$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Us0rQz058pp5c2uw_fGczKe2OwU.roa File: Us0rQz058pp5c2uw_fGczKe2OwU.roa (raw, json) Hash identifier: v1FlPUxcNhfeFhQ6vDsx8sIPC0MvShSCwI6Vc2VXmPM= Subject key identifier: 52:CD:2B:43:3D:39:F2:9A:79:73:6B:B0:FD:F1:9C:CC:A7:B6:3B:05 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 122F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Us0rQz058pp5c2uw_fGczKe2OwU.roa Signing time: Sun 01 Mar 2026 02:52:27 +0000 ROA not before: Sun 01 Mar 2026 02:52:27 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.103.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4655 (0x122f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 02:52:27 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=52CD2B433D39F29A79736BB0FDF19CCCA7B63B05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:17:e3:f0:bd:aa:14:5f:56:48:bd:a9:51:40: 5d:f4:b2:0a:75:ff:b9:ee:67:a9:d1:18:98:bb:2e: 8d:c0:3c:0e:92:e7:0f:40:24:ac:d1:e7:c5:8a:ff: d2:74:80:99:b5:88:3d:b4:17:f8:5e:69:0d:ab:5f: 6d:35:4a:54:ac:68:0b:9d:86:31:32:9e:c8:23:b3: a1:c5:a0:ef:b8:61:f6:9e:79:6b:de:e4:16:41:9e: 85:17:c4:9c:fd:0d:67:91:e1:91:83:04:52:cc:ff: ff:bf:90:5e:43:06:94:d3:e6:1e:55:12:f8:df:f9: ba:18:10:a8:31:50:df:a3:4b:45:04:8e:25:4f:e2: 77:d7:b5:f0:80:4b:d3:d2:f7:67:de:91:db:bd:3e: 4f:3d:3b:b1:61:1f:30:f0:7d:51:c3:aa:bc:c0:bd: 89:d1:44:2f:77:60:dd:df:b8:96:67:d2:9a:a6:6a: 40:fa:ed:e4:d1:68:cd:50:4b:ee:a8:ec:d3:ee:ab: c2:19:36:c7:ee:cd:cd:f3:bd:84:b4:d9:f9:a5:3e: 24:37:0c:1e:c2:6a:b6:29:f0:ff:4a:40:a5:eb:29: 96:df:76:c8:7b:c8:cc:92:1a:2c:15:8b:48:4c:4d: 14:74:11:20:35:3e:2f:50:f1:5b:46:e2:83:de:b8: 6a:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:CD:2B:43:3D:39:F2:9A:79:73:6B:B0:FD:F1:9C:CC:A7:B6:3B:05 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Us0rQz058pp5c2uw_fGczKe2OwU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.103.20.0/22 Signature Algorithm: sha256WithRSAEncryption b7:55:fb:56:9e:18:f3:60:07:4a:f9:b1:0a:78:6b:86:1f:82: de:ef:6c:8d:ec:4e:f8:eb:0e:38:d3:0a:db:03:05:03:29:b2: a6:da:8d:56:fa:e9:d9:ea:8e:7d:16:46:34:4c:81:e4:5e:67: b2:d5:db:f2:f9:06:a8:f5:25:a3:5c:bc:69:d0:2c:96:b6:37: 9b:a1:22:e8:68:c9:e6:5d:04:cc:5a:ad:23:eb:90:59:43:f3: 52:6c:90:30:05:e2:ae:25:40:0e:3a:fe:03:a5:64:71:3f:4d: b7:5e:d1:44:fc:7d:86:63:ad:ad:a1:68:af:48:51:d0:b7:65: e8:e3:3f:61:ed:ab:8e:29:2a:ee:a5:b0:9a:43:ca:15:a8:c3: 61:84:4f:81:db:eb:e5:23:06:29:1f:37:0c:8b:13:4b:15:a3: 0f:7a:17:2f:a2:94:02:d4:71:34:d1:f6:97:ae:d6:98:44:04: cd:38:db:d9:cb:fd:16:3e:20:5b:9a:6d:63:78:e5:16:7d:a8: b9:df:53:d0:9f:26:1f:6d:1a:ee:2b:c0:e1:df:eb:a8:c4:54: f3:fb:e7:b4:d2:51:f6:a4:f8:83:7f:0c:9d:41:38:0f:e8:6c: 08:e9:9b:17:f3:19:5b:c0:dc:a5:16:76:11:a1:70:47:48:4c: b2:d8:10:34 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEi8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MjUyMjdaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDUyQ0QyQjQzM0QzOUYy OUE3OTczNkJCMEZERjE5Q0NDQTdCNjNCMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD3F+PwvaoUX1ZIvalRQF30sgp1/7nuZ6nRGJi7Lo3APA6S5w9A JKzR58WK/9J0gJm1iD20F/heaQ2rX201SlSsaAudhjEynsgjs6HFoO+4YfaeeWve 5BZBnoUXxJz9DWeR4ZGDBFLM//+/kF5DBpTT5h5VEvjf+boYEKgxUN+jS0UEjiVP 4nfXtfCAS9PS92fekdu9Pk89O7FhHzDwfVHDqrzAvYnRRC93YN3fuJZn0pqmakD6 7eTRaM1QS+6o7NPuq8IZNsfuzc3zvYS02fmlPiQ3DB7CarYp8P9KQKXrKZbfdsh7 yMySGiwVi0hMTRR0ESA1Pi9Q8VtG4oPeuGrdAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUUs0rQz058pp5c2uw/fGczKe2OwUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1VzMHJRejA1OHBwNWMydXdfZkdjektlMk93VS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxZxQwDQYJKoZIhvcNAQELBQADggEBALdV+1aeGPNgB0r5sQp4a4Yfgt7v bI3sTvjrDjjTCtsDBQMpsqbajVb66dnqjn0WRjRMgeReZ7LV2/L5Bqj1JaNcvGnQ LJa2N5uhIuhoyeZdBMxarSPrkFlD81JskDAF4q4lQA46/gOlZHE/Tbde0UT8fYZj ra2haK9IUdC3ZejjP2Htq44pKu6lsJpDyhWow2GET4Hb6+UjBikfNwyLE0sVow96 Fy+ilALUcTTR9peu1phEBM0429nL/RY+IFuabWN45RZ9qLnfU9CfJh9tGu4rwOHf 66jEVPP757TSUfak+IN/DJ1BOA/obAjpmxfzGVvA3KUWdhGhcEdITLLYEDQ= -----END CERTIFICATE-----Generated at Mon Mar 2 11:29:49 2026 by rpki-client