$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZQofIV0F2ivTQ3F5hwpC7sMFV40.roa File: ZQofIV0F2ivTQ3F5hwpC7sMFV40.roa (raw, json) Hash identifier: H27jev8yUUnkmANFb2LOfF86DFuRfQhirLKci0SUyXw= Subject key identifier: 65:0A:1F:21:5D:05:DA:2B:D3:43:71:79:87:0A:42:EE:C3:05:57:8D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1736 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZQofIV0F2ivTQ3F5hwpC7sMFV40.roa Signing time: Tue 31 Mar 2026 08:03:23 +0000 ROA not before: Tue 31 Mar 2026 08:03:23 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.106.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5942 (0x1736) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:03:23 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=650A1F215D05DA2BD3437179870A42EEC305578D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:14:31:98:f0:fa:8a:9a:be:04:bc:1d:63:9f: 49:db:7a:40:59:e2:cb:f2:d1:94:fb:e0:94:72:38: 72:4c:d8:d5:ce:b7:1a:e8:3d:38:eb:a7:dd:59:73: 68:55:43:e7:e5:a6:30:f6:15:7b:21:a2:9b:e6:19: c0:08:0e:a2:dd:33:35:ab:41:2b:45:ce:dd:7f:b6: 34:b2:ca:4c:55:73:da:93:59:03:d2:fd:b6:08:64: f4:f2:8e:d1:12:bf:57:e0:59:fe:d0:b5:3c:65:f8: 32:3d:51:76:64:2e:e2:68:cf:ae:d5:b3:29:c8:a2: 7c:5e:13:19:32:65:2a:1f:ee:b7:d6:4d:a9:6c:9d: 36:1a:b9:49:98:c6:f9:84:ad:c2:9a:16:51:d0:61: 10:70:f4:69:2e:73:9a:5e:f8:62:bf:f3:67:3b:06: 5d:b4:49:f0:bf:ac:43:a9:15:ef:61:a0:7b:a2:31: a5:25:e8:0c:4c:c0:0d:8a:54:0c:05:74:8e:c8:56: 40:20:f9:ea:38:e1:ec:0e:7e:12:4d:6b:f1:bc:ed: 54:af:dc:77:7c:86:5b:27:6c:48:7f:8d:64:d9:de: 82:05:11:08:bd:65:6b:9f:55:3c:e4:6a:7c:8c:c5: d3:bd:41:76:19:7a:36:16:30:b5:d8:10:a5:eb:a3: c0:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:0A:1F:21:5D:05:DA:2B:D3:43:71:79:87:0A:42:EE:C3:05:57:8D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZQofIV0F2ivTQ3F5hwpC7sMFV40.roa sbgp-ipAddrBlock: critical IPv4: 49.106.174.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:75:d5:17:ea:4c:16:47:d4:21:09:2d:de:3c:57:68:4e:08: 86:98:75:2d:2b:a1:69:b8:a5:a8:50:2d:f1:a4:92:ac:db:9b: 1a:b6:d6:9b:ee:f0:91:18:81:34:2a:e9:62:53:b8:11:d2:76: 75:11:a3:16:df:99:d4:18:f5:02:f9:31:da:3c:1c:90:0d:cb: 2f:bd:94:78:83:0e:c1:c1:1c:8f:a4:bd:18:1d:44:82:07:78: 5a:c7:42:0f:9e:37:8c:16:85:88:15:50:27:65:78:ca:bd:71: c7:41:76:dc:2c:c5:ec:57:fa:fa:ff:87:0b:d7:50:ed:0e:f7: d7:71:b9:e6:ff:8b:d4:d6:8f:e3:b7:81:e9:2b:02:35:0a:3b: fd:67:70:c9:be:4c:e7:17:d8:64:c8:71:8f:ba:4f:e0:ea:c7: f7:3c:dd:12:ee:51:89:3e:0d:7f:5d:f1:95:ef:83:20:4e:eb: 49:89:f3:4c:ce:f7:64:4c:b7:9f:31:75:1c:17:ef:bc:e6:16: 98:26:d2:4b:25:36:62:53:b9:84:b6:36:20:ed:27:79:bb:42: 18:d2:f4:3f:f0:4e:41:4e:b1:a5:ab:fd:c6:29:53:1e:6a:75: 50:74:18:65:b4:ce:b2:f5:73:18:2b:3f:59:79:0b:cb:cd:2e: c3:11:02:12 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFzYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAzMjNaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY1MEExRjIxNUQwNURB MkJEMzQzNzE3OTg3MEE0MkVFQzMwNTU3OEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCXFDGY8PqKmr4EvB1jn0nbekBZ4svy0ZT74JRyOHJM2NXOtxro PTjrp91Zc2hVQ+flpjD2FXshopvmGcAIDqLdMzWrQStFzt1/tjSyykxVc9qTWQPS /bYIZPTyjtESv1fgWf7QtTxl+DI9UXZkLuJoz67VsynIonxeExkyZSof7rfWTals nTYauUmYxvmErcKaFlHQYRBw9Gkuc5pe+GK/82c7Bl20SfC/rEOpFe9hoHuiMaUl 6AxMwA2KVAwFdI7IVkAg+eo44ewOfhJNa/G87VSv3Hd8hlsnbEh/jWTZ3oIFEQi9 ZWufVTzkanyMxdO9QXYZejYWMLXYEKXro8BpAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUZQofIV0F2ivTQ3F5hwpC7sMFV40wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L1pRb2ZJVjBGMml2VFEzRjVod3BDN3NNRlY0MC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAxaq4wDQYJKoZIhvcNAQELBQADggEB AJp11RfqTBZH1CEJLd48V2hOCIaYdS0roWm4pahQLfGkkqzbmxq21pvu8JEYgTQq 6WJTuBHSdnURoxbfmdQY9QL5Mdo8HJANyy+9lHiDDsHBHI+kvRgdRIIHeFrHQg+e N4wWhYgVUCdleMq9ccdBdtwsxexX+vr/hwvXUO0O99dxueb/i9TWj+O3gekrAjUK O/1ncMm+TOcX2GTIcY+6T+Dqx/c83RLuUYk+DX9d8ZXvgyBO60mJ80zO92RMt58x dRwX77zmFpgm0kslNmJTuYS2NiDtJ3m7QhjS9D/wTkFOsaWr/cYpUx5qdVB0GGW0 zrL1cxgrP1l5C8vNLsMRAhI= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:02 2026 by rpki-client