$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/R3YRBMH68lsZKrnOAy7HWUgb6GU.roa File: R3YRBMH68lsZKrnOAy7HWUgb6GU.roa (raw, json) Hash identifier: S0julvnMjy9p2ufa/I7mRcY19VDEsfs0bdI1S4O4BAs= Subject key identifier: 47:76:11:04:C1:FA:F2:5B:19:2A:B9:CE:03:2E:C7:59:48:1B:E8:65 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 02AA Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/R3YRBMH68lsZKrnOAy7HWUgb6GU.roa Signing time: Tue 31 Mar 2026 07:33:54 +0000 ROA not before: Tue 31 Mar 2026 07:33:54 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4713 IP address blocks: 218.43.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 682 (0x2aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Mar 31 07:33:54 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=47761104C1FAF25B192AB9CE032EC759481BE865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f3:2a:6d:b8:f9:8a:11:7a:9d:6f:87:88:7f: 37:73:fc:9a:ab:9e:a3:2d:ef:87:0c:2e:b2:48:33: 34:9f:48:63:80:9b:06:08:00:dc:e0:76:ef:2a:2e: 35:47:21:e0:56:86:c0:a7:8d:fc:69:86:36:0f:f1: a8:d4:e2:8d:d2:90:3e:a9:02:b7:7f:26:97:ba:9a: 7b:2a:a9:92:45:b9:1c:b0:19:79:50:b0:3c:77:34: 73:b9:ad:4e:1c:fc:8b:33:e3:ce:64:60:d6:72:c1: ae:07:e3:01:6c:58:26:ca:03:dc:0f:80:63:19:a6: 9a:ec:cd:1b:93:9a:61:ec:db:95:11:f6:d1:9d:1c: 95:c2:7d:9f:c3:b3:42:d7:de:ab:b8:37:ef:5a:9e: 1f:ce:b9:a3:83:53:77:19:ad:d6:3c:ec:48:7b:53: 08:a3:b5:75:13:96:13:f8:cc:9e:43:a4:2a:04:79: 9c:96:2a:40:27:c9:3e:1b:f2:df:d9:1d:ba:bf:a8: 73:e1:f4:09:9a:89:6b:9c:e0:d7:cb:0e:db:2c:48: f9:59:03:d6:b6:75:52:ea:25:a6:95:11:e0:0d:cb: 2d:14:98:6c:60:4b:ec:3e:a1:e5:1d:26:b6:bb:e3: 3e:e5:8f:2e:58:02:d4:2b:3f:a5:24:d4:f0:1b:a1: 27:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:76:11:04:C1:FA:F2:5B:19:2A:B9:CE:03:2E:C7:59:48:1B:E8:65 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/R3YRBMH68lsZKrnOAy7HWUgb6GU.roa sbgp-ipAddrBlock: critical IPv4: 218.43.0.0/16 Signature Algorithm: sha256WithRSAEncryption a0:66:f7:5e:47:11:53:08:35:22:e6:16:67:a6:8d:3f:1a:8e: f4:78:3d:98:5d:71:10:49:84:63:a5:8e:b7:38:51:51:f7:c9: ea:fc:62:78:10:5c:2e:01:e0:8c:d2:7c:92:12:03:ea:d4:9a: a8:79:43:aa:09:c9:a4:bd:d7:cb:da:19:76:dd:ff:c7:ac:87: 38:fd:55:4c:45:88:98:0c:5f:98:3e:1b:85:84:ea:78:09:b4: 44:da:da:89:b9:54:16:b5:8d:9f:62:60:ec:20:75:23:91:07: 52:f6:0e:ea:dd:77:cb:c9:e0:18:87:6c:55:71:de:b8:e8:4a: 0e:62:96:fc:27:77:06:a4:a8:8e:c3:89:4d:c9:2c:4c:aa:68: 99:1b:ae:b4:0f:b9:a0:fb:79:03:c8:21:5f:7c:e8:2a:76:8f: b6:37:65:a0:8e:8e:61:58:c0:66:82:f9:30:60:d7:48:ae:60: 12:2e:6a:3e:37:7e:94:7f:de:2d:27:41:c3:2d:00:74:dc:2a: 0c:e8:21:c4:af:85:49:5f:ab:52:fc:ae:71:d1:5a:a5:b9:e1: 27:4b:f9:21:b9:b2:ec:68:e7:58:da:8c:e2:6e:83:aa:89:1c: dd:05:56:7f:e3:91:be:c6:cf:1b:a8:b0:1a:c6:e3:06:31:0f: 06:d3:12:21 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgICAqowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNjAzMzEw NzMzNTRaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDQ3NzYxMTA0QzFGQUYy NUIxOTJBQjlDRTAzMkVDNzU5NDgxQkU4NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC88yptuPmKEXqdb4eIfzdz/JqrnqMt74cMLrJIMzSfSGOAmwYI ANzgdu8qLjVHIeBWhsCnjfxphjYP8ajU4o3SkD6pArd/Jpe6mnsqqZJFuRywGXlQ sDx3NHO5rU4c/Isz485kYNZywa4H4wFsWCbKA9wPgGMZpprszRuTmmHs25UR9tGd HJXCfZ/Ds0LX3qu4N+9anh/OuaODU3cZrdY87Eh7UwijtXUTlhP4zJ5DpCoEeZyW KkAnyT4b8t/ZHbq/qHPh9AmaiWuc4NfLDtssSPlZA9a2dVLqJaaVEeANyy0UmGxg S+w+oeUdJra74z7ljy5YAtQrP6Uk1PAboScBAgMBAAGjggHYMIIB1DAdBgNVHQ4E FgQUR3YRBMH68lsZKrnOAy7HWUgb6GUwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMTMxL1IzWVJCTUg2OGxzWktybk9BeTdIV1VnYjZHVS5yb2EwHgYI KwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDaKzANBgkqhkiG9w0BAQsFAAOCAQEA oGb3XkcRUwg1IuYWZ6aNPxqO9Hg9mF1xEEmEY6WOtzhRUffJ6vxieBBcLgHgjNJ8 khID6tSaqHlDqgnJpL3Xy9oZdt3/x6yHOP1VTEWImAxfmD4bhYTqeAm0RNraiblU FrWNn2Jg7CB1I5EHUvYO6t13y8ngGIdsVXHeuOhKDmKW/Cd3BqSojsOJTcksTKpo mRuutA+5oPt5A8ghX3zoKnaPtjdloI6OYVjAZoL5MGDXSK5gEi5qPjd+lH/eLSdB wy0AdNwqDOghxK+FSV+rUvyucdFapbnhJ0v5Ibmy7GjnWNqM4m6Dqokc3QVWf+OR vsbPG6iwGsbjBjEPBtMSIQ== -----END CERTIFICATE-----Generated at Tue Apr 7 22:25:17 2026 by rpki-client