$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/kVAT-zq1KQEIuo8WP3AqPJt8Efc.roa File: kVAT-zq1KQEIuo8WP3AqPJt8Efc.roa (raw, json) Hash identifier: Rxc9QTEb/Pi7jnSb9vTam1b59E5rZGkzIrg+9Grrb7o= Subject key identifier: 91:50:13:FB:3A:B5:29:01:08:BA:8F:16:3F:70:2A:3C:9B:7C:11:F7 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 166B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kVAT-zq1KQEIuo8WP3AqPJt8Efc.roa Signing time: Tue 31 Mar 2026 08:01:46 +0000 ROA not before: Tue 31 Mar 2026 08:01:46 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.106.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5739 (0x166b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:01:46 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=915013FB3AB5290108BA8F163F702A3C9B7C11F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:4b:0a:df:5a:9d:74:ed:c5:18:4f:6d:cd:1a: 61:9c:2c:85:16:c0:27:f5:78:89:6e:9e:ac:af:e8: 5c:6d:ce:18:06:d2:c8:cc:a5:a2:05:47:bf:17:5f: 75:97:9f:6b:ae:a1:a1:b5:ef:37:82:78:32:ca:bb: ec:ad:2a:79:9c:d1:aa:ef:17:4f:70:3b:38:02:61: fd:3c:e7:58:bf:81:bb:2a:89:f3:5b:fe:e8:c0:95: 0b:c6:79:de:f4:b8:3d:ff:82:89:02:a7:af:6c:8c: d7:cc:36:7d:ea:58:f2:ca:fd:be:7a:f7:5d:a2:bb: 2f:e9:24:b2:fb:a7:4b:44:6a:c2:e3:f3:0e:e1:17: 30:00:fa:24:43:6e:15:ec:1d:c9:80:6a:01:ce:8c: 09:0e:e6:f2:e6:8e:f9:ec:6c:98:3f:f2:56:50:97: 31:d7:51:2a:78:c5:b8:78:32:0e:43:ab:bf:c9:81: a9:d9:5d:87:7e:25:a0:b7:8c:f2:86:d3:ab:97:4d: ac:77:2e:f4:41:67:83:0a:e7:18:13:f5:a4:8a:57: f8:c4:ad:48:4a:61:9b:7e:cf:5b:02:f6:7e:bc:79: 99:eb:53:3f:b7:e2:c9:7e:b0:62:b9:77:67:6e:a0: c0:7a:f8:2d:9a:3d:e3:f9:b2:53:a2:b3:ae:8b:f0: eb:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:50:13:FB:3A:B5:29:01:08:BA:8F:16:3F:70:2A:3C:9B:7C:11:F7 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kVAT-zq1KQEIuo8WP3AqPJt8Efc.roa sbgp-ipAddrBlock: critical IPv4: 49.106.224.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:c8:65:32:fe:71:59:2c:c4:86:bb:18:00:7f:c1:b1:ac:ec: 06:b1:68:c4:a7:bf:6e:29:a3:03:ca:a9:f8:89:58:ba:4d:dd: 24:e1:5f:63:da:a7:fa:bc:4d:a8:39:45:1b:65:2c:2e:5c:be: 5b:ad:ca:f2:34:1b:6a:05:d2:7b:9b:0e:a4:49:a3:6e:32:04: 95:02:78:8d:df:94:d8:d9:f3:2a:6e:c9:0f:39:dd:c5:9d:6d: fd:d7:09:5b:3d:2d:4a:4b:0d:4d:e0:c6:5b:e7:f0:4b:0b:a4: 37:b8:c1:b7:9d:01:59:ef:3d:21:5a:c1:67:ec:33:da:32:0c: dc:11:fa:c2:85:69:48:dd:cc:c0:a7:ad:ae:fe:d2:d3:b2:22: 2e:83:c0:11:16:d4:5e:62:a2:30:6e:58:97:c0:98:0e:f3:01: fa:99:6a:b6:61:ab:ae:15:71:52:54:3c:b5:5c:20:b0:73:23: 60:53:1e:b0:fe:1a:93:ad:db:31:d1:12:3a:f6:81:32:4e:37: c2:c6:df:c2:f2:20:78:1a:0e:92:41:ea:b3:80:e9:8d:54:fc: 9a:79:8d:39:08:c6:8f:37:ed:87:cd:bf:1c:bd:39:4f:7a:5f: 30:2c:ad:f9:a4:f4:cc:11:14:6e:4e:f2:85:ab:02:22:50:9e: ee:46:ff:69 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFmswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAxNDZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDkxNTAxM0ZCM0FCNTI5 MDEwOEJBOEYxNjNGNzAyQTNDOUI3QzExRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfSwrfWp107cUYT23NGmGcLIUWwCf1eIlunqyv6FxtzhgG0sjM paIFR78XX3WXn2uuoaG17zeCeDLKu+ytKnmc0arvF09wOzgCYf0851i/gbsqifNb /ujAlQvGed70uD3/gokCp69sjNfMNn3qWPLK/b56912iuy/pJLL7p0tEasLj8w7h FzAA+iRDbhXsHcmAagHOjAkO5vLmjvnsbJg/8lZQlzHXUSp4xbh4Mg5Dq7/JganZ XYd+JaC3jPKG06uXTax3LvRBZ4MK5xgT9aSKV/jErUhKYZt+z1sC9n68eZnrUz+3 4sl+sGK5d2duoMB6+C2aPeP5slOis66L8OuDAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUkVAT+zq1KQEIuo8WP3AqPJt8EfcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2tWQVQtenExS1FFSXVvOFdQM0FxUEp0OEVmYy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAExauAwDQYJKoZIhvcNAQELBQADggEB AJzIZTL+cVksxIa7GAB/wbGs7AaxaMSnv24powPKqfiJWLpN3SThX2Pap/q8Tag5 RRtlLC5cvlutyvI0G2oF0nubDqRJo24yBJUCeI3flNjZ8ypuyQ853cWdbf3XCVs9 LUpLDU3gxlvn8EsLpDe4wbedAVnvPSFawWfsM9oyDNwR+sKFaUjdzMCnra7+0tOy Ii6DwBEW1F5iojBuWJfAmA7zAfqZarZhq64VcVJUPLVcILBzI2BTHrD+GpOt2zHR Ejr2gTJON8LG38LyIHgaDpJB6rOA6Y1U/Jp5jTkIxo837YfNvxy9OU96XzAsrfmk 9MwRFG5O8oWrAiJQnu5G/2k= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:11 2026 by rpki-client