$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20084/HEWy2S-f8K35MBp7Jqgq6PuF5YE.roa File: HEWy2S-f8K35MBp7Jqgq6PuF5YE.roa (raw, json) Hash identifier: 4iqOECHrR5L6uUJJ2RGOrE39Hp56LgfL7kmCmRaKIUM= Subject key identifier: 1C:45:B2:D9:2F:9F:F0:AD:F9:30:1A:7B:26:A8:2A:E8:FB:85:E5:81 Certificate issuer: /CN=381CEBD5718139418E2BA504374D52816234E9EB Certificate serial: 2E Authority key identifier: 38:1C:EB:D5:71:81:39:41:8E:2B:A5:04:37:4D:52:81:62:34:E9:EB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/OBzr1XGBOUGOK6UEN01SgWI06es.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20084/HEWy2S-f8K35MBp7Jqgq6PuF5YE.roa Signing time: Tue 31 Mar 2026 08:39:12 +0000 ROA not before: Tue 31 Mar 2026 08:39:12 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 131943 IP address blocks: 103.126.176.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20084/OBzr1XGBOUGOK6UEN01SgWI06es.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20084/OBzr1XGBOUGOK6UEN01SgWI06es.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/OBzr1XGBOUGOK6UEN01SgWI06es.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=381CEBD5718139418E2BA504374D52816234E9EB Validity Not Before: Mar 31 08:39:12 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=1C45B2D92F9FF0ADF9301A7B26A82AE8FB85E581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8a:db:4e:77:4f:df:ef:56:ea:63:0e:b4:00: d4:66:30:b0:e4:8e:c1:3b:8a:49:25:a8:9c:81:cf: ab:b3:d9:b9:13:cb:b9:87:c1:31:fe:9e:ec:35:c5: 04:e6:f5:cb:84:b6:8e:1a:02:b4:24:57:d4:ee:dd: 97:c2:ee:4e:17:04:67:0a:84:03:c3:40:94:a3:05: 9e:6c:83:ef:f0:1a:9f:28:09:18:21:c6:06:7f:8f: 8e:e4:11:09:cd:de:d2:95:9f:2c:23:2b:f1:8c:4c: f3:35:d7:75:53:d9:eb:f6:50:a2:07:40:e1:fb:7f: c6:82:62:b0:1a:e9:e9:77:a0:45:20:95:ab:9f:cb: 5e:2f:83:e7:37:80:6c:7c:ea:c3:c0:58:74:a8:69: 20:0a:6d:25:30:66:59:74:53:fb:56:46:97:d8:8e: 48:1a:e4:3b:46:db:87:cc:96:0a:e9:7a:e0:44:1b: bb:e1:dd:93:eb:63:cb:b5:86:fc:17:22:3e:e3:d8: 07:17:08:db:cc:65:39:06:17:a7:2e:14:ae:48:dd: 23:e0:c7:83:8d:06:fa:3e:59:93:4c:55:cb:12:07: ac:32:ac:b1:2d:7d:08:17:9a:6d:81:55:3c:c8:3a: 84:f1:48:cf:04:25:0f:d8:c3:51:4c:c6:bc:a3:d9: ba:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:45:B2:D9:2F:9F:F0:AD:F9:30:1A:7B:26:A8:2A:E8:FB:85:E5:81 X509v3 Authority Key Identifier: keyid:38:1C:EB:D5:71:81:39:41:8E:2B:A5:04:37:4D:52:81:62:34:E9:EB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20084/OBzr1XGBOUGOK6UEN01SgWI06es.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/OBzr1XGBOUGOK6UEN01SgWI06es.