$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/lbSZ0-u9f6B8y7Yv7rRKFM0fuQQ.roa File: lbSZ0-u9f6B8y7Yv7rRKFM0fuQQ.roa (raw, json) Hash identifier: 1XSjBFM9ZauDRZjSTjKpEZr+2wsnRxTR/q8uPyXAbq4= Subject key identifier: 95:B4:99:D3:EB:BD:7F:A0:7C:CB:B6:2F:EE:B4:4A:14:CD:1F:B9:04 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 15A3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lbSZ0-u9f6B8y7Yv7rRKFM0fuQQ.roa Signing time: Tue 31 Mar 2026 08:00:02 +0000 ROA not before: Tue 31 Mar 2026 08:00:02 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.106.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5539 (0x15a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:00:02 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=95B499D3EBBD7FA07CCBB62FEEB44A14CD1FB904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c0:c8:bc:67:3c:c5:27:bb:8a:b9:b4:66:1f: 1a:07:f5:52:cd:a1:21:36:a9:41:b6:eb:39:e8:64: 81:b8:51:ac:c7:2b:b1:2c:43:3a:0b:18:6b:11:8e: 78:6e:78:19:63:a8:82:98:13:3a:27:f0:36:05:b5: d7:4a:08:62:9c:69:6c:38:20:0b:85:43:47:51:4c: ea:d3:ca:2b:f5:53:d5:3e:52:c4:20:00:1a:4d:9b: 4f:0d:cb:93:8b:5d:b7:df:03:b6:34:d3:64:75:b4: 72:51:52:45:d3:db:4b:22:b8:4e:d2:c4:d5:40:e5: 24:b3:73:a2:eb:fb:79:37:3a:71:1a:79:5d:e5:0f: b3:7d:90:00:5e:c6:f1:42:d6:46:c7:05:67:c9:0f: 96:9c:cd:28:63:f2:10:3e:fd:0c:29:b2:13:ef:98: 44:d1:c6:7b:e6:fb:0a:dd:c0:ef:4f:19:81:40:73: a3:ff:df:56:b9:3e:32:3f:6d:6b:2f:15:d0:9b:9b: d6:db:2d:e7:29:91:ed:16:99:e1:e5:b7:5b:5d:5d: a3:b0:81:99:a1:78:9d:8f:8f:17:14:79:82:a6:30: 04:94:b3:73:67:78:9a:be:fc:76:a8:30:01:43:f0: 11:53:22:12:e6:51:5e:07:8d:38:13:0d:72:2f:67: fe:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:B4:99:D3:EB:BD:7F:A0:7C:CB:B6:2F:EE:B4:4A:14:CD:1F:B9:04 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lbSZ0-u9f6B8y7Yv7rRKFM0fuQQ.roa sbgp-ipAddrBlock: critical IPv4: 49.106.192.0/22 Signature Algorithm: sha256WithRSAEncryption 14:4e:43:b8:fd:7e:0f:60:b5:ab:19:f5:50:d8:75:2c:42:8c: 31:0a:2f:00:7b:ee:7b:2b:f5:27:c8:58:88:7d:2e:1a:1b:6a: a7:45:c6:41:dc:20:1e:ac:4d:cb:93:73:1a:a7:3e:27:4d:39: af:ba:0d:92:15:5a:49:26:05:52:81:98:4c:b4:cb:a6:80:34: a9:20:0c:ab:23:5c:7b:69:c9:0f:eb:c8:01:f8:a7:9b:11:7a: e9:29:a8:98:1f:cc:9e:07:36:c0:4f:7b:31:ef:4c:77:8e:7e: 6a:ee:36:11:0d:0a:e9:2b:45:fc:ff:1c:55:94:2c:4e:5a:55: c5:d6:b8:e0:8d:06:77:c4:46:6e:15:ab:c2:68:0b:95:93:22: 77:e5:b8:0b:61:c7:a4:a7:bd:32:fd:d6:2d:5a:9f:89:bc:35: 1e:f1:77:d1:76:84:d7:de:e7:4e:fc:e9:3f:6c:c7:a2:4b:7b: 06:5c:37:8c:d7:5a:1c:d4:2b:71:56:0c:c4:54:0a:aa:58:0d: 2e:e4:72:b3:82:48:06:8c:7a:55:1b:58:99:b7:f1:bd:09:89: be:5b:f3:51:e2:2c:a0:1e:a8:16:ef:ad:2f:6b:80:41:52:c2: 3b:35:eb:9e:e2:62:11:a1:e8:5a:96:c1:f1:22:4c:ed:e8:f3: 22:72:ff:65 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFaMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAwMDJaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDk1QjQ5OUQzRUJCRDdG QTA3Q0NCQjYyRkVFQjQ0QTE0Q0QxRkI5MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgwMi8ZzzFJ7uKubRmHxoH9VLNoSE2qUG26znoZIG4UazHK7Es QzoLGGsRjnhueBljqIKYEzon8DYFtddKCGKcaWw4IAuFQ0dRTOrTyiv1U9U+UsQg ABpNm08Ny5OLXbffA7Y002R1tHJRUkXT20siuE7SxNVA5SSzc6Lr+3k3OnEaeV3l D7N9kABexvFC1kbHBWfJD5aczShj8hA+/QwpshPvmETRxnvm+wrdwO9PGYFAc6P/ 31a5PjI/bWsvFdCbm9bbLecpke0WmeHlt1tdXaOwgZmheJ2PjxcUeYKmMASUs3Nn eJq+/HaoMAFD8BFTIhLmUV4HjTgTDXIvZ/5fAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUlbSZ0+u9f6B8y7Yv7rRKFM0fuQQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L2xiU1owLXU5ZjZCOHk3WXY3clJLRk0wZnVRUS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIxasAwDQYJKoZIhvcNAQELBQADggEB ABROQ7j9fg9gtasZ9VDYdSxCjDEKLwB77nsr9SfIWIh9LhobaqdFxkHcIB6sTcuT cxqnPidNOa+6DZIVWkkmBVKBmEy0y6aANKkgDKsjXHtpyQ/ryAH4p5sReukpqJgf zJ4HNsBPezHvTHeOfmruNhENCukrRfz/HFWULE5aVcXWuOCNBnfERm4Vq8JoC5WT InfluAthx6SnvTL91i1an4m8NR7xd9F2hNfe50786T9sx6JLewZcN4zXWhzUK3FW DMRUCqpYDS7kcrOCSAaMelUbWJm38b0Jib5b81HiLKAeqBbvrS9rgEFSwjs1657i YhGh6FqWwfEiTO3o8yJy/2U= -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:06 2026 by rpki-client