$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Hn0fwEAqbPzXahlEEcf0F3Czd50.roa File: Hn0fwEAqbPzXahlEEcf0F3Czd50.roa (raw, json) Hash identifier: 8tXqxwumTGy8muC/nBbJZyfFvl0mWR1J9/o0ALnkLI0= Subject key identifier: 1E:7D:1F:C0:40:2A:6C:FC:D7:6A:19:44:11:C7:F4:17:70:B3:77:9D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1131 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Hn0fwEAqbPzXahlEEcf0F3Czd50.roa Signing time: Sun 01 Mar 2026 02:12:39 +0000 ROA not before: Sun 01 Mar 2026 02:12:39 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4401 (0x1131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 02:12:39 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=1E7D1FC0402A6CFCD76A194411C7F41770B3779D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:24:74:87:26:f8:f5:d3:0c:1e:62:4b:59:36: ab:3b:c1:a4:2d:6b:09:86:8f:cf:17:4b:50:83:9b: a3:bf:f1:a1:16:62:53:99:e0:59:ce:fb:c3:25:17: ea:04:75:f5:53:1a:24:49:16:33:65:75:cd:99:4a: 3e:34:14:69:27:5a:a6:98:ca:e3:e4:d1:be:72:ae: b5:27:3c:ae:53:58:a7:8c:6b:b6:a7:7e:3a:19:ae: 71:67:76:08:8f:84:fd:85:d5:95:58:56:66:0b:4a: 3d:25:fe:9c:62:88:9c:0c:71:f3:3a:42:7c:26:a3: f1:99:95:77:e0:41:75:d6:63:3e:f4:a6:3e:be:08: 1c:4e:84:29:03:3a:41:3e:2b:d3:2a:e8:84:3a:3a: fe:c8:87:2c:01:e1:92:91:fb:29:27:f2:64:a4:cc: e1:93:a7:a1:73:d7:39:e8:75:dc:3b:f0:69:86:a9: c2:85:5f:7a:2d:1d:e8:18:74:c8:a4:7a:6a:14:cd: b7:08:5b:c3:59:03:92:8e:e9:8d:ef:f3:82:bf:cc: c2:b3:54:e6:65:80:87:11:7b:f7:af:b1:b1:02:49: 9e:97:c6:10:6d:30:27:32:0a:7d:41:28:70:93:98: ee:1c:a4:7f:93:da:9a:e5:04:78:36:47:b2:c1:c2: dc:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:7D:1F:C0:40:2A:6C:FC:D7:6A:19:44:11:C7:F4:17:70:B3:77:9D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Hn0fwEAqbPzXahlEEcf0F3Czd50.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.96.0/22 Signature Algorithm: sha256WithRSAEncryption 20:48:3f:b1:de:db:09:6d:9d:c0:c2:a5:4d:b9:f1:e9:10:31: 4f:25:6d:3d:34:01:53:4a:65:8a:f7:a3:c7:21:9e:1b:8d:ea: dc:01:2e:1a:e7:27:dd:f1:bb:29:48:38:24:56:ea:19:24:7d: 4a:ca:c7:70:4f:ec:72:23:3a:ad:de:7d:b9:63:ea:a5:d9:17: 8f:59:1a:c1:68:12:e5:0c:a3:69:1e:15:1c:e3:b7:5c:87:d1: 78:70:f0:08:a2:7c:c8:d9:f3:4a:85:b4:35:05:5a:88:90:a1: e1:1e:c7:cb:fe:1d:ca:c9:2e:8d:d1:ed:73:75:51:63:c8:af: 4d:1e:ab:a3:78:60:d1:c0:f8:b5:ed:e5:88:da:dc:80:60:69: 1e:3d:fd:f4:1d:fa:e4:8d:72:2a:34:31:c4:b0:1b:58:dd:ab: 3d:f9:33:a5:ca:2f:49:fa:a6:0c:33:e2:dc:6b:37:f5:40:8b: 9b:76:52:5b:aa:bc:07:be:a7:52:82:ed:49:e7:60:ad:1d:1d: c7:ee:c5:9e:3c:c5:1c:3f:c2:91:2e:c6:56:0c:9c:87:0f:0a: 1c:d8:ed:a8:b9:31:09:29:a5:0f:54:8c:2e:4f:14:20:18:32: ba:8a:88:c5:ee:b2:86:f2:a0:8b:eb:a5:a6:3c:4e:ec:0b:0d: 13:6a:e5:57 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICETEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MjEyMzlaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDFFN0QxRkMwNDAyQTZD RkNENzZBMTk0NDExQzdGNDE3NzBCMzc3OUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAJHSHJvj10wweYktZNqs7waQtawmGj88XS1CDm6O/8aEWYlOZ 4FnO+8MlF+oEdfVTGiRJFjNldc2ZSj40FGknWqaYyuPk0b5yrrUnPK5TWKeMa7an fjoZrnFndgiPhP2F1ZVYVmYLSj0l/pxiiJwMcfM6Qnwmo/GZlXfgQXXWYz70pj6+ CBxOhCkDOkE+K9Mq6IQ6Ov7IhywB4ZKR+ykn8mSkzOGTp6Fz1znoddw78GmGqcKF X3otHegYdMikemoUzbcIW8NZA5KO6Y3v84K/zMKzVOZlgIcRe/evsbECSZ6XxhBt MCcyCn1BKHCTmO4cpH+T2prlBHg2R7LBwtznAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUHn0fwEAqbPzXahlEEcf0F3Czd50wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0huMGZ3RUFxYlB6WGFobEVFY2YwRjNDemQ1MC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYmAwDQYJKoZIhvcNAQELBQADggEBACBIP7He2wltncDCpU258ekQMU8l bT00AVNKZYr3o8chnhuN6twBLhrnJ93xuylIOCRW6hkkfUrKx3BP7HIjOq3efblj 6qXZF49ZGsFoEuUMo2keFRzjt1yH0Xhw8AiifMjZ80qFtDUFWoiQoeEex8v+HcrJ Lo3R7XN1UWPIr00eq6N4YNHA+LXt5Yja3IBgaR49/fQd+uSNcio0McSwG1jdqz35 M6XKL0n6pgwz4txrN/VAi5t2UluqvAe+p1KC7UnnYK0dHcfuxZ48xRw/wpEuxlYM nIcPChzY7ai5MQkppQ9UjC5PFCAYMrqKiMXusobyoIvrpaY8TuwLDRNq5Vc= -----END CERTIFICATE-----Generated at Mon Mar 2 05:17:24 2026 by rpki-client