$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/kKu5qa9kPvMaQpIQB6CRvDO4pNM.roa File: kKu5qa9kPvMaQpIQB6CRvDO4pNM.roa (raw, json) Hash identifier: UuepbUScSWvRO9b7vV9uwd1ls8sjXH7U8wExcqmvqZY= Subject key identifier: 90:AB:B9:A9:AF:64:3E:F3:1A:42:92:10:07:A0:91:BC:33:B8:A4:D3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 115A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kKu5qa9kPvMaQpIQB6CRvDO4pNM.roa Signing time: Sun 01 Mar 2026 02:16:59 +0000 ROA not before: Sun 01 Mar 2026 02:16:59 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.38.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4442 (0x115a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 02:16:59 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=90ABB9A9AF643EF31A42921007A091BC33B8A4D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0b:79:73:5a:20:c2:3f:bd:c3:7d:c1:b1:82: 54:2d:17:e0:3d:88:c2:f2:e1:1d:5a:0f:d1:6d:94: e5:23:ab:0c:4c:7e:c8:c4:58:fe:56:54:13:57:71: f4:f7:a0:34:cb:cb:09:f3:24:8d:4f:09:d3:bc:21: 33:ec:3f:81:e9:74:54:e4:00:ff:2b:51:43:98:8b: 79:1b:1e:67:60:53:d7:38:78:aa:a5:fd:bf:53:b4: 2c:2b:8b:ed:62:63:e4:e4:f2:9b:3a:ea:a7:0d:14: 9e:d6:93:ca:85:e0:f6:1b:ec:fa:64:6b:7b:19:e9: 5f:23:d0:ed:c0:3f:59:d7:95:a3:96:c3:65:cc:21: 81:5c:2c:5f:b0:70:70:24:03:a6:01:49:ce:07:6b: 49:b6:67:58:44:fd:9a:46:68:bc:e4:17:8d:ef:8f: 03:c3:cf:3f:95:e0:f0:a9:87:cf:89:37:c8:06:c2: 39:65:ba:4e:c2:21:4b:ae:72:f3:e2:bd:95:b8:c5: 9c:2a:0c:af:ea:aa:a7:ab:2b:28:41:2d:89:24:d9: 03:e2:e3:91:d5:65:e7:b0:9d:12:76:98:1a:02:3e: 77:82:52:11:22:97:2e:51:7d:82:fa:e5:2a:21:cf: 1d:e5:be:19:18:83:01:d1:0b:ba:e4:18:aa:55:55: 29:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:AB:B9:A9:AF:64:3E:F3:1A:42:92:10:07:A0:91:BC:33:B8:A4:D3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kKu5qa9kPvMaQpIQB6CRvDO4pNM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.38.0/23 Signature Algorithm: sha256WithRSAEncryption c5:92:74:7a:b2:d6:6a:22:98:12:12:d7:b0:48:da:29:e0:5f: 61:17:b8:79:4f:64:ca:1b:7e:c7:2f:64:39:ae:32:19:42:cc: 13:71:0d:f9:07:3c:07:97:13:07:fa:3d:98:32:26:e8:66:94: f5:e5:34:df:e0:23:a2:f6:94:98:7e:b6:67:ec:e0:1a:8e:83: 09:d0:5c:d4:c9:38:03:c3:04:d1:d6:bd:c4:15:15:29:91:9c: 5f:cf:67:dd:2d:9c:02:87:42:e2:01:c3:bc:f6:09:75:91:c8: 5f:3f:e2:80:b4:9c:b4:09:ef:3a:5a:7b:15:d9:9a:f8:e5:32: be:e0:d4:18:67:9e:e7:19:a6:e9:f6:7b:4c:00:47:a9:65:b9: 7e:0b:89:f9:98:2b:c5:30:25:c0:b5:4c:f2:26:74:16:33:ef: 65:63:a2:01:c2:a9:55:c4:37:08:30:b0:5c:4d:1b:d9:2a:04: 0c:ab:80:c8:ed:f5:f9:de:51:6e:89:37:48:0c:3b:61:ae:ce: 1c:3a:41:da:04:71:c5:2e:e2:1e:75:52:5e:62:34:5a:d2:c9: dc:d6:09:00:7c:ef:f2:48:3c:58:dd:ff:64:a1:3b:07:e9:1e: f9:3b:86:43:b6:13:dc:9f:e0:83:32:82:33:b1:27:b4:44:6e: b5:58:27:9e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEVowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MjE2NTlaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDkwQUJCOUE5QUY2NDNF RjMxQTQyOTIxMDA3QTA5MUJDMzNCOEE0RDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4C3lzWiDCP73DfcGxglQtF+A9iMLy4R1aD9FtlOUjqwxMfsjE WP5WVBNXcfT3oDTLywnzJI1PCdO8ITPsP4HpdFTkAP8rUUOYi3kbHmdgU9c4eKql /b9TtCwri+1iY+Tk8ps66qcNFJ7Wk8qF4PYb7Ppka3sZ6V8j0O3AP1nXlaOWw2XM IYFcLF+wcHAkA6YBSc4Ha0m2Z1hE/ZpGaLzkF43vjwPDzz+V4PCph8+JN8gGwjll uk7CIUuucvPivZW4xZwqDK/qqqerKyhBLYkk2QPi45HVZeewnRJ2mBoCPneCUhEi ly5RfYL65Sohzx3lvhkYgwHRC7rkGKpVVSlpAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUkKu5qa9kPvMaQpIQB6CRvDO4pNMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2tLdTVxYTlrUHZNYVFwSVFCNkNSdkRPNHBOTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYCYwDQYJKoZIhvcNAQELBQADggEBAMWSdHqy1moimBIS17BI2ingX2EX uHlPZMobfscvZDmuMhlCzBNxDfkHPAeXEwf6PZgyJuhmlPXlNN/gI6L2lJh+tmfs 4BqOgwnQXNTJOAPDBNHWvcQVFSmRnF/PZ90tnAKHQuIBw7z2CXWRyF8/4oC0nLQJ 7zpaexXZmvjlMr7g1BhnnucZpun2e0wAR6lluX4LifmYK8UwJcC1TPImdBYz72Vj ogHCqVXENwgwsFxNG9kqBAyrgMjt9fneUW6JN0gMO2Guzhw6QdoEccUu4h51Ul5i NFrSydzWCQB87/JIPFjd/2ShOwfpHvk7hkO2E9yf4IMygjOxJ7REbrVYJ54= -----END CERTIFICATE-----Generated at Mon Mar 2 05:18:50 2026 by rpki-client