$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/PGdCPAKBLHRWXXf9wxxJL5pfx7k.roa File: PGdCPAKBLHRWXXf9wxxJL5pfx7k.roa (raw, json) Hash identifier: rZDHOEdAQGYmuF8cIPaqN4DOZfZSlehVfWxkCWCyyGI= Subject key identifier: 3C:67:42:3C:02:81:2C:74:56:5D:77:FD:C3:1C:49:2F:9A:5F:C7:B9 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 113B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PGdCPAKBLHRWXXf9wxxJL5pfx7k.roa Signing time: Sun 01 Mar 2026 02:12:46 +0000 ROA not before: Sun 01 Mar 2026 02:12:46 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4411 (0x113b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 02:12:46 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=3C67423C02812C74565D77FDC31C492F9A5FC7B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:07:76:8d:ad:8a:ec:28:f7:1d:fc:40:74:66: 14:54:af:a7:68:95:7b:f5:fc:bf:36:db:82:6b:03: 1d:f3:8c:c6:ee:3b:ed:8d:0e:ed:45:ef:8f:08:fc: 55:bd:dc:e6:f1:0b:04:a4:87:32:40:d5:c7:3e:2b: 2a:df:9c:fa:c9:e0:e3:ad:db:8a:f8:f4:92:d2:1e: 19:2e:af:3d:81:dd:6c:dd:b8:04:44:fd:2c:64:87: ac:2a:20:0b:d2:37:a6:0a:d5:4e:9e:32:59:1d:7b: 73:22:92:94:52:cd:18:29:7e:4e:57:a5:08:20:3f: 77:9c:ce:cf:9f:b0:d6:e3:b0:c6:c7:8d:50:ab:d5: 65:47:77:69:02:95:aa:4c:70:a5:43:98:df:4d:57: 35:ec:77:94:09:d6:c3:a5:9d:4b:bf:44:a4:b0:be: f4:77:6f:f0:ef:5c:3e:76:5d:1f:80:20:d8:47:9b: 69:1e:ab:1e:b4:79:9f:32:5e:40:07:5b:b0:72:94: 4c:66:5a:44:7c:12:a6:ff:e1:cb:5a:19:8e:43:58: 08:82:ed:db:aa:8c:90:bd:eb:8f:50:2d:0c:e4:fb: fa:ee:f7:33:0a:d1:a9:48:3b:e7:f3:13:72:94:82: 7d:e0:14:37:09:3d:bc:d1:b1:7f:73:f3:5a:8e:3c: ae:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:67:42:3C:02:81:2C:74:56:5D:77:FD:C3:1C:49:2F:9A:5F:C7:B9 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PGdCPAKBLHRWXXf9wxxJL5pfx7k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.20.0/22 Signature Algorithm: sha256WithRSAEncryption 84:6a:03:ff:b1:b8:ae:d9:76:a7:52:0f:c2:31:36:ac:9e:08: 15:c6:65:47:ab:44:6b:39:b5:60:26:ce:92:5f:99:7f:24:ad: c5:ab:b7:79:87:8e:e3:29:33:15:3d:91:25:09:5d:09:89:fc: 17:a1:16:3e:ca:eb:0e:36:74:e4:24:8d:cd:b8:45:cd:9a:5d: fc:d2:1a:57:c0:33:63:cd:40:6e:4b:d7:3a:71:37:84:d3:03: 09:2f:34:b7:0c:6f:33:af:ec:24:0e:0e:21:6d:ee:9c:5b:f4: 60:12:98:83:57:c7:4f:06:14:67:d7:b7:d6:78:6b:47:8a:26: 14:da:d7:4f:f4:34:69:6c:fe:6c:54:67:65:cd:fe:ae:78:d9: 1e:fe:a7:58:b4:94:04:d4:76:92:b5:9b:31:39:18:ef:45:d6: 32:38:0c:9b:02:b5:dd:69:bf:85:d4:6f:a5:8e:a5:56:3c:79: 91:a2:5c:cb:7a:58:a0:07:c4:96:a5:76:de:8f:66:e5:89:55: c3:59:6a:aa:a2:54:cc:ff:3d:d7:2b:e0:5d:ca:c6:0f:ba:01: 04:05:f6:b8:de:83:b4:f8:88:23:2d:cd:28:c1:e5:e5:1b:e0: 75:af:d3:f3:51:f0:00:6b:ac:d9:9e:89:5a:9c:d7:be:2a:93: 75:36:d0:01 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICETswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MjEyNDZaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDNDNjc0MjNDMDI4MTJD NzQ1NjVENzdGREMzMUM0OTJGOUE1RkM3QjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHB3aNrYrsKPcd/EB0ZhRUr6dolXv1/L8224JrAx3zjMbuO+2N Du1F748I/FW93ObxCwSkhzJA1cc+KyrfnPrJ4OOt24r49JLSHhkurz2B3WzduARE /Sxkh6wqIAvSN6YK1U6eMlkde3MikpRSzRgpfk5XpQggP3eczs+fsNbjsMbHjVCr 1WVHd2kClapMcKVDmN9NVzXsd5QJ1sOlnUu/RKSwvvR3b/DvXD52XR+AINhHm2ke qx60eZ8yXkAHW7BylExmWkR8Eqb/4ctaGY5DWAiC7duqjJC9649QLQzk+/ru9zMK 0alIO+fzE3KUgn3gFDcJPbzRsX9z81qOPK75AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUPGdCPAKBLHRWXXf9wxxJL5pfx7kwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1BHZENQQUtCTEhSV1hYZjl3eHhKTDVwZng3ay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYBQwDQYJKoZIhvcNAQELBQADggEBAIRqA/+xuK7ZdqdSD8IxNqyeCBXG ZUerRGs5tWAmzpJfmX8krcWrt3mHjuMpMxU9kSUJXQmJ/BehFj7K6w42dOQkjc24 Rc2aXfzSGlfAM2PNQG5L1zpxN4TTAwkvNLcMbzOv7CQODiFt7pxb9GASmINXx08G FGfXt9Z4a0eKJhTa10/0NGls/mxUZ2XN/q542R7+p1i0lATUdpK1mzE5GO9F1jI4 DJsCtd1pv4XUb6WOpVY8eZGiXMt6WKAHxJaldt6PZuWJVcNZaqqiVMz/Pdcr4F3K xg+6AQQF9rjeg7T4iCMtzSjB5eUb4HWv0/NR8ABrrNmeiVqc174qk3U20AE= -----END CERTIFICATE-----Generated at Mon Mar 2 11:28:57 2026 by rpki-client