$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/xkud05LXR7yD2KhqFSPebcaiPjk.roa File: xkud05LXR7yD2KhqFSPebcaiPjk.roa (raw, json) Hash identifier: xcEtfu9MPKsU3tEculjRKuvB+t/wUgKDhrlboQFKsJ0= Subject key identifier: C6:4B:9D:D3:92:D7:47:BC:83:D8:A8:6A:15:23:DE:6D:C6:A2:3E:39 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 15D2 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xkud05LXR7yD2KhqFSPebcaiPjk.roa Signing time: Tue 31 Mar 2026 08:00:29 +0000 ROA not before: Tue 31 Mar 2026 08:00:29 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5586 (0x15d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:00:29 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=C64B9DD392D747BC83D8A86A1523DE6DC6A23E39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a5:b1:78:25:e4:23:f5:d7:a1:53:e8:ac:1c: f6:0f:29:8a:e6:3d:c2:15:db:39:b9:85:ad:56:d8: 21:79:a4:d7:75:84:90:7b:40:92:33:60:ee:4b:8e: cf:ae:d9:c8:1e:9f:5b:27:fd:cd:5a:a7:df:62:ce: 80:6e:92:4d:3c:94:bd:24:77:a3:f1:27:a3:73:4c: ae:ee:36:e8:7f:ad:79:db:e8:f7:e3:32:30:71:18: 3d:f7:a2:20:cf:71:da:a0:b3:f7:79:d6:cd:76:91: 27:54:58:75:b1:ac:9d:e8:d9:ca:2b:da:ba:da:9c: f1:7c:62:f4:3d:92:42:10:9d:5b:09:d3:4a:a9:b8: 4e:c9:a8:2f:86:3d:8e:5f:84:13:a3:42:f4:1a:fe: 21:5d:1c:08:36:59:1b:c3:10:a5:6e:8c:8b:86:49: 1f:1c:70:2d:e6:e2:4d:eb:38:94:0b:d7:41:2a:7f: ae:08:42:39:6d:4b:f4:68:cf:21:f5:46:c1:b7:71: 80:31:45:62:77:60:a2:e6:18:37:5b:a6:01:46:79: 19:7e:f3:4c:d1:82:25:55:7b:ea:56:e1:00:dc:07: 83:01:f7:6a:ca:04:5a:4e:a1:c2:d3:95:39:76:b2: 9b:1d:15:4d:19:28:a6:23:71:f4:a8:79:0d:3e:ad: 88:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:4B:9D:D3:92:D7:47:BC:83:D8:A8:6A:15:23:DE:6D:C6:A2:3E:39 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xkud05LXR7yD2KhqFSPebcaiPjk.roa sbgp-ipAddrBlock: critical IPv4: 49.98.6.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:31:45:f6:48:23:09:dc:62:ad:30:66:7a:8f:3f:5e:96:34: 52:e9:52:79:cf:3d:2a:8d:aa:b3:2b:e2:6f:b1:5a:77:c6:92: 8c:8d:04:ce:b7:f2:06:08:79:97:ae:de:86:c8:b7:c6:fb:ee: 39:b4:cd:be:e9:04:8d:ae:ba:8b:19:2d:8c:b4:9a:00:53:0f: 1b:b1:0d:7e:0f:47:e5:74:07:c2:d6:13:48:06:7f:96:c0:47: fe:c8:be:d7:f8:26:db:2d:08:b2:8e:c8:58:6c:81:4d:00:06: 81:bb:62:e6:1f:6c:e8:b7:ef:0c:f5:f3:fa:76:5c:db:f3:bb: 9e:34:70:ff:57:22:1c:1e:c7:87:f7:c0:bf:c1:f8:37:e6:6b: cd:ed:ac:3b:75:3d:5f:30:af:d4:30:5b:b6:b3:7b:da:ff:ac: 47:45:f1:23:e6:f7:40:82:52:71:e8:73:96:cb:17:6f:b6:c6: 89:9e:d5:b5:d5:20:28:1f:29:32:4f:51:2a:f3:b9:ad:96:28: 8a:d6:b4:65:e4:75:82:e1:38:22:b7:2a:99:45:58:d4:3d:e5: 0f:03:e8:47:b6:a1:ce:8b:8d:35:c4:b1:1c:5c:bc:d4:6b:5a: 5d:27:d5:7d:75:79:7f:8a:c1:a0:c8:ee:91:57:eb:fb:60:e7: af:b1:f7:b8 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFdIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAwMjlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM2NEI5REQzOTJENzQ3 QkM4M0Q4QTg2QTE1MjNERTZEQzZBMjNFMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0pbF4JeQj9dehU+isHPYPKYrmPcIV2zm5ha1W2CF5pNd1hJB7 QJIzYO5Ljs+u2cgen1sn/c1ap99izoBukk08lL0kd6PxJ6NzTK7uNuh/rXnb6Pfj MjBxGD33oiDPcdqgs/d51s12kSdUWHWxrJ3o2cor2rranPF8YvQ9kkIQnVsJ00qp uE7JqC+GPY5fhBOjQvQa/iFdHAg2WRvDEKVujIuGSR8ccC3m4k3rOJQL10Eqf64I QjltS/RozyH1RsG3cYAxRWJ3YKLmGDdbpgFGeRl+80zRgiVVe+pW4QDcB4MB92rK BFpOocLTlTl2spsdFU0ZKKYjcfSoeQ0+rYj1AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUxkud05LXR7yD2KhqFSPebcaiPjkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3hrdWQwNUxYUjd5RDJLaHFGU1BlYmNhaVBqay5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAxYgYwDQYJKoZIhvcNAQELBQADggEB AGoxRfZIIwncYq0wZnqPP16WNFLpUnnPPSqNqrMr4m+xWnfGkoyNBM638gYIeZeu 3obIt8b77jm0zb7pBI2uuosZLYy0mgBTDxuxDX4PR+V0B8LWE0gGf5bAR/7Ivtf4 JtstCLKOyFhsgU0ABoG7YuYfbOi37wz18/p2XNvzu540cP9XIhwex4f3wL/B+Dfm a83trDt1PV8wr9QwW7aze9r/rEdF8SPm90CCUnHoc5bLF2+2xome1bXVICgfKTJP USrzua2WKIrWtGXkdYLhOCK3KplFWNQ95Q8D6Ee2oc6LjTXEsRxcvNRrWl0n1X11 eX+KwaDI7pFX6/tg56+x97g= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:48 2026 by rpki-client