$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KwNyUmIRfSPKJmMe4vaRjIlLEi0.roa File: KwNyUmIRfSPKJmMe4vaRjIlLEi0.roa (raw, json) Hash identifier: ISoHkEziCsdeUNT1ZTdeSVHm9e4BW2pVEOzfcVGlcoE= Subject key identifier: 2B:03:72:52:62:11:7D:23:CA:26:63:1E:E2:F6:91:8C:89:4B:12:2D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 15F5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KwNyUmIRfSPKJmMe4vaRjIlLEi0.roa Signing time: Tue 31 Mar 2026 08:00:46 +0000 ROA not before: Tue 31 Mar 2026 08:00:46 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5621 (0x15f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:00:46 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=2B03725262117D23CA26631EE2F6918C894B122D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:13:e3:23:bc:12:73:4e:ae:7a:e9:87:9d:fd: b4:5c:d1:06:06:d1:59:94:34:42:0b:e8:4e:3c:ff: db:82:d8:31:6c:c2:39:93:59:f4:6c:0c:05:c9:5f: 96:01:88:c6:ee:02:5c:9f:4c:25:d8:b9:2c:12:40: 9f:d8:d7:a6:fe:89:ff:79:5d:eb:38:71:bc:5d:da: 65:6b:b0:12:46:6b:19:38:67:ed:fc:36:0d:c4:84: 6e:19:e1:c8:ab:f7:44:30:1a:e5:dc:4f:7a:53:63: 0e:54:aa:64:dd:7c:88:18:44:4f:70:9e:de:b5:da: 41:8f:38:78:b4:4d:e3:7e:c7:6c:3a:ea:bf:15:cf: 95:cd:57:2d:51:f8:86:aa:1b:3b:ee:dd:9e:9a:3d: 38:f6:31:3f:ae:e8:57:57:7b:b7:a1:e1:ed:7c:78: 41:11:61:7d:fb:da:9e:3b:a9:12:5a:35:4a:0b:d6: f7:00:f9:70:54:a6:44:d4:87:83:1f:30:c4:7d:9a: 8d:8a:5d:0f:64:b8:e6:db:54:f1:db:7a:00:c9:1b: df:3e:81:43:27:8a:09:f3:42:13:6c:c4:ae:fb:9f: 61:85:89:3a:2a:aa:6d:cf:96:dd:7e:39:1a:80:5a: 2f:58:86:0d:3a:49:7c:55:dd:b8:16:0c:4d:12:0d: e7:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:03:72:52:62:11:7D:23:CA:26:63:1E:E2:F6:91:8C:89:4B:12:2D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KwNyUmIRfSPKJmMe4vaRjIlLEi0.roa sbgp-ipAddrBlock: critical IPv4: 49.96.224.0/23 Signature Algorithm: sha256WithRSAEncryption 61:ba:64:c9:a4:2c:c0:55:2c:49:9f:ac:ca:75:b3:25:2c:48: c6:4d:87:15:72:e8:3e:f8:1b:66:76:cc:69:a4:bd:d9:2c:45: e6:71:2f:7d:f5:dd:53:d9:fd:38:ae:b5:40:fe:d5:40:a1:16: b9:86:a7:3e:03:34:cd:85:9d:e9:01:91:e1:3a:0d:f8:98:b8: 8d:28:bf:d6:59:3c:5c:dd:b5:e1:1c:02:8e:f9:a6:0f:61:f2: b1:ef:25:0c:35:f6:c2:ea:87:7f:10:f7:08:a0:30:09:c1:17: ff:12:9f:d3:cb:d0:c9:5d:1e:19:9f:28:51:c2:4c:68:0f:f4: 03:66:12:8b:47:2f:65:22:36:73:dc:5a:e1:0f:1f:55:d9:5a: d7:2b:37:cd:3f:ce:db:d3:b0:3f:61:19:b3:a8:3c:a3:c3:67: 5e:b4:5a:42:0e:51:6e:37:0c:c5:c4:aa:3f:90:a8:8a:82:c0: 91:07:c7:71:5c:76:9f:e7:17:4e:7a:5f:6a:3b:e1:a2:62:a4: 97:0c:fb:a1:a9:81:e3:11:4e:e7:42:fb:6b:67:7a:20:ed:5f: ac:19:dc:9f:b3:0c:ca:fb:13:9a:33:80:78:ab:06:00:15:10: c3:16:f3:48:a7:9c:c5:ef:ed:48:17:cf:ef:25:6c:c6:25:fb: 32:f9:f6:13 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFfUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAwNDZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDJCMDM3MjUyNjIxMTdE MjNDQTI2NjMxRUUyRjY5MThDODk0QjEyMkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCE+MjvBJzTq566Yed/bRc0QYG0VmUNEIL6E48/9uC2DFswjmT WfRsDAXJX5YBiMbuAlyfTCXYuSwSQJ/Y16b+if95Xes4cbxd2mVrsBJGaxk4Z+38 Ng3EhG4Z4cir90QwGuXcT3pTYw5UqmTdfIgYRE9wnt612kGPOHi0TeN+x2w66r8V z5XNVy1R+IaqGzvu3Z6aPTj2MT+u6FdXe7eh4e18eEERYX372p47qRJaNUoL1vcA +XBUpkTUh4MfMMR9mo2KXQ9kuObbVPHbegDJG98+gUMnignzQhNsxK77n2GFiToq qm3Plt1+ORqAWi9Yhg06SXxV3bgWDE0SDefZAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUKwNyUmIRfSPKJmMe4vaRjIlLEi0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0t3TnlVbUlSZlNQS0ptTWU0dmFSaklsTEVpMC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAExYOAwDQYJKoZIhvcNAQELBQADggEB AGG6ZMmkLMBVLEmfrMp1syUsSMZNhxVy6D74G2Z2zGmkvdksReZxL3313VPZ/Tiu tUD+1UChFrmGpz4DNM2FnekBkeE6DfiYuI0ov9ZZPFzdteEcAo75pg9h8rHvJQw1 9sLqh38Q9wigMAnBF/8Sn9PL0MldHhmfKFHCTGgP9ANmEotHL2UiNnPcWuEPH1XZ WtcrN80/ztvTsD9hGbOoPKPDZ160WkIOUW43DMXEqj+QqIqCwJEHx3Fcdp/nF056 X2o74aJipJcM+6GpgeMRTudC+2tneiDtX6wZ3J+zDMr7E5ozgHirBgAVEMMW80in nMXv7UgXz+8lbMYl+zL59hM= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:00 2026 by rpki-client