$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/aElLKeRa-vCF0PySU1-wBywafcI.roa File: aElLKeRa-vCF0PySU1-wBywafcI.roa (raw, json) Hash identifier: zsZ9JfFQ14Dc93KMJ1E22mt66uIPMBpCXK7JuEODioc= Subject key identifier: 68:49:4B:29:E4:5A:FA:F0:85:D0:FC:92:53:5F:B0:07:2C:1A:7D:C2 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 13F3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aElLKeRa-vCF0PySU1-wBywafcI.roa Signing time: Tue 31 Mar 2026 07:56:36 +0000 ROA not before: Tue 31 Mar 2026 07:56:36 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.144.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5107 (0x13f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:56:36 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=68494B29E45AFAF085D0FC92535FB0072C1A7DC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d6:6e:ae:2d:46:a8:5c:f5:48:68:2a:39:36: ca:f1:e6:04:4a:a5:a4:22:b8:7e:c0:56:e8:1e:1a: 65:28:ab:65:fc:bb:b0:d5:00:ab:c9:74:26:98:69: a3:09:1a:d5:8e:91:d6:fa:43:32:d6:c3:fd:ee:37: 46:72:88:7e:87:13:7c:aa:2f:e2:55:01:75:c5:69: 2b:a2:16:42:eb:2e:49:8a:13:96:87:7f:e8:1f:4c: df:7b:d6:16:d5:8a:bd:c1:ed:b2:ed:7f:75:8b:01: 79:eb:0a:6b:cd:e8:41:d9:86:e6:c4:e5:ae:a0:6e: 0a:23:76:80:43:9d:14:6f:61:d3:cd:91:fa:4b:57: 52:e7:c8:31:4a:95:06:e0:b2:cd:92:59:04:5c:08: fb:a5:ee:b3:52:5f:bd:90:af:e5:b1:c6:e1:7e:46: b3:af:16:9a:69:0a:de:9e:8a:f0:e3:03:04:bf:c1: b5:58:11:68:fd:03:7c:43:c8:78:b8:92:46:92:85: 9b:c6:a9:92:03:b7:b2:3d:e6:2a:46:a1:94:61:28: eb:79:a1:d2:ca:70:f1:04:9f:a8:88:d1:06:6e:61: c1:87:93:ce:f3:9e:05:93:90:89:0b:1e:cb:b4:c9: 88:d8:39:c8:be:06:36:9c:82:6b:e6:02:06:c8:d1: d3:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:49:4B:29:E4:5A:FA:F0:85:D0:FC:92:53:5F:B0:07:2C:1A:7D:C2 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aElLKeRa-vCF0PySU1-wBywafcI.roa sbgp-ipAddrBlock: critical IPv4: 49.98.144.0/23 Signature Algorithm: sha256WithRSAEncryption b6:52:83:b5:c2:c0:5a:14:c2:d9:f7:17:98:a9:78:68:61:8c: 4d:23:df:7c:7d:ae:09:f0:d6:65:33:5f:d1:95:b1:d9:99:fd: c6:89:53:ca:af:b1:30:a7:87:20:1a:21:fb:5c:c9:4e:f4:92: 45:46:3f:f2:be:04:e3:aa:75:0d:39:02:94:c8:1f:34:cb:19: 7e:01:97:cd:87:73:5e:05:20:85:07:44:49:a7:6a:a0:30:52: 77:d2:dd:6f:04:18:12:89:6a:ce:5d:5b:a6:30:87:6e:4c:03: 7c:4a:3e:72:f2:5a:48:e8:ac:38:e4:9b:30:49:9d:f7:08:7e: 82:18:a7:05:5b:84:27:1f:95:2d:ca:f2:7b:fb:d8:70:de:d1: 3a:d7:23:34:e1:0c:db:5f:cd:10:66:62:c8:2c:3a:76:cb:62: 6e:40:dc:f2:3b:d9:15:6d:83:5a:5d:f6:29:d4:ac:74:89:70: 62:f9:74:5b:7b:ed:75:1d:27:70:89:79:22:ce:53:e5:05:6d: 44:4e:4c:a3:82:ad:62:8c:74:05:e6:f3:34:6f:ba:e8:d1:bb: 70:10:fc:d8:2d:4b:32:4c:e0:45:7b:d8:d9:36:b5:53:8c:54: 6b:c8:90:0c:9b:93:0b:5f:09:e8:1f:19:68:c8:51:0c:48:2f: 91:a6:9e:35 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICE/MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU2MzZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY4NDk0QjI5RTQ1QUZB RjA4NUQwRkM5MjUzNUZCMDA3MkMxQTdEQzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDP1m6uLUaoXPVIaCo5Nsrx5gRKpaQiuH7AVugeGmUoq2X8u7DV AKvJdCaYaaMJGtWOkdb6QzLWw/3uN0ZyiH6HE3yqL+JVAXXFaSuiFkLrLkmKE5aH f+gfTN971hbVir3B7bLtf3WLAXnrCmvN6EHZhubE5a6gbgojdoBDnRRvYdPNkfpL V1LnyDFKlQbgss2SWQRcCPul7rNSX72Qr+WxxuF+RrOvFpppCt6eivDjAwS/wbVY EWj9A3xDyHi4kkaShZvGqZIDt7I95ipGoZRhKOt5odLKcPEEn6iI0QZuYcGHk87z ngWTkIkLHsu0yYjYOci+BjacgmvmAgbI0dONAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUaElLKeRa+vCF0PySU1+wBywafcIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2FFbExLZVJhLXZDRjBQeVNVMS13Qnl3YWZjSS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAExYpAwDQYJKoZIhvcNAQELBQADggEB ALZSg7XCwFoUwtn3F5ipeGhhjE0j33x9rgnw1mUzX9GVsdmZ/caJU8qvsTCnhyAa IftcyU70kkVGP/K+BOOqdQ05ApTIHzTLGX4Bl82Hc14FIIUHREmnaqAwUnfS3W8E GBKJas5dW6Ywh25MA3xKPnLyWkjorDjkmzBJnfcIfoIYpwVbhCcflS3K8nv72HDe 0TrXIzThDNtfzRBmYsgsOnbLYm5A3PI72RVtg1pd9inUrHSJcGL5dFt77XUdJ3CJ eSLOU+UFbUROTKOCrWKMdAXm8zRvuujRu3AQ/NgtSzJM4EV72Nk2tVOMVGvIkAyb kwtfCegfGWjIUQxIL5GmnjU= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:39 2026 by rpki-client