$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/mz-hDQLEM0zSC2av7k-ft5O9Wr4.roa File: mz-hDQLEM0zSC2av7k-ft5O9Wr4.roa (raw, json) Hash identifier: uuE0zX18CyhNd4giv86WeYo3CuztEuEQwfF7cDIfR70= Subject key identifier: 9B:3F:A1:0D:02:C4:33:4C:D2:0B:66:AF:EE:4F:9F:B7:93:BD:5A:BE Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1127 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mz-hDQLEM0zSC2av7k-ft5O9Wr4.roa Signing time: Sun 01 Mar 2026 02:07:37 +0000 ROA not before: Sun 01 Mar 2026 02:07:37 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.138.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 05:15:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4391 (0x1127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 02:07:37 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=9B3FA10D02C4334CD20B66AFEE4F9FB793BD5ABE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ad:78:d6:20:40:24:da:d2:a2:3a:9f:eb:20: 8b:34:89:5d:22:04:12:85:7b:b7:74:b5:e8:eb:b7: 4a:8b:af:ae:5c:a0:db:21:f1:83:04:0c:ac:de:12: a0:6b:4f:2c:37:ff:b5:bc:ec:3d:b0:73:ba:f4:92: 4e:c0:91:60:3d:55:b9:16:7a:58:ca:af:e5:ed:17: 22:81:d3:32:4d:bd:79:64:12:b5:c7:e1:89:cf:e1: 94:5f:44:4a:62:8d:dc:43:74:01:c5:82:f2:05:23: cb:f9:fa:22:a3:83:8a:c9:c3:02:cf:27:29:1d:1a: 61:3b:9a:d7:c2:fb:75:4e:05:e9:58:0c:5c:77:d3: 84:b4:df:25:e7:84:c1:9e:56:bc:07:c6:63:cb:c8: 23:fb:2f:14:7b:8f:41:45:ad:7b:2c:c7:34:6e:e3: d4:4a:ea:fd:5d:83:3a:63:1d:b9:ae:e0:86:66:44: be:a5:0d:9f:b3:2f:0b:84:da:ce:54:05:b3:32:89: 85:36:89:11:22:2e:0f:e7:c7:60:39:b3:c8:27:ba: b6:65:e4:e8:9a:b7:f2:18:99:a2:12:ff:52:49:53: 74:34:5c:6d:6e:52:0d:5f:7d:88:80:0e:c4:1f:1c: 0a:cc:77:6a:56:30:46:03:10:fa:4f:1f:d6:fb:ae: 2c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:3F:A1:0D:02:C4:33:4C:D2:0B:66:AF:EE:4F:9F:B7:93:BD:5A:BE X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mz-hDQLEM0zSC2av7k-ft5O9Wr4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.138.0/23 Signature Algorithm: sha256WithRSAEncryption d9:77:3d:f7:d2:95:ff:30:91:19:36:82:37:de:bf:41:4b:1c: 2d:cf:18:9d:46:71:ea:11:f1:4a:9f:11:c2:04:6b:ba:5e:76: b1:df:ce:ea:e7:06:db:0f:dc:87:1c:0d:57:90:17:1a:a3:86: a2:cf:ad:ff:7e:d0:d4:a1:81:a9:0d:2b:c4:46:02:9a:14:b8: b6:ce:9b:3c:2f:1f:a3:bc:6d:af:cc:8c:3a:2f:79:f2:06:b4: 76:30:b6:14:44:82:39:6d:e0:99:8f:32:8f:99:9a:73:b2:d5: 2c:5f:db:7c:32:29:39:c2:d2:e2:b8:99:45:1d:aa:54:06:5b: bb:57:d0:59:7b:61:3a:e6:f7:ad:ef:6e:26:e4:8d:08:f6:df: 5c:1f:f5:ff:76:9b:a3:cb:e8:a2:56:5b:94:f8:b9:b8:5a:9e: e1:aa:9d:63:86:6d:44:8d:3c:4f:fd:ab:64:7c:25:6f:5f:2b: 30:c4:15:7d:48:ca:a6:88:cd:6b:82:01:07:b0:4e:4f:82:40: 34:b9:9d:9a:11:ef:4f:7f:ac:02:07:98:28:9f:e4:88:08:92: 62:ad:7d:99:0c:9d:22:6d:18:29:3c:d6:d0:c6:02:ba:da:d3: 44:cc:dc:af:5c:c3:4b:1e:5d:bb:c1:9e:48:8a:ed:b7:25:39: 7a:65:84:af -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEScwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MjA3MzdaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDlCM0ZBMTBEMDJDNDMz NENEMjBCNjZBRkVFNEY5RkI3OTNCRDVBQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDrXjWIEAk2tKiOp/rIIs0iV0iBBKFe7d0tejrt0qLr65coNsh 8YMEDKzeEqBrTyw3/7W87D2wc7r0kk7AkWA9VbkWeljKr+XtFyKB0zJNvXlkErXH 4YnP4ZRfREpijdxDdAHFgvIFI8v5+iKjg4rJwwLPJykdGmE7mtfC+3VOBelYDFx3 04S03yXnhMGeVrwHxmPLyCP7LxR7j0FFrXssxzRu49RK6v1dgzpjHbmu4IZmRL6l DZ+zLwuE2s5UBbMyiYU2iREiLg/nx2A5s8gnurZl5Oiat/IYmaIS/1JJU3Q0XG1u Ug1ffYiADsQfHArMd2pWMEYDEPpPH9b7riwLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUmz+hDQLEM0zSC2av7k+ft5O9Wr4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L216LWhEUUxFTTB6U0MyYXY3ay1mdDVPOVdyNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYoowDQYJKoZIhvcNAQELBQADggEBANl3PffSlf8wkRk2gjfev0FLHC3P GJ1GceoR8UqfEcIEa7pedrHfzurnBtsP3IccDVeQFxqjhqLPrf9+0NShgakNK8RG ApoUuLbOmzwvH6O8ba/MjDovefIGtHYwthREgjlt4JmPMo+ZmnOy1Sxf23wyKTnC 0uK4mUUdqlQGW7tX0Fl7YTrm963vbibkjQj231wf9f92m6PL6KJWW5T4ubhanuGq nWOGbUSNPE/9q2R8JW9fKzDEFX1IyqaIzWuCAQewTk+CQDS5nZoR709/rAIHmCif 5IgIkmKtfZkMnSJtGCk81tDGArra00TM3K9cw0seXbvBnkiK7bclOXplhK8= -----END CERTIFICATE-----Generated at Mon Mar 2 08:22:59 2026 by rpki-client