$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/t3Hhy08-F03YVkyAa0s0N6wP2mo.roa File: t3Hhy08-F03YVkyAa0s0N6wP2mo.roa (raw, json) Hash identifier: 0J4jFzPt7ZsE33tu4cELkH4C0NQIDNBIOAV7+512pPs= Subject key identifier: B7:71:E1:CB:4F:3E:17:4D:D8:56:4C:80:6B:4B:34:37:AC:0F:DA:6A Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 0290 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/t3Hhy08-F03YVkyAa0s0N6wP2mo.roa Signing time: Tue 31 Mar 2026 07:33:40 +0000 ROA not before: Tue 31 Mar 2026 07:33:40 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 4713 IP address blocks: 153.252.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 656 (0x290) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Mar 31 07:33:40 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=B771E1CB4F3E174DD8564C806B4B3437AC0FDA6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ca:b8:52:9c:b5:5d:34:c3:c3:26:06:7f:ff: 02:ac:7f:49:8b:b2:93:0d:eb:7c:43:62:17:89:87: 2a:e7:28:f8:18:aa:6d:ef:21:97:38:b0:e6:79:76: fa:03:e4:82:18:59:57:31:a6:db:4d:0a:45:53:0b: 54:43:7e:4c:ad:44:46:ea:84:0f:a1:9b:41:d6:9c: 57:4b:df:33:d9:da:61:7d:57:bb:75:ad:7f:34:17: 48:46:68:44:55:ce:06:c8:d3:48:7d:33:c5:85:fd: d0:1c:fa:8d:a6:f5:56:af:ae:9e:75:09:ff:8c:e0: 35:59:94:71:24:8a:eb:51:fc:2a:ce:3f:ed:94:cc: 45:fd:8e:c1:61:02:9a:26:a2:8a:fa:06:35:75:be: b3:76:5b:60:5f:34:65:87:16:d1:28:8c:e3:3e:c2: fa:bf:98:3e:b5:a2:08:3e:37:32:89:8c:cf:14:19: 05:7d:48:85:ef:a1:34:1d:0f:e2:44:6b:04:d0:2a: 88:a0:22:81:7c:17:d6:13:b2:df:e9:91:e5:b7:65: 63:cb:36:d5:62:eb:f7:5f:29:8e:3e:64:df:ff:43: 10:7d:9f:86:57:ca:eb:71:03:d9:ce:27:60:e5:5c: 18:61:b7:b2:a9:48:d3:82:21:1d:ef:67:8c:ae:9e: 63:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:71:E1:CB:4F:3E:17:4D:D8:56:4C:80:6B:4B:34:37:AC:0F:DA:6A X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/t3Hhy08-F03YVkyAa0s0N6wP2mo.roa sbgp-ipAddrBlock: critical IPv4: 153.252.0.0/15 Signature Algorithm: sha256WithRSAEncryption 31:ae:ef:12:19:af:43:60:0b:c3:4f:3f:cc:b5:59:85:81:7b: 16:41:72:bf:10:f9:90:59:ad:8e:65:d8:27:5d:03:e6:0a:62: 09:51:b0:db:68:6b:80:15:57:d3:f5:b4:17:6c:02:bb:ac:ac: 5e:c3:e3:27:aa:08:81:25:0a:9a:b9:43:f3:02:8f:d0:51:c0: 7e:16:f6:a4:a1:9e:57:70:21:d9:33:f8:35:e6:76:d2:3b:50: 23:51:a8:d3:56:8d:4a:65:84:99:b7:16:1f:70:9b:39:32:14: f7:ae:75:7c:94:ba:94:f7:3c:48:1a:ab:e5:18:f4:3a:66:e5: 23:94:91:e2:82:44:c5:e9:90:a2:1c:3d:d1:ee:f8:4e:de:67: df:3f:c4:5d:e6:c5:cd:40:76:c8:00:16:92:59:0f:44:67:b2: 17:8c:83:36:65:c5:c9:83:30:39:07:93:88:f2:92:fc:14:f6: 9c:06:c0:93:37:64:de:9e:ee:79:dc:6c:dd:f7:57:a9:d8:d1: da:59:de:12:ad:e6:3d:b3:cb:57:c0:84:ad:04:67:4d:e0:83: c4:3b:fc:8d:b6:1a:da:28:1d:bc:05:18:d6:69:72:63:9c:03: f0:3e:2d:e1:c5:a1:1b:69:6a:dd:ca:02:2f:77:11:7e:b2:ba: d1:ec:4c:d7 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgICApAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNjAzMzEw NzMzNDBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEI3NzFFMUNCNEYzRTE3 NEREODU2NEM4MDZCNEIzNDM3QUMwRkRBNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCcyrhSnLVdNMPDJgZ//wKsf0mLspMN63xDYheJhyrnKPgYqm3v IZc4sOZ5dvoD5IIYWVcxpttNCkVTC1RDfkytREbqhA+hm0HWnFdL3zPZ2mF9V7t1 rX80F0hGaERVzgbI00h9M8WF/dAc+o2m9Vavrp51Cf+M4DVZlHEkiutR/CrOP+2U zEX9jsFhApomoor6BjV1vrN2W2BfNGWHFtEojOM+wvq/mD61ogg+NzKJjM8UGQV9 SIXvoTQdD+JEawTQKoigIoF8F9YTst/pkeW3ZWPLNtVi6/dfKY4+ZN//QxB9n4ZX yutxA9nOJ2DlXBhht7KpSNOCIR3vZ4yunmMhAgMBAAGjggHYMIIB1DAdBgNVHQ4E FgQUt3Hhy08+F03YVkyAa0s0N6wP2mowHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMTMxL3QzSGh5MDgtRjAzWVZreUFhMHMwTjZ3UDJtby5yb2EwHgYI KwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwGZ/DANBgkqhkiG9w0BAQsFAAOCAQEA Ma7vEhmvQ2ALw08/zLVZhYF7FkFyvxD5kFmtjmXYJ10D5gpiCVGw22hrgBVX0/W0 F2wCu6ysXsPjJ6oIgSUKmrlD8wKP0FHAfhb2pKGeV3Ah2TP4NeZ20jtQI1Go01aN SmWEmbcWH3CbOTIU9651fJS6lPc8SBqr5Rj0OmblI5SR4oJExemQohw90e74Tt5n 3z/EXebFzUB2yAAWklkPRGeyF4yDNmXFyYMwOQeTiPKS/BT2nAbAkzdk3p7uedxs 3fdXqdjR2lneEq3mPbPLV8CErQRnTeCDxDv8jbYa2igdvAUY1mlyY5wD8D4t4cWh G2lq3coCL3cRfrK60exM1w== -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:41 2026 by rpki-client