$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/tJBcHUu0k9e2n98q66CHS45g0yI.roa File: tJBcHUu0k9e2n98q66CHS45g0yI.roa (raw, json) Hash identifier: B95kz4dlGYExrdDXTFkEavJoYpKTte+grqnWx4nv6fA= Subject key identifier: B4:90:5C:1D:4B:B4:93:D7:B6:9F:DF:2A:EB:A0:87:4B:8E:60:D3:22 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 13C5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tJBcHUu0k9e2n98q66CHS45g0yI.roa Signing time: Tue 31 Mar 2026 07:56:15 +0000 ROA not before: Tue 31 Mar 2026 07:56:15 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.228.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5061 (0x13c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:56:15 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=B4905C1D4BB493D7B69FDF2AEBA0874B8E60D322 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f9:da:56:d1:72:36:7f:15:30:28:ae:90:78: 38:d4:ef:c1:5c:6a:a8:f9:6b:d7:b5:bc:92:89:25: 1a:15:a8:2f:41:61:ee:48:cd:ab:77:1c:ce:2c:2e: c7:e5:35:ba:cd:9c:50:d7:4f:76:a9:47:a3:3b:33: 72:0f:ba:97:81:fd:52:a2:89:cf:12:d7:45:81:cf: 90:1c:3e:2b:7a:15:eb:5c:d9:59:b5:7c:37:8e:f1: b9:6d:72:db:78:0f:45:01:0f:79:18:82:74:30:43: e6:77:bd:31:3d:f4:0c:ac:73:d5:e8:5d:e9:40:78: 37:11:2f:be:97:94:56:71:38:d8:87:03:84:90:86: dd:d5:bc:64:9a:e6:b4:4d:5b:a6:14:d4:cd:be:2d: e4:ef:63:01:f2:79:1c:95:bc:3d:d7:bf:c3:62:4e: 4a:bb:6e:69:b7:a6:27:da:33:38:1f:43:64:8d:d4: bb:91:ea:95:f0:38:97:f9:e9:8f:6a:6e:f4:b0:cb: 03:7e:06:2f:95:0a:86:1c:3a:ab:aa:d5:5a:55:97: 25:ad:02:25:12:e9:d8:c8:09:45:ea:30:c9:e4:e0: 72:fc:0e:1d:a5:70:7f:9c:20:dc:d4:12:ab:58:cf: f5:83:9a:14:19:02:61:d0:b2:03:9e:39:61:af:13: 3a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:90:5C:1D:4B:B4:93:D7:B6:9F:DF:2A:EB:A0:87:4B:8E:60:D3:22 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tJBcHUu0k9e2n98q66CHS45g0yI.roa sbgp-ipAddrBlock: critical IPv4: 49.96.228.0/23 Signature Algorithm: sha256WithRSAEncryption bd:87:de:8f:79:38:84:32:27:3f:f6:60:59:25:d3:67:ad:22: 80:60:8f:f4:7a:8c:45:5d:9c:23:01:8d:3a:76:04:6c:cf:75: f3:66:16:60:88:ff:4b:72:dc:91:1f:0b:91:68:96:0a:af:57: 95:04:b0:2d:1c:30:a3:a1:c9:f7:5e:a5:4f:4a:27:51:68:54: fe:e0:87:cf:f3:42:ff:0e:48:42:69:15:75:ef:0a:72:ea:0a: c0:a9:54:fa:e9:e2:42:19:0c:5a:a9:6b:c7:00:bf:19:5a:ad: c4:c6:79:98:e7:51:c2:3d:52:48:6d:f7:bf:29:60:4c:1e:58: be:af:28:9b:fa:16:2e:a4:dd:85:4f:f8:70:3d:7e:46:6a:5d: e4:47:e8:26:63:53:a7:a0:ef:d8:66:8e:35:5b:47:21:87:cf: d7:27:e7:71:98:d2:85:7c:de:58:0b:5f:5e:a6:af:c7:7b:67: 0a:e2:8a:ea:cc:57:fd:74:7f:9f:0c:2b:49:1c:49:f0:91:49: 0b:f1:0e:d1:b9:48:b4:54:ec:e2:d9:64:b0:1a:2a:05:b9:a8: df:0f:47:c8:41:d9:88:da:8d:21:15:36:dc:b2:bd:84:6e:27: 7c:d7:69:bb:10:a9:32:c1:54:3b:63:74:e8:c0:93:e9:7e:74: 74:ba:3e:b1 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICE8UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU2MTVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEI0OTA1QzFENEJCNDkz RDdCNjlGREYyQUVCQTA4NzRCOEU2MEQzMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC++dpW0XI2fxUwKK6QeDjU78Fcaqj5a9e1vJKJJRoVqC9BYe5I zat3HM4sLsflNbrNnFDXT3apR6M7M3IPupeB/VKiic8S10WBz5AcPit6Fetc2Vm1 fDeO8bltctt4D0UBD3kYgnQwQ+Z3vTE99Aysc9XoXelAeDcRL76XlFZxONiHA4SQ ht3VvGSa5rRNW6YU1M2+LeTvYwHyeRyVvD3Xv8NiTkq7bmm3pifaMzgfQ2SN1LuR 6pXwOJf56Y9qbvSwywN+Bi+VCoYcOquq1VpVlyWtAiUS6djICUXqMMnk4HL8Dh2l cH+cINzUEqtYz/WDmhQZAmHQsgOeOWGvEzp1AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUtJBcHUu0k9e2n98q66CHS45g0yIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3RKQmNIVXUwazllMm45OHE2NkNIUzQ1ZzB5SS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAExYOQwDQYJKoZIhvcNAQELBQADggEB AL2H3o95OIQyJz/2YFkl02etIoBgj/R6jEVdnCMBjTp2BGzPdfNmFmCI/0ty3JEf C5FolgqvV5UEsC0cMKOhyfdepU9KJ1FoVP7gh8/zQv8OSEJpFXXvCnLqCsCpVPrp 4kIZDFqpa8cAvxlarcTGeZjnUcI9Ukht978pYEweWL6vKJv6Fi6k3YVP+HA9fkZq XeRH6CZjU6eg79hmjjVbRyGHz9cn53GY0oV83lgLX16mr8d7ZwriiurMV/10f58M K0kcSfCRSQvxDtG5SLRU7OLZZLAaKgW5qN8PR8hB2YjajSEVNtyyvYRuJ3zXabsQ qTLBVDtjdOjAk+l+dHS6PrE= -----END CERTIFICATE-----Generated at Tue Apr 7 21:01:39 2026 by rpki-client