$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/no35i-mupQbaDuwrilPb1elEPLk.roa File: no35i-mupQbaDuwrilPb1elEPLk.roa (raw, json) Hash identifier: Nd/7r1f8BZ2sqNa3F496kzytq9lcv+XBfa0XYXEJbkA= Subject key identifier: 9E:8D:F9:8B:E9:AE:A5:06:DA:0E:EC:2B:8A:53:DB:D5:E9:44:3C:B9 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 155D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/no35i-mupQbaDuwrilPb1elEPLk.roa Signing time: Tue 31 Mar 2026 07:59:30 +0000 ROA not before: Tue 31 Mar 2026 07:59:30 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.108.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5469 (0x155d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:59:30 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=9E8DF98BE9AEA506DA0EEC2B8A53DBD5E9443CB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:22:ea:81:ec:79:82:bd:83:20:20:e3:72:7e: 3f:14:d1:49:a4:ef:a9:e3:3f:2b:6d:61:b7:ec:19: 5a:b8:1b:9b:0d:33:53:20:05:9a:0e:21:a8:ad:4c: 12:d9:2e:e5:9e:96:21:57:62:e6:4a:72:e9:fa:8c: b0:38:f3:0c:b8:f7:6a:e0:0a:c0:8b:d6:b8:37:ff: 46:1b:74:6f:0e:c1:bd:14:56:e6:44:9a:60:b3:7d: 0d:f2:0a:b8:6c:00:1d:43:d2:29:a5:7c:49:c0:da: a5:73:cb:4f:e0:60:5b:65:aa:35:cf:3c:82:88:95: b1:a0:ac:b2:08:e2:32:b0:26:d0:b6:8b:d9:4a:0d: 2a:03:11:da:86:be:f9:e6:67:25:fc:61:6a:16:1d: 8f:ec:d2:fc:04:15:96:7f:63:4b:cb:32:c6:2b:aa: e1:d3:21:c7:73:54:41:87:ed:85:71:a8:61:da:77: 7a:30:7f:5a:ca:12:64:f8:91:a5:f6:6d:ad:27:8e: ef:a1:6c:ae:6a:3b:2e:5f:a5:de:30:f2:90:64:ac: dd:8a:d4:85:3a:d4:76:7f:31:b0:e8:b0:f4:a8:2a: f5:9f:64:cc:a9:5e:15:be:6d:a3:eb:bf:16:c6:50: 23:b1:96:5d:93:d6:61:2e:a1:15:08:9f:e3:64:96: bf:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:8D:F9:8B:E9:AE:A5:06:DA:0E:EC:2B:8A:53:DB:D5:E9:44:3C:B9 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/no35i-mupQbaDuwrilPb1elEPLk.roa sbgp-ipAddrBlock: critical IPv4: 49.108.238.0/23 Signature Algorithm: sha256WithRSAEncryption 69:48:0b:f7:27:2c:3c:78:89:11:6d:c0:8a:f2:97:be:c8:97: 86:87:51:38:f1:21:e0:1e:03:64:26:ed:60:6b:d3:9b:10:f5: e6:a7:89:cf:56:58:65:d8:5b:97:d7:7b:79:a6:ae:d8:1b:9b: ef:42:da:25:a9:61:85:ef:9c:17:bb:0f:e4:6d:1a:40:1f:0e: e9:f7:ec:05:5b:54:4a:ee:ba:bc:c6:2b:c3:68:e9:6c:f2:67: e4:0e:bb:c3:04:5a:26:5d:cc:bf:bb:fb:88:3e:37:4e:db:a4: b6:f0:ee:2f:4e:47:05:e7:ab:1d:80:1d:c2:09:ab:d2:63:8a: f3:08:73:3f:1e:48:76:33:42:a4:b0:74:f7:9a:68:0d:89:4d: 19:c0:ce:42:7c:bc:46:66:ca:98:74:d8:4a:ff:42:1d:5b:01: 8f:b1:11:d0:f6:fe:c4:2d:77:cc:e2:a0:e1:4b:82:30:c4:2d: 11:a5:ec:45:a2:e3:ee:3a:68:17:83:91:a5:d5:b6:d9:6b:00: 8d:03:0e:ce:f8:7b:e5:cf:62:b8:30:19:d3:39:3d:a1:86:63: fe:ec:92:05:4b:25:1d:a1:f4:80:0b:54:66:02:6d:5d:e0:60: ca:38:e9:7a:f0:08:61:6d:4f:ba:ad:0f:db:77:3a:96:8f:0b: 78:b3:94:04 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFV0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU5MzBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDlFOERGOThCRTlBRUE1 MDZEQTBFRUMyQjhBNTNEQkQ1RTk0NDNDQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKIuqB7HmCvYMgIONyfj8U0Umk76njPyttYbfsGVq4G5sNM1Mg BZoOIaitTBLZLuWeliFXYuZKcun6jLA48wy492rgCsCL1rg3/0YbdG8Owb0UVuZE mmCzfQ3yCrhsAB1D0imlfEnA2qVzy0/gYFtlqjXPPIKIlbGgrLII4jKwJtC2i9lK DSoDEdqGvvnmZyX8YWoWHY/s0vwEFZZ/Y0vLMsYrquHTIcdzVEGH7YVxqGHad3ow f1rKEmT4kaX2ba0nju+hbK5qOy5fpd4w8pBkrN2K1IU61HZ/MbDosPSoKvWfZMyp XhW+baPrvxbGUCOxll2T1mEuoRUIn+Nklr+dAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUno35i+mupQbaDuwrilPb1elEPLkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L25vMzVpLW11cFFiYUR1d3JpbFBiMWVsRVBMay5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAExbO4wDQYJKoZIhvcNAQELBQADggEB AGlIC/cnLDx4iRFtwIryl77Il4aHUTjxIeAeA2Qm7WBr05sQ9eanic9WWGXYW5fX e3mmrtgbm+9C2iWpYYXvnBe7D+RtGkAfDun37AVbVEruurzGK8No6WzyZ+QOu8ME WiZdzL+7+4g+N07bpLbw7i9ORwXnqx2AHcIJq9JjivMIcz8eSHYzQqSwdPeaaA2J TRnAzkJ8vEZmyph02Er/Qh1bAY+xEdD2/sQtd8zioOFLgjDELRGl7EWi4+46aBeD kaXVttlrAI0DDs74e+XPYrgwGdM5PaGGY/7skgVLJR2h9IALVGYCbV3gYMo46Xrw CGFtT7qtD9t3OpaPC3izlAQ= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:50 2026 by rpki-client