$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/07qhHn-a8KI8B7OuNovP5ilqWtg.roa File: 07qhHn-a8KI8B7OuNovP5ilqWtg.roa (raw, json) Hash identifier: nxmI46mqS3YDP2RezJeXDu4fnQWwlG4V8Op9fTEhuW0= Subject key identifier: D3:BA:A1:1E:7F:9A:F0:A2:3C:07:B3:AE:36:8B:CF:E6:29:6A:5A:D8 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 10CB Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/07qhHn-a8KI8B7OuNovP5ilqWtg.roa Signing time: Sun 01 Mar 2026 01:54:44 +0000 ROA not before: Sun 01 Mar 2026 01:54:44 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.102.152.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 05:15:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4299 (0x10cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 01:54:44 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=D3BAA11E7F9AF0A23C07B3AE368BCFE6296A5AD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:bb:fd:be:26:07:2f:72:42:06:80:af:d7:74: b5:a8:4b:8d:92:78:40:49:e8:2b:e1:7b:a5:da:e5: 91:f2:26:3d:08:9d:81:fc:6f:c7:cb:05:91:88:23: cb:35:7e:4f:6f:bf:f4:59:d9:26:3c:03:47:a3:15: 62:17:10:36:d5:b3:47:07:2e:5f:a8:86:14:6c:aa: 4c:0d:10:12:8e:e7:27:f9:76:34:4c:65:80:33:24: af:3a:bb:fa:e3:37:78:26:2f:f0:da:c4:ca:1a:b0: 23:9d:eb:aa:65:66:ae:c0:82:70:e8:68:38:a0:bd: 14:a8:cc:35:57:7b:d0:2d:ba:09:9a:2b:4b:d5:4c: 02:09:b2:12:75:07:54:b3:31:88:75:35:7b:c1:07: b0:b6:0c:32:65:61:dd:37:43:3d:81:eb:43:ce:cd: c1:d1:25:0c:f9:6e:38:d2:ca:2b:d1:b0:ba:40:58: 8d:e1:39:69:b0:da:ca:92:a7:06:32:a7:f3:8f:78: 49:a0:4f:d0:b4:46:68:d3:30:71:a9:0a:3c:ab:20: 95:b2:31:d2:d1:6a:d2:1e:64:af:37:f1:24:88:c1: c7:c0:c2:8f:51:cd:93:c5:42:dc:11:04:f0:66:eb: 4e:a1:6b:b9:b0:f6:e4:59:ab:d8:b5:58:79:ec:51: 53:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:BA:A1:1E:7F:9A:F0:A2:3C:07:B3:AE:36:8B:CF:E6:29:6A:5A:D8 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/07qhHn-a8KI8B7OuNovP5ilqWtg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.102.152.0/23 Signature Algorithm: sha256WithRSAEncryption d3:60:12:e4:da:5d:53:3c:8f:60:2c:89:3b:f1:00:2c:c4:28: 71:3a:20:21:c8:e3:ff:ec:19:e0:46:55:c3:09:12:82:bd:29: 98:3e:d1:58:13:19:33:3f:ad:ee:2a:1d:71:f9:8e:21:eb:a6: 95:38:ba:5c:f6:9d:62:2d:32:0d:c0:f5:01:dc:9e:b1:3d:b1: 8e:f6:b6:b4:d3:c7:f1:47:59:2c:d0:3f:d8:6e:55:df:36:71: 7c:18:d9:05:cd:f6:ae:93:a5:cd:1d:31:36:32:f8:da:cb:bb: 3b:45:e2:eb:91:a9:14:bf:56:9f:62:ce:88:2b:c0:b8:e4:b6: 36:ae:b2:c6:2d:17:31:ef:97:45:11:97:e4:79:a9:cb:6e:77: 49:74:06:a0:e9:9e:03:d6:0f:97:cb:7f:4a:7c:06:3b:77:5c: 64:db:11:dc:f2:a9:3a:c6:99:4b:61:11:4f:fe:fa:83:ca:8f: 8f:1c:6a:14:b0:27:94:94:31:08:ce:9c:e1:12:63:81:e2:2e: 69:79:17:e5:6d:0d:46:0c:11:ad:0e:1e:ba:d6:54:ef:06:8e: ff:3e:b5:80:14:56:c4:99:d1:aa:09:e0:92:7e:25:09:fe:d9: 21:d3:e1:a5:17:f4:27:c4:74:d3:fa:d2:1b:0d:ed:a6:40:a3: 06:02:66:39 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEMswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MTU0NDRaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEQzQkFBMTFFN0Y5QUYw QTIzQzA3QjNBRTM2OEJDRkU2Mjk2QTVBRDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCju/2+JgcvckIGgK/XdLWoS42SeEBJ6Cvhe6Xa5ZHyJj0InYH8 b8fLBZGII8s1fk9vv/RZ2SY8A0ejFWIXEDbVs0cHLl+ohhRsqkwNEBKO5yf5djRM ZYAzJK86u/rjN3gmL/DaxMoasCOd66plZq7AgnDoaDigvRSozDVXe9AtugmaK0vV TAIJshJ1B1SzMYh1NXvBB7C2DDJlYd03Qz2B60POzcHRJQz5bjjSyivRsLpAWI3h OWmw2sqSpwYyp/OPeEmgT9C0RmjTMHGpCjyrIJWyMdLRatIeZK838SSIwcfAwo9R zZPFQtwRBPBm606ha7mw9uRZq9i1WHnsUVOFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU07qhHn+a8KI8B7OuNovP5ilqWtgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzA3cWhIbi1hOEtJOEI3T3VOb3ZQNWlscVd0Zy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExZpgwDQYJKoZIhvcNAQELBQADggEBANNgEuTaXVM8j2AsiTvxACzEKHE6 ICHI4//sGeBGVcMJEoK9KZg+0VgTGTM/re4qHXH5jiHrppU4ulz2nWItMg3A9QHc nrE9sY72trTTx/FHWSzQP9huVd82cXwY2QXN9q6Tpc0dMTYy+NrLuztF4uuRqRS/ Vp9izogrwLjktjaussYtFzHvl0URl+R5qctud0l0BqDpngPWD5fLf0p8Bjt3XGTb EdzyqTrGmUthEU/++oPKj48cahSwJ5SUMQjOnOESY4HiLml5F+VtDUYMEa0OHrrW VO8Gjv8+tYAUVsSZ0aoJ4JJ+JQn+2SHT4aUX9CfEdNP60hsN7aZAowYCZjk= -----END CERTIFICATE-----Generated at Mon Mar 2 08:40:40 2026 by rpki-client