$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/St25VceXRjsecl3ufOzN-wLyznk.roa File: St25VceXRjsecl3ufOzN-wLyznk.roa (raw, json) Hash identifier: nBzDZssgxsbriEgI+gBsqrEsOorDJ9ADxfvzedVOl4M= Subject key identifier: 4A:DD:B9:55:C7:97:46:3B:1E:72:5D:EE:7C:EC:CD:FB:02:F2:CE:79 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 11F2 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/St25VceXRjsecl3ufOzN-wLyznk.roa Signing time: Sun 01 Mar 2026 02:44:33 +0000 ROA not before: Sun 01 Mar 2026 02:44:33 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.105.80.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4594 (0x11f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 02:44:33 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=4ADDB955C797463B1E725DEE7CECCDFB02F2CE79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:83:c2:4b:91:f3:d1:c6:81:ef:22:a3:93:2c: 94:6b:26:ad:19:36:d4:07:5b:4c:04:c5:91:65:94: 74:5d:b2:77:5a:c5:b9:97:1d:b6:23:b5:46:1a:44: 23:bf:28:2c:54:6d:67:04:d0:7f:da:7e:a7:fd:c6: b4:51:13:42:3e:7a:a9:c6:a0:b1:05:ac:06:8b:ad: d1:8c:00:c9:a0:9c:8b:35:a0:6e:17:e1:71:36:ac: a2:ac:3c:ed:2f:de:85:5c:28:11:d0:f2:d6:1c:ee: 3b:f0:87:d3:6e:26:70:7c:9b:56:a7:e2:83:bc:da: 2a:d9:6a:89:76:af:52:9e:44:d1:fb:77:21:5d:4c: 0f:f4:43:c1:8b:8d:79:df:9c:aa:bb:9b:98:3e:bb: e8:be:b9:67:ad:52:b8:c8:3d:10:69:6a:39:d8:f9: 1a:ec:0b:05:08:1e:df:be:d6:d9:92:eb:c6:47:12: 03:61:36:02:e7:06:6d:6d:5f:b7:d0:d7:65:4a:9a: 76:a9:c4:bf:b7:1b:69:fb:7a:eb:05:d1:46:c3:6d: 19:fd:8f:1f:ca:5b:51:6e:89:6d:0e:30:3e:bf:ba: 94:b3:6c:5d:6b:2f:78:c0:f6:66:05:15:95:b4:04: 4d:21:08:65:46:7e:d2:32:ca:37:31:4f:a2:7f:4f: 2b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:DD:B9:55:C7:97:46:3B:1E:72:5D:EE:7C:EC:CD:FB:02:F2:CE:79 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/St25VceXRjsecl3ufOzN-wLyznk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.105.80.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:d8:62:cf:85:01:5c:89:2d:25:2d:be:cc:50:e0:17:01:fb: 11:c4:c3:80:74:78:7b:50:48:59:3b:b0:d9:67:42:28:ca:19: ec:46:fd:93:ff:3b:bf:8a:7b:49:93:96:1e:e6:06:8b:e7:f2: 61:2f:67:dc:0c:72:60:60:ad:0f:95:ad:54:d0:e9:db:b7:0f: a4:86:74:64:23:c8:16:3f:3a:fa:a1:f9:d0:97:eb:89:ee:f3: bd:18:9a:65:fe:7b:2f:2c:43:b8:5d:70:59:dc:16:d0:91:94: 09:66:c1:5e:3e:5b:be:a9:54:df:85:29:4c:61:e9:6a:18:00: 88:37:fb:cb:76:fe:cf:d4:d5:76:34:28:f9:31:e9:cc:dc:88: 29:0b:75:50:32:83:a7:2e:db:4c:9d:7c:44:c8:dd:52:7a:18: de:8c:e8:29:a4:0f:1f:7c:3e:5d:4b:0f:10:ef:92:96:a2:ed: 74:40:66:10:39:b3:9d:6f:1d:68:eb:fa:ea:47:86:97:c2:d2: d5:bc:59:b5:f0:71:22:b8:53:f8:ff:7f:0c:54:46:8b:b5:ac: 63:41:64:70:ca:93:e7:d4:c6:4b:b1:5f:95:b0:dd:2d:6b:e0: e4:dc:52:a1:f0:ff:86:f3:7b:6b:3a:76:9c:39:5a:1b:55:99: e1:cb:06:28 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEfIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MjQ0MzNaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDRBRERCOTU1Qzc5NzQ2 M0IxRTcyNURFRTdDRUNDREZCMDJGMkNFNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqg8JLkfPRxoHvIqOTLJRrJq0ZNtQHW0wExZFllHRdsndaxbmX HbYjtUYaRCO/KCxUbWcE0H/afqf9xrRRE0I+eqnGoLEFrAaLrdGMAMmgnIs1oG4X 4XE2rKKsPO0v3oVcKBHQ8tYc7jvwh9NuJnB8m1an4oO82irZaol2r1KeRNH7dyFd TA/0Q8GLjXnfnKq7m5g+u+i+uWetUrjIPRBpajnY+RrsCwUIHt++1tmS68ZHEgNh NgLnBm1tX7fQ12VKmnapxL+3G2n7eusF0UbDbRn9jx/KW1FuiW0OMD6/upSzbF1r L3jA9mYFFZW0BE0hCGVGftIyyjcxT6J/TytnAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUSt25VceXRjsecl3ufOzN+wLyznkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1N0MjVWY2VYUmpzZWNsM3VmT3pOLXdMeXpuay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExaVAwDQYJKoZIhvcNAQELBQADggEBAG/YYs+FAVyJLSUtvsxQ4BcB+xHE w4B0eHtQSFk7sNlnQijKGexG/ZP/O7+Ke0mTlh7mBovn8mEvZ9wMcmBgrQ+VrVTQ 6du3D6SGdGQjyBY/Ovqh+dCX64nu870YmmX+ey8sQ7hdcFncFtCRlAlmwV4+W76p VN+FKUxh6WoYAIg3+8t2/s/U1XY0KPkx6czciCkLdVAyg6cu20ydfETI3VJ6GN6M 6CmkDx98Pl1LDxDvkpai7XRAZhA5s51vHWjr+upHhpfC0tW8WbXwcSK4U/j/fwxU Rou1rGNBZHDKk+fUxkuxX5Ww3S1r4OTcUqHw/4bze2s6dpw5WhtVmeHLBig= -----END CERTIFICATE-----Generated at Mon Mar 2 11:26:17 2026 by rpki-client