$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/qonri-Pi6ndjNRqjbi9HpskNrzA.roa File: qonri-Pi6ndjNRqjbi9HpskNrzA.roa (raw, json) Hash identifier: w0ubNREea4ySpnQfoCJ120t71OxqIMHN9Je3l63RXhY= Subject key identifier: AA:89:EB:8B:E3:E2:EA:77:63:35:1A:A3:6E:2F:47:A6:C9:0D:AF:30 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 13DD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qonri-Pi6ndjNRqjbi9HpskNrzA.roa Signing time: Tue 31 Mar 2026 07:56:28 +0000 ROA not before: Tue 31 Mar 2026 07:56:28 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5085 (0x13dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:56:28 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=AA89EB8BE3E2EA7763351AA36E2F47A6C90DAF30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a9:d1:2f:2a:dd:ae:8f:ad:ea:a5:54:01:88: b7:ad:db:1b:b7:35:e9:e5:f4:00:83:00:da:c1:6d: fd:97:3d:d4:87:55:f0:58:3f:a4:fc:23:a6:38:cf: d4:17:67:f8:64:55:dd:2e:f3:7f:9b:86:fe:ca:fe: 44:ed:d7:8d:43:77:fb:cd:9b:27:49:35:a7:72:db: b2:7b:44:ad:28:8f:61:09:fe:4c:2f:5c:a5:dc:dd: 6f:bc:21:2d:2b:78:97:e8:26:ea:30:6a:47:2b:07: be:73:77:c4:78:40:2d:5a:9d:0f:32:e3:e8:0b:38: 88:e4:6a:e2:ad:5f:71:7c:23:33:e8:a9:c5:bc:66: 54:a6:f8:60:56:ca:55:35:f4:eb:78:1f:3b:86:b8: c5:a8:fb:91:aa:81:23:64:ab:a1:e7:1b:c4:5c:08: a8:fe:57:26:0f:95:e1:f2:58:24:dd:c8:c1:0e:cd: a2:22:2e:c0:f6:ce:27:d8:73:8b:d3:b7:12:6c:4d: 62:c3:ca:85:fb:75:1a:0b:31:b7:9e:8f:02:f0:74: 9e:bd:09:a1:f3:af:5e:f4:13:24:e2:8a:73:8a:3e: e2:01:69:14:3d:dc:64:e7:f1:2c:4d:7f:9b:97:32: 4f:69:5b:39:f9:57:56:39:ef:fc:48:ad:b8:db:bf: f7:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:89:EB:8B:E3:E2:EA:77:63:35:1A:A3:6E:2F:47:A6:C9:0D:AF:30 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qonri-Pi6ndjNRqjbi9HpskNrzA.roa sbgp-ipAddrBlock: critical IPv4: 49.96.2.0/23 Signature Algorithm: sha256WithRSAEncryption 90:84:ed:a8:05:26:40:65:54:95:87:02:fb:e0:96:23:7e:60: 08:f1:e0:bd:99:ae:c9:67:51:13:95:ac:e0:6e:3d:23:c4:b1: c0:39:06:93:78:38:cd:2a:44:8a:3b:a1:2f:f7:db:c7:e4:1a: 92:81:61:2f:c7:95:ca:60:ca:42:34:78:70:80:31:c9:dc:f3: 35:7e:0a:f2:5d:f3:d7:ad:0a:0f:d2:88:fe:47:28:82:1f:37: 3a:d3:ce:69:a4:67:a1:8f:ab:b4:9f:15:2c:04:b1:e0:29:85: fa:d2:3c:81:51:66:44:f1:90:4f:e7:57:5a:80:71:6f:20:d3: 6f:d7:43:08:f0:53:0f:0b:13:17:06:57:db:30:f2:49:52:91: 0a:ff:9c:70:24:08:3b:c9:0a:69:46:e3:0b:39:18:7c:da:aa: 8c:de:f9:3a:e6:36:c7:f8:72:9a:de:6f:37:a4:8e:5d:21:89: fa:30:e4:97:e2:44:9a:02:96:87:e6:64:f1:b6:eb:b0:71:6f: 6e:0c:69:f6:c6:11:55:d2:72:c9:ec:ca:3c:0a:b0:0f:98:d8: 1b:75:09:b5:40:45:d6:01:f7:01:2c:a3:c7:b2:82:1f:c8:e2: a2:b0:6e:ff:57:a0:ac:5e:dd:63:65:52:8a:17:4c:16:94:d3: 29:63:f1:5e -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICE90wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU2MjhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEFBODlFQjhCRTNFMkVB Nzc2MzM1MUFBMzZFMkY0N0E2QzkwREFGMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9qdEvKt2uj63qpVQBiLet2xu3Nenl9ACDANrBbf2XPdSHVfBY P6T8I6Y4z9QXZ/hkVd0u83+bhv7K/kTt141Dd/vNmydJNady27J7RK0oj2EJ/kwv XKXc3W+8IS0reJfoJuowakcrB75zd8R4QC1anQ8y4+gLOIjkauKtX3F8IzPoqcW8 ZlSm+GBWylU19Ot4HzuGuMWo+5GqgSNkq6HnG8RcCKj+VyYPleHyWCTdyMEOzaIi LsD2zifYc4vTtxJsTWLDyoX7dRoLMbeejwLwdJ69CaHzr170EyTiinOKPuIBaRQ9 3GTn8SxNf5uXMk9pWzn5V1Y57/xIrbjbv/dfAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUqonri+Pi6ndjNRqjbi9HpskNrzAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3FvbnJpLVBpNm5kak5ScWpiaTlIcHNrTnJ6QS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAExYAIwDQYJKoZIhvcNAQELBQADggEB AJCE7agFJkBlVJWHAvvgliN+YAjx4L2ZrslnUROVrOBuPSPEscA5BpN4OM0qRIo7 oS/328fkGpKBYS/HlcpgykI0eHCAMcnc8zV+CvJd89etCg/SiP5HKIIfNzrTzmmk Z6GPq7SfFSwEseAphfrSPIFRZkTxkE/nV1qAcW8g02/XQwjwUw8LExcGV9sw8klS kQr/nHAkCDvJCmlG4ws5GHzaqoze+TrmNsf4cprebzekjl0hifow5JfiRJoClofm ZPG267Bxb24MafbGEVXScsnsyjwKsA+Y2Bt1CbVARdYB9wEso8eygh/I4qKwbv9X oKxe3WNlUooXTBaU0ylj8V4= -----END CERTIFICATE-----Generated at Tue Apr 7 21:03:20 2026 by rpki-client