$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/kWn1_qRCkAjH2BqW1JuXslRfgi8.roa File: kWn1_qRCkAjH2BqW1JuXslRfgi8.roa (raw, json) Hash identifier: Jd80BChcS7lYix7HdwroclnxrfEazb4hmrIAUJ1P7TE= Subject key identifier: 91:69:F5:FE:A4:42:90:08:C7:D8:1A:96:D4:9B:97:B2:54:5F:82:2F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 185B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kWn1_qRCkAjH2BqW1JuXslRfgi8.roa Signing time: Tue 31 Mar 2026 08:05:50 +0000 ROA not before: Tue 31 Mar 2026 08:05:50 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6235 (0x185b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:05:50 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=9169F5FEA4429008C7D81A96D49B97B2545F822F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a1:55:48:ca:0e:79:07:65:b9:90:ed:2b:0a: 3d:ee:7c:1d:95:5f:b2:d7:31:e3:3b:3a:4d:e1:20: ac:09:21:69:3d:09:5e:57:5b:52:0c:c6:f5:bc:90: 31:bb:d7:86:a4:bf:2c:54:bb:5e:0c:88:07:61:16: af:4a:1d:8e:6f:a6:bb:c5:88:81:9e:fc:1e:43:1a: d5:e5:9a:03:e4:f5:c3:26:8a:c9:ff:7c:23:a0:bc: e2:fd:f8:f9:5e:e6:d4:fb:8c:7a:0a:a3:3e:15:28: bd:af:e9:c5:13:88:80:fe:26:07:c4:4b:f3:1e:fc: 74:33:42:5f:06:fa:01:82:8b:a0:cb:98:62:b6:67: 5e:3e:18:ac:ee:3f:de:15:28:e7:19:c6:e8:1b:5a: 90:3d:c6:6b:5f:7f:f5:56:e0:73:a4:18:08:8a:ee: 12:b2:cd:86:21:32:59:a9:5c:f4:8b:01:0b:bc:61: 8c:3d:ae:5c:c2:1c:5a:77:ac:c2:7d:f8:8c:6a:85: 98:1e:13:70:e9:51:41:b7:9b:14:13:94:a7:0b:c9: 6d:e3:ee:aa:15:e1:70:e4:90:4c:5d:00:4c:da:cb: b4:fb:f9:05:21:31:f3:15:33:fa:47:3d:b3:48:f6: 19:3a:00:b2:98:57:fe:2f:0a:74:5f:c4:ac:df:73: fa:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:69:F5:FE:A4:42:90:08:C7:D8:1A:96:D4:9B:97:B2:54:5F:82:2F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kWn1_qRCkAjH2BqW1JuXslRfgi8.roa sbgp-ipAddrBlock: critical IPv4: 49.96.128.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:d3:d1:47:e2:fe:43:c4:42:db:fe:05:bf:d9:9c:d4:7a:20: 27:e3:84:bf:a4:fc:08:b2:02:70:16:35:f0:3d:a7:6d:60:9b: d7:ae:d0:cc:fa:c7:6d:ca:cc:92:50:e5:a6:c5:33:90:b7:47: 47:06:fb:7d:28:f1:05:4a:e8:f4:a7:06:73:16:53:19:8d:10: 42:e8:20:4c:25:b4:34:12:b7:4a:9a:b3:0a:48:35:f0:45:5c: cb:62:34:2a:ef:84:90:eb:4f:6e:5c:27:f6:d1:1d:24:a1:28: 5e:58:c9:4f:31:8b:76:e0:6a:c3:5a:03:58:52:fa:d8:9e:4f: 61:27:db:28:a4:2c:8e:cb:f2:a8:55:9e:fe:d5:f7:a8:c7:d3: fb:22:c1:2a:06:83:f4:48:54:6d:0b:cb:d0:c5:d8:99:ad:c8: 2f:31:81:23:1d:6c:89:6e:f1:2b:12:5d:76:cd:b3:0c:44:51: f4:d7:24:a3:48:11:07:14:ea:53:9e:1d:08:33:06:59:71:ec: 74:3f:b1:1f:ec:44:0b:27:b0:02:44:fe:b0:e4:48:e8:e8:8c: bc:2f:a5:43:b9:3e:49:ca:e2:a1:42:af:ca:2b:8d:07:35:ef: 9e:39:1b:42:31:54:47:e9:e8:2f:3d:9d:09:59:83:34:6f:9a: 8c:82:81:ff -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICGFswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODA1NTBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDkxNjlGNUZFQTQ0Mjkw MDhDN0Q4MUE5NkQ0OUI5N0IyNTQ1RjgyMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqoVVIyg55B2W5kO0rCj3ufB2VX7LXMeM7Ok3hIKwJIWk9CV5X W1IMxvW8kDG714akvyxUu14MiAdhFq9KHY5vprvFiIGe/B5DGtXlmgPk9cMmisn/ fCOgvOL9+Ple5tT7jHoKoz4VKL2v6cUTiID+JgfES/Me/HQzQl8G+gGCi6DLmGK2 Z14+GKzuP94VKOcZxugbWpA9xmtff/VW4HOkGAiK7hKyzYYhMlmpXPSLAQu8YYw9 rlzCHFp3rMJ9+IxqhZgeE3DpUUG3mxQTlKcLyW3j7qoV4XDkkExdAEzay7T7+QUh MfMVM/pHPbNI9hk6ALKYV/4vCnRfxKzfc/oNAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUkWn1/qRCkAjH2BqW1JuXslRfgi8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2tXbjFfcVJDa0FqSDJCcVcxSnVYc2xSZmdpOC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIxYIAwDQYJKoZIhvcNAQELBQADggEB AE7T0Ufi/kPEQtv+Bb/ZnNR6ICfjhL+k/AiyAnAWNfA9p21gm9eu0Mz6x23KzJJQ 5abFM5C3R0cG+30o8QVK6PSnBnMWUxmNEELoIEwltDQSt0qaswpINfBFXMtiNCrv hJDrT25cJ/bRHSShKF5YyU8xi3bgasNaA1hS+tieT2En2yikLI7L8qhVnv7V96jH 0/siwSoGg/RIVG0Ly9DF2JmtyC8xgSMdbIlu8SsSXXbNswxEUfTXJKNIEQcU6lOe HQgzBllx7HQ/sR/sRAsnsAJE/rDkSOjojLwvpUO5PknK4qFCr8orjQc17545G0Ix VEfp6C89nQlZgzRvmoyCgf8= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:38 2026 by rpki-client