$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10822/IAc_OBwMYgnI7Gom1El0WSxLaQE.roa File: IAc_OBwMYgnI7Gom1El0WSxLaQE.roa (raw, json) Hash identifier: fJNnsQ1kpqm7rw1iRb0UPelCkNqhVek4H35B+RPueMc= Subject key identifier: 20:07:3F:38:1C:0C:62:09:C8:EC:6A:26:D4:49:74:59:2C:4B:69:01 Certificate issuer: /CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Certificate serial: 88 Authority key identifier: 33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/IAc_OBwMYgnI7Gom1El0WSxLaQE.roa Signing time: Tue 31 Mar 2026 08:37:38 +0000 ROA not before: Tue 31 Mar 2026 08:37:38 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 17698 IP address blocks: 122.49.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Validity Not Before: Mar 31 08:37:38 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=20073F381C0C6209C8EC6A26D44974592C4B6901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:09:cb:95:e7:7a:b3:bd:bd:67:ce:fc:78:0a: d3:e8:f6:cf:57:70:d6:79:e3:df:e2:41:56:a0:dd: df:88:c0:51:91:2f:32:54:2b:6c:f4:81:47:97:07: 64:b5:59:23:1a:cf:91:5e:f9:cc:b6:75:b2:c9:d1: 66:49:0f:c2:ae:7b:ab:0d:55:0c:b8:6c:6e:4b:86: e4:41:76:9d:31:de:82:47:f2:34:6c:4f:1c:cb:c5: 91:59:af:15:b0:f0:aa:ba:66:60:3b:c4:83:1c:52: 38:2a:dd:96:16:7a:02:55:a3:8e:cf:da:9d:d4:58: 57:ff:b6:e7:44:00:a0:86:fd:54:e0:8c:8b:2e:cf: 2f:41:93:b3:b1:3a:3f:9f:a3:4c:90:82:a7:b2:87: dd:bf:0d:aa:54:59:7d:78:d7:1b:8e:7c:0b:f3:88: f0:b0:f1:2d:2e:92:f5:f2:dc:87:9d:e3:7d:7c:82: d2:ee:f1:e4:1a:9b:98:c4:3c:1e:da:c0:b3:c7:26: ff:7a:8a:ee:b9:84:17:d2:fb:2c:98:bf:f2:24:6b: dc:18:4d:28:f3:07:af:5d:9d:33:37:a2:73:ce:20: e6:32:64:11:0d:4e:fd:0e:15:f0:1d:b2:03:66:ec: 76:c4:ec:fa:00:1c:bd:87:d4:42:a7:6e:5e:cc:fb: f9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:07:3F:38:1C:0C:62:09:C8:EC:6A:26:D4:49:74:59:2C:4B:69:01 X509v3 Authority Key Identifier: keyid:33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/IAc_OBwMYgnI7Gom1El0WSxLaQE.roa sbgp-ipAddrBlock: critical IPv4: 122.49.240.0/20 Signature Algorithm: sha256WithRSAEncryption 0d:37:5f:29:4d:de:39:bf:ed:e6:78:f7:a5:2f:30:35:f8:83: d7:c8:38:a4:e2:ca:b2:4a:e6:b0:38:cc:2c:55:0c:6e:78:01: 4a:fd:a1:02:ce:b1:21:5b:3f:be:39:13:f5:8e:ed:80:18:4f: 4c:06:3c:74:d6:0e:9f:05:cd:5e:09:28:e0:b5:8e:de:26:31: e3:74:d2:a7:92:46:57:56:87:15:a2:04:d4:4e:fc:60:07:53: 18:8f:6d:a4:48:ba:5b:2b:2d:17:93:a2:bd:08:f0:32:a6:ea: 02:e1:98:a9:6e:1c:c1:42:2c:dc:5f:ab:29:52:52:96:00:bb: 57:c1:22:35:60:f4:43:eb:45:fd:40:0f:52:b1:9a:5a:6e:f9: 14:f7:ef:c2:c7:3c:4d:c7:5b:f8:f9:be:cd:b5:af:19:a5:5a: 90:65:d8:ff:18:0a:0c:86:68:56:d4:92:d8:07:1a:2d:21:a8: fe:9c:a5:f3:ff:2f:73:49:b4:e9:3f:97:1c:ce:da:9e:36:4a: e7:95:b9:32:3e:10:69:94:c1:f0:71:71:ee:51:bb:7e:23:33: 6c:8c:f0:fd:d7:11:93:5a:ed:16:c2:0b:92:f1:79:95:fa:a4: a0:03:2c:b3:66:c3:ef:cf:38:d2:c6:0e:01:5c:d1:8d:bf:2c: bb:a6:47:89 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzNE RjlCMjRGNTNCQkNBQzM0N0JBNUI1QThDNDlCRkY0MTY2NkEyNjAeFw0yNjAzMzEw ODM3MzhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDIwMDczRjM4MUMwQzYy MDlDOEVDNkEyNkQ0NDk3NDU5MkM0QjY5MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4CcuV53qzvb1nzvx4CtPo9s9XcNZ549/iQVag3d+IwFGRLzJU K2z0gUeXB2S1WSMaz5Fe+cy2dbLJ0WZJD8Kue6sNVQy4bG5LhuRBdp0x3oJH8jRs TxzLxZFZrxWw8Kq6ZmA7xIMcUjgq3ZYWegJVo47P2p3UWFf/tudEAKCG/VTgjIsu zy9Bk7OxOj+fo0yQgqeyh92/DapUWX141xuOfAvziPCw8S0ukvXy3Ied4318gtLu 8eQam5jEPB7awLPHJv96iu65hBfS+yyYv/Ika9wYTSjzB69dnTM3onPOIOYyZBEN Tv0OFfAdsgNm7HbE7PoAHL2H1EKnbl7M+/nzAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUIAc/OBwMYgnI7Gom1El0WSxLaQEwHwYDVR0jBBgwFoAUM9+bJPU7vKw0e6W1 qMSb/0FmaiYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEwODIyL005LWJKUFU3dkt3MGU2VzFxTVNiXzBGbWFpWS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL005LWJKUFU3dkt3MGU2VzFxTVNi XzBGbWFpWS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8xMDgyMi9JQWNfT0J3TVlnbkk3R29tMUVsMFdTeExhUUUucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEejHwMA0GCSqGSIb3DQEBCwUA A4IBAQANN18pTd45v+3mePelLzA1+IPXyDik4sqySuawOMwsVQxueAFK/aECzrEh Wz++ORP1ju2AGE9MBjx01g6fBc1eCSjgtY7eJjHjdNKnkkZXVocVogTUTvxgB1MY j22kSLpbKy0Xk6K9CPAypuoC4ZipbhzBQizcX6spUlKWALtXwSI1YPRD60X9QA9S sZpabvkU9+/CxzxNx1v4+b7Nta8ZpVqQZdj/GAoMhmhW1JLYBxotIaj+nKXz/y9z SbTpP5ccztqeNkrnlbkyPhBplMHwcXHuUbt+IzNsjPD91xGTWu0WwguS8XmV+qSg AyyzZsPvzzjSxg4BXNGNvyy7pkeJ -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:49 2026 by rpki-client