$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/sfB52tQN74u4YBULZK9FZFnum44.roa File: sfB52tQN74u4YBULZK9FZFnum44.roa (raw, json) Hash identifier: w1MITEeZIldE5zcLQeHiDkhFbFh9xc6teyIz6Qzmwwc= Subject key identifier: B1:F0:79:DA:D4:0D:EF:8B:B8:60:15:0B:64:AF:45:64:59:EE:9B:8E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1465 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sfB52tQN74u4YBULZK9FZFnum44.roa Signing time: Tue 31 Mar 2026 07:57:28 +0000 ROA not before: Tue 31 Mar 2026 07:57:28 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.105.76.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5221 (0x1465) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:57:28 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=B1F079DAD40DEF8BB860150B64AF456459EE9B8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1a:f6:0e:2f:00:29:43:13:60:97:65:51:e4: 86:75:85:68:24:cd:74:71:d0:3f:3f:62:2e:e7:28: 62:96:f1:5d:a2:82:30:a8:6c:6f:3d:30:a0:7c:75: 63:b4:ae:71:a4:80:86:9f:6c:49:7d:f8:05:37:d5: e3:31:6f:83:e6:c6:a5:78:38:d7:54:d1:a0:96:f1: e0:a4:f3:dc:b9:9d:60:af:05:9f:74:e6:a3:80:f2: e4:4e:31:2e:a5:39:59:4b:d5:5a:bb:35:3b:68:12: e2:e2:13:74:c9:4b:94:74:be:18:40:8d:e9:7c:4c: 06:2a:0c:69:8a:ae:ca:af:d0:74:1e:fa:eb:bb:f0: 1f:1f:6b:ec:e9:30:3b:fc:75:1e:46:b0:75:cf:ce: 58:09:d5:30:75:aa:04:a6:5a:11:51:b8:65:5b:b5: cc:02:2f:f2:d0:84:ab:ea:96:72:5d:fc:8b:c8:4a: 14:f0:cd:c7:96:0f:4f:2a:22:a5:bf:e4:0a:94:12: e9:06:13:83:86:ca:49:5c:5d:04:22:3a:0a:0d:59: 07:47:b2:af:44:b1:89:0a:d4:16:6d:af:39:ab:7a: 4b:7c:0f:3e:43:ae:d1:d8:ee:a7:45:e6:03:20:24: 94:ee:38:9b:6b:a7:ad:44:39:5d:64:e6:3d:d4:ca: ec:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:F0:79:DA:D4:0D:EF:8B:B8:60:15:0B:64:AF:45:64:59:EE:9B:8E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sfB52tQN74u4YBULZK9FZFnum44.roa sbgp-ipAddrBlock: critical IPv4: 49.105.76.0/23 Signature Algorithm: sha256WithRSAEncryption 11:fa:1c:7a:35:a6:f4:ec:48:eb:2b:58:05:72:b4:67:e6:ca: 77:05:82:96:b2:a1:c1:62:a5:9d:0f:99:55:3c:60:ed:6a:7a: 9d:8e:55:dd:25:b3:2c:88:53:c2:88:06:65:b8:6c:29:e8:7d: 0d:1e:0b:64:22:70:a4:89:ae:7d:14:14:8e:e2:79:de:44:37: a9:b0:ad:85:74:f0:78:dd:28:60:fd:ef:21:fb:dd:c3:e4:4c: 73:99:df:df:5c:cf:f7:9c:7b:c1:ed:55:e3:98:a7:c5:1b:7a: 5a:7f:8d:85:c1:02:0e:a5:c1:4d:19:f1:e4:e9:86:7c:69:fa: 87:33:67:24:db:08:b0:35:47:38:fd:e8:b8:19:a8:22:73:4e: ab:d0:b3:c7:b1:42:98:44:36:f5:fe:ed:b2:ab:a7:a8:ca:7e: a7:ba:9b:9c:db:0e:26:d9:dd:0b:31:3c:4b:33:5e:92:90:3b: 79:d6:01:7e:6b:78:3d:8e:9e:bc:e5:be:05:16:e0:51:72:8d: 63:54:5d:2d:82:54:f7:26:a6:72:e0:ed:0a:ec:64:02:a4:da: 0d:95:d3:82:3d:ff:8e:69:02:61:e3:6b:bc:4f:9e:0e:a2:9b: c5:c2:cc:16:58:b3:22:fc:9a:ba:b7:cd:9a:32:55:aa:6f:49: 4d:56:8b:3a -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFGUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU3MjhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEIxRjA3OURBRDQwREVG OEJCODYwMTUwQjY0QUY0NTY0NTlFRTlCOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUGvYOLwApQxNgl2VR5IZ1hWgkzXRx0D8/Yi7nKGKW8V2igjCo bG89MKB8dWO0rnGkgIafbEl9+AU31eMxb4PmxqV4ONdU0aCW8eCk89y5nWCvBZ90 5qOA8uROMS6lOVlL1Vq7NTtoEuLiE3TJS5R0vhhAjel8TAYqDGmKrsqv0HQe+uu7 8B8fa+zpMDv8dR5GsHXPzlgJ1TB1qgSmWhFRuGVbtcwCL/LQhKvqlnJd/IvIShTw zceWD08qIqW/5AqUEukGE4OGyklcXQQiOgoNWQdHsq9EsYkK1BZtrzmrekt8Dz5D rtHY7qdF5gMgJJTuOJtrp61EOV1k5j3UyuwbAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUsfB52tQN74u4YBULZK9FZFnum44wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3NmQjUydFFONzR1NFlCVUxaSzlGWkZudW00NC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAExaUwwDQYJKoZIhvcNAQELBQADggEB ABH6HHo1pvTsSOsrWAVytGfmyncFgpayocFipZ0PmVU8YO1qep2OVd0lsyyIU8KI BmW4bCnofQ0eC2QicKSJrn0UFI7ied5EN6mwrYV08HjdKGD97yH73cPkTHOZ399c z/ece8HtVeOYp8Ubelp/jYXBAg6lwU0Z8eTphnxp+oczZyTbCLA1Rzj96LgZqCJz TqvQs8exQphENvX+7bKrp6jKfqe6m5zbDibZ3QsxPEszXpKQO3nWAX5reD2Onrzl vgUW4FFyjWNUXS2CVPcmpnLg7QrsZAKk2g2V04I9/45pAmHja7xPng6im8XCzBZY syL8mrq3zZoyVapvSU1Wizo= -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:13 2026 by rpki-client