$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/nAAQheLCpreyH1grftnMbazXAXw.roa File: nAAQheLCpreyH1grftnMbazXAXw.roa (raw, json) Hash identifier: tNRhWpO7PzqfjG7+yikUgacjkmc9LgYWYxP5fa7HiqI= Subject key identifier: 9C:00:10:85:E2:C2:A6:B7:B2:1F:58:2B:7E:D9:CC:6D:AC:D7:01:7C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1870 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nAAQheLCpreyH1grftnMbazXAXw.roa Signing time: Tue 31 Mar 2026 08:05:59 +0000 ROA not before: Tue 31 Mar 2026 08:05:59 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.106.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6256 (0x1870) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:05:59 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=9C001085E2C2A6B7B21F582B7ED9CC6DACD7017C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0a:ad:05:03:3a:ee:1e:fa:49:d9:64:0e:c9: 92:56:1b:37:a7:08:e9:67:ce:26:08:2d:51:d6:e7: 2e:1d:d4:44:02:75:81:64:1b:bb:07:9e:f7:ab:60: 08:86:90:56:a0:0a:98:63:c6:33:01:e7:ba:40:22: e7:83:f7:b6:48:57:53:8f:9c:2a:1e:24:e1:e3:64: db:4b:18:84:2b:7b:6b:22:ba:91:0b:4f:51:ee:86: 4c:31:03:8c:e7:48:6a:eb:be:17:9e:72:c3:f7:06: 03:0d:c5:60:87:83:33:b5:e8:f8:ef:3c:30:77:a7: 85:b9:e6:a1:8f:f3:de:9d:5e:9b:83:e0:a0:77:60: b3:d5:13:7d:b7:42:de:ed:74:22:8d:5b:7c:59:ee: da:ff:85:a2:16:61:32:53:68:c8:9a:be:ac:8e:85: 77:93:81:34:08:09:7a:73:f4:a2:10:bf:cf:6b:da: 9a:50:dc:f6:d9:04:32:3e:50:b6:6c:68:e9:f1:8d: 96:6c:e1:39:1b:ae:bf:56:de:24:0e:15:38:4b:9a: 33:55:23:96:8e:28:a1:97:5b:f2:aa:af:87:27:0d: a6:68:7c:23:ef:4a:60:ee:d8:d9:1a:22:ca:57:ca: bf:8b:fb:d7:6a:85:41:fd:8f:ad:5f:e5:db:ff:f6: 62:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:00:10:85:E2:C2:A6:B7:B2:1F:58:2B:7E:D9:CC:6D:AC:D7:01:7C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nAAQheLCpreyH1grftnMbazXAXw.roa sbgp-ipAddrBlock: critical IPv4: 49.106.0.0/19 Signature Algorithm: sha256WithRSAEncryption 08:b0:21:d6:97:d9:e2:fc:30:1e:29:20:6b:87:c6:6d:58:1c: 7e:11:67:04:a7:88:cc:ad:36:4c:f0:0b:dd:1e:4c:6e:e9:39: 66:e7:a0:0d:1e:57:07:3d:fb:65:8e:f5:88:36:72:42:09:9b: 55:12:3e:9f:14:33:50:73:a6:41:29:b6:45:1d:db:ea:a8:28: 2f:4f:1a:b0:c6:88:08:af:70:7a:97:9d:9e:38:ea:c6:70:88: 2f:06:c2:70:bf:bb:5b:9f:55:41:d2:12:5a:6e:89:ef:31:7a: c9:4c:b7:75:bd:f4:c6:4a:49:b6:8a:5f:1f:f1:89:5e:15:75: 35:60:8d:c8:aa:d9:81:ec:81:97:05:06:4e:8c:42:80:d0:de: e4:a3:0a:b3:2a:15:fe:02:58:ec:7c:31:b0:ef:ad:a2:d6:98: 7e:c0:ae:2f:3a:57:f5:af:1f:fe:9b:d3:24:15:29:fd:92:ba: e8:04:4e:a4:0f:ce:fa:61:a9:9d:90:fc:47:0f:f1:c2:04:41: 14:8d:07:f4:c2:25:6a:3d:1c:7e:34:14:13:60:85:39:19:11: da:95:1b:ac:ca:f1:c3:0e:bc:a9:3a:e4:c8:bf:aa:06:d4:05: b1:4a:70:59:9a:8b:8c:52:f4:29:ec:d4:fe:51:f3:48:c9:7b: ca:26:bf:79 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICGHAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODA1NTlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDlDMDAxMDg1RTJDMkE2 QjdCMjFGNTgyQjdFRDlDQzZEQUNENzAxN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFCq0FAzruHvpJ2WQOyZJWGzenCOlnziYILVHW5y4d1EQCdYFk G7sHnverYAiGkFagCphjxjMB57pAIueD97ZIV1OPnCoeJOHjZNtLGIQre2siupEL T1HuhkwxA4znSGrrvheecsP3BgMNxWCHgzO16PjvPDB3p4W55qGP896dXpuD4KB3 YLPVE323Qt7tdCKNW3xZ7tr/haIWYTJTaMiavqyOhXeTgTQICXpz9KIQv89r2ppQ 3PbZBDI+ULZsaOnxjZZs4Tkbrr9W3iQOFThLmjNVI5aOKKGXW/Kqr4cnDaZofCPv SmDu2NkaIspXyr+L+9dqhUH9j61f5dv/9mJrAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUnAAQheLCpreyH1grftnMbazXAXwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L25BQVFoZUxDcHJleUgxZ3JmdG5NYmF6WEFYdy5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAUxagAwDQYJKoZIhvcNAQELBQADggEB AAiwIdaX2eL8MB4pIGuHxm1YHH4RZwSniMytNkzwC90eTG7pOWbnoA0eVwc9+2WO 9Yg2ckIJm1USPp8UM1BzpkEptkUd2+qoKC9PGrDGiAivcHqXnZ446sZwiC8GwnC/ u1ufVUHSElpuie8xeslMt3W99MZKSbaKXx/xiV4VdTVgjciq2YHsgZcFBk6MQoDQ 3uSjCrMqFf4CWOx8MbDvraLWmH7Ari86V/WvH/6b0yQVKf2SuugETqQPzvphqZ2Q /EcP8cIEQRSNB/TCJWo9HH40FBNghTkZEdqVG6zK8cMOvKk65Mi/qgbUBbFKcFma i4xS9Cns1P5R80jJe8omv3k= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:59 2026 by rpki-client