBgr97tXFYwoQ9K5wfB8rQn7L0uBQREmZ6r 5vfnfEK/lJuo6rwoQCQ3FHA761Y2OExKbFscHoq3XcqLP1LnKjYBQP5wAwzzIAgq SNxvLkxNIv6TX8n0AAvWrK4= -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:47 2026 by rpki-client