$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/2FXk8AdO40nsaGlQx0ot8onwGjI.roa File: 2FXk8AdO40nsaGlQx0ot8onwGjI.roa (raw, json) Hash identifier: ty/qblfjvzq6Qa9wDnv9VHyAyGMYEc9mJGaEOqCaHMc= Subject key identifier: D8:55:E4:F0:07:4E:E3:49:EC:68:69:50:C7:4A:2D:F2:89:F0:1A:32 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 123F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2FXk8AdO40nsaGlQx0ot8onwGjI.roa Signing time: Sun 01 Mar 2026 02:56:31 +0000 ROA not before: Sun 01 Mar 2026 02:56:31 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.101.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4671 (0x123f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 02:56:31 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=D855E4F0074EE349EC686950C74A2DF289F01A32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:dd:4e:35:50:53:78:cd:97:56:af:7c:bf:96: 40:17:7a:57:1f:06:c1:8b:db:56:fb:30:1f:b1:cf: 16:a6:e5:70:a3:16:cd:ee:15:3a:15:59:ae:8d:05: fc:47:db:c2:ca:44:ca:4d:54:28:ce:9d:ed:31:94: 5e:ef:4e:22:40:1d:3d:71:fb:2e:15:ef:c1:4d:48: 12:51:4e:2a:19:52:84:21:ba:27:1a:56:8d:c6:50: 93:a8:db:b5:e2:11:44:1a:2b:27:22:93:72:40:5c: 7b:39:a4:1b:fc:ab:69:e4:2a:73:30:90:6f:04:ce: ad:ec:60:41:3d:59:6c:18:ea:d9:8d:28:a0:4e:90: 46:0e:f4:02:28:d9:18:5d:38:a5:25:14:9f:d0:b6: 7f:0d:71:fe:ae:8b:21:ee:24:06:29:ac:72:7a:40: d0:4f:cd:7e:92:e4:96:30:05:3e:34:a7:8c:31:24: 70:e0:ea:c5:c6:01:2c:aa:e1:ed:66:3c:60:4c:3e: 8f:c7:3f:73:2c:a0:d3:96:9b:b4:05:58:7f:1e:78: 48:da:5d:5a:5d:29:29:07:0e:3c:8d:4d:fb:d1:e4: 12:b6:bb:26:ea:5c:16:24:45:fd:30:60:ea:fe:b9: e6:dd:fe:0f:9f:89:23:6d:78:69:84:27:24:18:9d: f0:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:55:E4:F0:07:4E:E3:49:EC:68:69:50:C7:4A:2D:F2:89:F0:1A:32 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2FXk8AdO40nsaGlQx0ot8onwGjI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.101.0.0/17 Signature Algorithm: sha256WithRSAEncryption 66:3a:a9:72:e4:b4:1d:95:04:ac:65:10:e7:5c:29:f1:36:52: e0:d3:cb:b6:7f:ef:6a:96:95:8b:bf:d7:93:0c:13:07:78:a1: eb:2b:19:bf:ef:0e:6f:09:24:3b:26:24:f8:d3:56:bb:bf:c7: 5d:46:99:c6:02:0a:ec:54:66:0f:f2:1c:e4:af:43:cf:55:b2: 43:f0:ef:c7:d0:c0:78:cb:83:2a:e0:32:3f:2e:71:51:91:ae: 71:32:d8:ef:d6:0a:9a:7f:b4:87:86:92:03:a1:86:2d:54:26: fd:a4:30:29:b5:97:3c:1a:26:c4:e7:ac:16:e9:f5:f9:d5:c3: 2c:04:cb:45:d9:d5:f4:2f:c4:bc:e9:29:90:ea:f2:67:d0:e2: 0d:6b:ec:20:91:a0:cc:e8:e0:5c:d1:15:72:a0:30:33:e3:af: 42:a2:99:fa:c7:91:9c:a6:87:f2:43:26:9c:e0:c5:17:75:d1: 33:cf:0d:77:05:e5:bf:52:54:d5:5d:c4:f5:5a:e3:bf:da:6b: 48:cc:19:a0:db:6e:74:dc:90:bd:d1:ca:7b:2a:b9:5a:33:4c: 67:1b:76:0f:24:3a:8c:b5:26:fc:42:4a:5d:f0:b6:a1:12:2a: f6:0b:67:82:e1:91:32:b0:da:25:e4:ff:b5:47:d1:23:d5:1f: 02:a3:a1:f2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEj8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MjU2MzFaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEQ4NTVFNEYwMDc0RUUz NDlFQzY4Njk1MEM3NEEyREYyODlGMDFBMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDH3U41UFN4zZdWr3y/lkAXelcfBsGL21b7MB+xzxam5XCjFs3u FToVWa6NBfxH28LKRMpNVCjOne0xlF7vTiJAHT1x+y4V78FNSBJRTioZUoQhuica Vo3GUJOo27XiEUQaKycik3JAXHs5pBv8q2nkKnMwkG8Ezq3sYEE9WWwY6tmNKKBO kEYO9AIo2RhdOKUlFJ/Qtn8Ncf6uiyHuJAYprHJ6QNBPzX6S5JYwBT40p4wxJHDg 6sXGASyq4e1mPGBMPo/HP3MsoNOWm7QFWH8eeEjaXVpdKSkHDjyNTfvR5BK2uybq XBYkRf0wYOr+uebd/g+fiSNteGmEJyQYnfArAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU2FXk8AdO40nsaGlQx0ot8onwGjIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzJGWGs4QWRPNDBuc2FHbFF4MG90OG9ud0dqSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcxZQAwDQYJKoZIhvcNAQELBQADggEBAGY6qXLktB2VBKxlEOdcKfE2UuDT y7Z/72qWlYu/15MMEwd4oesrGb/vDm8JJDsmJPjTVru/x11GmcYCCuxUZg/yHOSv Q89VskPw78fQwHjLgyrgMj8ucVGRrnEy2O/WCpp/tIeGkgOhhi1UJv2kMCm1lzwa JsTnrBbp9fnVwywEy0XZ1fQvxLzpKZDq8mfQ4g1r7CCRoMzo4FzRFXKgMDPjr0Ki mfrHkZymh/JDJpzgxRd10TPPDXcF5b9SVNVdxPVa47/aa0jMGaDbbnTckL3Rynsq uVozTGcbdg8kOoy1JvxCSl3wtqESKvYLZ4LhkTKw2iXk/7VH0SPVHwKjofI= -----END CERTIFICATE-----Generated at Mon Mar 2 05:18:08 2026 by rpki-client