$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Q8BWJCTpvddOp0M35YEHVU2AGUI.roa File: Q8BWJCTpvddOp0M35YEHVU2AGUI.roa (raw, json) Hash identifier: /y7hJb45yj14c8EswxcyovE/YFFIMx6vVAaBP1K2t74= Subject key identifier: 43:C0:56:24:24:E9:BD:D7:4E:A7:43:37:E5:81:07:55:4D:80:19:42 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 15AE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Q8BWJCTpvddOp0M35YEHVU2AGUI.roa Signing time: Tue 31 Mar 2026 08:00:08 +0000 ROA not before: Tue 31 Mar 2026 08:00:08 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.106.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5550 (0x15ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:00:08 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=43C0562424E9BDD74EA74337E58107554D801942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c3:64:7a:c8:38:28:eb:e2:73:90:a1:c9:79: 5c:a0:02:7a:bd:0a:f9:5d:4b:9c:9d:ab:b5:ad:9f: a2:72:f4:08:0e:a1:89:a2:61:e0:0e:44:5d:1f:dd: 8c:e0:75:7d:bf:1b:7f:1a:27:b2:d2:5d:e9:86:27: 90:58:1b:2b:27:69:f4:ec:dd:b7:e1:03:88:8d:80: c9:ad:61:d8:60:87:dc:33:15:4b:d2:db:ab:10:dc: b1:5a:14:20:ba:7c:4a:67:06:9e:0c:e7:44:a5:79: 4a:c6:4b:ca:3e:43:0d:64:0c:26:c9:5a:4a:1d:a4: 8c:c8:90:4b:1e:34:ff:0f:d5:50:27:c7:c8:bf:3d: bb:a8:a0:89:05:e3:38:25:2b:75:d6:b9:88:0e:81: fe:49:67:93:81:af:40:9e:7e:84:c2:9b:b1:0c:04: c8:7d:06:c4:45:98:b1:f2:97:86:02:80:91:79:da: c6:cd:6f:e8:34:5a:00:f2:32:86:26:24:69:c3:4a: ba:b0:4f:9d:7f:5d:2f:5d:bd:c5:82:ed:99:7e:b0: 62:87:99:ae:74:f4:fc:56:6e:75:67:93:bf:4b:b1: 7e:20:4d:be:99:25:2b:28:b3:ad:0d:bf:de:63:82: d6:6c:36:72:25:67:2d:ef:ca:04:f3:4a:78:f8:0f: 60:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:C0:56:24:24:E9:BD:D7:4E:A7:43:37:E5:81:07:55:4D:80:19:42 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Q8BWJCTpvddOp0M35YEHVU2AGUI.roa sbgp-ipAddrBlock: critical IPv4: 49.106.100.0/24 Signature Algorithm: sha256WithRSAEncryption cf:79:56:7a:6d:84:a1:8b:13:c8:2e:e0:b7:b2:e6:5c:87:a3: da:37:1a:a5:d7:cf:eb:1e:68:49:ab:2f:e3:16:5d:69:ca:47: 42:de:24:83:94:43:57:8d:7c:ce:0c:58:4b:af:4e:c6:37:40: 69:af:cd:7f:9e:f2:0a:d7:aa:4f:a4:de:b1:62:43:9b:59:58: 9d:49:c7:bc:e6:94:a7:20:2c:be:99:bc:75:6f:92:3c:ff:1b: 0e:21:97:40:a4:f7:30:14:59:6c:b2:0b:9e:7d:7a:5e:9b:1a: 98:51:97:43:97:59:11:cd:8c:2d:3e:a2:3f:e7:1f:5b:c0:b2: 9c:30:9b:56:f7:49:79:1b:3d:31:a9:27:32:10:de:ab:95:7c: 4c:2b:10:b0:63:c8:b2:88:cd:95:ce:25:be:03:90:fd:40:db: 59:9e:12:11:71:a3:cd:04:a2:35:04:4d:7b:6c:cf:f5:c9:ef: 7c:08:00:9d:ca:b9:5c:d8:58:90:e0:a1:ed:68:2c:18:bf:46: 50:68:4c:92:d5:b6:6b:d0:62:4a:22:bd:51:e3:23:9b:01:cf: c5:e3:f2:01:fe:c7:e2:dd:37:ca:c3:73:9f:29:92:fd:19:a9: b3:95:cf:92:ce:ed:b6:5f:67:50:10:bd:2e:0b:a8:24:1f:77: 4e:e6:62:b1 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFa4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAwMDhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDQzQzA1NjI0MjRFOUJE RDc0RUE3NDMzN0U1ODEwNzU1NEQ4MDE5NDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxw2R6yDgo6+JzkKHJeVygAnq9CvldS5ydq7Wtn6Jy9AgOoYmi YeAORF0f3YzgdX2/G38aJ7LSXemGJ5BYGysnafTs3bfhA4iNgMmtYdhgh9wzFUvS 26sQ3LFaFCC6fEpnBp4M50SleUrGS8o+Qw1kDCbJWkodpIzIkEseNP8P1VAnx8i/ PbuooIkF4zglK3XWuYgOgf5JZ5OBr0CefoTCm7EMBMh9BsRFmLHyl4YCgJF52sbN b+g0WgDyMoYmJGnDSrqwT51/XS9dvcWC7Zl+sGKHma509PxWbnVnk79LsX4gTb6Z JSsos60Nv95jgtZsNnIlZy3vygTzSnj4D2DxAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUQ8BWJCTpvddOp0M35YEHVU2AGUIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1E4QldKQ1RwdmRkT3AwTTM1WUVIVlUyQUdVSS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAxamQwDQYJKoZIhvcNAQELBQADggEB AM95VnpthKGLE8gu4Ley5lyHo9o3GqXXz+seaEmrL+MWXWnKR0LeJIOUQ1eNfM4M WEuvTsY3QGmvzX+e8grXqk+k3rFiQ5tZWJ1Jx7zmlKcgLL6ZvHVvkjz/Gw4hl0Ck 9zAUWWyyC559el6bGphRl0OXWRHNjC0+oj/nH1vAspwwm1b3SXkbPTGpJzIQ3quV fEwrELBjyLKIzZXOJb4DkP1A21meEhFxo80EojUETXtsz/XJ73wIAJ3KuVzYWJDg oe1oLBi/RlBoTJLVtmvQYkoivVHjI5sBz8Xj8gH+x+LdN8rDc58pkv0ZqbOVz5LO 7bZfZ1AQvS4LqCQfd07mYrE= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:33 2026 by rpki-client