$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Fo2daZUq803acbpEvwei7mN3U_M.roa File: Fo2daZUq803acbpEvwei7mN3U_M.roa (raw, json) Hash identifier: bG6LOWQ6ethYxZy50itLaAgjip9NBF7Ye/5FJCIHEQ4= Subject key identifier: 16:8D:9D:69:95:2A:F3:4D:DA:71:BA:44:BF:07:A2:EE:63:77:53:F3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 115E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Fo2daZUq803acbpEvwei7mN3U_M.roa Signing time: Sun 01 Mar 2026 02:17:01 +0000 ROA not before: Sun 01 Mar 2026 02:17:01 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.32.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4446 (0x115e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 02:17:01 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=168D9D69952AF34DDA71BA44BF07A2EE637753F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:95:68:55:2c:4b:64:87:66:c2:46:04:46:93: 45:31:f7:42:11:40:84:2c:15:86:23:ff:ab:12:3d: 94:e7:35:d2:8c:7b:ee:f2:3f:a1:34:e8:b8:3e:9b: 83:2a:9e:0b:28:93:a4:22:e1:07:c1:a8:9d:bb:4f: 67:78:00:2e:08:13:60:c6:95:91:a5:fd:94:a1:2e: b8:e8:97:a2:32:d2:b2:38:76:df:80:8f:28:92:65: 7b:99:be:99:e4:e6:72:e4:29:41:45:8d:c6:58:ae: 6b:7a:43:5b:0c:bd:99:c4:98:01:99:99:e0:ef:53: 20:67:3e:5a:12:6a:9a:13:05:44:fd:3f:a5:62:99: 62:f6:4c:5b:e0:65:3e:65:6a:34:a1:24:77:80:ff: 27:10:f5:0e:be:07:40:3f:31:ba:8d:64:f6:ff:e8: 22:44:54:7f:5a:c3:64:b2:7a:9b:8b:49:b0:13:d5: 92:dd:2d:e5:a5:14:4f:45:01:35:b7:b6:8e:76:2c: 0b:30:92:fd:49:dc:9e:3d:57:ae:58:b2:d1:f6:e1: f5:fe:76:8a:29:48:3f:02:13:53:a2:14:9f:02:fe: 7f:67:e8:34:5a:2b:5b:87:3c:d4:5b:c9:70:70:fd: f0:01:6f:a9:ec:39:23:91:42:4a:44:3f:1d:42:d8: 9d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:8D:9D:69:95:2A:F3:4D:DA:71:BA:44:BF:07:A2:EE:63:77:53:F3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Fo2daZUq803acbpEvwei7mN3U_M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.32.0/23 Signature Algorithm: sha256WithRSAEncryption bc:a4:de:51:7c:df:cc:8b:6e:6e:8c:b3:ce:bf:93:e5:00:d1: b7:96:bc:ed:5a:5b:82:8a:bc:14:1b:9b:fc:98:a2:25:68:f6: aa:20:96:e5:c2:66:d8:c6:23:74:29:5e:71:92:18:50:de:3a: ad:32:18:d3:39:47:97:d2:19:8f:63:65:94:04:30:3a:98:7c: ff:78:48:09:44:ed:14:9a:61:1a:96:cb:df:50:df:58:5c:a4: 93:12:17:f0:49:f5:f9:64:26:ca:b7:aa:0f:b5:7c:4a:d9:50: de:f4:1b:a9:b6:0c:60:02:57:95:65:9d:1e:c1:b0:87:4d:8c: 14:6c:ed:48:4e:60:97:1d:28:3b:7b:db:4e:75:c7:dd:34:53: 4a:42:59:dc:d1:e0:cf:51:0f:54:f6:50:e1:a8:fd:b4:9d:d7: 88:7a:47:4f:81:27:c3:d6:c6:28:b8:7d:33:ca:0f:2a:ab:88: 4d:ba:8b:25:e1:56:33:d6:0b:fb:d6:50:87:70:03:7e:7b:65: 32:6f:80:c5:91:38:17:64:8c:be:54:83:ec:f7:d1:4e:fe:93: 26:3f:70:00:35:0c:27:12:4b:d4:07:99:d3:3c:01:ad:7f:39: f2:9b:78:b3:67:46:b3:1a:0b:cb:01:a4:1b:e7:89:85:c9:d3: c4:e4:a7:8b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEV4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MjE3MDFaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDE2OEQ5RDY5OTUyQUYz NEREQTcxQkE0NEJGMDdBMkVFNjM3NzUzRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChlWhVLEtkh2bCRgRGk0Ux90IRQIQsFYYj/6sSPZTnNdKMe+7y P6E06Lg+m4Mqngsok6Qi4QfBqJ27T2d4AC4IE2DGlZGl/ZShLrjol6Iy0rI4dt+A jyiSZXuZvpnk5nLkKUFFjcZYrmt6Q1sMvZnEmAGZmeDvUyBnPloSapoTBUT9P6Vi mWL2TFvgZT5lajShJHeA/ycQ9Q6+B0A/MbqNZPb/6CJEVH9aw2SyepuLSbAT1ZLd LeWlFE9FATW3to52LAswkv1J3J49V65YstH24fX+doopSD8CE1OiFJ8C/n9n6DRa K1uHPNRbyXBw/fABb6nsOSORQkpEPx1C2J3LAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUFo2daZUq803acbpEvwei7mN3U/MwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0ZvMmRhWlVxODAzYWNicEV2d2VpN21OM1VfTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYCAwDQYJKoZIhvcNAQELBQADggEBALyk3lF838yLbm6Ms86/k+UA0beW vO1aW4KKvBQbm/yYoiVo9qogluXCZtjGI3QpXnGSGFDeOq0yGNM5R5fSGY9jZZQE MDqYfP94SAlE7RSaYRqWy99Q31hcpJMSF/BJ9flkJsq3qg+1fErZUN70G6m2DGAC V5VlnR7BsIdNjBRs7UhOYJcdKDt72051x900U0pCWdzR4M9RD1T2UOGo/bSd14h6 R0+BJ8PWxii4fTPKDyqriE26iyXhVjPWC/vWUIdwA357ZTJvgMWROBdkjL5Ug+z3 0U7+kyY/cAA1DCcSS9QHmdM8Aa1/OfKbeLNnRrMaC8sBpBvniYXJ08Tkp4s= -----END CERTIFICATE-----Generated at Mon Mar 2 11:26:29 2026 by rpki-client