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20084/HEWy2S-f8K35MBp7Jqgq6PuF5YE.roa sbgp-ipAddrBlock: critical IPv4: 103.126.176.0/22 Signature Algorithm: sha256WithRSAEncryption bc:fb:d2:20:ff:51:e1:ba:74:65:bd:39:df:5d:a3:60:f6:56: 14:2a:d2:df:7a:bb:7f:02:99:7b:dd:b4:1d:d3:20:01:ca:2e: 96:83:82:56:35:a7:21:f0:c6:40:46:35:50:43:31:91:e5:5e: 74:45:d8:df:0a:5a:37:fb:9c:c7:44:ef:5b:34:ac:59:58:33: 89:52:28:21:06:c5:c0:94:13:8d:dc:ca:cb:30:33:c4:5d:1c: 80:a4:f1:7b:2f:2a:31:dc:bc:fb:b8:aa:f7:35:72:1c:62:01: 93:e5:75:98:fa:d0:2d:f5:dd:8b:2a:37:92:00:5d:4b:9e:d2: f9:42:e1:1c:dc:8c:00:3a:c4:91:c7:5b:c4:a1:6a:92:3b:59: bc:f3:1e:3d:24:00:67:57:d2:56:5f:06:72:27:09:ad:63:c3: 94:3f:8d:08:47:59:34:68:ad:ef:63:31:c7:0e:10:19:a3:b4: 2b:a8:43:04:f7:45:b5:62:69:c7:9f:20:01:bb:e8:3f:7a:2d: 61:46:5a:f0:56:5e:72:b4:0f:b2:3e:33:c7:b6:ef:08:24:3b: 4e:71:b2:3b:29:2e:c2:ef:20:c6:86:d4:9a:fd:2a:3f:77:af: 17:41:69:38:c2:5f:1b:6e:d4:29:b9:74:b7:6e:99:6f:49:7d: 4a:04:ed:ae -----BEGIN CERTIFICATE----- MIIEwDCCA6igAwIBAgIBLjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzODFD RUJENTcxODEzOTQxOEUyQkE1MDQzNzRENTI4MTYyMzRFOUVCMB4XDTI2MDMzMTA4 MzkxMloXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMUM0NUIyRDkyRjlGRjBB REY5MzAxQTdCMjZBODJBRThGQjg1RTU4MTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMGK2053T9/vVupjDrQA1GYwsOSOwTuKSSWonIHPq7PZuRPLuYfB Mf6e7DXFBOb1y4S2jhoCtCRX1O7dl8LuThcEZwqEA8NAlKMFnmyD7/AanygJGCHG Bn+PjuQRCc3e0pWfLCMr8YxM8zXXdVPZ6/ZQogdA4ft/xoJisBrp6XegRSCVq5/L Xi+D5zeAbHzqw8BYdKhpIAptJTBmWXRT+1ZGl9iOSBrkO0bbh8yWCul64EQbu+Hd k+tjy7WG/BciPuPYBxcI28xlOQYXpy4UrkjdI+DHg40G+j5Zk0xVyxIHrDKssS19 CBeabYFVPMg6hPFIzwQlD9jDUUzGvKPZuq8CAwEAAaOCAd0wggHZMB0GA1UdDgQW BBQcRbLZL5/wrfkwGnsmqCro+4XlgTAfBgNVHSMEGDAWgBQ4HOvVcYE5QY4rpQQ3 TVKBYjTp6zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwODQvT0J6cjFYR0JPVUdPSzZVRU4wMVNnV0kwNmVzLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvT0J6cjFYR0JPVUdPSzZVRU4wMVNn V0kwNmVzLmNlcjAOBgNVHQ8BAf8EBAMCB4AwcwYIKwYBBQUHAQsEZzBlMGMGCCsG AQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzIwMDg0L0hFV3kyUy1mOEszNU1CcDdKcWdxNlB1RjVZRS5yb2Ew HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnfrAwDQYJKoZIhvcNAQELBQAD ggEBALz70iD/UeG6dGW9Od9do2D2VhQq0t96u38CmXvdtB3TIAHKLpaDglY1pyHw xkBGNVBDMZHlXnRF2N8KWjf7nMdE71s0rFlYM4lSKCEGxcCUE43cysswM8RdHICk 8XsvKjHcvPu4qvc1chxiAZPldZj60C313YsqN5IAXUue0vlC4RzcjAA6xJHHW8Sh apI7WbzzHj0kAGdX0lZfBnInCa1jw5Q/jQhHWTRore9jMccOEBmjtCuoQwT3RbVi acefIAG76D96LWFGWvBWXnK0D7I+M8e27wgkO05xsjspLsLvIMaG1Jr9Kj93rxdB aTjCXxtu1Cm5dLdumW9JfUoE7a4= -----END CERTIFICATE-----Generated at Tue Apr 7 19:47:05 2026 by rpki-client