$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/TPmKF52CsZAB2gy2P3EE11WMD1k.roa File: TPmKF52CsZAB2gy2P3EE11WMD1k.roa (raw, json) Hash identifier: kn7yOa9xx8mcHE/Ckrn13VR27Pv+VbBb9+iuOYy5LkU= Subject key identifier: 4C:F9:8A:17:9D:82:B1:90:01:DA:0C:B6:3F:71:04:D7:55:8C:0F:59 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 13CC Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/TPmKF52CsZAB2gy2P3EE11WMD1k.roa Signing time: Tue 31 Mar 2026 07:56:18 +0000 ROA not before: Tue 31 Mar 2026 07:56:18 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.116.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5068 (0x13cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:56:18 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=4CF98A179D82B19001DA0CB63F7104D7558C0F59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:1f:39:7e:89:e1:66:97:e4:0a:cf:0e:c7:46: 97:10:9b:f2:62:21:e2:8c:12:bf:ee:b0:7a:ca:3b: 26:05:c6:72:a7:8d:dd:ca:69:82:62:39:0e:9e:f0: ff:36:5e:30:58:d3:16:99:64:18:77:5f:53:ab:e7: aa:4c:43:f1:13:f9:7a:0d:47:26:36:6f:91:e4:1e: df:26:9a:f5:01:b0:fd:94:23:80:ed:16:94:ef:70: 65:ea:fa:68:fd:7a:ad:7c:9a:32:a5:99:76:8a:d2: 06:e5:e8:20:d2:02:71:dd:c1:3a:4e:5c:43:a7:06: 85:e2:61:08:12:b3:14:c2:1e:28:93:fc:49:44:3b: c3:c0:63:4b:99:a9:79:cd:a7:b6:84:f9:a1:76:21: b5:d3:a5:46:c0:f5:48:1f:15:99:b8:09:9e:7f:03: d1:32:9d:43:9b:32:60:59:4e:ec:51:2c:4a:82:40: 3d:9b:00:b4:4f:8a:5d:0f:f1:53:c6:5f:0f:bc:97: b1:6c:ec:0c:19:fd:31:ae:41:e7:ed:e7:f4:cf:ed: c0:b8:15:21:c1:98:76:e2:ae:28:35:e0:dc:df:c0: e1:d6:4f:5a:82:cf:e9:2f:c8:da:41:2e:63:03:51: 01:fc:4d:a7:cd:71:9c:d9:e0:7d:fd:da:97:07:93: be:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:F9:8A:17:9D:82:B1:90:01:DA:0C:B6:3F:71:04:D7:55:8C:0F:59 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/TPmKF52CsZAB2gy2P3EE11WMD1k.roa sbgp-ipAddrBlock: critical IPv4: 49.98.116.0/23 Signature Algorithm: sha256WithRSAEncryption 89:9e:1e:11:51:b9:71:01:4f:d2:76:38:3c:6b:4c:1b:d8:73: 45:77:29:53:76:d1:c7:da:9c:6a:14:05:52:d3:87:b3:e3:b6: 42:48:59:bb:6f:e9:bf:4e:88:dc:f5:4b:72:b5:4f:76:01:f1: ec:32:04:ca:f3:bd:95:a4:1a:e7:2a:38:a5:a8:6a:06:27:bd: 5d:b7:cd:2a:57:f2:85:b3:bc:dd:06:70:25:26:77:a3:6f:84: 4d:b6:b2:e2:81:16:19:81:7c:81:eb:7b:c0:33:35:ac:1a:77: 2f:15:ae:76:c6:68:0f:37:f5:a0:d1:95:2e:86:8d:18:68:0e: 67:57:ca:23:4f:af:16:27:7e:1b:ca:72:15:51:dc:b1:b2:58: f5:67:68:c5:7d:95:73:f0:0e:2c:5b:94:b4:51:4b:78:6d:0a: 6c:a5:37:51:e5:e5:03:37:d9:7e:7a:26:04:46:ec:59:c6:1b: 09:82:11:4f:30:d3:3a:6e:35:9e:d2:5c:89:a5:da:a7:65:27: 96:40:69:8a:2a:b4:a6:12:a2:b3:c7:cd:b7:fc:2a:bd:e7:fa: 94:bc:c8:ec:f6:ea:5d:59:bb:17:cf:7c:3b:99:aa:f5:02:cb: ba:cb:af:3b:39:e8:f4:e2:d6:df:73:22:1f:05:a5:59:43:5d: e1:2d:11:ca -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICE8wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU2MThaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDRDRjk4QTE3OUQ4MkIx OTAwMURBMENCNjNGNzEwNEQ3NTU4QzBGNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCSHzl+ieFml+QKzw7HRpcQm/JiIeKMEr/usHrKOyYFxnKnjd3K aYJiOQ6e8P82XjBY0xaZZBh3X1Or56pMQ/ET+XoNRyY2b5HkHt8mmvUBsP2UI4Dt FpTvcGXq+mj9eq18mjKlmXaK0gbl6CDSAnHdwTpOXEOnBoXiYQgSsxTCHiiT/ElE O8PAY0uZqXnNp7aE+aF2IbXTpUbA9UgfFZm4CZ5/A9EynUObMmBZTuxRLEqCQD2b ALRPil0P8VPGXw+8l7Fs7AwZ/TGuQeft5/TP7cC4FSHBmHbirig14NzfwOHWT1qC z+kvyNpBLmMDUQH8TafNcZzZ4H392pcHk74RAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUTPmKF52CsZAB2gy2P3EE11WMD1kwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1RQbUtGNTJDc1pBQjJneTJQM0VFMTFXTUQxay5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAExYnQwDQYJKoZIhvcNAQELBQADggEB AImeHhFRuXEBT9J2ODxrTBvYc0V3KVN20cfanGoUBVLTh7PjtkJIWbtv6b9OiNz1 S3K1T3YB8ewyBMrzvZWkGucqOKWoagYnvV23zSpX8oWzvN0GcCUmd6NvhE22suKB FhmBfIHre8AzNawady8VrnbGaA839aDRlS6GjRhoDmdXyiNPrxYnfhvKchVR3LGy WPVnaMV9lXPwDixblLRRS3htCmylN1Hl5QM32X56JgRG7FnGGwmCEU8w0zpuNZ7S XIml2qdlJ5ZAaYoqtKYSorPHzbf8Kr3n+pS8yOz26l1ZuxfPfDuZqvUCy7rLrzs5 6PTi1t9zIh8FpVlDXeEtEco= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:01 2026 by rpki-client