$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/OjAARkR9-8S9XZFOns86Mg5vuIQ.roa File: OjAARkR9-8S9XZFOns86Mg5vuIQ.roa (raw, json) Hash identifier: 03Ls9eSdwUm9/L1oypnQ3EgpdV9A3RuIy5EVS0bz5Zs= Subject key identifier: 3A:30:00:46:44:7D:FB:C4:BD:5D:91:4E:9E:CF:3A:32:0E:6F:B8:84 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1149 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/OjAARkR9-8S9XZFOns86Mg5vuIQ.roa Signing time: Sun 01 Mar 2026 02:16:49 +0000 ROA not before: Sun 01 Mar 2026 02:16:49 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.172.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4425 (0x1149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 02:16:49 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=3A300046447DFBC4BD5D914E9ECF3A320E6FB884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d5:77:65:72:f1:6c:22:1f:90:be:e8:5d:cc: ab:03:1a:2a:f6:6a:45:6b:50:76:39:47:a4:da:f8: 90:d5:20:ac:f0:e2:ee:53:2d:77:b3:34:9b:2f:b3: c9:d4:a6:10:6c:ca:d5:c4:fc:f0:fd:c0:bd:e2:e3: 1f:c9:c5:d9:6d:e5:28:0f:d6:a9:d3:96:cb:b0:14: be:71:25:21:60:10:27:07:fa:22:4d:be:1a:6d:29: 08:f7:c1:33:87:23:de:1d:f6:0f:21:9a:e9:39:cb: 4b:99:a8:e4:93:b4:a3:65:ab:a5:1e:46:35:67:b5: a0:7d:f7:07:2c:3a:be:b6:19:83:a8:3e:14:a0:c9: f2:b8:c2:5a:f9:8b:5c:1d:3d:4c:f9:12:9a:46:db: 19:21:24:02:ef:be:2f:cb:b6:92:88:bc:64:2b:af: f7:59:5d:36:90:9c:87:cb:12:03:b3:68:0c:5d:4a: a3:86:3f:9d:61:08:67:dc:e2:59:2c:f9:f1:ef:4f: 6e:09:79:4a:79:cf:ca:ba:a1:ea:e3:9d:c7:07:07: 23:32:a1:5a:ac:2c:17:51:fe:c9:a9:f8:32:a2:7a: 21:01:3f:a6:04:ea:93:7a:0c:0b:5b:43:a2:20:d0: 8c:b6:f5:ef:94:cc:69:0b:1c:8d:5a:bd:80:90:c8: 63:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:30:00:46:44:7D:FB:C4:BD:5D:91:4E:9E:CF:3A:32:0E:6F:B8:84 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/OjAARkR9-8S9XZFOns86Mg5vuIQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.172.0/23 Signature Algorithm: sha256WithRSAEncryption 80:66:6b:b1:6f:2b:07:d2:3a:f3:7c:a7:3c:a4:1e:b6:7e:7e: 00:5c:b7:0a:7e:e5:fc:d6:66:bd:f5:81:49:9b:0a:4d:c9:a5: 59:85:10:db:10:d5:94:8a:67:0a:3c:1c:ca:19:f4:64:42:6a: 8a:f4:17:69:3e:11:70:90:b4:50:a7:b1:87:d6:35:0f:80:89: 6e:ad:05:8f:cf:a6:78:0b:ae:1c:e9:e1:59:88:63:cd:8a:54: 4c:94:30:ae:05:52:9f:a0:0a:65:77:58:21:98:d0:ec:af:ec: dd:cd:61:7d:2d:6c:10:27:74:52:d4:74:86:a0:74:3a:d3:48: 6c:b3:97:8b:a3:d9:47:ff:11:66:52:55:b8:e3:d3:f0:76:ff: 69:3a:1c:e2:4e:c8:1d:fd:77:5e:7b:dd:9e:67:dd:b5:b1:a5: c2:17:3a:62:25:5e:bc:54:fb:ff:af:58:2c:e9:30:9e:9a:0d: dd:34:aa:4f:6e:99:14:76:1e:e0:aa:2f:fb:a4:ac:2c:00:4c: 0f:3a:f6:87:79:67:ec:24:ca:94:d7:c5:77:e5:a2:3d:86:03: 06:a0:1c:48:3a:e3:1e:2b:2f:f0:50:5f:d7:9f:a8:f5:8c:65: 13:50:e5:af:bc:bd:17:a1:cf:59:91:5f:1b:c1:24:4c:a8:68: 48:e2:8e:ca -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEUkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MjE2NDlaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDNBMzAwMDQ2NDQ3REZC QzRCRDVEOTE0RTlFQ0YzQTMyMEU2RkI4ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC31XdlcvFsIh+QvuhdzKsDGir2akVrUHY5R6Ta+JDVIKzw4u5T LXezNJsvs8nUphBsytXE/PD9wL3i4x/Jxdlt5SgP1qnTlsuwFL5xJSFgECcH+iJN vhptKQj3wTOHI94d9g8hmuk5y0uZqOSTtKNlq6UeRjVntaB99wcsOr62GYOoPhSg yfK4wlr5i1wdPUz5EppG2xkhJALvvi/LtpKIvGQrr/dZXTaQnIfLEgOzaAxdSqOG P51hCGfc4lks+fHvT24JeUp5z8q6oerjnccHByMyoVqsLBdR/smp+DKieiEBP6YE 6pN6DAtbQ6Ig0Iy29e+UzGkLHI1avYCQyGP7AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUOjAARkR9+8S9XZFOns86Mg5vuIQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L09qQUFSa1I5LThTOVhaRk9uczg2TWc1dnVJUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYqwwDQYJKoZIhvcNAQELBQADggEBAIBma7FvKwfSOvN8pzykHrZ+fgBc twp+5fzWZr31gUmbCk3JpVmFENsQ1ZSKZwo8HMoZ9GRCaor0F2k+EXCQtFCnsYfW NQ+AiW6tBY/PpngLrhzp4VmIY82KVEyUMK4FUp+gCmV3WCGY0Oyv7N3NYX0tbBAn dFLUdIagdDrTSGyzl4uj2Uf/EWZSVbjj0/B2/2k6HOJOyB39d1573Z5n3bWxpcIX OmIlXrxU+/+vWCzpMJ6aDd00qk9umRR2HuCqL/ukrCwATA869od5Z+wkypTXxXfl oj2GAwagHEg64x4rL/BQX9efqPWMZRNQ5a+8vRehz1mRXxvBJEyoaEjijso= -----END CERTIFICATE-----Generated at Mon Mar 2 05:18:49 2026 by rpki-client