$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/vkbqlCuVjgjzKYarsal7icvMKpY.roa File: vkbqlCuVjgjzKYarsal7icvMKpY.roa (raw, json) Hash identifier: 49uzgohovY6/ocxfjB5CWbayE13ldAehCG4qas5YTz8= Subject key identifier: BE:46:EA:94:2B:95:8E:08:F3:29:86:AB:B1:A9:7B:89:CB:CC:2A:96 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 13C6 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vkbqlCuVjgjzKYarsal7icvMKpY.roa Signing time: Tue 31 Mar 2026 07:56:15 +0000 ROA not before: Tue 31 Mar 2026 07:56:15 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5062 (0x13c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:56:15 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=BE46EA942B958E08F32986ABB1A97B89CBCC2A96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:61:37:9f:01:25:00:aa:6d:15:86:d6:1a:42: 3f:6f:29:0f:ad:0f:6d:d4:c7:80:4e:37:0b:1a:ff: d5:b3:29:c1:b5:3e:2c:25:df:d9:d8:33:b6:7b:9b: 95:98:99:a5:bf:39:6c:02:40:c0:5f:ef:31:63:56: 9a:de:8a:d6:d8:f2:cd:f3:22:8d:77:a5:25:47:c7: e9:54:72:1a:0c:f3:59:02:1c:a3:04:95:57:ca:4b: 49:48:18:38:b8:d6:83:c7:5c:98:89:fb:45:c0:68: b4:24:df:ec:d1:9d:2e:38:f9:58:2a:2c:92:a9:7d: f8:ba:4a:3a:ff:86:55:95:74:a0:38:de:d5:64:8a: 00:90:ff:01:75:8e:f8:99:07:43:a6:e2:de:d6:d0: 51:5f:60:00:b2:f3:1c:ca:8c:57:b6:41:de:18:fa: 6b:41:0d:e0:1d:bb:bf:ec:c5:1c:f3:d2:56:0d:b1: e0:4f:2a:99:87:9d:d6:5a:af:9a:9a:da:c4:05:59: e0:81:b7:80:6d:74:5a:df:b3:59:d7:eb:d9:1c:36: c4:a3:05:e8:58:77:e0:f0:8e:9a:55:0b:c6:e7:a0: f9:c0:be:e6:b3:e8:65:a2:0e:8c:79:c7:33:d0:8a: a9:1b:8c:80:4c:d6:bf:e0:44:9e:b6:ae:3a:f0:ee: 3e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:46:EA:94:2B:95:8E:08:F3:29:86:AB:B1:A9:7B:89:CB:CC:2A:96 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vkbqlCuVjgjzKYarsal7icvMKpY.roa sbgp-ipAddrBlock: critical IPv4: 49.96.244.0/24 Signature Algorithm: sha256WithRSAEncryption e3:a3:a0:18:ee:dd:7b:1a:98:b8:8b:92:66:2e:9c:60:fb:8b: 25:95:b6:41:66:c8:10:70:0f:2f:8e:10:c2:20:a6:62:a9:3e: 2b:e1:b8:44:de:55:a6:06:03:91:ed:55:74:40:0b:d5:12:ea: 40:11:7e:67:87:8a:bc:6f:75:bb:7a:35:ce:4a:e9:bc:fc:87: 35:a4:86:45:7c:64:61:6b:7d:e9:db:2a:8d:77:89:c2:1f:c7: 00:df:77:42:27:d1:87:a7:3a:27:fc:ed:dc:89:4a:dd:32:8d: 5e:46:a2:01:31:70:75:ba:c0:4f:0f:82:74:61:6d:42:89:07: 36:75:c8:b2:4b:ce:84:38:b8:f5:92:05:0d:56:ba:2c:5f:4c: 9a:5b:66:9a:fc:e1:77:8e:fb:21:c9:5e:2a:8a:5e:fb:67:e2: 69:31:e5:d8:ca:31:be:1f:65:ff:33:e3:e7:33:b5:36:4e:ae: b0:76:d0:c1:14:39:a8:61:f9:60:23:b2:79:9c:55:45:d6:06: bd:44:2c:41:74:34:aa:6c:b9:86:c3:08:58:19:70:6b:ad:1d: 45:85:0d:20:70:0a:9c:60:d3:c4:30:c8:8e:e3:43:ff:13:b2: 28:9f:48:23:b2:ed:f7:d9:a0:91:bc:32:54:40:4a:25:67:55: 56:d7:c3:81 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICE8YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU2MTVaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEJFNDZFQTk0MkI5NThF MDhGMzI5ODZBQkIxQTk3Qjg5Q0JDQzJBOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtYTefASUAqm0VhtYaQj9vKQ+tD23Ux4BONwsa/9WzKcG1Piwl 39nYM7Z7m5WYmaW/OWwCQMBf7zFjVpreitbY8s3zIo13pSVHx+lUchoM81kCHKME lVfKS0lIGDi41oPHXJiJ+0XAaLQk3+zRnS44+VgqLJKpffi6Sjr/hlWVdKA43tVk igCQ/wF1jviZB0Om4t7W0FFfYACy8xzKjFe2Qd4Y+mtBDeAdu7/sxRzz0lYNseBP KpmHndZar5qa2sQFWeCBt4BtdFrfs1nX69kcNsSjBehYd+DwjppVC8bnoPnAvuaz 6GWiDox5xzPQiqkbjIBM1r/gRJ62rjrw7j5RAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUvkbqlCuVjgjzKYarsal7icvMKpYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3ZrYnFsQ3VWamdqektZYXJzYWw3aWN2TUtwWS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAxYPQwDQYJKoZIhvcNAQELBQADggEB AOOjoBju3XsamLiLkmYunGD7iyWVtkFmyBBwDy+OEMIgpmKpPivhuETeVaYGA5Ht VXRAC9US6kARfmeHirxvdbt6Nc5K6bz8hzWkhkV8ZGFrfenbKo13icIfxwDfd0In 0YenOif87dyJSt0yjV5GogExcHW6wE8PgnRhbUKJBzZ1yLJLzoQ4uPWSBQ1Wuixf TJpbZpr84XeO+yHJXiqKXvtn4mkx5djKMb4fZf8z4+cztTZOrrB20MEUOahh+WAj snmcVUXWBr1ELEF0NKpsuYbDCFgZcGutHUWFDSBwCpxg08QwyI7jQ/8TsiifSCOy 7ffZoJG8MlRASiVnVVbXw4E= -----END CERTIFICATE-----Generated at Tue Apr 7 22:26:38 2026 by rpki-client