$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/ZfTn-Sj7Y6MvKqqV_MTjfPA0hiQ.roa File: ZfTn-Sj7Y6MvKqqV_MTjfPA0hiQ.roa (raw, json) Hash identifier: 7n9BWL1Hv65DUjRG/oo93iaRZdeNmbhDYs6IaGjo7b4= Subject key identifier: 65:F4:E7:F9:28:FB:63:A3:2F:2A:AA:95:FC:C4:E3:7C:F0:34:86:24 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 029D Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/ZfTn-Sj7Y6MvKqqV_MTjfPA0hiQ.roa Signing time: Tue 31 Mar 2026 07:33:46 +0000 ROA not before: Tue 31 Mar 2026 07:33:46 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4713 IP address blocks: 210.225.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 669 (0x29d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Mar 31 07:33:46 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=65F4E7F928FB63A32F2AAA95FCC4E37CF0348624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:78:a9:60:c8:03:3f:dc:ce:da:ad:03:74:88: ff:10:5c:72:67:8b:9d:6b:cd:39:b6:ce:ea:e6:0f: 29:16:06:7b:7a:40:34:c1:a6:39:f0:88:6b:da:d7: 7b:89:a4:f7:b1:86:61:aa:3d:28:49:84:10:bc:8d: 18:78:2b:08:78:67:d8:d4:6a:31:03:85:82:43:c1: bd:70:de:b3:2f:fb:30:8f:a3:49:1d:4a:62:3f:0d: 8b:4b:41:5b:d2:9a:1a:c6:a4:7b:4c:83:be:4c:f4: e5:7d:89:8d:86:6b:d6:f1:1f:76:20:7a:cf:b4:43: 06:4c:e3:c1:ad:8a:07:1b:19:55:b3:18:d2:91:3f: 1c:d7:10:12:e2:99:79:e7:5a:8d:0a:d1:9e:94:f3: 08:b6:d0:47:52:c5:fc:b6:69:45:44:0b:22:c6:ca: 56:df:f5:93:48:57:12:58:2b:f2:db:ff:f9:ee:53: 5d:37:47:bf:72:eb:4c:4b:1e:1b:50:2e:6a:3d:32: 4e:cf:26:e7:1c:b0:a8:2a:c2:11:c7:83:7d:71:80: 1a:e8:cd:26:8e:a1:6d:8e:d5:32:f4:df:2d:55:eb: 64:79:a6:a1:54:39:4d:2e:49:49:44:c9:51:dc:6b: a8:e7:f7:85:90:3a:8a:aa:70:1a:bc:53:79:53:23: b7:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:F4:E7:F9:28:FB:63:A3:2F:2A:AA:95:FC:C4:E3:7C:F0:34:86:24 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/ZfTn-Sj7Y6MvKqqV_MTjfPA0hiQ.roa sbgp-ipAddrBlock: critical IPv4: 210.225.0.0/16 Signature Algorithm: sha256WithRSAEncryption 81:09:59:72:aa:51:3e:ec:b5:fe:62:2d:4e:82:fe:4d:fb:15: 52:36:eb:34:fd:73:77:dd:24:a4:c3:80:42:f4:cc:2d:fd:a6: 90:e9:dc:d0:b1:b3:62:6d:24:ec:39:f7:49:f1:0c:c6:b8:2f: b5:05:52:be:f9:9e:c3:5b:0a:ff:fc:b3:c4:ab:4e:b0:2a:66: 68:96:8a:0b:a6:8e:71:42:be:c1:c3:0b:76:81:09:83:34:c6: 08:2c:69:22:7d:d6:cb:cf:32:f0:40:13:1d:1d:8f:d6:be:99: af:a2:d9:1f:f1:c0:ae:64:f7:f3:13:f8:21:5f:12:c3:09:b3: dd:34:bb:2f:cb:20:c2:c9:28:3c:ca:9c:69:7d:4c:b9:40:e2: 34:1d:7d:4f:8a:39:b2:2c:70:19:71:08:41:2b:35:5b:a8:42: 5c:ff:62:01:5f:1c:b2:86:a3:e1:5f:75:65:7a:cd:7a:28:bf: e9:31:03:b9:47:45:e1:4e:1b:61:76:98:07:da:2c:0f:4e:66: 54:ef:e4:37:7b:f4:7c:bf:0e:ca:02:f5:cd:f0:0f:1b:3c:59: 5a:df:9e:39:c7:7a:d6:26:a4:52:bf:b1:0f:00:4a:23:07:1c: eb:db:8e:90:e3:be:2e:32:ed:ea:50:d4:38:21:a2:df:0b:aa: 9c:d4:b5:59 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgICAp0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNjAzMzEw NzMzNDZaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY1RjRFN0Y5MjhGQjYz QTMyRjJBQUE5NUZDQzRFMzdDRjAzNDg2MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQeKlgyAM/3M7arQN0iP8QXHJni51rzTm2zurmDykWBnt6QDTB pjnwiGva13uJpPexhmGqPShJhBC8jRh4Kwh4Z9jUajEDhYJDwb1w3rMv+zCPo0kd SmI/DYtLQVvSmhrGpHtMg75M9OV9iY2Ga9bxH3Yges+0QwZM48GtigcbGVWzGNKR PxzXEBLimXnnWo0K0Z6U8wi20EdSxfy2aUVECyLGylbf9ZNIVxJYK/Lb//nuU103 R79y60xLHhtQLmo9Mk7PJuccsKgqwhHHg31xgBrozSaOoW2O1TL03y1V62R5pqFU OU0uSUlEyVHca6jn94WQOoqqcBq8U3lTI7dRAgMBAAGjggHYMIIB1DAdBgNVHQ4E FgQUZfTn+Sj7Y6MvKqqV/MTjfPA0hiQwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMTMxL1pmVG4tU2o3WTZNdktxcVZfTVRqZlBBMGhpUS5yb2EwHgYI KwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDS4TANBgkqhkiG9w0BAQsFAAOCAQEA gQlZcqpRPuy1/mItToL+TfsVUjbrNP1zd90kpMOAQvTMLf2mkOnc0LGzYm0k7Dn3 SfEMxrgvtQVSvvmew1sK//yzxKtOsCpmaJaKC6aOcUK+wcMLdoEJgzTGCCxpIn3W y88y8EATHR2P1r6Zr6LZH/HArmT38xP4IV8Swwmz3TS7L8sgwskoPMqcaX1MuUDi NB19T4o5sixwGXEIQSs1W6hCXP9iAV8csoaj4V91ZXrNeii/6TEDuUdF4U4bYXaY B9osD05mVO/kN3v0fL8OygL1zfAPGzxZWt+eOcd61iakUr+xDwBKIwcc69uOkOO+ LjLt6lDUOCGi3wuqnNS1WQ== -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:35 2026 by rpki-client