$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/2zxbk7Hq-vQAgqHdbP3eQIFhHL8.roa File: 2zxbk7Hq-vQAgqHdbP3eQIFhHL8.roa (raw, json) Hash identifier: E7DzW+CJpm3Llbin0DwnXyYVrivPo2//WgFPkDUZi0Q= Subject key identifier: DB:3C:5B:93:B1:EA:FA:F4:00:82:A1:DD:6C:FD:DE:40:81:61:1C:BF Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 126C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2zxbk7Hq-vQAgqHdbP3eQIFhHL8.roa Signing time: Sun 01 Mar 2026 03:00:35 +0000 ROA not before: Sun 01 Mar 2026 03:00:35 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.104.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4716 (0x126c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 03:00:35 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=DB3C5B93B1EAFAF40082A1DD6CFDDE4081611CBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:16:e5:73:53:af:03:88:e4:54:0b:28:68:17: e6:10:a9:0b:ff:8d:79:8b:8a:15:38:ac:ec:c4:74: 6f:f5:dc:b2:a9:bb:e9:e8:63:bb:6b:24:85:96:d4: 08:dd:c5:02:14:45:00:63:b3:4e:b3:59:13:21:b3: a2:c6:dc:93:84:0a:a1:63:af:4c:be:d8:46:9a:e0: e0:9d:9e:43:c9:16:3a:6a:68:12:c0:20:03:7c:ae: c1:45:39:ad:0e:bb:03:30:19:7c:a1:d2:ae:c7:14: 63:a8:01:b4:2b:80:f3:45:c8:95:a3:c6:0d:b2:52: e0:74:80:30:03:51:c3:02:9c:7f:1f:c9:e5:bf:32: 77:de:93:30:bc:03:17:df:02:cd:d4:fb:e7:f5:bc: cf:d9:c9:9d:88:f1:a4:d5:03:93:78:ae:79:40:3d: d9:2d:a1:a4:f4:b1:43:45:db:e4:db:cc:92:4e:66: d7:9f:03:e4:c2:0f:02:02:84:b8:c3:45:c0:84:40: 37:4f:b4:40:e5:00:9d:53:77:3f:b3:fb:86:d6:4d: 9b:45:0c:4b:52:91:1e:2d:b0:a0:eb:27:47:08:d3: ba:38:4e:74:88:b9:4b:a6:8b:68:aa:e8:ec:49:bb: 1b:9e:41:56:5e:fb:13:ff:8d:74:5b:f8:58:ed:b2: 8e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:3C:5B:93:B1:EA:FA:F4:00:82:A1:DD:6C:FD:DE:40:81:61:1C:BF X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2zxbk7Hq-vQAgqHdbP3eQIFhHL8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.35.0/24 Signature Algorithm: sha256WithRSAEncryption ab:57:1c:da:a9:2c:28:fb:9f:9c:90:86:e1:6e:b0:02:e2:c6: b9:dc:2a:37:3b:61:b4:47:2c:73:86:51:85:65:48:da:af:02: a3:fd:ca:80:e3:d4:52:33:1e:bd:44:dc:33:fd:8d:ce:d8:42: 11:aa:52:19:1c:fc:d7:9e:03:59:3a:6d:66:5e:d5:42:4b:b3: 8a:e2:53:1c:14:a2:37:8c:f6:e0:5d:25:64:b9:b3:47:b3:ab: 9c:86:5c:c7:47:3e:3e:ca:12:08:94:67:0e:73:8f:90:0a:e6: 8e:2f:1e:85:81:6b:3a:be:e0:23:b4:c3:ba:40:17:d7:95:2d: 18:9c:c2:f6:07:ad:f4:49:97:77:b6:0e:1e:5d:f3:be:0e:92: 23:1f:cd:72:42:9c:cb:84:fd:ef:a2:5e:b0:71:3d:3f:f7:42: de:7e:83:75:51:01:d7:84:04:da:f0:79:f4:92:93:be:ba:82: da:f7:33:44:dc:5b:5c:7b:4c:68:eb:53:21:bc:8c:86:4d:14: 98:c5:c3:80:b5:51:ce:5e:74:5b:e4:99:4b:be:13:35:35:f1: 13:d8:e4:2f:03:54:33:0c:aa:15:55:9c:31:28:1e:f4:76:1f: 07:31:a1:72:fa:2c:45:3e:85:9f:2d:fa:e8:90:e2:37:b5:0a: 5b:d7:4b:1a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEmwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MzAwMzVaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKERCM0M1QjkzQjFFQUZB RjQwMDgyQTFERDZDRkRERTQwODE2MTFDQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmFuVzU68DiORUCyhoF+YQqQv/jXmLihU4rOzEdG/13LKpu+no Y7trJIWW1AjdxQIURQBjs06zWRMhs6LG3JOECqFjr0y+2Eaa4OCdnkPJFjpqaBLA IAN8rsFFOa0OuwMwGXyh0q7HFGOoAbQrgPNFyJWjxg2yUuB0gDADUcMCnH8fyeW/ MnfekzC8AxffAs3U++f1vM/ZyZ2I8aTVA5N4rnlAPdktoaT0sUNF2+TbzJJOZtef A+TCDwIChLjDRcCEQDdPtEDlAJ1Tdz+z+4bWTZtFDEtSkR4tsKDrJ0cI07o4TnSI uUumi2iq6OxJuxueQVZe+xP/jXRb+Fjtso5DAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU2zxbk7Hq+vQAgqHdbP3eQIFhHL8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzJ6eGJrN0hxLXZRQWdxSGRiUDNlUUlGaEhMOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxaCMwDQYJKoZIhvcNAQELBQADggEBAKtXHNqpLCj7n5yQhuFusALixrnc Kjc7YbRHLHOGUYVlSNqvAqP9yoDj1FIzHr1E3DP9jc7YQhGqUhkc/NeeA1k6bWZe 1UJLs4riUxwUojeM9uBdJWS5s0ezq5yGXMdHPj7KEgiUZw5zj5AK5o4vHoWBazq+ 4CO0w7pAF9eVLRicwvYHrfRJl3e2Dh5d874OkiMfzXJCnMuE/e+iXrBxPT/3Qt5+ g3VRAdeEBNrwefSSk766gtr3M0TcW1x7TGjrUyG8jIZNFJjFw4C1Uc5edFvkmUu+ EzU18RPY5C8DVDMMqhVVnDEoHvR2HwcxoXL6LEU+hZ8t+uiQ4je1ClvXSxo= -----END CERTIFICATE-----Generated at Mon Mar 2 05:18:07 2026 by rpki-client