$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/cJ6cPfMtywLtfvYaL_SRpxnMWw4.roa File: cJ6cPfMtywLtfvYaL_SRpxnMWw4.roa (raw, json) Hash identifier: N3RYmuTJJ3/8vfA7pyt+NOsy+ZQ6GVurcUkFk9aTKoM= Subject key identifier: 70:9E:9C:3D:F3:2D:CB:02:ED:7E:F6:1A:2F:F4:91:A7:19:CC:5B:0E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1623 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cJ6cPfMtywLtfvYaL_SRpxnMWw4.roa Signing time: Tue 31 Mar 2026 08:01:13 +0000 ROA not before: Tue 31 Mar 2026 08:01:13 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5667 (0x1623) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:01:13 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=709E9C3DF32DCB02ED7EF61A2FF491A719CC5B0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f3:41:6a:5a:66:32:1f:f4:76:97:bb:cb:c5: 2d:79:86:29:66:a0:03:19:69:f7:77:9f:92:d9:51: 26:6c:74:3e:bd:74:27:66:11:76:40:87:53:4a:23: c5:49:49:60:c5:a4:e9:a6:dd:0b:9d:4e:2e:6b:78: 79:f1:7e:9f:c8:1e:fb:17:e6:b3:94:83:c1:36:f8: bd:6d:8b:0f:02:d2:b6:af:61:7c:e2:d2:01:9e:5c: e6:49:48:99:07:85:70:43:7d:fb:01:ca:16:f4:a7: 48:1d:a7:c4:ff:54:fa:1c:4d:a1:f6:92:47:b4:02: 7d:09:40:17:f0:a3:9e:e2:a1:92:7c:d2:39:21:1b: fa:dd:89:bf:23:a0:ef:45:68:d0:b9:a9:dc:a5:50: 34:d3:f5:db:99:71:25:23:19:77:10:4a:9f:14:8d: 4f:ce:cc:9d:b3:2e:bf:3e:17:8d:87:29:25:bc:15: 66:89:2f:40:35:b2:98:46:b7:ef:d0:60:63:d4:97: 07:a4:91:7b:0c:3b:b9:bb:1c:70:d6:70:79:1d:a7: ad:3f:76:17:78:1c:91:e3:83:81:f2:0e:01:d2:cc: 96:c4:34:c5:a8:8d:19:b2:f4:d7:0f:03:3a:55:ce: 23:3b:22:17:69:4c:d6:67:e9:96:b1:24:5b:8e:e4: 97:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:9E:9C:3D:F3:2D:CB:02:ED:7E:F6:1A:2F:F4:91:A7:19:CC:5B:0E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cJ6cPfMtywLtfvYaL_SRpxnMWw4.roa sbgp-ipAddrBlock: critical IPv4: 49.98.88.0/22 Signature Algorithm: sha256WithRSAEncryption 3d:86:23:be:e2:e3:b2:07:69:5d:26:01:f2:aa:2c:9f:a0:41: 0e:2f:72:4e:1a:69:d5:9d:55:19:3c:5b:1a:85:e4:fa:e9:13: 65:18:fc:93:c1:0e:d1:14:7f:b4:db:c1:e1:31:f4:fd:5a:ab: a9:53:31:18:cd:88:25:b6:33:ca:54:53:e9:f7:9f:3a:67:6f: 43:8a:1d:ed:3a:25:aa:2b:db:2a:9c:66:3c:d5:bc:d1:ff:96: cc:5c:2b:2b:2e:49:d1:6c:6e:cd:f4:17:fd:2f:24:87:b6:66: 8b:af:58:f5:4c:f6:65:43:16:f9:dd:6c:24:70:ca:80:75:8b: 0c:5f:41:a2:70:93:42:e3:a7:68:61:ab:18:98:0a:a6:53:12: f5:fb:3c:33:26:59:81:45:69:b2:cc:29:06:c7:c9:b4:26:d7: 49:9f:ae:0f:e9:a0:be:f8:83:82:25:e5:5d:43:30:84:f7:0a: ff:98:66:ff:30:9b:54:c0:7f:7a:31:6b:b6:38:73:e0:98:d9: 30:f2:25:13:67:3d:c5:bb:71:e5:84:c7:33:2e:ee:7c:f7:39: 8a:a4:46:a0:ad:f0:0e:71:bb:13:03:d5:86:05:c7:d1:11:51: 87:ca:94:8d:85:97:bc:09:05:ce:ae:f9:bc:e9:aa:b2:4f:6a: e5:a3:38:8e -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFiMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAxMTNaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDcwOUU5QzNERjMyRENC MDJFRDdFRjYxQTJGRjQ5MUE3MTlDQzVCMEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCb80FqWmYyH/R2l7vLxS15hilmoAMZafd3n5LZUSZsdD69dCdm EXZAh1NKI8VJSWDFpOmm3QudTi5reHnxfp/IHvsX5rOUg8E2+L1tiw8C0ravYXzi 0gGeXOZJSJkHhXBDffsByhb0p0gdp8T/VPocTaH2kke0An0JQBfwo57ioZJ80jkh G/rdib8joO9FaNC5qdylUDTT9duZcSUjGXcQSp8UjU/OzJ2zLr8+F42HKSW8FWaJ L0A1sphGt+/QYGPUlwekkXsMO7m7HHDWcHkdp60/dhd4HJHjg4HyDgHSzJbENMWo jRmy9NcPAzpVziM7IhdpTNZn6ZaxJFuO5JfTAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUcJ6cPfMtywLtfvYaL/SRpxnMWw4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2NKNmNQZk10eXdMdGZ2WWFMX1NScHhuTVd3NC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIxYlgwDQYJKoZIhvcNAQELBQADggEB AD2GI77i47IHaV0mAfKqLJ+gQQ4vck4aadWdVRk8WxqF5PrpE2UY/JPBDtEUf7Tb weEx9P1aq6lTMRjNiCW2M8pUU+n3nzpnb0OKHe06Jaor2yqcZjzVvNH/lsxcKysu SdFsbs30F/0vJIe2ZouvWPVM9mVDFvndbCRwyoB1iwxfQaJwk0Ljp2hhqxiYCqZT EvX7PDMmWYFFabLMKQbHybQm10mfrg/poL74g4Il5V1DMIT3Cv+YZv8wm1TAf3ox a7Y4c+CY2TDyJRNnPcW7ceWExzMu7nz3OYqkRqCt8A5xuxMD1YYFx9ERUYfKlI2F l7wJBc6u+bzpqrJPauWjOI4= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:59 2026 by rpki-client