$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/HSsUAV4blE6Tzp6QnemGsn5lBnA.roa File: HSsUAV4blE6Tzp6QnemGsn5lBnA.roa (raw, json) Hash identifier: /HosrT7fQ8B8IX0y13L/bl2UGTHY5liPlTMc0M2BhmU= Subject key identifier: 1D:2B:14:01:5E:1B:94:4E:93:CE:9E:90:9D:E9:86:B2:7E:65:06:70 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 16EF Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HSsUAV4blE6Tzp6QnemGsn5lBnA.roa Signing time: Tue 31 Mar 2026 08:02:48 +0000 ROA not before: Tue 31 Mar 2026 08:02:48 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.107.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5871 (0x16ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:02:48 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=1D2B14015E1B944E93CE9E909DE986B27E650670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8a:6a:d6:06:ed:b7:78:b9:8f:63:10:45:20: 9e:73:92:8e:d4:8a:05:8e:10:89:2b:87:18:b9:00: 2a:a9:c6:cc:8a:9c:05:30:29:3c:3b:cd:9c:e5:9c: c8:4c:47:10:20:87:d9:bd:29:7b:74:b0:d6:c4:63: 20:91:2c:50:62:0a:2e:bf:02:38:13:9d:81:54:7c: ca:14:a1:52:34:88:cb:95:4e:4e:42:99:82:bc:a7: a6:e1:46:85:2d:2f:eb:11:03:67:b3:88:c3:e7:4a: 41:41:b1:c8:c7:97:8d:4a:ff:ea:76:f3:30:e9:e2: e6:83:1a:cf:2b:73:ac:b2:e8:c9:b1:06:56:7e:45: c8:bf:41:38:bd:ce:24:8d:ed:f1:ec:e1:7a:ca:f5: 62:91:cf:2c:61:12:b3:71:00:36:da:fc:ac:10:e0: a6:fb:ae:a8:37:6d:a9:57:bb:43:53:1e:27:24:fd: ae:e5:51:14:b3:1e:d8:fa:5c:9c:44:27:03:bd:be: 8e:5a:1f:32:5a:a6:84:fa:49:6c:41:17:00:90:59: 41:10:91:4f:20:94:ab:51:88:08:40:1f:af:2b:23: b6:f4:de:94:81:96:b6:71:e8:93:a1:11:01:2e:99: 03:92:8e:20:2c:5c:40:1e:4d:70:a9:f6:0e:fe:3f: ca:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:2B:14:01:5E:1B:94:4E:93:CE:9E:90:9D:E9:86:B2:7E:65:06:70 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HSsUAV4blE6Tzp6QnemGsn5lBnA.roa sbgp-ipAddrBlock: critical IPv4: 49.107.0.0/18 Signature Algorithm: sha256WithRSAEncryption df:95:75:fd:77:23:c2:79:d1:83:24:0f:6a:74:e5:da:7e:5a: 6a:91:71:0b:28:b1:7c:4a:b6:01:e3:5e:d1:dd:1b:6b:86:cd: 46:20:61:23:e3:5a:f2:79:3f:92:92:ed:91:56:64:0f:52:42: 30:52:9c:67:1d:7f:15:97:3c:33:0b:37:89:97:12:08:5a:06: 27:1e:3c:95:cc:50:a8:93:0e:b0:39:a6:7e:b4:89:11:ad:2a: b1:60:02:b4:3b:eb:06:f2:65:86:a5:b5:76:85:18:e7:de:76: bd:72:da:3b:b7:17:da:04:02:d5:7a:69:fc:f4:9b:1d:f2:51: 20:47:db:43:46:b0:ea:73:70:cf:73:e3:e3:50:65:e1:07:eb: d8:c6:3e:98:c1:da:8b:fa:e6:48:12:b1:f2:ec:01:7d:66:a3: d8:18:d5:92:ac:6a:03:47:27:66:e5:40:c3:bd:d4:df:3c:6e: f6:ff:f6:65:5c:61:26:13:92:88:a4:b8:fa:6b:e9:fa:64:af: e1:31:09:bf:bf:c1:69:3a:6f:b0:a1:84:f2:d6:a1:18:00:5a: 7c:f6:08:6f:76:70:0c:47:3a:e1:f0:cb:dd:77:e5:fc:da:df: a9:91:ac:3f:3a:6f:ad:c6:a0:85:41:80:8b:7f:85:c2:15:d2: 89:cd:ad:4a -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFu8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAyNDhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDFEMkIxNDAxNUUxQjk0 NEU5M0NFOUU5MDlERTk4NkIyN0U2NTA2NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClimrWBu23eLmPYxBFIJ5zko7UigWOEIkrhxi5ACqpxsyKnAUw KTw7zZzlnMhMRxAgh9m9KXt0sNbEYyCRLFBiCi6/AjgTnYFUfMoUoVI0iMuVTk5C mYK8p6bhRoUtL+sRA2eziMPnSkFBscjHl41K/+p28zDp4uaDGs8rc6yy6MmxBlZ+ Rci/QTi9ziSN7fHs4XrK9WKRzyxhErNxADba/KwQ4Kb7rqg3balXu0NTHick/a7l URSzHtj6XJxEJwO9vo5aHzJapoT6SWxBFwCQWUEQkU8glKtRiAhAH68rI7b03pSB lrZx6JOhEQEumQOSjiAsXEAeTXCp9g7+P8qNAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUHSsUAV4blE6Tzp6QnemGsn5lBnAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0hTc1VBVjRibEU2VHpwNlFuZW1Hc241bEJuQS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAYxawAwDQYJKoZIhvcNAQELBQADggEB AN+Vdf13I8J50YMkD2p05dp+WmqRcQsosXxKtgHjXtHdG2uGzUYgYSPjWvJ5P5KS 7ZFWZA9SQjBSnGcdfxWXPDMLN4mXEghaBicePJXMUKiTDrA5pn60iRGtKrFgArQ7 6wbyZYaltXaFGOfedr1y2ju3F9oEAtV6afz0mx3yUSBH20NGsOpzcM9z4+NQZeEH 69jGPpjB2ov65kgSsfLsAX1mo9gY1ZKsagNHJ2blQMO91N88bvb/9mVcYSYTkoik uPpr6fpkr+ExCb+/wWk6b7ChhPLWoRgAWnz2CG92cAxHOuHwy9135fza36mRrD86 b63GoIVBgIt/hcIV0onNrUo= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:22 2026 by rpki-client