$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/fHB6028QcGonouFYp35ehx7NsWY.roa File: fHB6028QcGonouFYp35ehx7NsWY.roa (raw, json) Hash identifier: QjB4LLpJfkF5ekqKkX7dtoB0DJ633U6K+vItKyTCgXg= Subject key identifier: 7C:70:7A:D3:6F:10:70:6A:27:A2:E1:58:A7:7E:5E:87:1E:CD:B1:66 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1694 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fHB6028QcGonouFYp35ehx7NsWY.roa Signing time: Tue 31 Mar 2026 08:02:05 +0000 ROA not before: Tue 31 Mar 2026 08:02:05 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.106.216.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5780 (0x1694) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:02:05 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=7C707AD36F10706A27A2E158A77E5E871ECDB166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b6:f3:7b:f9:64:c6:da:a4:43:22:be:ea:41: 99:17:14:e3:57:52:90:d2:d9:62:7b:c3:79:6f:9a: 64:59:8b:1d:e1:31:90:20:3b:82:8a:a6:41:1c:38: 3b:4e:47:79:13:d4:aa:47:bb:d8:8b:f7:62:a9:11: e0:a0:ab:ce:e3:72:08:b5:14:9f:8a:8a:64:be:d0: 95:11:c1:64:46:d3:5d:69:e7:bd:a5:b8:7d:f7:66: 68:c7:db:b0:a2:d6:22:7a:fc:41:b7:df:19:93:dc: 3b:37:e6:4b:de:81:38:50:87:bd:e4:c6:62:c6:cb: 67:8d:5d:15:e1:f7:cf:54:54:49:e0:a3:b6:0b:1e: c5:b4:30:98:de:6a:a5:08:54:30:b1:73:92:34:db: 7b:70:28:5c:59:9d:ba:58:4c:0c:49:b1:4e:1f:93: 83:d0:c1:6e:fd:c1:bd:93:5a:d4:f6:d5:0b:60:55: 91:66:b6:dc:8f:31:df:0a:5b:10:05:14:49:e4:c6: ef:30:8c:50:b3:bf:89:35:f0:b1:f4:94:c0:d5:e7: a3:bb:b8:08:db:9e:59:b7:99:58:84:8f:6c:5e:0a: aa:be:56:5c:30:1d:70:31:26:85:ec:5f:c2:e6:56: fa:26:f2:9b:0d:92:7c:4d:93:61:51:89:67:db:0c: 9c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:70:7A:D3:6F:10:70:6A:27:A2:E1:58:A7:7E:5E:87:1E:CD:B1:66 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fHB6028QcGonouFYp35ehx7NsWY.roa sbgp-ipAddrBlock: critical IPv4: 49.106.216.0/23 Signature Algorithm: sha256WithRSAEncryption d9:8b:7f:57:99:ba:ee:8d:41:d5:f9:eb:e5:52:2c:5d:70:b0: a1:f8:18:f3:79:7a:69:2f:9e:2b:4f:cf:fb:bc:f0:c2:9e:29: b4:c4:79:25:ec:80:ac:0c:97:37:e3:d1:86:48:33:f0:df:11: 34:26:e1:22:3b:cf:e9:74:f2:c0:0e:b2:35:be:be:20:e6:d5: b5:29:a0:98:bd:c1:8a:60:29:3d:73:78:8c:95:db:cf:56:2f: 15:37:11:cb:39:bc:a1:50:55:aa:ab:74:4d:fc:5b:78:57:c7: 72:e3:a4:3b:9d:9e:14:8b:59:b4:68:09:0e:4c:45:84:ec:bf: bc:b2:f5:07:3b:a1:20:2f:d0:9b:b1:fd:64:b4:6e:ab:1d:b9: 46:a2:10:91:b5:c4:7d:3d:b5:69:bc:9a:e7:12:f6:09:ea:63: 1d:92:6c:3b:15:c9:ea:0b:71:ae:63:aa:b9:19:43:32:2a:8f: fc:00:0b:4d:a7:f4:ea:86:72:c9:56:ad:f1:79:74:88:70:28: 7c:8a:3d:70:3e:b9:83:93:cb:66:dc:c8:3d:d9:14:3a:d9:a7: 29:7c:72:0c:32:d7:5f:1c:28:d3:de:a9:83:50:2a:f6:39:83: f0:37:c1:eb:6a:66:cd:67:e7:3a:57:59:da:44:85:2c:9d:1a: 23:60:e0:94 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFpQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAyMDVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDdDNzA3QUQzNkYxMDcw NkEyN0EyRTE1OEE3N0U1RTg3MUVDREIxNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCttvN7+WTG2qRDIr7qQZkXFONXUpDS2WJ7w3lvmmRZix3hMZAg O4KKpkEcODtOR3kT1KpHu9iL92KpEeCgq87jcgi1FJ+KimS+0JURwWRG011p572l uH33ZmjH27Ci1iJ6/EG33xmT3Ds35kvegThQh73kxmLGy2eNXRXh989UVEngo7YL HsW0MJjeaqUIVDCxc5I023twKFxZnbpYTAxJsU4fk4PQwW79wb2TWtT21QtgVZFm ttyPMd8KWxAFFEnkxu8wjFCzv4k18LH0lMDV56O7uAjbnlm3mViEj2xeCqq+Vlww HXAxJoXsX8LmVvom8psNknxNk2FRiWfbDJyHAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUfHB6028QcGonouFYp35ehx7NsWYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2ZIQjYwMjhRY0dvbm91RllwMzVlaHg3TnNXWS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAExatgwDQYJKoZIhvcNAQELBQADggEB ANmLf1eZuu6NQdX56+VSLF1wsKH4GPN5emkvnitPz/u88MKeKbTEeSXsgKwMlzfj 0YZIM/DfETQm4SI7z+l08sAOsjW+viDm1bUpoJi9wYpgKT1zeIyV289WLxU3Ecs5 vKFQVaqrdE38W3hXx3LjpDudnhSLWbRoCQ5MRYTsv7yy9Qc7oSAv0Jux/WS0bqsd uUaiEJG1xH09tWm8mucS9gnqYx2SbDsVyeoLca5jqrkZQzIqj/wAC02n9OqGcslW rfF5dIhwKHyKPXA+uYOTy2bcyD3ZFDrZpyl8cgwy118cKNPeqYNQKvY5g/A3wetq Zs1n5zpXWdpEhSydGiNg4JQ= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:35 2026 by rpki-client