$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/y0xm4vDueoiadgr0qvC_EzaLsfY.roa File: y0xm4vDueoiadgr0qvC_EzaLsfY.roa (raw, json) Hash identifier: 2KvDrP8tjg1ll1iboSgPsAIXtqPZa7LgzjIuxIaSp/U= Subject key identifier: CB:4C:66:E2:F0:EE:7A:88:9A:76:0A:F4:AA:F0:BF:13:36:8B:B1:F6 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 1104 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/y0xm4vDueoiadgr0qvC_EzaLsfY.roa Signing time: Sun 01 Mar 2026 02:02:57 +0000 ROA not before: Sun 01 Mar 2026 02:02:57 +0000 ROA not after: Mon 15 Feb 2027 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.12.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4356 (0x1104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 1 02:02:57 2026 GMT Not After : Feb 15 01:30:02 2027 GMT Subject: CN=CB4C66E2F0EE7A889A760AF4AAF0BF13368BB1F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e5:96:d7:e7:10:cf:8f:63:66:59:e9:3d:ec: ba:31:c5:a6:9c:fd:c4:e0:ea:8f:75:0f:64:88:bd: 4e:45:9d:6c:70:00:df:a9:f1:24:f1:0d:4c:30:82: 84:38:54:22:5e:13:f9:2a:9a:69:ea:de:5e:9a:a3: a1:df:cf:55:48:73:01:f2:34:45:bc:2a:5f:e2:f8: 2c:9f:ff:a2:6e:9e:f9:f9:51:9f:75:3b:8f:01:e0: 07:d7:77:d5:5a:27:02:66:90:fb:ba:63:ab:5b:d9: 67:b4:e6:22:ca:92:62:a4:aa:25:c4:d6:77:cb:e6: d1:93:be:84:da:1e:2a:c7:29:23:ba:56:1b:00:53: e2:01:98:88:3b:5b:62:bd:3d:db:c5:dd:a5:c4:51: 6a:72:1f:35:6e:96:c1:f4:be:dc:67:a2:78:fe:80: 46:47:2f:c3:97:c9:3d:e5:71:cb:3f:b5:12:a6:27: 34:8f:38:1a:04:90:3f:b8:5c:5a:7c:24:fc:9f:8e: 9d:e4:c7:c4:3a:5f:e0:22:5c:12:c1:ba:5a:87:6e: 9e:f4:a8:e8:43:ec:36:10:e0:cb:cf:38:f3:22:51: c4:14:65:7c:fb:84:17:c5:04:ee:8f:4c:36:42:88: 56:89:42:d3:fb:00:04:cb:16:51:2d:f2:56:77:7c: 19:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:4C:66:E2:F0:EE:7A:88:9A:76:0A:F4:AA:F0:BF:13:36:8B:B1:F6 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/y0xm4vDueoiadgr0qvC_EzaLsfY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.12.0/23 Signature Algorithm: sha256WithRSAEncryption 78:1f:e9:c8:53:6f:d0:f5:4b:09:cf:fb:88:47:da:ff:11:86: a7:d6:3e:3e:d0:8b:32:a8:23:f9:e6:be:b5:3b:71:58:15:38: a4:1c:dd:67:bd:e4:83:c3:9b:84:01:d1:30:21:35:2f:8d:6a: a3:02:04:0c:6a:26:04:ff:d9:ae:26:15:20:39:e7:ed:50:62: 9c:23:7c:c3:04:91:f7:c9:1c:ae:28:84:e0:18:e3:90:14:97: 16:ec:50:1b:4d:b2:04:58:7c:ae:6c:0b:5e:dc:6f:55:f1:cd: 14:3f:d5:e2:71:dc:eb:b9:5d:a7:26:24:4e:35:92:f5:78:83: 6b:ea:f5:87:3b:d5:cd:a5:f1:8f:17:ba:1b:ed:21:8d:6a:cd: b1:68:69:f8:47:a1:d6:de:7b:8e:84:ad:66:1a:0e:26:c7:f2: ce:df:26:18:14:85:60:8b:9f:1f:21:42:e7:81:69:f8:67:74: eb:78:cd:59:3a:95:c7:35:35:2e:81:df:c1:7c:f6:9b:02:07: bf:2f:f3:5d:0c:81:fd:ee:be:c2:0f:60:27:9c:a7:eb:55:8e: 4f:90:3f:4d:43:e6:1e:f1:f3:fa:a8:70:58:ad:58:7f:cb:56: 47:44:99:22:11:a4:4d:a7:c7:e4:8c:57:0c:e4:d3:34:a5:df: b0:29:f3:d0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICEQQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMDEw MjAyNTdaFw0yNzAyMTUwMTMwMDJaMDMxMTAvBgNVBAMTKENCNEM2NkUyRjBFRTdB ODg5QTc2MEFGNEFBRjBCRjEzMzY4QkIxRjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC75ZbX5xDPj2NmWek97Loxxaac/cTg6o91D2SIvU5FnWxwAN+p 8STxDUwwgoQ4VCJeE/kqmmnq3l6ao6Hfz1VIcwHyNEW8Kl/i+Cyf/6Junvn5UZ91 O48B4AfXd9VaJwJmkPu6Y6tb2We05iLKkmKkqiXE1nfL5tGTvoTaHirHKSO6VhsA U+IBmIg7W2K9PdvF3aXEUWpyHzVulsH0vtxnonj+gEZHL8OXyT3lccs/tRKmJzSP OBoEkD+4XFp8JPyfjp3kx8Q6X+AiXBLBulqHbp70qOhD7DYQ4MvPOPMiUcQUZXz7 hBfFBO6PTDZCiFaJQtP7AATLFlEt8lZ3fBntAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUy0xm4vDueoiadgr0qvC/EzaLsfYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3kweG00dkR1ZW9pYWRncjBxdkNfRXphTHNmWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYAwwDQYJKoZIhvcNAQELBQADggEBAHgf6chTb9D1SwnP+4hH2v8RhqfW Pj7QizKoI/nmvrU7cVgVOKQc3We95IPDm4QB0TAhNS+NaqMCBAxqJgT/2a4mFSA5 5+1QYpwjfMMEkffJHK4ohOAY45AUlxbsUBtNsgRYfK5sC17cb1XxzRQ/1eJx3Ou5 XacmJE41kvV4g2vq9Yc71c2l8Y8XuhvtIY1qzbFoafhHodbee46ErWYaDibH8s7f JhgUhWCLnx8hQueBafhndOt4zVk6lcc1NS6B38F89psCB78v810Mgf3uvsIPYCec p+tVjk+QP01D5h7x8/qocFitWH/LVkdEmSIRpE2nx+SMVwzk0zSl37Ap89A= -----END CERTIFICATE-----Generated at Mon Mar 2 13:11:18 2026 by rpki-client