$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/xYjmc8AXD5Oxsvj_BrLaO4QTZlA.roa File: xYjmc8AXD5Oxsvj_BrLaO4QTZlA.roa (raw, json) Hash identifier: XgbGjLu3JMI7xQRtS2zMUHTRKwZdiCUkC6/ZYtb05KA= Subject key identifier: C5:88:E6:73:C0:17:0F:93:B1:B2:F8:FF:06:B2:DA:3B:84:13:66:50 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1859 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xYjmc8AXD5Oxsvj_BrLaO4QTZlA.roa Signing time: Tue 31 Mar 2026 08:05:49 +0000 ROA not before: Tue 31 Mar 2026 08:05:49 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6233 (0x1859) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:05:49 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=C588E673C0170F93B1B2F8FF06B2DA3B84136650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d9:7c:84:1d:79:41:32:84:0b:38:12:a8:3b: 9f:e2:dd:8f:80:36:2e:bf:7f:6a:65:28:77:32:45: 0f:82:e8:20:74:10:43:a9:e8:37:22:c1:bf:02:be: 6a:1c:73:e7:12:08:92:cf:48:1a:b4:c0:8a:3d:21: a7:a7:33:1a:ed:2a:82:a0:b1:a5:db:74:a9:47:0d: 7e:d7:12:4c:df:03:97:0d:5f:fc:ce:73:be:27:66: 5c:8d:26:10:74:de:00:e4:19:00:c3:08:57:6e:30: 3e:58:e7:0f:14:f4:ae:d6:80:b4:b5:e0:a0:4a:39: 9c:7c:1a:71:d1:7a:a6:54:a5:04:5a:a5:3e:9d:ea: 58:60:86:49:45:91:08:26:36:17:3d:99:28:47:ca: b3:ff:5a:bf:98:f5:3f:17:ef:de:b6:79:11:4e:be: 2f:86:cb:79:c7:46:06:d1:02:4f:a2:ef:2a:8f:d9: 33:3e:d0:de:68:3b:1b:1b:6f:4b:6c:02:d4:96:30: fc:40:17:cb:26:42:97:1c:b3:f6:1d:f8:2f:3f:ea: d0:5f:bd:28:bc:3d:b4:8f:9e:8a:da:51:14:ae:28: 8f:af:30:60:dd:6c:be:8e:e7:80:7c:ee:db:cf:8c: ab:c5:c8:2e:31:b4:26:43:4c:10:70:4e:b6:7f:eb: 47:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:88:E6:73:C0:17:0F:93:B1:B2:F8:FF:06:B2:DA:3B:84:13:66:50 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xYjmc8AXD5Oxsvj_BrLaO4QTZlA.roa sbgp-ipAddrBlock: critical IPv4: 49.96.134.0/24 Signature Algorithm: sha256WithRSAEncryption b0:a2:8d:0f:63:b6:42:cf:a8:bc:5b:75:4d:4d:43:5a:8c:7a: 74:7c:85:65:5d:bc:97:fb:52:d9:58:3c:c9:68:ee:64:bd:af: dd:d9:ac:90:b6:5b:7f:e0:84:66:41:0b:fd:ed:d3:24:5b:47: 43:fa:eb:4d:1e:a3:0e:6d:52:c2:66:20:c7:65:71:8a:ce:d3: cf:8b:45:8a:ba:46:40:12:67:d3:33:d3:0a:16:f8:0c:e5:77: a3:2a:c9:58:29:3c:28:b5:35:43:ea:0e:6a:a3:20:1c:ea:7e: 12:9c:09:33:0e:83:56:1f:c8:f8:1d:5a:2b:0b:01:57:3a:fb: 80:f1:43:5e:8b:be:85:61:5d:72:67:76:66:d3:e9:cf:1a:e1: e7:71:73:3d:18:13:06:5b:ad:d8:29:a8:f6:ef:ed:76:33:06: ae:d6:f5:be:2b:bc:4e:56:a9:5e:f3:cf:7b:25:26:1a:4d:0b: 89:32:db:ca:fe:e4:2d:ca:a2:ac:57:aa:71:f5:08:5f:b8:e8: f0:68:0c:9d:dd:f7:69:1d:d7:a2:fb:18:07:a0:df:f0:5b:67: 29:2d:98:6c:d2:84:45:14:76:4c:21:51:72:f8:10:18:0d:09: ae:85:da:12:10:af:43:cb:d1:fe:f5:f8:e4:4c:cc:22:35:2f: 7e:76:00:6d -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICGFkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODA1NDlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM1ODhFNjczQzAxNzBG OTNCMUIyRjhGRjA2QjJEQTNCODQxMzY2NTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDM2XyEHXlBMoQLOBKoO5/i3Y+ANi6/f2plKHcyRQ+C6CB0EEOp 6Dciwb8Cvmocc+cSCJLPSBq0wIo9IaenMxrtKoKgsaXbdKlHDX7XEkzfA5cNX/zO c74nZlyNJhB03gDkGQDDCFduMD5Y5w8U9K7WgLS14KBKOZx8GnHReqZUpQRapT6d 6lhghklFkQgmNhc9mShHyrP/Wr+Y9T8X7962eRFOvi+Gy3nHRgbRAk+i7yqP2TM+ 0N5oOxsbb0tsAtSWMPxAF8smQpccs/Yd+C8/6tBfvSi8PbSPnoraURSuKI+vMGDd bL6O54B87tvPjKvFyC4xtCZDTBBwTrZ/60fdAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUxYjmc8AXD5Oxsvj/BrLaO4QTZlAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3hZam1jOEFYRDVPeHN2al9CckxhTzRRVFpsQS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAxYIYwDQYJKoZIhvcNAQELBQADggEB ALCijQ9jtkLPqLxbdU1NQ1qMenR8hWVdvJf7UtlYPMlo7mS9r93ZrJC2W3/ghGZB C/3t0yRbR0P6600eow5tUsJmIMdlcYrO08+LRYq6RkASZ9Mz0woW+Azld6MqyVgp PCi1NUPqDmqjIBzqfhKcCTMOg1YfyPgdWisLAVc6+4DxQ16LvoVhXXJndmbT6c8a 4edxcz0YEwZbrdgpqPbv7XYzBq7W9b4rvE5WqV7zz3slJhpNC4ky28r+5C3KoqxX qnH1CF+46PBoDJ3d92kd16L7GAeg3/BbZyktmGzShEUUdkwhUXL4EBgNCa6F2hIQ r0PL0f71+ORMzCI1L352AG0= -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:35 2026 by rpki-client