$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/dXLKw0NLl7cJVEEkf6qn4m0-mSE.roa File: dXLKw0NLl7cJVEEkf6qn4m0-mSE.roa (raw, json) Hash identifier: S1bQ8K0XquqSgKcEqU1i7vuWjKTJIxyQj2ckhmC3uQg= Subject key identifier: 75:72:CA:C3:43:4B:97:B7:09:54:41:24:7F:AA:A7:E2:6D:3E:99:21 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 11AE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dXLKw0NLl7cJVEEkf6qn4m0-mSE.roa Signing time: Sun 01 Mar 2026 02:36:18 +0000 ROA not before: Sun 01 Mar 2026 02:36:18 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4526 (0x11ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 02:36:18 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=7572CAC3434B97B7095441247FAAA7E26D3E9921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:99:03:f8:62:ac:e0:c4:67:2c:1f:4d:27:c5: cf:f2:ad:ea:c1:1e:76:4d:6d:8c:10:b1:5f:74:ee: 9b:d7:5a:13:b3:2e:17:0c:6b:06:85:65:80:d5:e5: 2c:c4:d3:90:dc:62:e6:5a:c2:0a:53:4d:92:af:d5: 94:b0:89:8e:13:3f:7e:6f:f5:c5:f1:19:e6:d9:d1: 4f:b2:df:c9:c8:8f:ba:1e:4e:bf:07:da:ad:17:09: d8:e0:e4:59:0e:fc:8f:6f:8f:33:2c:2e:fb:b9:e8: 85:ed:74:b9:78:a8:df:1c:98:51:15:14:f7:12:5c: cf:4d:ea:32:be:15:08:4f:c2:0b:75:70:54:36:94: 35:88:93:df:10:38:e1:23:53:c1:26:8e:2a:8e:d1: bc:f5:b1:e4:7e:c0:87:e8:f7:28:3d:fd:75:f8:77: 9c:fd:92:d9:38:9e:f4:5f:2d:1d:be:96:24:03:91: d0:94:82:ab:89:47:7c:c5:42:cb:46:0c:ee:11:85: 77:6c:39:ce:35:10:cd:88:03:46:d7:2c:41:47:87: 4e:9c:46:2e:a3:11:2d:ac:a8:c6:55:c6:40:b6:ea: dc:f4:e1:af:33:7b:dc:ba:39:2b:8f:66:57:6c:fb: 46:f3:fe:82:79:26:5f:83:b6:9e:39:33:49:b3:58: e6:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:72:CA:C3:43:4B:97:B7:09:54:41:24:7F:AA:A7:E2:6D:3E:99:21 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dXLKw0NLl7cJVEEkf6qn4m0-mSE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.76.0/22 Signature Algorithm: sha256WithRSAEncryption 39:36:22:8c:50:80:d0:11:02:ca:1b:9b:53:16:9c:1d:ab:41: 66:cf:99:00:89:44:b1:44:de:44:67:3d:a2:62:63:cd:7d:bf: ed:ae:b4:ff:e9:00:62:41:b6:e9:6d:f0:4d:b9:96:1a:26:86: 72:38:52:40:a0:5b:fc:19:f9:7c:75:08:04:69:7e:4b:10:2e: f3:1b:b1:c4:14:8c:d3:ef:d5:2f:5b:54:aa:81:96:85:60:74: 11:29:30:5a:a7:e4:3e:69:b5:d3:1a:69:32:1e:e6:81:cc:11: 4f:0d:d1:d1:45:d8:48:27:d0:23:a9:82:39:76:c2:ab:85:bb: e1:19:b1:43:44:bc:09:d2:09:ef:fd:7f:62:46:23:01:e9:bc: 5f:35:1c:d7:76:bf:23:51:e0:ba:68:0c:df:74:ef:59:8b:7f: 4f:04:3b:6a:e4:99:17:bb:46:64:fe:f1:a9:a3:ad:83:88:70: 37:b7:c4:c3:b1:40:b5:c6:bf:5f:6d:9d:61:80:b3:37:d7:d1: 69:5e:45:71:76:0c:8b:e6:df:2a:3d:69:b9:8f:65:c6:9f:27: a2:34:d8:34:00:c9:68:44:ed:38:3b:af:ec:8b:0a:9e:a0:98: 02:ae:80:2f:85:c8:d5:2a:9b:1a:27:ea:2e:80:f1:6b:b1:38: 1d:91:90:ed -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEa4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MjM2MThaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDc1NzJDQUMzNDM0Qjk3 QjcwOTU0NDEyNDdGQUFBN0UyNkQzRTk5MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSmQP4YqzgxGcsH00nxc/yrerBHnZNbYwQsV907pvXWhOzLhcM awaFZYDV5SzE05DcYuZawgpTTZKv1ZSwiY4TP35v9cXxGebZ0U+y38nIj7oeTr8H 2q0XCdjg5FkO/I9vjzMsLvu56IXtdLl4qN8cmFEVFPcSXM9N6jK+FQhPwgt1cFQ2 lDWIk98QOOEjU8EmjiqO0bz1seR+wIfo9yg9/XX4d5z9ktk4nvRfLR2+liQDkdCU gquJR3zFQstGDO4RhXdsOc41EM2IA0bXLEFHh06cRi6jES2sqMZVxkC26tz04a8z e9y6OSuPZlds+0bz/oJ5Jl+Dtp45M0mzWObnAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUdXLKw0NLl7cJVEEkf6qn4m0+mSEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2RYTEt3ME5MbDdjSlZFRWtmNnFuNG0wLW1TRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYkwwDQYJKoZIhvcNAQELBQADggEBADk2IoxQgNARAsobm1MWnB2rQWbP mQCJRLFE3kRnPaJiY819v+2utP/pAGJBtult8E25lhomhnI4UkCgW/wZ+Xx1CARp fksQLvMbscQUjNPv1S9bVKqBloVgdBEpMFqn5D5ptdMaaTIe5oHMEU8N0dFF2Egn 0COpgjl2wquFu+EZsUNEvAnSCe/9f2JGIwHpvF81HNd2vyNR4LpoDN9071mLf08E O2rkmRe7RmT+8amjrYOIcDe3xMOxQLXGv19tnWGAszfX0WleRXF2DIvm3yo9abmP ZcafJ6I02DQAyWhE7Tg7r+yLCp6gmAKugC+FyNUqmxon6i6A8WuxOB2RkO0= -----END CERTIFICATE-----Generated at Mon Mar 2 11:29:18 2026 by rpki-client