$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/xHaoTWBwst6KvNcoRf6uAz2k1Z0.roa File: xHaoTWBwst6KvNcoRf6uAz2k1Z0.roa (raw, json) Hash identifier: GLrnGjMz1LGT7Uo2weDf4iZSX9Zg3B0DSt5+D7wxTUM= Subject key identifier: C4:76:A8:4D:60:70:B2:DE:8A:BC:D7:28:45:FE:AE:03:3D:A4:D5:9D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1846 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xHaoTWBwst6KvNcoRf6uAz2k1Z0.roa Signing time: Tue 31 Mar 2026 08:05:39 +0000 ROA not before: Tue 31 Mar 2026 08:05:39 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.152.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6214 (0x1846) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:05:39 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=C476A84D6070B2DE8ABCD72845FEAE033DA4D59D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5d:2b:76:e0:a7:75:9d:c7:df:cf:f6:38:3b: 80:ad:4a:b8:8b:39:62:a9:a1:0b:6a:4a:55:75:0e: c0:5e:df:73:c7:54:f7:1c:02:8a:75:06:db:e9:96: 03:67:ae:c9:53:0e:fa:6e:00:b1:5d:71:d9:64:89: 1d:4e:9e:66:e5:f4:ee:ae:58:37:70:d5:79:cf:63: d5:71:2c:91:a0:69:7c:37:5a:b0:12:db:d9:53:16: 47:2f:00:10:13:3a:82:85:f3:91:31:6a:58:79:37: e2:b5:28:27:20:ad:3c:9e:57:14:4e:f8:aa:bb:cf: 9c:0a:18:0b:69:d2:b9:e8:28:0f:ac:03:60:32:cb: 15:fd:15:f6:e8:14:12:8b:41:ee:ba:ca:02:45:59: d3:70:ed:93:22:c4:b4:b3:eb:ca:b0:41:0a:d2:0c: 17:fb:6f:1f:19:9a:85:3d:b0:76:cf:52:60:8d:3a: 37:04:06:fb:e7:62:8f:6b:6f:d6:d7:f7:e1:f2:dc: 03:f2:7f:39:7c:0b:d3:51:6c:07:dd:9f:19:eb:85: 17:52:26:b8:01:4c:50:f8:d2:b4:cc:8c:f5:ef:e5: c5:db:64:23:60:a3:1f:d6:e0:fc:06:a8:95:a1:be: fd:b0:54:9e:76:97:3d:22:4a:73:a1:54:48:fa:5c: 5a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:76:A8:4D:60:70:B2:DE:8A:BC:D7:28:45:FE:AE:03:3D:A4:D5:9D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xHaoTWBwst6KvNcoRf6uAz2k1Z0.roa sbgp-ipAddrBlock: critical IPv4: 49.96.152.0/23 Signature Algorithm: sha256WithRSAEncryption e5:0b:75:65:c8:9b:38:c5:5e:93:50:69:13:27:45:bb:b1:3d: b9:8a:90:3a:c2:ad:c0:06:29:5f:c6:8e:f9:ed:9e:c0:3d:fe: 18:65:3a:d3:c1:fe:54:9c:c0:d2:20:ef:90:2d:bc:10:99:21: 99:8d:c7:9f:86:b4:a8:71:10:ea:db:24:8f:ef:dc:ab:f8:08: dd:84:28:c5:dd:73:05:9a:0a:08:eb:ed:1e:1d:4d:e4:1d:f4: 91:5c:43:7c:e4:36:53:cb:72:37:08:88:58:9d:42:7b:8c:fe: 4c:fc:c9:46:82:60:2a:eb:7a:3e:e9:1d:3a:e5:78:bc:8c:96: 7a:7e:e0:68:42:a3:31:84:58:63:4c:1d:5c:20:f6:02:7f:d1: b5:df:80:3e:71:bd:4c:43:a5:14:e0:78:5b:3a:6b:10:82:11: 7b:5b:01:aa:07:b6:f0:fd:c3:0e:5c:17:63:00:14:69:f8:03: 02:bc:37:8c:46:bd:bc:e7:d3:9a:86:06:cf:6f:db:48:54:bd: 6b:b1:01:54:87:3a:cf:02:09:cc:30:8b:2f:ac:01:bf:9d:12: f1:24:95:9c:95:67:4e:06:6f:68:47:fc:fb:a8:db:f1:0c:2e: de:ee:1f:7f:96:b7:b8:d4:6b:a4:53:e3:ed:f7:4d:5a:09:47: a1:8c:62:a3 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICGEYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODA1MzlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM0NzZBODRENjA3MEIy REU4QUJDRDcyODQ1RkVBRTAzM0RBNEQ1OUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxXSt24Kd1ncffz/Y4O4CtSriLOWKpoQtqSlV1DsBe33PHVPcc Aop1BtvplgNnrslTDvpuALFdcdlkiR1Onmbl9O6uWDdw1XnPY9VxLJGgaXw3WrAS 29lTFkcvABATOoKF85Exalh5N+K1KCcgrTyeVxRO+Kq7z5wKGAtp0rnoKA+sA2Ay yxX9FfboFBKLQe66ygJFWdNw7ZMixLSz68qwQQrSDBf7bx8ZmoU9sHbPUmCNOjcE BvvnYo9rb9bX9+Hy3APyfzl8C9NRbAfdnxnrhRdSJrgBTFD40rTMjPXv5cXbZCNg ox/W4PwGqJWhvv2wVJ52lz0iSnOhVEj6XFoPAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUxHaoTWBwst6KvNcoRf6uAz2k1Z0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3hIYW9UV0J3c3Q2S3ZOY29SZjZ1QXoyazFaMC5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAExYJgwDQYJKoZIhvcNAQELBQADggEB AOULdWXImzjFXpNQaRMnRbuxPbmKkDrCrcAGKV/GjvntnsA9/hhlOtPB/lScwNIg 75AtvBCZIZmNx5+GtKhxEOrbJI/v3Kv4CN2EKMXdcwWaCgjr7R4dTeQd9JFcQ3zk NlPLcjcIiFidQnuM/kz8yUaCYCrrej7pHTrleLyMlnp+4GhCozGEWGNMHVwg9gJ/ 0bXfgD5xvUxDpRTgeFs6axCCEXtbAaoHtvD9ww5cF2MAFGn4AwK8N4xGvbzn05qG Bs9v20hUvWuxAVSHOs8CCcwwiy+sAb+dEvEklZyVZ04Gb2hH/Puo2/EMLt7uH3+W t7jUa6RT4+33TVoJR6GMYqM= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:56 2026 by rpki-client