$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Agnu1XLUQbAOjQDQkpF9AmqKPas.roa File: Agnu1XLUQbAOjQDQkpF9AmqKPas.roa (raw, json) Hash identifier: Ojo+0aGvsg0xts5rbqSVQrKVsjZsdT/pAj0rn0uboSg= Subject key identifier: 02:09:EE:D5:72:D4:41:B0:0E:8D:00:D0:92:91:7D:02:6A:8A:3D:AB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 125C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Agnu1XLUQbAOjQDQkpF9AmqKPas.roa Signing time: Sun 01 Mar 2026 03:00:25 +0000 ROA not before: Sun 01 Mar 2026 03:00:25 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.36.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4700 (0x125c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 03:00:25 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=0209EED572D441B00E8D00D092917D026A8A3DAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:14:ea:14:b7:14:b5:a4:36:60:04:cf:44:2f: 3f:11:27:a5:97:c7:de:09:e3:9a:b9:ff:02:f3:d0: 48:32:5a:92:3b:73:58:fe:c3:0d:d8:e2:1a:51:45: 60:a0:95:8a:01:fd:c6:73:1c:79:45:38:90:f2:ab: 3b:bb:18:52:ac:4b:d1:0b:3d:5b:82:ba:19:ae:bb: 85:fb:13:7f:41:50:df:6e:fe:1e:b5:12:8b:24:67: f0:69:ae:b7:08:5f:fd:63:32:7f:ea:12:ac:fe:37: 07:13:b0:bb:6b:db:02:ab:e0:b9:e7:d2:68:50:04: 91:84:81:3d:e5:7e:ae:d9:c0:5d:a0:0b:cd:f2:0b: 85:60:9c:11:b9:3d:a7:ce:ff:f4:d7:18:35:83:e0: 7c:f4:1e:de:8a:48:b2:26:f6:a4:3d:a6:fc:ba:81: 22:1f:78:51:51:29:c8:fc:b2:b7:67:d3:80:94:ba: 75:71:92:6a:be:2f:45:d2:25:09:7e:51:70:3f:b8: 76:0c:8f:d9:98:48:42:07:58:83:20:8c:67:1b:fa: c1:12:9f:6d:03:1e:6f:d9:26:2e:ed:09:47:fe:f7: 5e:73:f1:4d:b7:56:cc:e6:03:d1:28:11:c5:7b:04: ff:a8:d0:e4:c6:60:60:42:33:e6:58:d8:1b:40:76: 34:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:09:EE:D5:72:D4:41:B0:0E:8D:00:D0:92:91:7D:02:6A:8A:3D:AB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Agnu1XLUQbAOjQDQkpF9AmqKPas.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.36.0/23 Signature Algorithm: sha256WithRSAEncryption 81:2f:cc:5e:cf:b7:2b:14:1f:cf:4f:03:82:87:7e:16:94:78: 82:90:35:ae:84:bd:eb:3c:68:4f:72:9d:9e:ca:98:91:5c:b3: 7b:13:32:1c:f7:a0:c4:41:58:47:9b:ee:27:b9:13:34:22:17: 9d:16:ef:ea:21:a4:45:b0:6a:45:6c:62:22:c2:39:95:df:32: d7:04:ba:a5:5f:c4:a5:45:54:79:b3:e1:54:5e:8f:51:4d:28: dd:06:d1:37:11:2f:5f:8f:2e:09:d0:58:ae:64:dd:f6:12:df: 25:58:11:02:5b:ff:f6:47:cf:d4:e6:62:80:e9:08:09:0b:29: b5:19:aa:6f:42:30:3b:5c:02:5d:e6:ff:0c:ca:62:e3:05:c9: 04:12:69:66:98:dc:38:f7:b6:d5:f6:1e:ea:7c:3b:97:c7:58: 21:74:6a:e7:14:2f:21:eb:25:15:4b:21:40:d9:b5:bb:b9:bc: 03:91:78:23:bb:df:ca:f3:4d:5d:f5:d9:ca:6b:1f:97:2c:60: 24:16:23:9a:79:83:d3:dc:e9:4e:94:21:d8:6f:ca:34:5a:7a: 0b:25:86:e0:05:64:57:4f:e4:37:19:b7:7f:34:5b:57:fe:28: 89:ec:d8:b7:82:c8:96:cd:4c:88:6c:e1:95:40:3a:70:83:7b: 69:bc:33:c8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICElwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MzAwMjVaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDAyMDlFRUQ1NzJENDQx QjAwRThEMDBEMDkyOTE3RDAyNkE4QTNEQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTFOoUtxS1pDZgBM9ELz8RJ6WXx94J45q5/wLz0EgyWpI7c1j+ ww3Y4hpRRWCglYoB/cZzHHlFOJDyqzu7GFKsS9ELPVuCuhmuu4X7E39BUN9u/h61 EoskZ/BprrcIX/1jMn/qEqz+NwcTsLtr2wKr4Lnn0mhQBJGEgT3lfq7ZwF2gC83y C4VgnBG5PafO//TXGDWD4Hz0Ht6KSLIm9qQ9pvy6gSIfeFFRKcj8srdn04CUunVx kmq+L0XSJQl+UXA/uHYMj9mYSEIHWIMgjGcb+sESn20DHm/ZJi7tCUf+915z8U23 VszmA9EoEcV7BP+o0OTGYGBCM+ZY2BtAdjRVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUAgnu1XLUQbAOjQDQkpF9AmqKPaswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0FnbnUxWExVUWJBT2pRRFFrcEY5QW1xS1Bhcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYCQwDQYJKoZIhvcNAQELBQADggEBAIEvzF7PtysUH89PA4KHfhaUeIKQ Na6Eves8aE9ynZ7KmJFcs3sTMhz3oMRBWEeb7ie5EzQiF50W7+ohpEWwakVsYiLC OZXfMtcEuqVfxKVFVHmz4VRej1FNKN0G0TcRL1+PLgnQWK5k3fYS3yVYEQJb//ZH z9TmYoDpCAkLKbUZqm9CMDtcAl3m/wzKYuMFyQQSaWaY3Dj3ttX2Hup8O5fHWCF0 aucULyHrJRVLIUDZtbu5vAOReCO738rzTV312cprH5csYCQWI5p5g9Pc6U6UIdhv yjRaegslhuAFZFdP5DcZt380W1f+KIns2LeCyJbNTIhs4ZVAOnCDe2m8M8g= -----END CERTIFICATE-----Generated at Mon Mar 2 05:18:44 2026 by rpki-client