$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CXO13aEZKa0AFxKN9oIubsf0qFQ.roa File: CXO13aEZKa0AFxKN9oIubsf0qFQ.roa (raw, json) Hash identifier: TZFoCR6g3uFjQkbumzBaRJbxuSBD3YkzaqUMUblI+/Y= Subject key identifier: 09:73:B5:DD:A1:19:29:AD:00:17:12:8D:F6:82:2E:6E:C7:F4:A8:54 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1607 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CXO13aEZKa0AFxKN9oIubsf0qFQ.roa Signing time: Tue 31 Mar 2026 08:00:57 +0000 ROA not before: Tue 31 Mar 2026 08:00:57 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.30.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5639 (0x1607) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:00:57 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=0973B5DDA11929AD0017128DF6822E6EC7F4A854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4b:d1:7f:3b:1a:33:df:48:39:80:ec:bf:b8: fe:3c:76:6b:a9:f2:84:06:5b:61:30:82:ad:37:69: ac:d3:3d:a4:6c:1a:fb:51:e0:45:07:09:70:ff:23: 6d:3e:6c:cc:a6:7e:01:2f:8a:a1:4d:55:40:9c:c2: bf:25:6e:77:26:b7:8b:46:49:9a:e7:85:a3:3e:c1: 02:86:b9:39:90:7b:81:e1:91:0d:76:0f:30:d7:c5: 72:b0:b5:02:da:1f:d9:e1:65:ac:2c:de:0a:af:7f: 7f:98:9c:ab:41:a0:a1:db:e0:88:9a:44:38:d3:45: 90:ce:00:67:c3:db:40:84:f7:42:7b:19:fd:47:08: 2f:4b:9d:3c:94:64:6e:10:d8:9a:09:d3:fa:8e:9d: 77:71:16:b3:d7:57:98:49:b2:e8:42:5c:de:a5:c1: dd:05:4a:67:2f:41:be:d6:28:0d:10:20:2e:38:b7: e2:4a:f1:76:7f:a5:4f:73:98:30:b2:5f:27:ea:d8: 1e:dd:5a:35:a8:35:89:bd:b7:ab:3c:e6:28:61:96: 25:b4:89:8b:99:05:2d:fe:9b:bc:63:48:83:69:e7: 4e:15:b7:81:42:91:4d:25:bf:38:1a:da:0e:0f:c4: 06:4f:c4:6e:de:e4:07:a7:de:76:96:2b:12:9d:8e: 20:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:73:B5:DD:A1:19:29:AD:00:17:12:8D:F6:82:2E:6E:C7:F4:A8:54 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CXO13aEZKa0AFxKN9oIubsf0qFQ.roa sbgp-ipAddrBlock: critical IPv4: 49.98.30.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:f6:e3:9a:89:de:b3:9d:52:3d:0a:1b:5d:3d:9f:ec:14:32: 33:02:d3:66:ba:5c:ba:f7:61:9d:87:96:6f:ce:f1:25:20:9d: 8f:29:07:90:0f:39:cb:0e:1e:da:d2:0d:9f:fd:f8:c8:42:53: 8a:3b:58:99:7d:fb:8c:77:ca:46:40:18:b2:e7:08:18:c1:38: 02:75:c4:31:f5:75:cb:31:6f:7e:9d:03:31:82:ad:89:ee:c3: 6d:0b:ae:d3:ca:1c:42:f2:3c:66:f6:52:9d:6e:65:e9:e2:72: 39:1d:67:16:26:33:40:9f:14:38:02:9a:89:2e:4c:21:bd:07: ff:35:e3:74:90:3a:5e:62:0b:24:4f:4b:b4:26:53:dc:c9:eb: b0:12:dd:f2:d8:15:c3:6e:b5:02:bd:3b:a1:86:6b:98:a6:24: a1:a7:c6:d9:89:40:69:82:da:bd:25:61:9b:dd:2b:98:4c:6b: 5d:de:35:d4:b5:ad:8d:ae:79:bf:49:4d:72:85:50:4a:32:d4: 2c:7e:0d:eb:c9:58:3d:fa:bc:d0:66:1b:60:3d:13:2f:38:b6: ab:55:08:01:28:23:64:82:2a:46:e4:08:a6:02:82:9a:25:b6: f4:bf:0f:4f:65:af:f0:b3:94:4f:3c:1c:78:a9:24:2a:04:8c: 57:eb:f4:b8 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFgcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAwNTdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA5NzNCNUREQTExOTI5 QUQwMDE3MTI4REY2ODIyRTZFQzdGNEE4NTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMS9F/Oxoz30g5gOy/uP48dmup8oQGW2Ewgq03aazTPaRsGvtR 4EUHCXD/I20+bMymfgEviqFNVUCcwr8lbncmt4tGSZrnhaM+wQKGuTmQe4HhkQ12 DzDXxXKwtQLaH9nhZaws3gqvf3+YnKtBoKHb4IiaRDjTRZDOAGfD20CE90J7Gf1H CC9LnTyUZG4Q2JoJ0/qOnXdxFrPXV5hJsuhCXN6lwd0FSmcvQb7WKA0QIC44t+JK 8XZ/pU9zmDCyXyfq2B7dWjWoNYm9t6s85ihhliW0iYuZBS3+m7xjSINp504Vt4FC kU0lvzga2g4PxAZPxG7e5Aen3naWKxKdjiBjAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUCXO13aEZKa0AFxKN9oIubsf0qFQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0NYTzEzYUVaS2EwQUZ4S045b0l1YnNmMHFGUS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAExYh4wDQYJKoZIhvcNAQELBQADggEB AD7245qJ3rOdUj0KG109n+wUMjMC02a6XLr3YZ2Hlm/O8SUgnY8pB5APOcsOHtrS DZ/9+MhCU4o7WJl9+4x3ykZAGLLnCBjBOAJ1xDH1dcsxb36dAzGCrYnuw20LrtPK HELyPGb2Up1uZenicjkdZxYmM0CfFDgCmokuTCG9B/8143SQOl5iCyRPS7QmU9zJ 67AS3fLYFcNutQK9O6GGa5imJKGnxtmJQGmC2r0lYZvdK5hMa13eNdS1rY2ueb9J TXKFUEoy1Cx+DevJWD36vNBmG2A9Ey84tqtVCAEoI2SCKkbkCKYCgpoltvS/D09l r/CzlE88HHipJCoEjFfr9Lg= -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:58 2026 by rpki-client