$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/X9hwYxufIFHrfus9NwkThwcwTR0.roa File: X9hwYxufIFHrfus9NwkThwcwTR0.roa (raw, json) Hash identifier: 97jLWIcVxp2ZdaaeRiYX4uqAombYHD2iSa4zoeJp1jA= Subject key identifier: 5F:D8:70:63:1B:9F:20:51:EB:7E:EB:3D:37:09:13:87:07:30:4D:1D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1843 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/X9hwYxufIFHrfus9NwkThwcwTR0.roa Signing time: Tue 31 Mar 2026 08:05:37 +0000 ROA not before: Tue 31 Mar 2026 08:05:37 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6211 (0x1843) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:05:37 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=5FD870631B9F2051EB7EEB3D3709138707304D1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:d5:c8:09:1b:fc:c4:09:f5:d7:ce:57:38:d2: 76:43:50:77:12:7d:d5:96:f0:a6:4b:c1:25:72:ec: e7:f5:79:4e:33:b2:dd:8b:2e:31:16:c5:a1:93:78: be:03:f6:cd:61:a5:34:ec:36:74:0d:dc:d6:96:b0: ea:03:69:8f:65:c9:df:b4:71:13:a4:7a:6b:5c:27: 58:a6:dd:bd:68:6a:1a:16:ba:cb:b6:f5:02:bd:7b: ca:56:dd:1e:1b:19:c1:4e:c9:ea:85:d9:87:12:75: b6:a0:32:f5:09:82:0d:86:6c:7c:5f:99:e6:68:bd: f2:a8:e5:3f:7b:40:10:0f:68:1d:72:96:fc:6a:db: 6e:37:ce:63:69:f7:18:63:ac:21:60:66:8a:e5:9d: 1e:d6:87:7f:e4:c2:3d:80:b3:ca:72:ff:6b:75:3f: 6f:af:0d:14:51:84:46:62:a2:7b:b5:78:45:8f:f8: 40:96:2f:3f:5a:63:41:82:77:8a:44:84:5d:aa:87: 12:36:ed:c5:02:59:f6:0b:c5:d8:dc:50:b1:a4:db: 45:df:20:78:ad:60:68:d8:fe:db:bc:3f:0f:c5:30: cb:f0:6f:d7:b1:0b:39:d0:85:f4:15:26:3a:59:d4: 6c:9a:46:b5:52:bf:78:b5:c0:6a:ba:8d:6e:82:5e: f6:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:D8:70:63:1B:9F:20:51:EB:7E:EB:3D:37:09:13:87:07:30:4D:1D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/X9hwYxufIFHrfus9NwkThwcwTR0.roa sbgp-ipAddrBlock: critical IPv4: 49.96.147.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:28:c4:48:83:09:13:f6:95:9f:be:90:91:2b:61:fb:e5:e8: 54:e6:b2:f9:d2:1a:2a:bd:b8:17:a6:dc:2e:2e:02:9c:b6:b5: c9:ba:c2:54:f7:0f:ac:03:41:52:3c:e8:18:7e:83:b9:3e:99: 09:ca:8b:10:96:f1:5c:e4:1e:45:e2:3f:09:f3:e6:2a:78:fa: 77:03:f7:cb:a9:63:9d:50:87:4c:10:27:e9:6f:1e:9a:6f:3e: 37:81:14:90:a2:08:48:d3:88:03:db:31:65:e9:5e:06:78:87: f1:9d:f5:a0:7d:4f:6d:ae:7c:22:28:85:08:56:f4:36:f0:a3: 17:f4:2d:6e:86:7d:65:d4:fc:9f:d4:dd:89:bb:bd:36:30:de: 2c:c4:25:c8:64:bd:ca:77:57:fb:a3:e1:9d:6b:df:a4:b1:88: 10:e6:2d:9b:42:a1:60:01:24:9a:0f:bd:36:3f:a9:49:d4:08: c0:c6:6f:81:1b:65:59:2b:d4:00:20:f7:ce:df:b0:9d:37:e6: e6:98:ae:4a:20:58:48:23:d0:a9:45:af:71:ce:7b:8b:bb:43: 38:7d:32:09:e5:4f:50:c7:81:b2:74:03:ff:1b:aa:a5:62:e4: 9e:0d:5e:8b:92:24:12:66:a0:c3:cd:72:c9:c6:0a:a1:af:6c: 43:16:0f:4d -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICGEMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODA1MzdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDVGRDg3MDYzMUI5RjIw NTFFQjdFRUIzRDM3MDkxMzg3MDczMDREMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDg1cgJG/zECfXXzlc40nZDUHcSfdWW8KZLwSVy7Of1eU4zst2L LjEWxaGTeL4D9s1hpTTsNnQN3NaWsOoDaY9lyd+0cROkemtcJ1im3b1oahoWusu2 9QK9e8pW3R4bGcFOyeqF2YcSdbagMvUJgg2GbHxfmeZovfKo5T97QBAPaB1ylvxq 2243zmNp9xhjrCFgZorlnR7Wh3/kwj2As8py/2t1P2+vDRRRhEZionu1eEWP+ECW Lz9aY0GCd4pEhF2qhxI27cUCWfYLxdjcULGk20XfIHitYGjY/tu8Pw/FMMvwb9ex CznQhfQVJjpZ1GyaRrVSv3i1wGq6jW6CXvYHAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUX9hwYxufIFHrfus9NwkThwcwTR0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1g5aHdZeHVmSUZIcmZ1czlOd2tUaHdjd1RSMC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAxYJMwDQYJKoZIhvcNAQELBQADggEB AE8oxEiDCRP2lZ++kJErYfvl6FTmsvnSGiq9uBem3C4uApy2tcm6wlT3D6wDQVI8 6Bh+g7k+mQnKixCW8VzkHkXiPwnz5ip4+ncD98upY51Qh0wQJ+lvHppvPjeBFJCi CEjTiAPbMWXpXgZ4h/Gd9aB9T22ufCIohQhW9Dbwoxf0LW6GfWXU/J/U3Ym7vTYw 3izEJchkvcp3V/uj4Z1r36SxiBDmLZtCoWABJJoPvTY/qUnUCMDGb4EbZVkr1AAg 987fsJ035uaYrkogWEgj0KlFr3HOe4u7Qzh9MgnlT1DHgbJ0A/8bqqVi5J4NXouS JBJmoMPNcsnGCqGvbEMWD00= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:33 2026 by rpki-client