$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/aO0AXPkJwZQuDQ4ex1xzthaF8Iw.roa File: aO0AXPkJwZQuDQ4ex1xzthaF8Iw.roa (raw, json) Hash identifier: Y0bWNoi7XcUn+IZ/juWbjJzMbkFTJdoCtGTDMwEHxgc= Subject key identifier: 68:ED:00:5C:F9:09:C1:94:2E:0D:0E:1E:C7:5C:73:B6:16:85:F0:8C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 147E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aO0AXPkJwZQuDQ4ex1xzthaF8Iw.roa Signing time: Tue 31 Mar 2026 07:57:39 +0000 ROA not before: Tue 31 Mar 2026 07:57:39 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.105.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5246 (0x147e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:57:39 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=68ED005CF909C1942E0D0E1EC75C73B61685F08C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:9a:ec:fa:6f:46:b1:66:18:d1:04:4f:3f:0b: 61:82:d9:29:39:14:ba:83:cb:01:3a:e1:0e:26:21: c2:c0:f7:73:60:8d:d3:7b:ab:9a:2f:c6:d9:86:34: 48:68:b5:c2:3b:dc:b4:e2:73:ee:ff:d1:72:8f:87: f8:d1:a8:ba:5c:52:34:5d:1d:ad:27:fe:3e:60:0f: 50:ea:17:de:80:86:d2:0e:5e:9e:8b:cf:ef:5a:4a: b6:72:4e:da:cf:07:77:1e:97:eb:37:20:f9:69:23: 57:69:35:5f:cc:c8:a8:e7:ea:58:0c:1d:ad:5d:03: e2:40:69:5a:2c:48:36:16:46:de:cb:57:bf:bb:df: f6:2c:8e:01:11:93:35:da:d6:b9:38:be:72:ab:1d: 74:92:ef:a8:d8:ea:83:8a:25:dd:23:d0:a5:0f:3b: cb:da:f3:17:f7:c7:ef:88:94:65:bc:c0:e2:87:17: c4:79:61:5b:94:a2:07:b8:3d:c2:fd:eb:42:af:19: 6d:a8:aa:76:b1:6d:ca:02:6a:aa:70:87:d0:bb:59: d6:39:22:0f:f0:79:d9:58:43:ef:c9:7e:f0:c3:01: 4f:33:25:e9:b2:21:40:f8:19:a3:f9:87:cc:98:3a: 62:d1:2e:e0:6d:98:2f:c5:d8:08:c6:1d:95:38:4a: 59:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:ED:00:5C:F9:09:C1:94:2E:0D:0E:1E:C7:5C:73:B6:16:85:F0:8C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aO0AXPkJwZQuDQ4ex1xzthaF8Iw.roa sbgp-ipAddrBlock: critical IPv4: 49.105.72.0/24 Signature Algorithm: sha256WithRSAEncryption 66:4a:34:e0:66:3f:dd:0a:e1:30:17:c2:13:8f:32:23:06:51: 2d:85:14:05:12:93:9d:ad:a2:c2:4b:88:c4:f4:99:b7:db:35: 7a:84:b0:35:ff:36:86:98:68:b1:71:01:57:c7:fa:6b:d6:f6: 6f:8a:22:2b:0d:6b:f1:3e:f3:a0:c6:fd:2e:2f:84:a8:12:36: a5:51:27:98:e1:5b:cc:7b:a2:51:4d:b6:e2:cf:8b:38:e1:6d: 5d:dc:27:8f:07:48:57:39:44:b6:9e:e4:4f:78:90:97:76:c2: 51:f9:af:2a:64:0c:8b:2c:e4:e3:d4:c5:4e:72:53:c0:6d:64: 52:63:25:6c:f4:f1:b6:33:5b:02:9d:73:11:8f:63:0e:e5:0e: 51:50:33:8f:17:dd:d3:f1:06:e7:e9:73:54:a5:81:90:44:45: 6c:4e:54:73:13:04:05:62:1c:4a:8e:86:18:1d:2a:b9:2b:0a: a4:3c:ea:0e:79:0e:2e:87:1a:50:30:4a:33:71:98:30:03:19: fa:9e:a1:98:46:84:b2:45:de:c4:60:46:13:56:10:68:f4:dd: 04:23:b4:5e:a8:9b:22:ed:15:d9:03:c8:c1:92:70:8a:9c:c0: fa:56:24:86:d4:d5:66:8d:8b:c9:12:f5:25:1a:f5:2a:64:16: 3f:38:38:55 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFH4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU3MzlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY4RUQwMDVDRjkwOUMx OTQyRTBEMEUxRUM3NUM3M0I2MTY4NUYwOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZmuz6b0axZhjRBE8/C2GC2Sk5FLqDywE64Q4mIcLA93NgjdN7 q5ovxtmGNEhotcI73LTic+7/0XKPh/jRqLpcUjRdHa0n/j5gD1DqF96AhtIOXp6L z+9aSrZyTtrPB3cel+s3IPlpI1dpNV/MyKjn6lgMHa1dA+JAaVosSDYWRt7LV7+7 3/YsjgERkzXa1rk4vnKrHXSS76jY6oOKJd0j0KUPO8va8xf3x++IlGW8wOKHF8R5 YVuUoge4PcL960KvGW2oqnaxbcoCaqpwh9C7WdY5Ig/wedlYQ+/JfvDDAU8zJemy IUD4GaP5h8yYOmLRLuBtmC/F2AjGHZU4SlkxAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUaO0AXPkJwZQuDQ4ex1xzthaF8IwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2FPMEFYUGtKd1pRdURRNGV4MXh6dGhhRjhJdy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAxaUgwDQYJKoZIhvcNAQELBQADggEB AGZKNOBmP90K4TAXwhOPMiMGUS2FFAUSk52tosJLiMT0mbfbNXqEsDX/NoaYaLFx AVfH+mvW9m+KIisNa/E+86DG/S4vhKgSNqVRJ5jhW8x7olFNtuLPizjhbV3cJ48H SFc5RLae5E94kJd2wlH5rypkDIss5OPUxU5yU8BtZFJjJWz08bYzWwKdcxGPYw7l DlFQM48X3dPxBufpc1SlgZBERWxOVHMTBAViHEqOhhgdKrkrCqQ86g55Di6HGlAw SjNxmDADGfqeoZhGhLJF3sRgRhNWEGj03QQjtF6omyLtFdkDyMGScIqcwPpWJIbU 1WaNi8kS9SUa9SpkFj84OFU= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:54 2026 by rpki-client