$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ia4xZeFc_cwMi1BsGOonAzvVd9U.roa File: Ia4xZeFc_cwMi1BsGOonAzvVd9U.roa (raw, json) Hash identifier: iWCtWVUgS5J3lEce0H0mE/pe2tFpB674St58uMOFKhE= Subject key identifier: 21:AE:31:65:E1:5C:FD:CC:0C:8B:50:6C:18:EA:27:03:3B:D5:77:D5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 13D5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ia4xZeFc_cwMi1BsGOonAzvVd9U.roa Signing time: Tue 31 Mar 2026 07:56:25 +0000 ROA not before: Tue 31 Mar 2026 07:56:25 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.152.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5077 (0x13d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:56:25 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=21AE3165E15CFDCC0C8B506C18EA27033BD577D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:18:6b:86:4e:34:64:3e:35:e0:da:2d:c7:91: da:a9:3d:db:27:6e:56:7f:ca:18:45:a6:36:b7:05: c0:59:db:7c:c1:c8:43:e8:10:0e:b6:51:f3:6f:92: 7e:71:0d:7a:02:aa:cc:4f:68:8a:6e:90:a9:c8:b9: 90:86:60:e4:94:37:8c:e6:95:d9:1f:3f:ee:59:f6: 82:7a:e2:0c:a8:26:fd:e4:25:22:86:7c:f7:2d:b6: b6:6b:b9:ce:dc:ca:1e:cd:9e:a6:a9:62:39:d1:c9: d4:42:e6:f3:a8:7f:4c:79:65:dd:a0:ba:11:5e:3d: 7c:9b:5c:5b:a8:95:c9:6d:49:59:f9:73:ae:dd:b3: 1e:a6:42:c5:9e:66:25:cb:b6:bb:22:18:89:7a:41: a1:40:78:51:5f:cc:a7:7f:a5:f5:b5:99:7c:bb:9a: 54:b5:c9:95:03:fd:0d:36:1a:7a:49:fd:4e:7a:b2: 79:58:c8:3e:7f:86:11:2a:83:6a:f5:2c:cc:69:9c: 2e:5e:c8:62:98:2c:21:ac:be:c9:57:8b:79:06:7d: 5d:89:e7:b8:32:4b:fb:e0:c6:28:57:8d:03:21:a8: 9f:fd:46:6d:88:cd:95:62:e4:52:13:49:f7:46:1c: 53:a8:90:63:ab:9a:7f:02:c7:3d:bb:af:28:ae:04: 3c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:AE:31:65:E1:5C:FD:CC:0C:8B:50:6C:18:EA:27:03:3B:D5:77:D5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ia4xZeFc_cwMi1BsGOonAzvVd9U.roa sbgp-ipAddrBlock: critical IPv4: 49.98.152.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:e9:a6:a9:e0:9f:0f:09:9b:79:ab:24:cc:2c:f3:43:cb:32: b8:6a:45:6d:eb:5f:96:2b:a9:9c:94:f3:69:cc:08:46:ae:b6: 6d:85:c5:29:e2:08:9f:c2:45:8a:28:5b:bc:8e:32:b3:6e:38: f9:10:b7:30:14:c5:d7:d7:ee:e2:6d:00:9c:d7:3e:c5:46:e2: 81:7d:48:6f:ee:73:51:44:f3:ef:84:60:af:c6:6a:cf:d3:31: a1:c7:f6:97:37:31:16:c2:dd:01:e8:0f:5e:8e:d6:a5:91:45: cf:ef:c0:88:d9:1a:43:cb:03:a8:51:b2:cb:a1:0f:9f:c3:ea: 80:28:fc:7e:ad:df:ce:22:ce:1e:8b:8d:8b:2b:84:47:99:03: 6f:07:6a:d4:c2:3c:5a:63:a5:da:53:6e:79:bf:71:5b:88:80: 7b:03:9e:78:da:97:01:0d:d5:87:db:4d:e4:9e:ac:93:f1:92: f5:bc:64:cb:c8:52:4b:a9:34:c1:e6:5f:c7:e3:e4:ec:17:30: e6:8b:46:9d:3f:7b:1b:ff:01:a8:57:29:c5:c5:bc:e2:62:e2: cc:f5:94:4c:33:78:8b:a1:8b:e8:0a:e5:f2:fc:19:82:ba:63: 77:d0:a7:f4:12:ea:42:64:66:9a:35:eb:30:9b:9f:4a:a7:42: 54:7d:e4:12 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICE9UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU2MjVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDIxQUUzMTY1RTE1Q0ZE Q0MwQzhCNTA2QzE4RUEyNzAzM0JENTc3RDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhGGuGTjRkPjXg2i3HkdqpPdsnblZ/yhhFpja3BcBZ23zByEPo EA62UfNvkn5xDXoCqsxPaIpukKnIuZCGYOSUN4zmldkfP+5Z9oJ64gyoJv3kJSKG fPcttrZruc7cyh7NnqapYjnRydRC5vOof0x5Zd2guhFePXybXFuolcltSVn5c67d sx6mQsWeZiXLtrsiGIl6QaFAeFFfzKd/pfW1mXy7mlS1yZUD/Q02GnpJ/U56snlY yD5/hhEqg2r1LMxpnC5eyGKYLCGsvslXi3kGfV2J57gyS/vgxihXjQMhqJ/9Rm2I zZVi5FITSfdGHFOokGOrmn8Cxz27ryiuBDxFAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUIa4xZeFc/cwMi1BsGOonAzvVd9UwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0lhNHhaZUZjX2N3TWkxQnNHT29uQXp2VmQ5VS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAExYpgwDQYJKoZIhvcNAQELBQADggEB AHzppqngnw8Jm3mrJMws80PLMrhqRW3rX5YrqZyU82nMCEautm2FxSniCJ/CRYoo W7yOMrNuOPkQtzAUxdfX7uJtAJzXPsVG4oF9SG/uc1FE8++EYK/Gas/TMaHH9pc3 MRbC3QHoD16O1qWRRc/vwIjZGkPLA6hRssuhD5/D6oAo/H6t384izh6LjYsrhEeZ A28HatTCPFpjpdpTbnm/cVuIgHsDnnjalwEN1YfbTeSerJPxkvW8ZMvIUkupNMHm X8fj5OwXMOaLRp0/exv/AahXKcXFvOJi4sz1lEwzeIuhi+gK5fL8GYK6Y3fQp/QS 6kJkZpo16zCbn0qnQlR95BI= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:46 2026 by rpki-client