$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/nmYcKYwcYpQW0gtRIGVd4fqvgXI.roa File: nmYcKYwcYpQW0gtRIGVd4fqvgXI.roa (raw, json) Hash identifier: 6V7qJGh4yFc7JAjZPOXG0sDkb/xohtRnMgcxDYbEQr4= Subject key identifier: 9E:66:1C:29:8C:1C:62:94:16:D2:0B:51:20:65:5D:E1:FA:AF:81:72 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 166F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nmYcKYwcYpQW0gtRIGVd4fqvgXI.roa Signing time: Tue 31 Mar 2026 08:01:47 +0000 ROA not before: Tue 31 Mar 2026 08:01:47 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.104.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5743 (0x166f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:01:47 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=9E661C298C1C629416D20B5120655DE1FAAF8172 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f9:a5:e2:92:92:be:f0:35:0b:7c:9f:b5:c6: 88:d3:26:f7:a2:f7:f0:1c:21:9d:51:ab:d9:c5:37: db:0f:6d:f6:1e:89:e7:a6:90:4b:37:47:f1:47:9c: 2d:ad:20:1d:1c:2b:cb:d2:2e:04:95:81:1e:26:a7: c7:97:e5:5d:0f:02:13:0b:de:fc:6d:f7:6c:e5:2b: 9b:b2:97:09:d5:ab:d2:73:20:62:74:d9:1a:29:13: ad:0a:54:75:9d:36:ab:25:84:47:b6:d3:6c:bb:a4: ef:19:95:36:78:64:8d:ab:22:52:4f:3e:17:08:df: bd:c1:67:de:e7:5c:e8:d3:38:d1:6c:8b:f3:28:ad: 35:86:ae:ca:11:a2:3f:fc:34:f2:10:c3:6f:f3:bf: 68:20:bf:09:d8:c6:52:a0:63:95:a3:47:0d:f1:9b: 1f:41:62:71:c5:2d:5f:d6:d7:ff:7d:dc:f0:25:f2: 04:cc:28:da:a6:17:41:16:85:1a:c4:05:27:4b:72: af:5d:8c:94:be:72:9f:3e:a7:20:a9:f3:80:23:a5: fe:b2:f5:3b:45:db:98:ca:b9:a4:d6:56:08:0a:b7: 7f:4d:23:1c:da:fd:09:c2:f4:17:a8:37:06:23:0e: 42:e0:af:e2:07:82:97:53:78:3f:f0:93:bb:ca:7f: 08:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:66:1C:29:8C:1C:62:94:16:D2:0B:51:20:65:5D:E1:FA:AF:81:72 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nmYcKYwcYpQW0gtRIGVd4fqvgXI.roa sbgp-ipAddrBlock: critical IPv4: 49.104.23.0/24 Signature Algorithm: sha256WithRSAEncryption c4:83:75:5f:fd:35:c6:a3:ff:ad:57:99:54:70:f7:c9:c8:39: 59:10:91:14:cc:26:01:3c:9b:d7:63:6f:49:05:76:4a:6f:df: e0:25:27:97:f9:fa:4e:65:55:54:13:3a:66:be:1e:8a:a9:da: bb:b3:85:20:cb:17:9b:3f:4d:b0:3e:2d:e9:f7:76:32:d0:64: 9e:60:ad:3c:75:e0:3f:e6:97:38:ad:30:0c:b7:de:c1:49:16: 31:67:ee:68:d8:2d:fb:08:ce:cc:d2:48:8a:8b:f0:f3:61:e1: 16:65:47:b2:12:c9:48:29:77:65:36:21:1e:f5:65:e5:6f:00: 0d:86:39:72:88:40:c8:da:38:44:46:74:2f:b8:49:85:3c:81: d4:a8:05:eb:78:2e:ae:c8:4e:ff:a7:af:8f:a6:a3:a1:83:75: f6:48:0a:98:38:39:3b:eb:5e:54:dc:dc:9c:63:8d:e2:b3:0e: 20:93:b3:d0:37:90:a8:3a:d5:52:b1:69:58:d8:57:fc:6d:9a: 0b:d5:2e:20:c3:40:f5:8b:ad:b2:4d:f0:40:42:19:79:5c:9d: a0:1c:48:51:dd:c1:17:bc:13:c7:28:ea:5e:e9:37:ce:ab:97: 33:36:4c:ad:90:40:35:a4:47:73:67:30:31:75:c7:92:39:e1: 7c:04:de:70 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFm8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAxNDdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDlFNjYxQzI5OEMxQzYy OTQxNkQyMEI1MTIwNjU1REUxRkFBRjgxNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC+aXikpK+8DULfJ+1xojTJvei9/AcIZ1Rq9nFN9sPbfYeieem kEs3R/FHnC2tIB0cK8vSLgSVgR4mp8eX5V0PAhML3vxt92zlK5uylwnVq9JzIGJ0 2RopE60KVHWdNqslhEe202y7pO8ZlTZ4ZI2rIlJPPhcI373BZ97nXOjTONFsi/Mo rTWGrsoRoj/8NPIQw2/zv2ggvwnYxlKgY5WjRw3xmx9BYnHFLV/W1/993PAl8gTM KNqmF0EWhRrEBSdLcq9djJS+cp8+pyCp84Ajpf6y9TtF25jKuaTWVggKt39NIxza /QnC9BeoNwYjDkLgr+IHgpdTeD/wk7vKfwgNAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUnmYcKYwcYpQW0gtRIGVd4fqvgXIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L25tWWNLWXdjWXBRVzBndFJJR1ZkNGZxdmdYSS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAxaBcwDQYJKoZIhvcNAQELBQADggEB AMSDdV/9Ncaj/61XmVRw98nIOVkQkRTMJgE8m9djb0kFdkpv3+AlJ5f5+k5lVVQT Oma+Hoqp2ruzhSDLF5s/TbA+Len3djLQZJ5grTx14D/mlzitMAy33sFJFjFn7mjY LfsIzszSSIqL8PNh4RZlR7ISyUgpd2U2IR71ZeVvAA2GOXKIQMjaOERGdC+4SYU8 gdSoBet4Lq7ITv+nr4+mo6GDdfZICpg4OTvrXlTc3JxjjeKzDiCTs9A3kKg61VKx aVjYV/xtmgvVLiDDQPWLrbJN8EBCGXlcnaAcSFHdwRe8E8co6l7pN86rlzM2TK2Q QDWkR3NnMDF1x5I54XwE3nA= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:52 2026 by rpki-client