$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/oKe0GX7RIY0OpOFlIhzbej45XIY.roa File: oKe0GX7RIY0OpOFlIhzbej45XIY.roa (raw, json) Hash identifier: h2+h+NEVF2trTv+EE5FPkpCoySZe6IDZQG5LoaHdGQk= Subject key identifier: A0:A7:B4:19:7E:D1:21:8D:0E:A4:E1:65:22:1C:DB:7A:3E:39:5C:86 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1452 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oKe0GX7RIY0OpOFlIhzbej45XIY.roa Signing time: Tue 31 Mar 2026 07:57:20 +0000 ROA not before: Tue 31 Mar 2026 07:57:20 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5202 (0x1452) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:57:20 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=A0A7B4197ED1218D0EA4E165221CDB7A3E395C86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f4:da:b0:69:e5:f2:0d:0f:c8:53:73:95:07: 45:2d:33:c7:dd:21:95:b8:d3:d4:f6:7b:15:9e:e4: 46:29:24:5d:6e:2a:60:e0:5e:9a:90:a9:48:d8:7e: 4c:7c:bd:f0:0a:b9:c9:62:74:64:91:0b:3b:7f:ff: 22:8b:3c:ca:84:f9:b5:cb:97:39:da:80:df:8d:56: fe:b7:03:10:4a:f0:06:34:f3:02:44:9e:1b:6a:88: 63:2c:2b:d0:bc:15:b0:30:42:5e:f1:66:27:b1:49: c4:be:3f:98:b8:16:88:c7:24:85:9f:b4:0d:f1:81: f5:26:de:84:d0:0d:2e:11:57:03:6e:59:5f:9f:7b: 0b:90:cb:d0:37:ca:6f:10:89:da:71:43:7c:da:f8: 63:8c:7d:51:37:b8:a3:e0:56:07:31:00:ae:ae:82: 52:e3:dd:21:eb:9c:a5:c6:51:be:c1:96:4e:40:2a: 3c:6b:25:3f:c4:9e:5e:68:30:12:60:85:06:fa:46: e6:4d:ec:76:04:8f:6e:10:7a:1b:43:4c:e3:43:9c: a3:2d:d8:5d:a3:cc:26:b0:4f:b8:72:60:06:7d:f9: cc:27:64:2c:2e:4a:1f:27:1c:56:a4:2e:49:3c:0c: e1:b3:13:c7:0e:7f:b0:96:c2:8c:3d:f9:91:43:0a: 67:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:A7:B4:19:7E:D1:21:8D:0E:A4:E1:65:22:1C:DB:7A:3E:39:5C:86 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oKe0GX7RIY0OpOFlIhzbej45XIY.roa sbgp-ipAddrBlock: critical IPv4: 49.98.8.0/22 Signature Algorithm: sha256WithRSAEncryption 0d:35:9d:76:84:aa:5b:f3:d3:1e:82:21:d8:1f:12:ff:11:c8: ef:98:7a:95:e3:1a:c6:50:28:df:5f:44:62:4d:9f:bc:8f:c5: 18:81:09:05:a5:89:c9:78:dc:9a:c5:4c:ca:cc:58:6b:73:50: 02:c1:86:76:aa:ae:67:4f:40:81:0e:11:fd:b2:29:4d:f6:51: c1:d4:0e:cb:42:8a:82:11:b9:2d:60:1f:df:b6:aa:f3:7a:39: 7a:cd:dd:48:3a:de:ce:ca:99:46:a5:de:c6:02:7f:2e:20:ac: 83:20:8e:84:29:4c:16:61:c8:b1:19:f5:34:a4:55:61:35:bb: 3f:e1:72:0c:3b:ff:38:59:1a:a0:49:a0:a5:53:65:0a:cb:09: 20:59:25:1d:73:b8:fe:1e:34:f8:9d:5e:d0:7c:79:19:01:06: 71:5e:8c:5a:44:df:01:ef:17:67:2f:9b:59:be:05:76:68:ce: 3b:42:d4:62:77:e5:9f:46:bd:9d:b0:9d:a3:0c:18:81:3d:0d: d2:68:4a:cc:e5:04:58:04:a3:65:78:36:aa:ae:e8:cf:da:b6: 0b:c1:e9:fb:68:01:df:89:75:95:5a:51:33:09:5b:c9:02:ea: 31:74:66:2f:fb:b6:35:5e:ab:af:44:91:9c:28:2f:6e:7b:6a: d0:ef:7e:5c -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFFIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU3MjBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEEwQTdCNDE5N0VEMTIx OEQwRUE0RTE2NTIyMUNEQjdBM0UzOTVDODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC59NqwaeXyDQ/IU3OVB0UtM8fdIZW409T2exWe5EYpJF1uKmDg XpqQqUjYfkx8vfAKuclidGSRCzt//yKLPMqE+bXLlznagN+NVv63AxBK8AY08wJE nhtqiGMsK9C8FbAwQl7xZiexScS+P5i4FojHJIWftA3xgfUm3oTQDS4RVwNuWV+f ewuQy9A3ym8QidpxQ3za+GOMfVE3uKPgVgcxAK6uglLj3SHrnKXGUb7Blk5AKjxr JT/Enl5oMBJghQb6RuZN7HYEj24QehtDTONDnKMt2F2jzCawT7hyYAZ9+cwnZCwu Sh8nHFakLkk8DOGzE8cOf7CWwow9+ZFDCmdFAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUoKe0GX7RIY0OpOFlIhzbej45XIYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L29LZTBHWDdSSVkwT3BPRmxJaHpiZWo0NVhJWS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIxYggwDQYJKoZIhvcNAQELBQADggEB AA01nXaEqlvz0x6CIdgfEv8RyO+YepXjGsZQKN9fRGJNn7yPxRiBCQWlicl43JrF TMrMWGtzUALBhnaqrmdPQIEOEf2yKU32UcHUDstCioIRuS1gH9+2qvN6OXrN3Ug6 3s7KmUal3sYCfy4grIMgjoQpTBZhyLEZ9TSkVWE1uz/hcgw7/zhZGqBJoKVTZQrL CSBZJR1zuP4eNPidXtB8eRkBBnFejFpE3wHvF2cvm1m+BXZozjtC1GJ35Z9GvZ2w naMMGIE9DdJoSszlBFgEo2V4Nqqu6M/atgvB6ftoAd+JdZVaUTMJW8kC6jF0Zi/7 tjVeq69EkZwoL257atDvflw= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:17 2026 by rpki-client