$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/Ymi3XiSqfBhGZlk0t3uO3tftWYQ.roa File: Ymi3XiSqfBhGZlk0t3uO3tftWYQ.roa (raw, json) Hash identifier: z5nnRgNPwCeqK6pgjdhiN1o5mGJbomBX7OjnJPr2Nps= Subject key identifier: 62:68:B7:5E:24:AA:7C:18:46:66:59:34:B7:7B:8E:DE:D7:ED:59:84 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 028D Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/Ymi3XiSqfBhGZlk0t3uO3tftWYQ.roa Signing time: Tue 31 Mar 2026 07:33:39 +0000 ROA not before: Tue 31 Mar 2026 07:33:39 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4713 IP address blocks: 153.224.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 653 (0x28d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Mar 31 07:33:39 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=6268B75E24AA7C1846665934B77B8EDED7ED5984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7d:37:df:ad:1e:2a:d4:60:9e:58:3b:12:8b: 71:5c:c4:5a:98:da:8c:0f:c3:ca:31:5e:a2:5c:09: 53:28:a9:dd:30:5e:c3:e2:7d:9c:9a:35:18:01:e2: f0:a3:23:74:4b:09:51:f2:0a:f8:43:56:06:59:f1: 07:75:90:b0:5a:05:b8:c2:2b:2a:eb:e2:32:7e:84: dc:0f:ce:ad:4c:99:65:1d:f2:ed:0f:a1:0e:77:b7: 2c:7a:c2:bd:3f:32:f0:ea:e9:55:cc:eb:aa:45:2d: 26:b3:49:87:ef:d3:06:44:25:13:97:d6:a7:67:62: 59:b3:e9:f1:f7:cf:bb:11:84:15:85:e6:d5:bb:e7: 3f:dd:84:6e:02:60:ff:04:42:8b:75:2e:07:70:18: 5e:73:0e:5c:2c:ca:48:13:04:2c:c0:34:6e:58:6b: aa:a7:ed:3f:b1:4c:5e:f5:3c:36:fe:f8:c5:fe:c2: 2c:5d:e5:a7:5b:dd:28:9e:df:5f:e8:9e:ee:dd:4d: ad:c3:3a:d6:0f:bc:00:81:b8:33:8b:63:4e:1e:af: 9b:de:5d:87:b8:c4:db:f2:f1:ea:0a:53:0c:f3:8a: b0:70:53:11:d1:07:92:ce:57:10:c6:87:3d:32:82: f8:0c:94:e6:51:14:a6:50:92:5e:7d:03:ee:28:8f: fd:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:68:B7:5E:24:AA:7C:18:46:66:59:34:B7:7B:8E:DE:D7:ED:59:84 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/Ymi3XiSqfBhGZlk0t3uO3tftWYQ.roa sbgp-ipAddrBlock: critical IPv4: 153.224.0.0/12 Signature Algorithm: sha256WithRSAEncryption d1:f9:ab:16:b8:7a:81:39:d4:df:4e:34:25:2c:7b:55:06:44: 04:f8:17:2f:02:26:3b:be:bd:3b:5b:dd:7d:f5:e7:af:06:a8: 34:af:1b:46:2e:1d:97:9f:89:0f:ad:11:fb:96:82:59:a0:92: f5:9a:bf:55:9d:20:36:b8:9d:c9:22:52:24:c8:13:6f:1f:2d: d5:a9:04:bc:f8:88:9d:a8:e3:99:ad:1a:40:0f:18:27:34:69: 70:59:10:c2:df:25:5f:65:93:e0:a7:6c:5a:fc:29:66:02:0a: b6:e8:8b:ce:89:0f:10:d2:47:80:0a:fe:ff:a4:ff:4f:30:fa: d9:1e:b6:c3:e7:18:16:af:e7:50:9e:42:48:c0:7d:c8:33:4c: 78:85:9e:1b:cd:81:d6:16:55:f3:58:7a:e9:e1:73:ec:2f:4e: 55:2d:42:df:9f:28:e8:2f:a4:39:30:45:cb:c8:e9:e3:57:85: d8:15:21:2c:ff:f9:8c:ae:89:60:81:4f:44:ba:2d:d9:32:f1: ea:ce:ad:7c:42:83:af:3a:95:ea:da:46:3a:35:ef:79:e1:ef: b2:c9:0a:99:94:d2:32:2c:5e:ea:95:b4:cf:b8:fe:6b:d1:58: ec:a3:8e:26:62:b7:62:f1:78:4a:02:a9:c2:6a:08:3f:38:dc: a1:9b:24:2c -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgICAo0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNjAzMzEw NzMzMzlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDYyNjhCNzVFMjRBQTdD MTg0NjY2NTkzNEI3N0I4RURFRDdFRDU5ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2fTffrR4q1GCeWDsSi3FcxFqY2owPw8oxXqJcCVMoqd0wXsPi fZyaNRgB4vCjI3RLCVHyCvhDVgZZ8Qd1kLBaBbjCKyrr4jJ+hNwPzq1MmWUd8u0P oQ53tyx6wr0/MvDq6VXM66pFLSazSYfv0wZEJROX1qdnYlmz6fH3z7sRhBWF5tW7 5z/dhG4CYP8EQot1LgdwGF5zDlwsykgTBCzANG5Ya6qn7T+xTF71PDb++MX+wixd 5adb3Sie31/onu7dTa3DOtYPvACBuDOLY04er5veXYe4xNvy8eoKUwzzirBwUxHR B5LOVxDGhz0ygvgMlOZRFKZQkl59A+4oj/2FAgMBAAGjggHYMIIB1DAdBgNVHQ4E FgQUYmi3XiSqfBhGZlk0t3uO3tftWYQwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMTMxL1ltaTNYaVNxZkJoR1psazB0M3VPM3RmdFdZUS5yb2EwHgYI KwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwSZ4DANBgkqhkiG9w0BAQsFAAOCAQEA 0fmrFrh6gTnU3040JSx7VQZEBPgXLwImO769O1vdffXnrwaoNK8bRi4dl5+JD60R +5aCWaCS9Zq/VZ0gNridySJSJMgTbx8t1akEvPiInajjma0aQA8YJzRpcFkQwt8l X2WT4KdsWvwpZgIKtuiLzokPENJHgAr+/6T/TzD62R62w+cYFq/nUJ5CSMB9yDNM eIWeG82B1hZV81h66eFz7C9OVS1C358o6C+kOTBFy8jp41eF2BUhLP/5jK6JYIFP RLot2TLx6s6tfEKDrzqV6tpGOjXveeHvsskKmZTSMixe6pW0z7j+a9FY7KOOJmK3 YvF4SgKpwmoIPzjcoZskLA== -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:09 2026 by rpki-client