$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/yKQKw-gcjmhQSiX8C16ZHvBVPYQ.roa File: yKQKw-gcjmhQSiX8C16ZHvBVPYQ.roa (raw, json) Hash identifier: 8FIzPFaO7SN21KQNUrt4uzNVFU07kABejmdeg4y8db0= Subject key identifier: C8:A4:0A:C3:E8:1C:8E:68:50:4A:25:FC:0B:5E:99:1E:F0:55:3D:84 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1407 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yKQKw-gcjmhQSiX8C16ZHvBVPYQ.roa Signing time: Tue 31 Mar 2026 07:56:44 +0000 ROA not before: Tue 31 Mar 2026 07:56:44 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.106.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5127 (0x1407) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:56:44 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=C8A40AC3E81C8E68504A25FC0B5E991EF0553D84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:c0:30:68:ce:f7:2d:27:89:e5:58:90:ff:78: df:cd:ef:74:4a:8d:5b:cf:bd:bd:e9:06:48:2a:53: c2:99:85:58:41:ee:54:c3:e7:1f:39:82:0a:d1:c5: 55:cd:70:a0:22:ea:d4:e0:90:0b:e1:92:75:bd:18: a8:ae:74:f5:a3:9a:ae:f3:ad:a0:ca:0e:6a:f8:93: 81:d5:b5:58:23:e3:8f:3b:a0:0f:ae:2a:99:be:47: 9e:72:c7:ac:5e:1f:c5:03:8e:ca:dc:b3:f9:33:8f: fe:d8:7e:37:77:8c:08:64:55:3d:e6:af:70:31:a1: 2c:f9:1d:2e:96:5f:87:3b:75:62:5e:5b:f5:a9:70: 97:06:c4:4f:35:c1:96:a2:ed:fa:42:fd:b9:69:7f: 9c:f4:17:67:dd:5a:c4:50:65:45:59:61:ed:d0:ac: b4:7e:c1:76:fc:04:94:ed:7d:25:65:1e:5b:ec:2c: af:2f:48:2c:5e:9d:94:27:a7:77:ee:4f:9e:bb:be: 42:12:3b:eb:df:d0:91:87:17:bc:5d:ab:29:0e:c2: 1d:45:0b:ad:d9:d4:ac:31:c0:6d:98:41:4d:60:41: c7:05:1b:cc:87:22:4a:c6:1c:26:65:93:18:46:ca: aa:7d:ee:a1:65:05:a4:3c:b9:63:7a:fc:2a:23:4f: 21:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:A4:0A:C3:E8:1C:8E:68:50:4A:25:FC:0B:5E:99:1E:F0:55:3D:84 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yKQKw-gcjmhQSiX8C16ZHvBVPYQ.roa sbgp-ipAddrBlock: critical IPv4: 49.106.176.0/21 Signature Algorithm: sha256WithRSAEncryption 7f:5c:c0:1e:d5:62:79:a6:9a:64:7a:c8:74:4f:9e:79:78:26: 07:5c:16:99:50:bb:2e:da:84:3b:9c:54:7e:6c:68:d6:be:6d: af:10:43:02:d0:cf:fa:5a:af:68:de:6c:9e:4c:d2:93:b1:11: f0:1d:80:b7:a8:b1:58:1f:27:0f:53:8b:05:cc:28:df:6d:e6: 76:4e:0a:8f:37:7e:6f:7b:80:e0:f3:dc:42:70:db:91:8d:0b: 96:56:e5:e1:39:f8:dd:62:c6:97:48:fa:0b:c8:b1:13:be:67: 1f:0b:05:40:e4:86:27:0f:e7:8a:e4:76:25:67:d7:04:7d:8a: 31:e0:5f:6c:2c:20:bd:3d:40:ab:1b:00:d5:7a:d9:78:92:5a: dc:21:7f:13:85:ab:00:ed:53:24:d6:c8:26:08:dd:cd:ed:41: f9:6a:83:d0:e7:1f:63:22:6b:2d:51:74:0b:3c:bc:0b:75:4f: 3e:d2:b9:a8:69:04:10:4c:53:30:d1:90:65:01:1a:f2:73:e5: 02:7f:24:f9:53:b6:94:78:f6:53:3f:c3:54:7c:c6:99:f1:98: 83:f8:59:a6:df:a5:f5:55:71:74:f3:24:6a:17:ea:15:7c:b1: 1e:84:81:55:4a:1e:5c:de:40:23:8a:07:ca:33:b0:d4:2c:f8: fd:5e:cd:f3 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFAcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU2NDRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM4QTQwQUMzRTgxQzhF Njg1MDRBMjVGQzBCNUU5OTFFRjA1NTNEODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqwDBozvctJ4nlWJD/eN/N73RKjVvPvb3pBkgqU8KZhVhB7lTD 5x85ggrRxVXNcKAi6tTgkAvhknW9GKiudPWjmq7zraDKDmr4k4HVtVgj4487oA+u Kpm+R55yx6xeH8UDjsrcs/kzj/7Yfjd3jAhkVT3mr3AxoSz5HS6WX4c7dWJeW/Wp cJcGxE81wZai7fpC/blpf5z0F2fdWsRQZUVZYe3QrLR+wXb8BJTtfSVlHlvsLK8v SCxenZQnp3fuT567vkISO+vf0JGHF7xdqykOwh1FC63Z1KwxwG2YQU1gQccFG8yH IkrGHCZlkxhGyqp97qFlBaQ8uWN6/CojTyE1AgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUyKQKw+gcjmhQSiX8C16ZHvBVPYQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3lLUUt3LWdjam1oUVNpWDhDMTZaSHZCVlBZUS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMxarAwDQYJKoZIhvcNAQELBQADggEB AH9cwB7VYnmmmmR6yHRPnnl4JgdcFplQuy7ahDucVH5saNa+ba8QQwLQz/par2je bJ5M0pOxEfAdgLeosVgfJw9TiwXMKN9t5nZOCo83fm97gODz3EJw25GNC5ZW5eE5 +N1ixpdI+gvIsRO+Zx8LBUDkhicP54rkdiVn1wR9ijHgX2wsIL09QKsbANV62XiS WtwhfxOFqwDtUyTWyCYI3c3tQflqg9DnH2Miay1RdAs8vAt1Tz7SuahpBBBMUzDR kGUBGvJz5QJ/JPlTtpR49lM/w1R8xpnxmIP4WabfpfVVcXTzJGoX6hV8sR6EgVVK HlzeQCOKB8ozsNQs+P1ezfM= -----END CERTIFICATE-----Generated at Tue Apr 7 19:48:07 2026 by rpki-client