$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/GsR3VuBRw-Yj224Tep-W5h9L2y8.roa File: GsR3VuBRw-Yj224Tep-W5h9L2y8.roa (raw, json) Hash identifier: Z+CgYeHIgvyyGMxuu+Y6DmyRqgii/g7gZw12z0lcRHE= Subject key identifier: 1A:C4:77:56:E0:51:C3:E6:23:DB:6E:13:7A:9F:96:E6:1F:4B:DB:2F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 15CE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GsR3VuBRw-Yj224Tep-W5h9L2y8.roa Signing time: Tue 31 Mar 2026 08:00:27 +0000 ROA not before: Tue 31 Mar 2026 08:00:27 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.124.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5582 (0x15ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:00:27 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=1AC47756E051C3E623DB6E137A9F96E61F4BDB2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:28:a1:04:db:0c:11:15:f4:e8:f3:30:af:7c: 71:6d:06:2e:99:94:8a:97:66:75:db:23:32:9f:f7: 55:b0:00:d7:7c:fa:2e:e7:66:7a:cb:5c:53:22:ad: bc:fe:e4:65:de:cc:3c:8a:76:cc:3d:59:e7:fa:92: 6f:b6:26:2f:a5:8b:44:4b:19:dc:16:be:7f:3d:b0: 71:ad:95:b7:3c:9b:fb:90:03:9c:06:56:f8:6e:46: 46:5c:73:5e:6c:e7:a1:6e:f0:0f:52:20:a3:28:06: 4b:bc:36:9a:8b:26:ce:e9:d0:02:1a:48:8b:4e:c0: 99:f0:62:c1:2e:5a:21:7a:53:e2:0b:07:1f:9f:e2: f0:cf:03:d0:77:70:c2:48:46:94:23:3e:3d:db:4e: ae:48:71:3d:89:36:72:60:7a:5b:93:3c:59:a7:6c: c7:47:fe:f0:fa:b0:ec:6d:46:b3:cd:b7:f1:0e:6d: c4:9d:25:ee:32:bb:9b:d7:f5:f4:cf:a5:ef:19:18: ef:17:9e:9a:6b:a4:55:97:82:11:2b:f8:df:23:07: 41:e7:a7:7a:47:31:4c:98:e7:1c:d2:f7:b8:ce:11: 0b:ea:a1:bf:73:0b:7c:94:87:55:0d:f4:07:ee:16: f2:7a:6e:e0:de:63:cb:5d:c3:f6:4e:e2:52:b6:f9: c2:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:C4:77:56:E0:51:C3:E6:23:DB:6E:13:7A:9F:96:E6:1F:4B:DB:2F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GsR3VuBRw-Yj224Tep-W5h9L2y8.roa sbgp-ipAddrBlock: critical IPv4: 49.98.124.0/23 Signature Algorithm: sha256WithRSAEncryption 95:9e:26:db:fc:38:c2:01:a8:8f:72:2a:58:16:87:7e:c0:75: 98:91:35:bd:1f:b3:22:6e:fa:41:69:d2:59:50:35:19:90:dd: b2:1f:d8:e6:a4:c6:d8:fd:ff:28:87:e3:c1:c1:f7:01:55:bf: 94:e0:2d:44:6d:ae:0f:0f:89:ee:ed:4f:cf:d4:a7:1a:a6:89: 07:f9:80:87:21:8b:b1:81:6d:2f:d3:87:fb:1d:60:16:29:4f: 80:17:69:fa:93:e5:98:03:4a:27:4a:c5:f3:3d:fd:07:3a:ec: 48:a8:73:82:92:ff:ea:54:93:64:10:38:8b:cc:8d:06:28:51: cc:a8:f0:c7:96:00:f5:b9:ee:79:8b:51:09:72:02:8a:69:33: 64:0b:be:70:06:0d:4b:3f:ce:69:47:9f:fc:94:4a:8e:16:be: 13:05:fd:ad:58:e7:c4:b2:8e:14:9e:1e:38:25:24:ac:34:8e: f8:54:7f:70:b8:5e:f5:b7:35:e7:70:25:47:58:32:44:12:9d: 71:2d:b1:3a:a6:8f:62:f7:8a:26:4d:50:e7:5a:31:ac:91:9a: 23:99:1f:76:0d:0e:60:07:a3:fd:88:87:f4:59:fb:a2:92:37: 46:eb:6f:8c:d3:29:5d:1b:86:78:9c:f8:d9:fb:01:62:99:e5: fc:29:c8:94 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFc4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAwMjdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDFBQzQ3NzU2RTA1MUMz RTYyM0RCNkUxMzdBOUY5NkU2MUY0QkRCMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9KKEE2wwRFfTo8zCvfHFtBi6ZlIqXZnXbIzKf91WwANd8+i7n ZnrLXFMirbz+5GXezDyKdsw9Wef6km+2Ji+li0RLGdwWvn89sHGtlbc8m/uQA5wG VvhuRkZcc15s56Fu8A9SIKMoBku8NpqLJs7p0AIaSItOwJnwYsEuWiF6U+ILBx+f 4vDPA9B3cMJIRpQjPj3bTq5IcT2JNnJgeluTPFmnbMdH/vD6sOxtRrPNt/EObcSd Je4yu5vX9fTPpe8ZGO8XnpprpFWXghEr+N8jB0Hnp3pHMUyY5xzS97jOEQvqob9z C3yUh1UN9AfuFvJ6buDeY8tdw/ZO4lK2+cJbAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUGsR3VuBRw+Yj224Tep+W5h9L2y8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0dzUjNWdUJSdy1ZajIyNFRlcC1XNWg5TDJ5OC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAExYnwwDQYJKoZIhvcNAQELBQADggEB AJWeJtv8OMIBqI9yKlgWh37AdZiRNb0fsyJu+kFp0llQNRmQ3bIf2Oakxtj9/yiH 48HB9wFVv5TgLURtrg8Pie7tT8/UpxqmiQf5gIchi7GBbS/Th/sdYBYpT4AXafqT 5ZgDSidKxfM9/Qc67Eioc4KS/+pUk2QQOIvMjQYoUcyo8MeWAPW57nmLUQlyAopp M2QLvnAGDUs/zmlHn/yUSo4WvhMF/a1Y58SyjhSeHjglJKw0jvhUf3C4XvW3Nedw JUdYMkQSnXEtsTqmj2L3iiZNUOdaMayRmiOZH3YNDmAHo/2Ih/RZ+6KSN0brb4zT KV0bhnic+Nn7AWKZ5fwpyJQ= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:20 2026 by rpki-client