$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/bMT96tX7udG9xO-576uFFxmMbLU.roa File: bMT96tX7udG9xO-576uFFxmMbLU.roa (raw, json) Hash identifier: YgfDSjggZmHltgi1nh4sPvTOcosa1XcQOqryvjrR4mQ= Subject key identifier: 6C:C4:FD:EA:D5:FB:B9:D1:BD:C4:EF:B9:EF:AB:85:17:19:8C:6C:B5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 15B6 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bMT96tX7udG9xO-576uFFxmMbLU.roa Signing time: Tue 31 Mar 2026 08:00:15 +0000 ROA not before: Tue 31 Mar 2026 08:00:15 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.105.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5558 (0x15b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:00:15 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=6CC4FDEAD5FBB9D1BDC4EFB9EFAB8517198C6CB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:8e:8a:36:72:af:97:fe:1e:ce:5f:ae:88:26: 26:77:30:85:99:c9:87:e7:d1:96:07:a3:11:b5:15: 25:5e:b6:2d:8d:e3:c9:47:4d:09:1f:ca:fc:0e:51: 6b:59:1e:d5:07:82:9f:89:43:dc:63:6c:f6:2b:74: 22:bf:86:ef:c1:37:ec:f2:53:8d:15:9b:6b:79:14: ce:4a:31:bc:84:69:5a:5d:1a:99:5b:04:2d:bf:cf: 29:21:0b:88:32:b2:11:58:1d:e8:da:00:e4:e5:6d: 03:77:93:0d:c0:56:3c:8c:af:c3:01:c3:26:5a:fb: 6d:df:c5:f0:6a:bd:4e:be:ff:f5:6b:10:ef:ac:4b: bb:5b:70:1e:d8:98:08:16:ac:a1:a2:31:a5:c3:44: c2:1e:38:b6:fd:c6:08:58:da:d2:a5:24:fa:4a:f2: 41:e7:8d:ca:6d:59:3f:12:bb:b7:b9:0e:2e:20:b4: 55:69:c5:22:1f:22:d8:3f:2f:8f:2f:b9:c6:08:09: 52:05:51:2c:f8:2f:53:c4:1f:e3:68:8d:40:60:53: ef:ed:14:7f:11:c7:12:c7:d8:36:4f:db:41:af:d7: f5:e2:8d:d2:d5:d0:b1:ff:54:fc:81:38:9d:84:7c: aa:94:9b:50:2c:74:e8:76:85:8a:af:72:79:15:58: 85:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:C4:FD:EA:D5:FB:B9:D1:BD:C4:EF:B9:EF:AB:85:17:19:8C:6C:B5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bMT96tX7udG9xO-576uFFxmMbLU.roa sbgp-ipAddrBlock: critical IPv4: 49.105.88.0/23 Signature Algorithm: sha256WithRSAEncryption 02:e7:f7:92:c1:36:b3:14:e4:ac:ea:a8:6e:6e:b7:c5:29:b3: 02:e3:f7:1c:7d:b5:7a:83:f7:92:24:4d:7e:04:ce:71:20:2d: db:3e:5a:f0:e4:b2:7d:be:f8:5c:f3:de:56:63:3d:34:b4:5a: c5:38:65:16:fc:06:9f:c1:80:ac:9e:11:26:7c:13:55:cb:39: cf:62:0f:25:81:2d:aa:38:7e:77:9f:6e:9d:96:30:e7:56:38: bd:6f:b8:34:de:e7:9e:89:2b:2f:0a:b9:8a:dd:ea:29:46:c6: c6:51:55:d9:b1:60:26:5c:87:ff:db:54:ad:93:b3:46:49:33: f9:a3:02:ad:fc:07:5b:f8:4e:a7:fe:a3:1d:97:65:66:7b:8c: 83:32:d7:a6:93:82:32:76:48:53:96:ca:9f:bb:b5:41:84:80: ee:43:d9:8c:19:88:56:a0:a3:c6:d1:f9:4b:9c:ec:9d:73:b2: f8:5b:f5:9d:22:c3:97:04:24:37:d6:2d:e1:b7:18:9b:03:ed: 19:cb:2e:83:f2:d2:f0:53:4e:94:7e:78:c2:62:e3:35:b7:18: 28:55:2f:5d:c5:17:d6:a0:de:60:db:e0:1e:65:da:f1:a0:e9: 5e:4d:d1:55:7b:6f:11:f4:65:73:db:33:be:92:73:34:f8:53: b3:c7:07:9e -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFbYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAwMTVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDZDQzRGREVBRDVGQkI5 RDFCREM0RUZCOUVGQUI4NTE3MTk4QzZDQjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVjoo2cq+X/h7OX66IJiZ3MIWZyYfn0ZYHoxG1FSVeti2N48lH TQkfyvwOUWtZHtUHgp+JQ9xjbPYrdCK/hu/BN+zyU40Vm2t5FM5KMbyEaVpdGplb BC2/zykhC4gyshFYHejaAOTlbQN3kw3AVjyMr8MBwyZa+23fxfBqvU6+//VrEO+s S7tbcB7YmAgWrKGiMaXDRMIeOLb9xghY2tKlJPpK8kHnjcptWT8Su7e5Di4gtFVp xSIfItg/L48vucYICVIFUSz4L1PEH+NojUBgU+/tFH8RxxLH2DZP20Gv1/XijdLV 0LH/VPyBOJ2EfKqUm1AsdOh2hYqvcnkVWIWBAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUbMT96tX7udG9xO+576uFFxmMbLUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2JNVDk2dFg3dWRHOXhPLTU3NnVGRnhtTWJMVS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAExaVgwDQYJKoZIhvcNAQELBQADggEB AALn95LBNrMU5KzqqG5ut8UpswLj9xx9tXqD95IkTX4EznEgLds+WvDksn2++Fzz 3lZjPTS0WsU4ZRb8Bp/BgKyeESZ8E1XLOc9iDyWBLao4fnefbp2WMOdWOL1vuDTe 556JKy8KuYrd6ilGxsZRVdmxYCZch//bVK2Ts0ZJM/mjAq38B1v4Tqf+ox2XZWZ7 jIMy16aTgjJ2SFOWyp+7tUGEgO5D2YwZiFago8bR+Uuc7J1zsvhb9Z0iw5cEJDfW LeG3GJsD7RnLLoPy0vBTTpR+eMJi4zW3GChVL13FF9ag3mDb4B5l2vGg6V5N0VV7 bxH0ZXPbM76SczT4U7PHB54= -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:18 2026 by rpki-client