$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/J1NUGFDGswd2OkhGqLDpeTG25ko.roa File: J1NUGFDGswd2OkhGqLDpeTG25ko.roa (raw, json) Hash identifier: HC0vwgIx+RwkkMqXhWtjquxi+K8spQK+yT8SOEkOOuE= Subject key identifier: 27:53:54:18:50:C6:B3:07:76:3A:48:46:A8:B0:E9:79:31:B6:E6:4A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1374 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/J1NUGFDGswd2OkhGqLDpeTG25ko.roa Signing time: Tue 31 Mar 2026 07:55:36 +0000 ROA not before: Tue 31 Mar 2026 07:55:36 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.97.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4980 (0x1374) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:55:36 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=2753541850C6B307763A4846A8B0E97931B6E64A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:46:12:d6:01:2f:45:0a:97:30:01:45:7c:97: 28:e6:f0:5e:bb:16:5e:43:19:79:1f:ce:43:bf:54: 47:a5:7c:16:e1:7c:09:65:d7:bc:b8:4d:65:ba:b1: 71:3d:1d:7e:3a:e5:26:97:16:f4:53:ab:21:2d:b7: ae:c6:f6:85:4e:2f:4e:e5:10:cf:25:4d:30:7a:28: de:a4:c4:b7:e8:29:a0:2c:9e:a8:0d:ea:70:f4:21: 4a:f2:d0:23:98:85:39:78:df:3a:aa:3d:d6:a6:e2: e3:99:b2:e8:bd:25:fe:8c:67:ea:e5:e7:5d:94:b3: 4f:6a:f3:f5:82:35:9b:75:da:b3:f4:f3:d1:56:64: bd:9d:3b:c0:f9:5b:0c:e3:54:e3:27:a4:50:ac:8e: 17:02:2f:35:40:86:4f:0a:54:13:e4:00:b5:4a:7a: 95:27:b7:d5:fd:7d:61:34:18:8c:b7:25:d2:28:fb: 89:60:b1:eb:ef:be:7b:2e:22:9b:d1:7e:e9:95:93: 44:8d:0f:2d:36:13:b8:7c:b9:d1:9d:1a:6f:32:86: 54:f2:e8:f1:31:7c:37:55:47:d1:e6:f8:80:c7:77: d0:0e:04:28:af:69:40:20:3d:e6:2b:57:e4:3c:21: dd:5e:f1:69:01:12:e8:e4:7c:29:02:8c:7f:ac:82: ff:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:53:54:18:50:C6:B3:07:76:3A:48:46:A8:B0:E9:79:31:B6:E6:4A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/J1NUGFDGswd2OkhGqLDpeTG25ko.roa sbgp-ipAddrBlock: critical IPv4: 49.97.120.0/22 Signature Algorithm: sha256WithRSAEncryption 84:0e:ce:be:d1:27:f0:92:df:b6:db:65:3f:79:eb:1f:a8:bc: 21:27:91:43:89:ac:df:11:b5:a5:b7:d5:4d:2e:b4:b8:a4:81: 6f:37:fc:1c:f5:fb:18:78:c7:3f:24:be:20:3a:28:5d:30:e9: c1:68:81:e6:d5:09:e0:54:b2:16:1e:5c:77:c8:8b:4f:e2:24: 5d:3e:c1:8a:36:30:f0:80:cb:03:d4:48:93:d8:f1:36:f7:5d: e6:3a:33:2e:29:a9:0c:d4:ba:ad:63:46:64:13:17:8e:8c:fa: 44:be:7c:52:0e:9b:c2:71:57:75:c4:56:22:2c:4a:7f:dd:ff: 5f:0c:ce:94:97:4a:0a:3b:0a:dc:56:11:7b:fa:b9:e4:5b:78: 2d:90:a6:0b:b5:d1:a9:b0:86:fb:e5:02:7b:9e:fa:82:32:4b: 28:6d:e1:bb:17:15:14:1d:4e:00:b8:8d:11:a8:89:a4:ab:11: ca:11:9e:4f:ab:dc:ff:a3:12:80:b5:fa:42:76:4a:83:b5:e1: cd:fd:ef:0e:ac:4e:6b:6a:4b:79:b3:af:c6:f2:39:e7:35:85: 96:07:68:8e:90:e7:63:b5:73:ec:a0:d0:87:9c:16:fd:8e:7a: d6:f5:6c:d9:38:d6:97:34:bf:f0:af:6f:24:25:0e:09:27:8e: 72:60:14:45 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICE3QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU1MzZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDI3NTM1NDE4NTBDNkIz MDc3NjNBNDg0NkE4QjBFOTc5MzFCNkU2NEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeRhLWAS9FCpcwAUV8lyjm8F67Fl5DGXkfzkO/VEelfBbhfAll 17y4TWW6sXE9HX465SaXFvRTqyEtt67G9oVOL07lEM8lTTB6KN6kxLfoKaAsnqgN 6nD0IUry0COYhTl43zqqPdam4uOZsui9Jf6MZ+rl512Us09q8/WCNZt12rP089FW ZL2dO8D5WwzjVOMnpFCsjhcCLzVAhk8KVBPkALVKepUnt9X9fWE0GIy3JdIo+4lg sevvvnsuIpvRfumVk0SNDy02E7h8udGdGm8yhlTy6PExfDdVR9Hm+IDHd9AOBCiv aUAgPeYrV+Q8Id1e8WkBEujkfCkCjH+sgv+VAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUJ1NUGFDGswd2OkhGqLDpeTG25kowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0oxTlVHRkRHc3dkMk9raEdxTERwZVRHMjVrby5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIxYXgwDQYJKoZIhvcNAQELBQADggEB AIQOzr7RJ/CS37bbZT956x+ovCEnkUOJrN8RtaW31U0utLikgW83/Bz1+xh4xz8k viA6KF0w6cFogebVCeBUshYeXHfIi0/iJF0+wYo2MPCAywPUSJPY8Tb3XeY6My4p qQzUuq1jRmQTF46M+kS+fFIOm8JxV3XEViIsSn/d/18MzpSXSgo7CtxWEXv6ueRb eC2Qpgu10amwhvvlAnue+oIySyht4bsXFRQdTgC4jRGoiaSrEcoRnk+r3P+jEoC1 +kJ2SoO14c397w6sTmtqS3mzr8byOec1hZYHaI6Q52O1c+yg0IecFv2Oetb1bNk4 1pc0v/CvbyQlDgknjnJgFEU= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:40 2026 by rpki-client