$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/pkXPNDlI1RjOSlnSXni0WGPgi9k.roa File: pkXPNDlI1RjOSlnSXni0WGPgi9k.roa (raw, json) Hash identifier: 74qXoqylOG0raZoe3p0J5BlJA6QHkCGVekNfKibOQlg= Subject key identifier: A6:45:CF:34:39:48:D5:18:CE:4A:59:D2:5E:78:B4:58:63:E0:8B:D9 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 11EB Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/pkXPNDlI1RjOSlnSXni0WGPgi9k.roa Signing time: Sun 01 Mar 2026 02:44:29 +0000 ROA not before: Sun 01 Mar 2026 02:44:29 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.101.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 05:15:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4587 (0x11eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 02:44:29 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=A645CF343948D518CE4A59D25E78B45863E08BD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:06:50:10:ad:70:c4:c1:4a:79:32:8d:d9:71: cd:b1:87:87:a2:3d:66:ec:f4:45:f6:ca:89:b4:da: 4e:9d:02:cd:f3:26:48:e6:46:8f:fd:1c:56:55:3e: db:4b:a4:c7:e0:0c:b1:fa:28:84:d4:7e:8c:bc:ad: 47:33:d3:37:f4:87:36:9a:ab:83:51:b0:9d:33:3e: a3:87:8b:80:d4:76:86:4e:29:b5:8c:b0:57:a3:69: 98:b3:9c:f9:86:6b:02:ee:e1:e5:0d:33:93:2e:f9: 08:d9:c2:c2:0c:78:df:d7:da:4a:3d:7e:de:b5:49: a1:e5:29:61:1d:53:e1:8e:d9:13:a5:04:17:69:4a: ed:46:b9:e2:43:60:ec:c7:0a:96:3b:f3:04:ea:b9: f0:fd:fb:d1:3c:09:3c:13:0e:2b:72:4d:ca:22:8b: 95:47:dc:1d:26:e0:09:7a:4a:af:f6:e5:52:8c:7f: 7a:f4:b3:be:17:c7:e7:de:fe:12:da:69:ac:2f:8b: 44:00:d4:30:92:1d:22:b4:af:90:26:1a:2b:0f:26: c3:58:d9:b0:11:a0:51:3e:c9:1f:f8:ca:26:52:48: a7:96:da:32:bc:71:d3:58:f5:23:6f:8b:c1:6e:63: 8a:e7:e6:c3:7d:fb:ba:57:71:be:e9:fe:03:b2:15: ce:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:45:CF:34:39:48:D5:18:CE:4A:59:D2:5E:78:B4:58:63:E0:8B:D9 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/pkXPNDlI1RjOSlnSXni0WGPgi9k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.101.128.0/17 Signature Algorithm: sha256WithRSAEncryption 35:5c:fe:95:e2:58:65:d3:91:3b:a9:14:d4:86:b5:24:cb:f7: 82:0f:8c:a2:09:bc:97:af:a1:02:cc:40:65:73:15:63:e8:aa: 22:80:52:19:1a:01:9e:27:a0:2f:bc:44:8d:4f:d0:bb:a1:3c: 4d:a3:b1:89:5c:85:01:1a:9b:67:70:a7:6d:08:bd:38:37:f1: 1a:a8:83:92:28:7a:ea:79:5b:30:6e:29:c8:0b:9e:85:b9:e3: f6:1d:e3:36:1c:49:ef:11:a4:fe:5f:59:04:66:b9:19:f7:8e: 05:34:7d:2b:dc:c9:4c:14:6a:2a:a8:c4:ae:74:9e:28:13:ff: cd:ac:9a:31:1e:79:35:ca:5d:ee:99:88:11:c0:7f:e4:ff:51: d1:14:b9:ff:24:c8:40:38:02:97:5e:89:fc:74:18:3a:45:2e: 4b:7c:2c:c6:75:f2:24:34:1a:af:a5:f8:1b:57:4b:a4:fc:29: 4c:8b:91:57:0e:cf:2f:0d:91:17:e6:2d:42:8d:55:ec:40:48: 6b:28:73:50:97:b5:ff:2d:06:3c:94:22:d0:63:db:ce:fe:f4: 5e:06:a6:17:38:af:97:eb:ec:0a:c7:a6:31:ef:2a:92:c7:28: aa:73:fb:33:cc:56:1d:3e:af:60:46:33:a7:30:1e:d2:cd:87: e1:e0:44:c6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEeswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MjQ0MjlaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEE2NDVDRjM0Mzk0OEQ1 MThDRTRBNTlEMjVFNzhCNDU4NjNFMDhCRDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVBlAQrXDEwUp5Mo3Zcc2xh4eiPWbs9EX2yom02k6dAs3zJkjm Ro/9HFZVPttLpMfgDLH6KITUfoy8rUcz0zf0hzaaq4NRsJ0zPqOHi4DUdoZOKbWM sFejaZiznPmGawLu4eUNM5Mu+QjZwsIMeN/X2ko9ft61SaHlKWEdU+GO2ROlBBdp Su1GueJDYOzHCpY78wTqufD9+9E8CTwTDityTcoii5VH3B0m4Al6Sq/25VKMf3r0 s74Xx+fe/hLaaawvi0QA1DCSHSK0r5AmGisPJsNY2bARoFE+yR/4yiZSSKeW2jK8 cdNY9SNvi8FuY4rn5sN9+7pXcb7p/gOyFc4BAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUpkXPNDlI1RjOSlnSXni0WGPgi9kwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3BrWFBORGxJMVJqT1NsblNYbmkwV0dQZ2k5ay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcxZYAwDQYJKoZIhvcNAQELBQADggEBADVc/pXiWGXTkTupFNSGtSTL94IP jKIJvJevoQLMQGVzFWPoqiKAUhkaAZ4noC+8RI1P0LuhPE2jsYlchQEam2dwp20I vTg38Rqog5Ioeup5WzBuKcgLnoW54/Yd4zYcSe8RpP5fWQRmuRn3jgU0fSvcyUwU aiqoxK50nigT/82smjEeeTXKXe6ZiBHAf+T/UdEUuf8kyEA4Apdeifx0GDpFLkt8 LMZ18iQ0Gq+l+BtXS6T8KUyLkVcOzy8NkRfmLUKNVexASGsoc1CXtf8tBjyUItBj 287+9F4Gphc4r5fr7ArHpjHvKpLHKKpz+zPMVh0+r2BGM6cwHtLNh+HgRMY= -----END CERTIFICATE-----Generated at Mon Mar 2 08:22:35 2026 by rpki-client