$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10822/xInswhtvYa48wAnUDJc7Lz9OOk4.roa File: xInswhtvYa48wAnUDJc7Lz9OOk4.roa (raw, json) Hash identifier: b97nj9mA5i0yxhCN2hVDmPjODdTnKO8XeZiFPx/ZrsY= Subject key identifier: C4:89:EC:C2:1B:6F:61:AE:3C:C0:09:D4:0C:97:3B:2F:3F:4E:3A:4E Certificate issuer: /CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Certificate serial: 87 Authority key identifier: 33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/xInswhtvYa48wAnUDJc7Lz9OOk4.roa Signing time: Tue 31 Mar 2026 08:37:38 +0000 ROA not before: Tue 31 Mar 2026 08:37:38 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 17698 IP address blocks: 122.49.232.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Validity Not Before: Mar 31 08:37:38 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=C489ECC21B6F61AE3CC009D40C973B2F3F4E3A4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:86:26:ee:b4:35:c7:a3:a0:16:51:db:47:b7: 6e:cc:ee:60:61:63:4f:f8:29:75:45:6e:af:d4:34: 61:9c:1a:bc:33:53:ba:fd:99:78:45:a8:59:2a:32: aa:50:a9:48:92:9b:92:42:3a:57:3a:66:82:1d:7b: 51:2a:b5:9f:63:d8:77:7a:c9:10:e3:9c:5a:a7:48: 15:53:c5:ba:1d:5d:64:22:bc:20:44:f6:a3:c0:20: ec:84:e0:fb:7e:8f:a2:5e:30:16:85:3d:2c:30:b6: 5c:6a:58:d8:80:97:78:6d:2b:0e:4d:23:e8:c5:2d: d8:66:ee:f1:68:81:fc:e2:c8:27:2a:d1:76:cc:3b: 09:81:79:c2:42:96:f0:de:c8:11:7f:04:90:70:66: f5:63:4c:59:36:d4:1a:a0:d7:ea:88:56:3c:cd:a4: ba:25:3c:ce:c4:7c:d7:f1:be:ad:27:27:c1:9e:c7: d3:0d:52:80:f0:43:0e:99:19:7b:60:c2:c6:dd:17: 8a:2e:ae:9b:88:61:22:75:9a:af:49:a6:16:e0:23: e2:2a:de:d6:d1:6d:7e:94:9c:d2:0f:c6:ea:a6:e9: ed:d7:74:14:15:42:b6:d3:9e:60:50:ec:96:7c:2c: b5:65:44:35:7e:be:3c:1b:65:73:b9:c1:e0:43:a2: e0:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:89:EC:C2:1B:6F:61:AE:3C:C0:09:D4:0C:97:3B:2F:3F:4E:3A:4E X509v3 Authority Key Identifier: keyid:33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/xInswhtvYa48wAnUDJc7Lz9OOk4.roa sbgp-ipAddrBlock: critical IPv4: 122.49.232.0/21 Signature Algorithm: sha256WithRSAEncryption c7:63:d5:2e:88:d9:93:ee:7f:39:b8:bc:72:b8:28:c3:98:f2: 40:94:65:7a:0a:cc:c6:86:3e:98:b7:e2:9d:5c:1c:3d:d8:16: 74:dd:21:1c:86:3b:81:92:5e:6d:3b:cb:3a:13:2d:07:9b:e8: e5:ad:a9:6d:65:da:08:9a:ce:4b:71:5e:a0:86:c2:37:cb:d9: c3:e8:d0:8f:cd:5a:fb:59:7e:90:b7:4b:70:a6:16:09:3a:bf: 8c:c1:5c:76:e3:6d:23:b6:51:93:97:ca:6e:4b:77:c2:ef:fe: f7:db:4b:a9:53:e0:ca:a3:a5:62:fc:4a:fb:d8:55:fe:3d:9e: 58:ae:52:94:09:83:ce:81:1c:c6:4b:68:2b:3f:29:ea:4e:58: 8d:41:62:ce:1f:78:f2:63:35:f0:8b:71:5b:06:0f:8f:bc:99: 07:4e:9a:45:6d:2a:45:c5:aa:e7:3b:80:d2:de:d5:27:56:d2: d9:b4:0d:a6:7d:2a:36:ef:0e:83:dc:7f:73:fb:b3:51:ce:31: b4:40:07:84:e1:a8:c9:60:66:15:d0:39:d0:17:75:4b:03:7d: 69:03:39:83:50:34:e4:db:9b:6a:34:f0:2a:04:79:e8:a3:c2: 5a:a3:7d:d2:ae:78:d2:b6:af:8c:b4:51:a8:99:42:84:0a:0f: d3:99:1a:61 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzNE RjlCMjRGNTNCQkNBQzM0N0JBNUI1QThDNDlCRkY0MTY2NkEyNjAeFw0yNjAzMzEw ODM3MzhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM0ODlFQ0MyMUI2RjYx QUUzQ0MwMDlENDBDOTczQjJGM0Y0RTNBNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnhibutDXHo6AWUdtHt27M7mBhY0/4KXVFbq/UNGGcGrwzU7r9 mXhFqFkqMqpQqUiSm5JCOlc6ZoIde1EqtZ9j2Hd6yRDjnFqnSBVTxbodXWQivCBE 9qPAIOyE4Pt+j6JeMBaFPSwwtlxqWNiAl3htKw5NI+jFLdhm7vFogfziyCcq0XbM OwmBecJClvDeyBF/BJBwZvVjTFk21Bqg1+qIVjzNpLolPM7EfNfxvq0nJ8Gex9MN UoDwQw6ZGXtgwsbdF4ourpuIYSJ1mq9JphbgI+Iq3tbRbX6UnNIPxuqm6e3XdBQV QrbTnmBQ7JZ8LLVlRDV+vjwbZXO5weBDouCrAgMBAAGjggHdMIIB2TAdBgNVHQ4E FgQUxInswhtvYa48wAnUDJc7Lz9OOk4wHwYDVR0jBBgwFoAUM9+bJPU7vKw0e6W1 qMSb/0FmaiYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEwODIyL005LWJKUFU3dkt3MGU2VzFxTVNiXzBGbWFpWS5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL005LWJKUFU3dkt3MGU2VzFxTVNi XzBGbWFpWS5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8xMDgyMi94SW5zd2h0dllhNDh3QW5VREpjN0x6OU9PazQucm9h MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDejHoMA0GCSqGSIb3DQEBCwUA A4IBAQDHY9UuiNmT7n85uLxyuCjDmPJAlGV6CszGhj6Yt+KdXBw92BZ03SEchjuB kl5tO8s6Ey0Hm+jlraltZdoIms5LcV6ghsI3y9nD6NCPzVr7WX6Qt0twphYJOr+M wVx2420jtlGTl8puS3fC7/7320upU+DKo6Vi/Er72FX+PZ5YrlKUCYPOgRzGS2gr PynqTliNQWLOH3jyYzXwi3FbBg+PvJkHTppFbSpFxarnO4DS3tUnVtLZtA2mfSo2 7w6D3H9z+7NRzjG0QAeE4ajJYGYV0DnQF3VLA31pAzmDUDTk25tqNPAqBHnoo8Ja o33SrnjStq+MtFGomUKECg/TmRph -----END CERTIFICATE-----Generated at Tue Apr 7 19:46:38 2026 by rpki-client