$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/I0zoVhYINutJad880JCy64ZiyCo.roa File: I0zoVhYINutJad880JCy64ZiyCo.roa (raw, json) Hash identifier: Wg4XIAFt2osYvWKLkC2yIzvfBUDxOxMX6J4zjElJ0a4= Subject key identifier: 23:4C:E8:56:16:08:36:EB:49:69:DF:3C:D0:90:B2:EB:86:62:C8:2A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 136E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/I0zoVhYINutJad880JCy64ZiyCo.roa Signing time: Tue 31 Mar 2026 07:55:33 +0000 ROA not before: Tue 31 Mar 2026 07:55:33 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.97.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4974 (0x136e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:55:33 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=234CE856160836EB4969DF3CD090B2EB8662C82A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f4:b1:8b:d1:7b:2c:af:0d:7f:df:7e:83:43: 7e:7b:bf:ed:8a:a9:29:7f:6c:d8:dc:d7:06:b4:3f: 91:e8:ab:10:a3:30:6c:87:73:17:54:64:16:4f:ec: f0:47:b6:54:86:69:2c:14:ba:af:a4:63:b0:32:7c: 6e:18:9e:6d:65:4a:53:c9:6c:79:45:23:20:9c:f4: 56:db:dd:58:52:46:0c:ba:d3:75:4e:0c:03:dd:a0: c0:2c:8f:b3:79:24:fe:f8:26:62:01:c4:a0:cf:84: 2e:2a:8a:7d:ee:00:6d:66:d6:a2:71:ea:eb:8e:6c: c9:b9:1d:5b:46:49:87:36:be:9e:ff:a7:6b:2d:f6: 7e:dd:a5:68:8f:cb:86:d5:f4:22:c0:bb:e1:34:58: 1e:f4:55:75:9c:98:32:10:07:40:da:a8:55:b9:74: 54:f5:a0:6f:01:51:80:4d:f9:15:28:db:da:bb:35: ca:ec:9e:ee:f2:ea:1a:76:64:ba:57:1e:dd:f8:f1: fc:50:fb:23:8f:d0:92:12:91:08:78:cf:64:02:97: 17:48:60:d7:67:3a:42:3a:13:f7:2c:01:06:06:5b: a8:ef:72:b6:0f:c2:73:6d:69:1b:f4:1b:44:fd:b9: 84:8f:86:3c:e1:99:2e:29:fd:f4:d3:2a:27:01:dd: da:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:4C:E8:56:16:08:36:EB:49:69:DF:3C:D0:90:B2:EB:86:62:C8:2A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/I0zoVhYINutJad880JCy64ZiyCo.roa sbgp-ipAddrBlock: critical IPv4: 49.97.106.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:ba:8c:da:71:8e:c6:44:d0:20:5c:e7:e6:74:15:2f:c2:e2: ee:d6:f3:83:37:c0:b0:93:87:36:9a:fb:69:45:4f:ae:c2:24: d5:18:4d:13:22:f2:31:2f:aa:96:39:bd:3b:88:56:f5:1b:7a: f1:bb:76:57:47:83:ca:df:ad:7b:f3:7a:bc:64:b7:43:56:c0: de:08:cc:21:8d:f7:2c:f7:a7:14:88:ad:c0:5a:4a:ee:14:ab: 62:e3:f2:f0:4f:7c:42:a1:6c:86:61:bb:c3:d4:58:5a:21:c0: d3:bd:80:8d:90:67:bc:82:99:f5:68:5a:c0:5d:25:29:88:32: b6:1b:b6:d0:4c:6f:db:ce:3f:38:6f:a2:0b:c2:90:71:93:18: 21:83:14:8c:2e:87:80:a1:a8:90:0e:db:f4:05:09:60:63:0b: cb:64:4d:6d:d7:e4:e6:1e:0e:c1:e1:55:11:c0:40:40:b6:b2: 09:85:26:82:e9:52:74:50:54:21:cb:f4:3d:04:5b:96:cc:ff: d0:46:fc:e4:18:7b:2e:99:b9:58:06:1d:41:9f:e0:ba:dd:ad: 2e:1a:91:b1:e4:f3:5e:25:15:c5:91:47:27:e8:88:c1:39:f1: ea:c4:a6:a1:a4:5b:f7:8f:0b:5c:1a:37:73:27:f1:39:1a:cb: ce:f7:fb:d4 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICE24wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU1MzNaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDIzNENFODU2MTYwODM2 RUI0OTY5REYzQ0QwOTBCMkVCODY2MkM4MkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDM9LGL0Xssrw1/336DQ357v+2KqSl/bNjc1wa0P5HoqxCjMGyH cxdUZBZP7PBHtlSGaSwUuq+kY7AyfG4Ynm1lSlPJbHlFIyCc9Fbb3VhSRgy603VO DAPdoMAsj7N5JP74JmIBxKDPhC4qin3uAG1m1qJx6uuObMm5HVtGSYc2vp7/p2st 9n7dpWiPy4bV9CLAu+E0WB70VXWcmDIQB0DaqFW5dFT1oG8BUYBN+RUo29q7Ncrs nu7y6hp2ZLpXHt348fxQ+yOP0JISkQh4z2QClxdIYNdnOkI6E/csAQYGW6jvcrYP wnNtaRv0G0T9uYSPhjzhmS4p/fTTKicB3dotAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUI0zoVhYINutJad880JCy64ZiyCowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0kwem9WaFlJTnV0SmFkODgwSkN5NjRaaXlDby5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAxYWowDQYJKoZIhvcNAQELBQADggEB AB66jNpxjsZE0CBc5+Z0FS/C4u7W84M3wLCThzaa+2lFT67CJNUYTRMi8jEvqpY5 vTuIVvUbevG7dldHg8rfrXvzerxkt0NWwN4IzCGN9yz3pxSIrcBaSu4Uq2Lj8vBP fEKhbIZhu8PUWFohwNO9gI2QZ7yCmfVoWsBdJSmIMrYbttBMb9vOPzhvogvCkHGT GCGDFIwuh4ChqJAO2/QFCWBjC8tkTW3X5OYeDsHhVRHAQEC2sgmFJoLpUnRQVCHL 9D0EW5bM/9BG/OQYey6ZuVgGHUGf4LrdrS4akbHk814lFcWRRyfoiME58erEpqGk W/ePC1waN3Mn8Tkay873+9Q= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:32 2026 by rpki-client