$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10822/CGXCux_1XXzJKmOd2viuv-pdz1U.roa File: CGXCux_1XXzJKmOd2viuv-pdz1U.roa (raw, json) Hash identifier: ZHYilDfW3Zp85l0KDb+2EKo9NC47PDIoYlhBejzOrPc= Subject key identifier: 08:65:C2:BB:1F:F5:5D:7C:C9:2A:63:9D:DA:F8:AE:BF:EA:5D:CF:55 Certificate issuer: /CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Certificate serial: 68 Authority key identifier: 33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/CGXCux_1XXzJKmOd2viuv-pdz1U.roa Signing time: Sun 01 Feb 2026 01:35:51 +0000 ROA not before: Sun 01 Feb 2026 01:35:51 +0000 ROA not after: Fri 15 Jan 2027 01:30:02 +0000 asID: 17698 IP address blocks: 122.49.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Validity Not Before: Feb 1 01:35:51 2026 GMT Not After : Jan 15 01:30:02 2027 GMT Subject: CN=0865C2BB1FF55D7CC92A639DDAF8AEBFEA5DCF55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:61:ee:1f:a2:32:90:8d:9e:c5:a4:12:2b:3d: 22:87:aa:a9:09:f9:1e:40:9f:a1:35:a7:49:4c:1a: 97:0d:1a:f8:10:af:ef:3b:54:82:cb:ae:72:91:7c: c0:5a:48:3e:ea:24:b7:55:15:f1:e7:c3:a7:a3:79: 10:94:c6:08:b3:fb:6f:9d:ef:0a:74:8d:64:1a:f2: bb:95:0b:11:56:60:b5:70:dd:7c:4d:f9:fd:40:0b: b5:9e:37:e1:57:7d:2f:c1:57:6d:74:cb:a7:2b:1c: f4:c4:f3:f0:f1:6a:98:97:75:37:b6:de:26:b7:d7: 10:1c:91:59:e5:68:bf:91:46:01:f3:1f:83:c2:f6: 94:e0:e6:20:48:d6:1d:90:2c:1b:5a:15:3c:b0:8a: 3c:9c:25:cf:b9:ca:c4:21:40:42:43:ff:1f:be:02: 45:e5:a6:aa:2c:84:b5:87:77:36:6b:95:24:8e:ac: 03:bf:a5:f8:f8:3d:f3:84:fe:97:ff:04:67:28:19: 0f:93:4c:db:c0:cd:2a:ae:e2:58:73:61:18:e9:10: 3d:3f:cd:4f:48:31:d8:ca:72:c2:ae:f6:6f:28:98: a5:a8:52:4c:c6:64:39:8c:db:4e:03:1e:d0:d4:c8: c3:4f:c6:e0:f4:92:13:2f:46:ba:4a:e7:b6:6d:d6: 86:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:65:C2:BB:1F:F5:5D:7C:C9:2A:63:9D:DA:F8:AE:BF:EA:5D:CF:55 X509v3 Authority Key Identifier: keyid:33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/CGXCux_1XXzJKmOd2viuv-pdz1U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.49.240.0/20 Signature Algorithm: sha256WithRSAEncryption d5:1d:d3:cb:86:0d:f7:fa:c9:05:10:e1:a5:ce:45:ec:f4:d0: b0:65:39:23:6c:92:77:ff:5a:ec:14:6f:7f:ef:cb:98:85:e8: 25:0b:82:bd:25:be:48:96:2c:b1:44:a1:62:ef:56:62:fe:5d: 84:69:d7:7f:aa:4a:a0:71:96:52:0c:3b:a8:14:92:fc:38:13: bd:36:3b:ce:ad:f0:f8:5b:72:57:9b:ad:48:68:83:2a:d8:86: 09:7a:01:5d:29:78:ec:81:5e:c8:8e:50:05:d0:c5:c6:06:17: e8:a2:de:42:87:c9:24:80:2f:f6:50:bf:2e:a4:a1:a2:2c:e7: 3e:77:2a:f7:a4:f1:cc:91:ef:30:f9:21:67:3f:0b:e9:0d:fd: ce:db:f2:ab:2a:12:33:7c:3a:3b:0a:c4:b4:cc:fb:3d:67:ae: c3:13:02:72:bf:05:6a:2e:bf:b5:ef:3e:d2:f3:58:c7:6d:b7: b4:52:4b:a3:67:49:b5:d0:3b:e7:1b:0d:41:3b:6e:70:80:94: d9:e3:a8:1c:05:c5:2c:2a:fa:ef:ad:47:c9:a8:ab:e6:00:cf: d7:55:93:bf:5d:f4:35:4e:60:a6:5e:2d:84:f0:f3:5b:c2:e6: 93:e4:77:20:a7:03:ac:b9:36:56:00:c6:5f:7b:9b:44:1b:3d: be:aa:6e:62 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBaDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzM0RG OUIyNEY1M0JCQ0FDMzQ3QkE1QjVBOEM0OUJGRjQxNjY2QTI2MB4XDTI2MDIwMTAx MzU1MVoXDTI3MDExNTAxMzAwMlowMzExMC8GA1UEAxMoMDg2NUMyQkIxRkY1NUQ3 Q0M5MkE2MzlEREFGOEFFQkZFQTVEQ0Y1NTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPJh7h+iMpCNnsWkEis9IoeqqQn5HkCfoTWnSUwalw0a+BCv7ztU gsuucpF8wFpIPuokt1UV8efDp6N5EJTGCLP7b53vCnSNZBryu5ULEVZgtXDdfE35 /UALtZ434Vd9L8FXbXTLpysc9MTz8PFqmJd1N7beJrfXEByRWeVov5FGAfMfg8L2 lODmIEjWHZAsG1oVPLCKPJwlz7nKxCFAQkP/H74CReWmqiyEtYd3NmuVJI6sA7+l +Pg984T+l/8EZygZD5NM28DNKq7iWHNhGOkQPT/NT0gx2Mpywq72byiYpahSTMZk OYzbTgMe0NTIw0/G4PSSEy9Gukrntm3WhgsCAwEAAaOCAigwggIkMB0GA1UdDgQW BBQIZcK7H/VdfMkqY53a+K6/6l3PVTAfBgNVHSMEGDAWgBQz35sk9Tu8rDR7pbWo xJv/QWZqJjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA4MjIvTTktYkpQVTd2S3cwZTZXMXFNU2JfMEZtYWlZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTTktYkpQVTd2S3cwZTZXMXFNU2Jf MEZtYWlZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEwODIyL0NHWEN1eF8xWFh6SkttT2Qydml1di1wZHoxVS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAR6MfAwDQYJKoZIhvcNAQELBQADggEBANUd08uGDff6yQUQ4aXORez0 0LBlOSNsknf/WuwUb3/vy5iF6CULgr0lvkiWLLFEoWLvVmL+XYRp13+qSqBxllIM O6gUkvw4E702O86t8PhbclebrUhogyrYhgl6AV0peOyBXsiOUAXQxcYGF+ii3kKH ySSAL/ZQvy6koaIs5z53Kvek8cyR7zD5IWc/C+kN/c7b8qsqEjN8OjsKxLTM+z1n rsMTAnK/BWouv7XvPtLzWMdtt7RSS6NnSbXQO+cbDUE7bnCAlNnjqBwFxSwq+u+t R8moq+YAz9dVk79d9DVOYKZeLYTw81vC5pPkdyCnA6y5NlYAxl97m0QbPb6qbmI= -----END CERTIFICATE-----Generated at Mon Mar 2 19:57:54 2026 by rpki-client