$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/zDYQiH1NrzRS6D9QRL8JsNEE5dk.roa File: zDYQiH1NrzRS6D9QRL8JsNEE5dk.roa (raw, json) Hash identifier: Zx4JsL7vC6SvQYogOQ6sVBUj+hpst+0pSA58aT+XLOw= Subject key identifier: CC:36:10:88:7D:4D:AF:34:52:E8:3F:50:44:BF:09:B0:D1:04:E5:D9 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 166C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zDYQiH1NrzRS6D9QRL8JsNEE5dk.roa Signing time: Tue 31 Mar 2026 08:01:47 +0000 ROA not before: Tue 31 Mar 2026 08:01:47 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.104.42.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5740 (0x166c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:01:47 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=CC3610887D4DAF3452E83F5044BF09B0D104E5D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:67:53:3e:19:7d:dd:10:31:fa:f6:ad:78:97: 87:92:05:04:d3:80:cd:3c:49:ac:2e:16:ec:fc:40: cc:94:d6:b1:41:67:f2:f0:da:0f:b6:43:58:08:af: 7a:a1:26:94:b4:c1:d4:d9:14:3b:33:32:ab:ad:3d: 30:bd:44:7c:13:e1:cb:78:23:55:ab:eb:99:22:d8: ce:30:e2:6c:bd:4d:8c:eb:73:11:47:2a:bc:a8:55: d7:c6:47:b6:6b:4f:3f:d2:0f:b4:65:7c:3c:c4:e5: db:2e:14:0c:e2:88:1b:27:14:1a:8a:e3:b3:97:dc: 7d:33:1f:3b:63:c7:df:66:15:09:38:e2:32:e0:18: c1:d9:fb:0c:cc:a1:d6:b8:9e:88:de:7d:e4:6f:d9: af:f0:06:e3:cf:7a:37:dc:cd:53:98:04:63:8f:79: bb:41:46:83:0e:49:fd:50:fc:a5:e1:ca:a3:15:0a: 74:37:be:6c:4a:07:ec:f6:b8:3e:c6:0a:bf:b8:d2: 54:0d:09:c3:1a:b3:c5:c7:3b:3a:97:3b:c2:b7:17: 59:67:00:d2:12:59:8c:1f:de:7d:09:96:d0:cc:35: b2:2d:2e:95:56:ff:01:4e:cc:42:ab:e9:0c:8d:be: e7:2c:c5:a9:56:ef:ea:b5:06:f4:37:43:3d:20:f9: d1:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:36:10:88:7D:4D:AF:34:52:E8:3F:50:44:BF:09:B0:D1:04:E5:D9 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zDYQiH1NrzRS6D9QRL8JsNEE5dk.roa sbgp-ipAddrBlock: critical IPv4: 49.104.42.0/23 Signature Algorithm: sha256WithRSAEncryption 20:35:4a:f5:d7:72:5d:c7:fb:0f:b7:86:1f:a7:5f:60:dc:f6: 0d:3c:48:ed:e0:37:9b:45:f7:f2:f0:51:9a:06:f2:38:fb:05: 31:00:46:6f:b3:e0:9c:17:3b:83:05:bf:d1:85:c0:35:19:38: 10:7f:47:3a:01:79:3b:85:2e:f8:54:76:c3:e7:9a:ef:75:41: 4b:e3:e7:14:b0:8d:d9:f7:e5:d7:ec:60:e7:90:5d:5f:12:f6: 90:64:94:4a:f2:3c:5d:16:e6:d5:16:e6:8f:db:6f:b8:ed:fc: 6a:57:9b:9f:66:f9:dc:d8:34:8b:c2:75:1b:9d:eb:85:d3:14: 87:13:7c:c5:77:20:7c:bb:0a:47:37:e5:25:ca:3f:5b:14:81: 9f:df:b2:b3:74:99:3b:5f:90:9d:5e:2b:cd:33:6c:73:31:9c: 13:38:76:34:c9:42:8e:dd:1d:cd:49:2e:56:ad:49:b3:47:96: 4a:78:61:6d:01:1b:c0:40:d3:dd:0c:e2:b2:b5:54:6e:cf:b9: b1:d0:31:57:13:99:c7:31:fa:3c:6a:64:24:5a:ce:97:5c:65: 09:77:cb:1b:58:ac:d2:2b:28:67:54:f7:d0:ac:80:ba:2d:50: 23:5f:e7:c0:55:7e:e7:48:60:c5:ea:5f:d3:10:15:b7:e6:25: 14:37:ce:77 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFmwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAxNDdaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKENDMzYxMDg4N0Q0REFG MzQ1MkU4M0Y1MDQ0QkYwOUIwRDEwNEU1RDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBZ1M+GX3dEDH69q14l4eSBQTTgM08SawuFuz8QMyU1rFBZ/Lw 2g+2Q1gIr3qhJpS0wdTZFDszMqutPTC9RHwT4ct4I1Wr65ki2M4w4my9TYzrcxFH KryoVdfGR7ZrTz/SD7RlfDzE5dsuFAziiBsnFBqK47OX3H0zHztjx99mFQk44jLg GMHZ+wzModa4nojefeRv2a/wBuPPejfczVOYBGOPebtBRoMOSf1Q/KXhyqMVCnQ3 vmxKB+z2uD7GCr+40lQNCcMas8XHOzqXO8K3F1lnANISWYwf3n0JltDMNbItLpVW /wFOzEKr6QyNvucsxalW7+q1BvQ3Qz0g+dHVAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUzDYQiH1NrzRS6D9QRL8JsNEE5dkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3pEWVFpSDFOcnpSUzZEOVFSTDhKc05FRTVkay5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAExaCowDQYJKoZIhvcNAQELBQADggEB ACA1SvXXcl3H+w+3hh+nX2Dc9g08SO3gN5tF9/LwUZoG8jj7BTEARm+z4JwXO4MF v9GFwDUZOBB/RzoBeTuFLvhUdsPnmu91QUvj5xSwjdn35dfsYOeQXV8S9pBklEry PF0W5tUW5o/bb7jt/GpXm59m+dzYNIvCdRud64XTFIcTfMV3IHy7Ckc35SXKP1sU gZ/fsrN0mTtfkJ1eK80zbHMxnBM4djTJQo7dHc1JLlatSbNHlkp4YW0BG8BA090M 4rK1VG7PubHQMVcTmccx+jxqZCRazpdcZQl3yxtYrNIrKGdU99CsgLotUCNf58BV fudIYMXqX9MQFbfmJRQ3znc= -----END CERTIFICATE-----Generated at Tue Apr 7 19:44:54 2026 by rpki-client