$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/cGa8sHRo7WF0M7eitTDlm47wtZo.roa File: cGa8sHRo7WF0M7eitTDlm47wtZo.roa (raw, json) Hash identifier: Kx/itYTl48zDnBAIzFaLLNsRhYffKmh/XGxZwj4NaNg= Subject key identifier: 70:66:BC:B0:74:68:ED:61:74:33:B7:A2:B5:30:E5:9B:8E:F0:B5:9A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 16B0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cGa8sHRo7WF0M7eitTDlm47wtZo.roa Signing time: Tue 31 Mar 2026 08:02:18 +0000 ROA not before: Tue 31 Mar 2026 08:02:18 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.103.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5808 (0x16b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:02:18 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=7066BCB07468ED617433B7A2B530E59B8EF0B59A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ae:fb:b8:28:21:6d:51:1a:4c:b7:f2:18:69: 58:68:f4:e9:ae:17:fc:21:e0:7b:fe:5a:6f:5d:14: 41:e7:50:be:22:0a:1c:01:f3:5e:a8:23:44:ea:d6: 1d:f8:85:72:36:10:60:79:88:65:be:55:c3:7d:73: ce:94:6c:c9:47:e0:0c:e8:9d:b1:74:39:d0:cf:4a: c4:78:8f:de:4f:81:72:73:5e:f2:e9:06:99:3f:68: 9b:61:a5:4d:d5:42:e8:3a:91:90:f1:f6:74:cd:13: 2c:36:2b:ec:ed:11:fe:dd:e1:8a:aa:9e:c5:3d:0f: ce:43:69:36:06:69:fd:c1:0f:d7:cd:a0:d7:d1:d7: 48:ba:f0:cf:af:5e:0d:b6:45:2d:27:bd:9e:08:ac: f3:d1:64:b6:93:ff:b6:7c:eb:e7:2a:2a:29:af:cb: 72:4b:17:6d:b3:4a:61:2e:1f:fa:df:e9:77:e5:6a: b6:e9:1e:68:d5:0b:42:46:9a:58:59:87:49:3e:2f: f5:d4:9c:56:e1:6a:1b:cf:23:09:1b:2e:e5:b7:7e: b5:99:09:4c:27:50:81:8d:4b:18:89:7f:99:92:d3: c8:55:e9:da:a6:2d:38:1f:13:7d:f1:78:8e:c4:66: 41:a5:d8:90:0f:c2:9c:b6:85:77:36:93:b0:d4:92: dc:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:66:BC:B0:74:68:ED:61:74:33:B7:A2:B5:30:E5:9B:8E:F0:B5:9A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cGa8sHRo7WF0M7eitTDlm47wtZo.roa sbgp-ipAddrBlock: critical IPv4: 49.103.19.0/24 Signature Algorithm: sha256WithRSAEncryption 87:c6:81:cf:93:e6:37:38:59:45:56:da:d6:a6:3b:21:c6:3b: f2:1f:08:01:9d:18:f7:51:9e:18:16:39:b0:0b:44:01:9b:69: 0b:c7:fa:87:88:3a:66:d0:46:e6:83:2a:76:34:40:77:21:c8: 5a:4a:ae:21:eb:f7:64:dd:e5:a7:52:92:a0:d5:ef:5b:60:ed: 11:c8:de:c5:95:95:3b:a2:46:53:53:88:b8:1e:b7:ab:93:05: ba:35:c9:97:73:8e:7c:79:58:a6:b5:25:a0:23:0d:68:40:12: 81:22:06:2a:dd:5b:87:be:be:7c:95:de:93:f0:72:9c:64:43: be:8f:de:8c:ce:67:44:ae:d2:26:69:fd:45:2a:95:2c:62:ba: 67:4f:9c:26:e0:cb:d4:82:94:e9:d6:97:e6:ac:0d:3a:8a:b8: 14:d7:a0:28:7c:c0:38:76:02:3c:0a:41:fb:fd:5f:a6:fa:c2: fb:c1:da:31:8b:2e:01:74:1a:bf:5d:cc:ef:b5:7d:9c:0b:fe: 39:f7:90:98:a6:4a:74:cd:92:28:ec:ff:54:16:ed:d2:15:73: 15:21:d8:74:54:cf:06:35:c0:de:e0:09:2c:93:53:68:a3:fa: 0e:7b:66:dc:32:99:3d:c4:ef:e5:1b:8b:87:c7:46:ef:71:0d: d2:20:ea:7e -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFrAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAyMThaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDcwNjZCQ0IwNzQ2OEVE NjE3NDMzQjdBMkI1MzBFNTlCOEVGMEI1OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4rvu4KCFtURpMt/IYaVho9OmuF/wh4Hv+Wm9dFEHnUL4iChwB 816oI0Tq1h34hXI2EGB5iGW+VcN9c86UbMlH4AzonbF0OdDPSsR4j95PgXJzXvLp Bpk/aJthpU3VQug6kZDx9nTNEyw2K+ztEf7d4YqqnsU9D85DaTYGaf3BD9fNoNfR 10i68M+vXg22RS0nvZ4IrPPRZLaT/7Z86+cqKimvy3JLF22zSmEuH/rf6Xflarbp HmjVC0JGmlhZh0k+L/XUnFbhahvPIwkbLuW3frWZCUwnUIGNSxiJf5mS08hV6dqm LTgfE33xeI7EZkGl2JAPwpy2hXc2k7DUktwJAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUcGa8sHRo7WF0M7eitTDlm47wtZowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2NHYThzSFJvN1dGME03ZWl0VERsbTQ3d3Raby5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAxZxMwDQYJKoZIhvcNAQELBQADggEB AIfGgc+T5jc4WUVW2tamOyHGO/IfCAGdGPdRnhgWObALRAGbaQvH+oeIOmbQRuaD KnY0QHchyFpKriHr92Td5adSkqDV71tg7RHI3sWVlTuiRlNTiLget6uTBbo1yZdz jnx5WKa1JaAjDWhAEoEiBirdW4e+vnyV3pPwcpxkQ76P3ozOZ0Su0iZp/UUqlSxi umdPnCbgy9SClOnWl+asDTqKuBTXoCh8wDh2AjwKQfv9X6b6wvvB2jGLLgF0Gr9d zO+1fZwL/jn3kJimSnTNkijs/1QW7dIVcxUh2HRUzwY1wN7gCSyTU2ij+g57Ztwy mT3E7+Ubi4fHRu9xDdIg6n4= -----END CERTIFICATE-----Generated at Tue Apr 7 19:42:52 2026 by rpki-client