$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/S3sBZuZkLMFidzCqUXKbmIxe0zg.roa File: S3sBZuZkLMFidzCqUXKbmIxe0zg.roa (raw, json) Hash identifier: zvYxYSuy8p2t4xOX2rpXiqISNBgJG+QgE+5QPsL4IVE= Subject key identifier: 4B:7B:01:66:E6:64:2C:C1:62:77:30:AA:51:72:9B:98:8C:5E:D3:38 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 15C6 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/S3sBZuZkLMFidzCqUXKbmIxe0zg.roa Signing time: Tue 31 Mar 2026 08:00:24 +0000 ROA not before: Tue 31 Mar 2026 08:00:24 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5574 (0x15c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:00:24 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=4B7B0166E6642CC1627730AA51729B988C5ED338 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ec:12:d2:79:35:c3:ed:4a:78:74:06:2c:6a: 46:f8:bd:bb:01:40:58:18:24:92:a7:81:c4:5f:43: e4:a5:c1:ec:67:d3:39:1b:09:ea:26:41:e1:c3:b2: 23:23:77:89:7e:92:cc:07:13:d4:c9:4c:6e:fe:bf: c8:e9:66:f1:5d:48:f6:d1:c8:b3:47:ba:24:2b:d6: 9e:27:9c:75:d7:a1:ab:0d:88:8a:d5:15:fe:b1:eb: 58:2a:ec:50:06:bd:74:8f:6d:e6:52:a7:86:c0:84: 36:76:4c:0a:f1:cb:02:f6:30:5d:8e:50:2f:fc:5e: 9e:5e:94:86:68:d2:fa:5a:38:c5:7a:c8:1d:32:de: 04:b0:db:59:23:bb:2b:9d:45:12:7d:ab:2f:50:90: f9:86:5e:1d:bf:5a:c3:21:b9:8f:b8:d4:63:5e:07: f7:22:4e:4c:ad:e3:f3:c9:f3:d3:9b:6f:3b:13:a3: ae:3a:e0:5f:e9:27:38:18:72:48:f4:bc:b0:8a:14: a2:58:25:12:0e:44:60:a7:58:35:72:bd:7e:d3:45: ca:50:54:f0:13:63:eb:f1:c2:47:71:a5:e0:86:0e: ab:68:3f:65:29:eb:01:e2:2d:7d:bd:c7:f5:2e:89: 06:c4:d4:cd:8c:3f:c6:2b:a3:0a:78:a1:db:75:5e: ff:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:7B:01:66:E6:64:2C:C1:62:77:30:AA:51:72:9B:98:8C:5E:D3:38 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/S3sBZuZkLMFidzCqUXKbmIxe0zg.roa sbgp-ipAddrBlock: critical IPv4: 49.96.49.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:d1:b6:d0:65:0e:c6:19:d1:13:8a:b9:85:70:52:ce:c8:79: 3a:bd:a8:21:2f:cd:76:73:21:03:28:8d:5a:97:62:a5:b7:62: d9:ce:e4:1f:e7:7a:f2:80:07:1d:59:0c:e2:23:81:8a:4c:b3: 15:ba:ff:ce:83:c3:36:f0:0d:9c:92:f4:5d:86:0d:00:9b:47: 4b:21:b1:5f:f7:7d:7e:4e:17:63:23:7f:d7:a8:05:69:af:77: 39:7b:59:54:6f:7e:77:ce:03:e3:ab:13:63:c2:c1:50:f8:ff: e7:19:a7:35:12:2c:94:24:5b:54:ac:80:21:ac:f9:53:ca:51: c0:6c:72:44:1a:62:f9:58:5b:1f:0a:86:90:c2:e2:d2:21:f7: 7d:36:81:34:02:dc:0b:69:f4:7d:06:31:22:45:43:af:b1:7a: ff:81:9e:54:1c:90:8b:79:a3:06:8f:ba:8c:8a:b0:17:bb:00: 53:a8:3f:40:0e:fa:bf:c9:9f:db:2c:c4:e0:e3:2a:0a:72:98: b3:8c:52:97:4d:a5:71:72:bd:ab:59:2e:f3:cb:d0:88:ac:3b: fc:f6:95:06:b9:ac:95:d2:3d:c7:94:de:69:88:06:de:e2:83: 75:0e:7b:7e:ad:53:67:79:98:2c:44:09:b9:db:1e:94:e4:7b: c8:7a:de:fc -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFcYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAwMjRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDRCN0IwMTY2RTY2NDJD QzE2Mjc3MzBBQTUxNzI5Qjk4OEM1RUQzMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDR7BLSeTXD7Up4dAYsakb4vbsBQFgYJJKngcRfQ+Slwexn0zkb CeomQeHDsiMjd4l+kswHE9TJTG7+v8jpZvFdSPbRyLNHuiQr1p4nnHXXoasNiIrV Ff6x61gq7FAGvXSPbeZSp4bAhDZ2TArxywL2MF2OUC/8Xp5elIZo0vpaOMV6yB0y 3gSw21kjuyudRRJ9qy9QkPmGXh2/WsMhuY+41GNeB/ciTkyt4/PJ89ObbzsTo646 4F/pJzgYckj0vLCKFKJYJRIORGCnWDVyvX7TRcpQVPATY+vxwkdxpeCGDqtoP2Up 6wHiLX29x/UuiQbE1M2MP8Yrowp4odt1Xv+rAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUS3sBZuZkLMFidzCqUXKbmIxe0zgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1Mzc0JadVprTE1GaWR6Q3FVWEtibUl4ZTB6Zy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAxYDEwDQYJKoZIhvcNAQELBQADggEB AJvRttBlDsYZ0ROKuYVwUs7IeTq9qCEvzXZzIQMojVqXYqW3YtnO5B/nevKABx1Z DOIjgYpMsxW6/86DwzbwDZyS9F2GDQCbR0shsV/3fX5OF2Mjf9eoBWmvdzl7WVRv fnfOA+OrE2PCwVD4/+cZpzUSLJQkW1SsgCGs+VPKUcBsckQaYvlYWx8KhpDC4tIh 9302gTQC3Atp9H0GMSJFQ6+xev+BnlQckIt5owaPuoyKsBe7AFOoP0AO+r/Jn9ss xODjKgpymLOMUpdNpXFyvatZLvPL0IisO/z2lQa5rJXSPceU3mmIBt7ig3UOe36t U2d5mCxECbnbHpTke8h63vw= -----END CERTIFICATE-----Generated at Tue Apr 7 22:25:15 2026 by rpki-client