$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/cl-nKGJGvAvHovzaoBbq_e3Z5lE.roa File: cl-nKGJGvAvHovzaoBbq_e3Z5lE.roa (raw, json) Hash identifier: GhPiImCD3Dfpn8HBp4pjV7I4osVuL4YcpQT1B/yekTU= Subject key identifier: 72:5F:A7:28:62:46:BC:0B:C7:A2:FC:DA:A0:16:EA:FD:ED:D9:E6:51 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1554 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cl-nKGJGvAvHovzaoBbq_e3Z5lE.roa Signing time: Tue 31 Mar 2026 07:59:26 +0000 ROA not before: Tue 31 Mar 2026 07:59:26 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.107.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5460 (0x1554) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:59:26 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=725FA7286246BC0BC7A2FCDAA016EAFDEDD9E651 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:73:3d:6d:10:f7:e3:50:df:2e:9e:6b:79:1d: df:79:b6:78:f3:23:96:f6:01:11:e5:ba:31:ae:2d: 66:36:17:2d:7e:2b:ff:5f:e2:f3:fd:f7:da:f5:f9: df:51:e4:1f:07:3a:98:9b:49:66:4d:79:c0:d7:92: 08:ba:40:2f:b1:95:46:d1:f1:0b:ac:33:c0:5a:ce: e2:83:c8:2f:0e:b6:04:ca:9a:fe:3a:ed:d4:79:1c: 5f:95:6f:93:9b:83:a5:1a:94:e2:cb:de:2f:3a:c1: 66:83:08:bc:95:0a:af:32:cd:d0:c7:d0:1d:0d:d5: af:2f:91:c9:89:62:3a:06:b0:15:ee:c1:25:e2:dd: 23:50:b7:5b:b8:50:7c:6a:34:d5:d7:cc:73:9b:cc: 39:1b:2f:62:1d:99:9e:b4:d6:81:8e:a7:45:da:53: e3:c9:36:7b:4b:e8:40:7c:a3:fa:85:39:08:0f:73: e5:4d:5d:a9:e9:d4:01:de:7d:94:61:a8:60:37:f1: e5:7e:18:0c:3c:a5:39:b8:a3:4e:2c:de:87:2d:45: 6e:0e:e0:8b:ee:f3:24:ca:0d:d7:f6:61:6e:81:65: 75:65:e8:e3:93:10:a0:be:64:41:3f:08:e2:c4:b2: bc:ff:74:7a:4a:d8:15:aa:41:05:17:b7:16:23:07: 35:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:5F:A7:28:62:46:BC:0B:C7:A2:FC:DA:A0:16:EA:FD:ED:D9:E6:51 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cl-nKGJGvAvHovzaoBbq_e3Z5lE.roa sbgp-ipAddrBlock: critical IPv4: 49.107.128.0/18 Signature Algorithm: sha256WithRSAEncryption 38:2e:8f:f7:36:44:64:03:9c:c3:ad:5b:82:60:5b:c6:bd:c0: 41:62:47:0c:a0:f6:0e:9e:7c:37:73:4b:ff:1c:ce:ff:8f:56: e0:27:69:b1:8e:97:76:a8:5e:ee:78:a7:13:58:a5:36:c0:08: 21:56:ce:d4:80:10:83:57:7e:c4:ee:88:c4:ce:39:f0:4d:78: 7c:99:70:de:f4:d6:d7:91:0e:65:74:44:1d:d2:ca:90:cc:23: 70:f9:1d:35:23:d7:5b:1e:2c:9a:8d:81:19:d4:07:24:da:59: 98:34:c4:4a:9f:89:ea:00:4d:42:c6:21:5e:cb:91:0c:09:a2: 5f:93:42:c1:11:f3:be:72:f5:e5:64:ff:25:c8:81:64:59:60: 38:38:ce:f1:35:30:a6:db:94:b8:f8:26:94:32:8d:03:6c:fe: 3b:3e:33:3a:de:ea:e9:7a:bc:50:80:2e:a6:4e:e0:d7:5f:e8: fe:b2:4e:38:c4:c4:68:95:54:9a:13:43:76:fc:42:21:08:4f: ca:04:58:58:6f:02:dd:09:bb:19:ab:52:11:ea:34:c2:db:6d: 9f:45:07:58:5b:5b:d2:94:4f:9a:8d:69:88:f7:d6:c0:9d:45: 5f:dc:c7:2a:bc:50:23:45:a8:4d:c2:da:5d:fe:bb:db:fd:2d: 6f:07:15:0d -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFVQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU5MjZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDcyNUZBNzI4NjI0NkJD MEJDN0EyRkNEQUEwMTZFQUZERUREOUU2NTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIcz1tEPfjUN8unmt5Hd95tnjzI5b2ARHlujGuLWY2Fy1+K/9f 4vP999r1+d9R5B8HOpibSWZNecDXkgi6QC+xlUbR8QusM8BazuKDyC8OtgTKmv46 7dR5HF+Vb5Obg6UalOLL3i86wWaDCLyVCq8yzdDH0B0N1a8vkcmJYjoGsBXuwSXi 3SNQt1u4UHxqNNXXzHObzDkbL2IdmZ601oGOp0XaU+PJNntL6EB8o/qFOQgPc+VN Xanp1AHefZRhqGA38eV+GAw8pTm4o04s3octRW4O4Ivu8yTKDdf2YW6BZXVl6OOT EKC+ZEE/COLEsrz/dHpK2BWqQQUXtxYjBzWxAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUcl+nKGJGvAvHovzaoBbq/e3Z5lEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2NsLW5LR0pHdkF2SG92emFvQmJxX2UzWjVsRS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAYxa4AwDQYJKoZIhvcNAQELBQADggEB ADguj/c2RGQDnMOtW4JgW8a9wEFiRwyg9g6efDdzS/8czv+PVuAnabGOl3aoXu54 pxNYpTbACCFWztSAEINXfsTuiMTOOfBNeHyZcN701teRDmV0RB3SypDMI3D5HTUj 11seLJqNgRnUByTaWZg0xEqfieoATULGIV7LkQwJol+TQsER875y9eVk/yXIgWRZ YDg4zvE1MKbblLj4JpQyjQNs/js+Mzre6ul6vFCALqZO4Ndf6P6yTjjExGiVVJoT Q3b8QiEIT8oEWFhvAt0JuxmrUhHqNMLbbZ9FB1hbW9KUT5qNaYj31sCdRV/cxyq8 UCNFqE3C2l3+u9v9LW8HFQ0= -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:19 2026 by rpki-client