$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/heIjGy25n-S46GUfeSolPUIu7q0.roa File: heIjGy25n-S46GUfeSolPUIu7q0.roa (raw, json) Hash identifier: i8LmTS//JuFsE50RUYUmmEoU3r7g8+pLlUZpXMAcHdg= Subject key identifier: 85:E2:23:1B:2D:B9:9F:E4:B8:E8:65:1F:79:2A:25:3D:42:2E:EE:AD Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1738 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/heIjGy25n-S46GUfeSolPUIu7q0.roa Signing time: Tue 31 Mar 2026 08:03:24 +0000 ROA not before: Tue 31 Mar 2026 08:03:24 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.110.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5944 (0x1738) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:03:24 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=85E2231B2DB99FE4B8E8651F792A253D422EEEAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1a:9f:f2:b1:0c:14:97:bd:48:54:41:01:41: ee:21:10:23:3e:61:b9:db:bd:02:a7:4e:bc:da:0d: 0a:3b:41:27:77:b4:21:39:ec:98:51:3f:12:d6:bc: 4a:4f:04:12:b7:d0:5f:c8:b3:c2:cd:38:41:d6:df: ab:cb:95:41:6f:79:af:48:5e:e9:f4:ac:ad:16:a1: c5:58:7d:66:b2:32:71:02:60:0f:db:53:e3:e2:de: 83:76:3e:d0:f5:5e:8a:b5:86:92:70:ba:4e:80:d1: b1:c7:ba:f3:37:18:db:9e:c9:76:65:c5:bd:af:bc: 8f:f2:bf:81:3f:08:6d:f9:e2:4c:19:68:cd:4e:a9: 13:9c:d3:2a:29:df:b3:ea:bf:88:a1:d9:77:d1:8c: 4d:49:c8:db:e2:bb:b9:82:24:ea:45:58:32:bd:f4: af:61:fa:be:3b:27:7c:58:db:eb:65:32:f5:9b:d3: 06:0b:b4:53:99:b1:07:99:22:0f:c7:2e:a0:ae:1f: 8d:7e:66:3f:17:7d:98:20:45:0c:6e:e5:ab:1b:b6: 6a:aa:96:fd:18:49:10:87:e8:e5:6b:a2:e8:4c:33: a2:ff:2e:cb:e6:16:78:41:65:41:e3:12:e5:a0:44: df:ea:3a:16:5b:70:83:5f:1c:70:42:f4:7b:90:1f: 65:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:E2:23:1B:2D:B9:9F:E4:B8:E8:65:1F:79:2A:25:3D:42:2E:EE:AD X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/heIjGy25n-S46GUfeSolPUIu7q0.roa sbgp-ipAddrBlock: critical IPv4: 49.110.192.0/18 Signature Algorithm: sha256WithRSAEncryption be:b5:60:e1:d7:ce:b8:b6:a2:f2:d1:d6:54:4e:7f:e0:3c:94: 00:8d:28:59:9a:05:55:d7:21:42:c9:d3:83:67:85:86:a9:7d: d1:1e:c5:dc:6c:9d:74:1c:6c:de:16:b7:7c:4b:01:87:5e:9e: c5:4e:be:b6:7a:74:fa:75:e4:bc:62:82:9e:8c:c8:f4:50:18: 27:ae:4e:e1:ab:40:ff:c6:97:a7:6a:fd:8e:26:14:9d:44:18: 9a:4a:39:d3:af:21:da:0b:9a:7a:66:10:75:79:f0:f2:42:24: e1:b1:3c:95:99:be:4b:f7:dd:09:3d:3c:e4:f6:86:ac:c2:d3: eb:0f:46:0a:b3:f9:c3:d7:10:71:30:c1:1b:77:c1:95:56:f2: c7:2a:58:89:0d:36:7e:ba:e9:be:32:5c:a0:66:ec:32:af:56: fa:66:ae:9c:65:ad:54:43:19:25:50:f2:88:ab:26:26:9f:72: b3:b1:c0:ae:e8:6f:c3:a2:c7:c8:26:7d:a0:87:3f:8a:08:b5: 25:9e:fa:85:13:87:9a:3d:23:55:18:ad:cb:63:9b:19:52:8c: d2:54:22:3c:5a:5c:99:49:20:c7:20:96:d9:33:fe:d5:9f:5d: a1:74:bf:a0:49:f0:3d:9f:16:a6:bb:15:1a:d9:8d:67:60:58: bc:5d:bf:10 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFzgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAzMjRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg1RTIyMzFCMkRCOTlG RTRCOEU4NjUxRjc5MkEyNTNENDIyRUVFQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCGp/ysQwUl71IVEEBQe4hECM+YbnbvQKnTrzaDQo7QSd3tCE5 7JhRPxLWvEpPBBK30F/Is8LNOEHW36vLlUFvea9IXun0rK0WocVYfWayMnECYA/b U+Pi3oN2PtD1Xoq1hpJwuk6A0bHHuvM3GNueyXZlxb2vvI/yv4E/CG354kwZaM1O qROc0yop37Pqv4ih2XfRjE1JyNviu7mCJOpFWDK99K9h+r47J3xY2+tlMvWb0wYL tFOZsQeZIg/HLqCuH41+Zj8XfZggRQxu5asbtmqqlv0YSRCH6OVrouhMM6L/Lsvm FnhBZUHjEuWgRN/qOhZbcINfHHBC9HuQH2X3AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUheIjGy25n+S46GUfeSolPUIu7q0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2hlSWpHeTI1bi1TNDZHVWZlU29sUFVJdTdxMC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAYxbsAwDQYJKoZIhvcNAQELBQADggEB AL61YOHXzri2ovLR1lROf+A8lACNKFmaBVXXIULJ04NnhYapfdEexdxsnXQcbN4W t3xLAYdensVOvrZ6dPp15Lxigp6MyPRQGCeuTuGrQP/Gl6dq/Y4mFJ1EGJpKOdOv IdoLmnpmEHV58PJCJOGxPJWZvkv33Qk9POT2hqzC0+sPRgqz+cPXEHEwwRt3wZVW 8scqWIkNNn666b4yXKBm7DKvVvpmrpxlrVRDGSVQ8oirJiafcrOxwK7ob8Oix8gm faCHP4oItSWe+oUTh5o9I1UYrctjmxlSjNJUIjxaXJlJIMcgltkz/tWfXaF0v6BJ 8D2fFqa7FRrZjWdgWLxdvxA= -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:43 2026 by rpki-client