$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/kYshJ1nW_uoBg2Jagw8b9Bb9xjM.roa File: kYshJ1nW_uoBg2Jagw8b9Bb9xjM.roa (raw, json) Hash identifier: DA5S7m0JqR4YK0qFE3h6TFAyHO2eJRIVWkcVMzV30zU= Subject key identifier: 91:8B:21:27:59:D6:FE:EA:01:83:62:5A:83:0F:1B:F4:16:FD:C6:33 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 13D4 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kYshJ1nW_uoBg2Jagw8b9Bb9xjM.roa Signing time: Tue 31 Mar 2026 07:56:24 +0000 ROA not before: Tue 31 Mar 2026 07:56:24 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5076 (0x13d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:56:24 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=918B212759D6FEEA0183625A830F1BF416FDC633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b6:6d:03:cb:f9:8f:1a:9b:e6:04:d0:99:24: d7:62:19:31:2e:0f:e4:87:e3:3a:bc:d2:2a:0c:4a: 96:dd:d6:76:77:22:09:40:d2:fe:ec:65:b6:78:25: 48:74:57:d0:82:21:7b:b1:46:4e:11:18:a7:cf:32: 1b:42:c8:8c:2c:67:39:d8:66:0a:31:e6:5a:09:a5: 08:00:80:b2:17:aa:1e:a4:3e:49:32:b3:5b:ac:40: 05:ac:bf:93:bb:6d:61:ce:93:f4:64:b0:65:18:bd: 2b:4b:13:2c:40:f0:17:1a:f5:fb:4c:7c:8c:f3:2e: 05:ff:00:c7:4c:4e:9b:30:cb:d2:5e:9b:cb:7d:42: 0c:09:df:ff:10:1c:8c:b4:fe:85:49:86:26:01:14: c4:ee:74:1d:98:d8:6d:48:93:2e:b7:10:db:b0:ee: 12:c5:da:2f:a7:81:4a:6c:fe:f7:ef:cd:1a:9e:93: d1:f4:3f:3e:c7:da:5d:fe:33:f4:67:29:a4:e2:e7: 43:70:85:3b:26:95:f0:1b:ad:b4:96:47:93:ef:a6: 4b:ba:1f:ca:66:d1:71:e5:da:c1:f7:6e:4c:72:ff: b8:d1:06:56:72:ca:ad:b8:61:3e:79:e3:c6:ec:d5: 04:b4:ec:d7:1d:ac:9f:97:57:78:b7:61:22:09:e1: 05:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:8B:21:27:59:D6:FE:EA:01:83:62:5A:83:0F:1B:F4:16:FD:C6:33 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kYshJ1nW_uoBg2Jagw8b9Bb9xjM.roa sbgp-ipAddrBlock: critical IPv4: 49.98.25.0/24 Signature Algorithm: sha256WithRSAEncryption c8:27:2a:74:ce:50:71:af:9a:05:36:e2:b4:18:59:87:1a:3c: 98:cd:18:2c:6a:2a:54:e1:7f:fb:5c:69:00:74:5d:93:97:9e: 00:aa:1b:d9:76:fe:a7:bf:15:ce:f5:9f:93:17:15:ac:8b:1d: 37:f7:4f:51:64:b9:1f:b8:26:47:31:90:92:23:d0:64:5f:dc: c5:08:af:42:04:7a:70:6d:98:59:dc:6f:70:12:cc:14:9e:15: 88:1d:ea:07:9c:23:48:a8:2f:ea:04:d9:b9:a6:4d:29:6d:b5: 08:20:f0:55:21:07:0d:61:6e:43:62:10:c1:56:c9:fc:85:4c: 01:a0:ad:8a:19:b5:c8:4e:5d:53:08:ba:5f:ed:76:1b:79:f9: 94:81:7a:32:d5:8e:3f:7a:a7:11:5c:00:3f:79:95:19:b4:25: b5:34:60:36:f4:cc:68:c3:cf:34:6e:f6:7b:34:50:e8:8d:da: 48:a9:f8:cc:56:26:d6:5e:3a:0d:58:e1:c7:ba:f1:93:a0:6f: 34:bd:6b:bd:69:95:08:67:10:ee:7c:35:f1:c6:29:66:0e:ce: d8:bb:e5:d5:22:4c:a0:51:5d:ea:6f:f9:ec:4a:ea:02:4a:49: 32:ba:e8:c0:2f:02:9e:16:8b:61:54:1c:27:4b:58:2a:a0:a9: 6e:cb:50:7c -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICE9QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU2MjRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDkxOEIyMTI3NTlENkZF RUEwMTgzNjI1QTgzMEYxQkY0MTZGREM2MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMtm0Dy/mPGpvmBNCZJNdiGTEuD+SH4zq80ioMSpbd1nZ3IglA 0v7sZbZ4JUh0V9CCIXuxRk4RGKfPMhtCyIwsZznYZgox5loJpQgAgLIXqh6kPkky s1usQAWsv5O7bWHOk/RksGUYvStLEyxA8Bca9ftMfIzzLgX/AMdMTpswy9Jem8t9 QgwJ3/8QHIy0/oVJhiYBFMTudB2Y2G1Iky63ENuw7hLF2i+ngUps/vfvzRqek9H0 Pz7H2l3+M/RnKaTi50NwhTsmlfAbrbSWR5Pvpku6H8pm0XHl2sH3bkxy/7jRBlZy yq24YT5548bs1QS07NcdrJ+XV3i3YSIJ4QUbAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUkYshJ1nW/uoBg2Jagw8b9Bb9xjMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2tZc2hKMW5XX3VvQmcySmFndzhiOUJiOXhqTS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAxYhkwDQYJKoZIhvcNAQELBQADggEB AMgnKnTOUHGvmgU24rQYWYcaPJjNGCxqKlThf/tcaQB0XZOXngCqG9l2/qe/Fc71 n5MXFayLHTf3T1FkuR+4JkcxkJIj0GRf3MUIr0IEenBtmFncb3ASzBSeFYgd6gec I0ioL+oE2bmmTSlttQgg8FUhBw1hbkNiEMFWyfyFTAGgrYoZtchOXVMIul/tdht5 +ZSBejLVjj96pxFcAD95lRm0JbU0YDb0zGjDzzRu9ns0UOiN2kip+MxWJtZeOg1Y 4ce68ZOgbzS9a71plQhnEO58NfHGKWYOzti75dUiTKBRXepv+exK6gJKSTK66MAv Ap4Wi2FUHCdLWCqgqW7LUHw= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:01 2026 by rpki-client