$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/208/HbQDSLNP3Q4y2gmL-D3nQBiw0cs.roa File: HbQDSLNP3Q4y2gmL-D3nQBiw0cs.roa (raw, json) Hash identifier: qzTd+oihrD6LmhcgkWLYYH6I2tt+oP0tyTkbH1xBIGk= Subject key identifier: 1D:B4:03:48:B3:4F:DD:0E:32:DA:09:8B:F8:3D:E7:40:18:B0:D1:CB Certificate issuer: /CN=7A7D206E5113C27285FDAA85362B4F6F9BD8D70D Certificate serial: 3E Authority key identifier: 7A:7D:20:6E:51:13:C2:72:85:FD:AA:85:36:2B:4F:6F:9B:D8:D7:0D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/en0gblETwnKF_aqFNitPb5vY1w0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/208/HbQDSLNP3Q4y2gmL-D3nQBiw0cs.roa Signing time: Tue 31 Mar 2026 08:33:15 +0000 ROA not before: Tue 31 Mar 2026 08:33:15 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 7682 IP address blocks: 211.128.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/208/en0gblETwnKF_aqFNitPb5vY1w0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/208/en0gblETwnKF_aqFNitPb5vY1w0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/en0gblETwnKF_aqFNitPb5vY1w0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7A7D206E5113C27285FDAA85362B4F6F9BD8D70D Validity Not Before: Mar 31 08:33:15 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=1DB40348B34FDD0E32DA098BF83DE74018B0D1CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e0:7f:1f:83:8f:64:a4:c4:dc:70:4c:04:6c: 22:46:d4:a8:1d:ab:49:6f:f4:fc:9d:e6:3a:d3:68: c4:3f:20:d9:0a:f7:9c:7e:9a:b0:f3:f4:f5:10:ff: 07:14:4f:37:3e:49:fd:58:b4:f1:68:77:9f:fe:46: 56:94:e0:2d:e8:46:92:5c:8b:83:58:28:01:bc:e9: 88:04:ab:95:17:a1:ba:a3:e6:e3:d9:84:62:4d:28: d3:66:ed:4b:94:48:89:64:2c:be:2f:8d:42:6a:5b: 66:80:fc:f2:38:c2:23:a6:d7:45:09:39:87:30:43: 8b:01:71:16:7c:d4:10:7c:e4:12:5c:ba:41:c0:b4: 31:bc:ec:62:2d:18:ae:71:40:f7:06:fa:47:48:b8: 5c:55:49:a3:6d:c9:15:ba:4b:a0:5d:30:e8:73:7f: c8:44:fb:8b:b4:02:9b:bf:af:24:5b:47:05:02:37: 13:2e:77:12:a6:8b:a3:85:90:8e:18:35:67:36:64: 2d:e1:7b:2b:31:ac:06:5f:64:0e:ca:ab:88:b2:96: 00:fb:61:8c:5b:d9:21:e0:bc:16:05:60:1b:54:28: 97:c2:c2:47:99:bd:db:8d:8a:31:b1:e3:9d:c9:bc: 81:51:0d:38:e0:c3:d6:90:ac:29:3d:f2:db:42:f5: 6f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:B4:03:48:B3:4F:DD:0E:32:DA:09:8B:F8:3D:E7:40:18:B0:D1:CB X509v3 Authority Key Identifier: keyid:7A:7D:20:6E:51:13:C2:72:85:FD:AA:85:36:2B:4F:6F:9B:D8:D7:0D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/208/en0gblETwnKF_aqFNitPb5vY1w0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/en0gblETwnKF_aqFNitPb5vY1w0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/208/HbQDSLNP3Q4y2gmL-D3nQBiw0cs.roa sbgp-ipAddrBlock: critical IPv4: 211.128.64.0/19 Signature Algorithm: sha256WithRSAEncryption af:1a:32:65:22:ea:fb:df:f1:33:b3:bc:0d:d9:93:c2:a2:57: 4d:b8:2e:b7:99:42:e5:12:e2:2b:f6:65:da:6a:f0:32:30:9c: 68:57:ea:a0:11:d0:ff:25:24:5b:14:61:17:d3:9e:02:42:95: b3:be:62:1f:6f:d5:e1:74:d2:05:0e:68:30:8d:23:bd:a8:76: ac:d8:95:b6:dc:35:59:6b:51:46:c2:26:49:d6:da:e2:36:dd: 07:a5:85:6c:61:6b:5e:d6:38:f5:3e:69:ee:66:4b:ac:6d:eb: a2:1d:49:24:df:60:09:54:56:d0:72:01:ea:3e:b9:dd:83:6f: 3b:32:51:3d:92:02:ef:b3:e0:45:3a:9d:17:da:1d:d6:ce:5e: b8:ab:39:6d:aa:33:60:87:6c:0d:55:fb:91:5c:c6:05:ad:a6: f7:68:5d:41:34:c0:db:5b:53:31:1a:a9:51:a4:b0:c7:b0:b3: 83:ec:f9:0e:bd:94:26:9d:87:51:00:d8:90:02:39:d2:82:cc: bb:0e:34:66:8a:a9:bf:0a:26:0e:de:2a:bb:eb:df:a1:5a:e8: ff:0b:d2:31:37:2c:09:ab:1d:10:53:08:f4:71:e6:f6:59:72: bc:38:fc:27:41:e6:58:fb:f3:23:70:45:5e:1c:18:99:4a:09: 60:80:7c:f2 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBPjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3QTdE MjA2RTUxMTNDMjcyODVGREFBODUzNjJCNEY2RjlCRDhENzBEMB4XDTI2MDMzMTA4 MzMxNVoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMURCNDAzNDhCMzRGREQw RTMyREEwOThCRjgzREU3NDAxOEIwRDFDQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK7gfx+Dj2SkxNxwTARsIkbUqB2rSW/0/J3mOtNoxD8g2Qr3nH6a sPP09RD/BxRPNz5J/Vi08Wh3n/5GVpTgLehGklyLg1goAbzpiASrlRehuqPm49mE Yk0o02btS5RIiWQsvi+NQmpbZoD88jjCI6bXRQk5hzBDiwFxFnzUEHzkEly6QcC0 MbzsYi0YrnFA9wb6R0i4XFVJo23JFbpLoF0w6HN/yET7i7QCm7+vJFtHBQI3Ey53 EqaLo4WQjhg1ZzZkLeF7KzGsBl9kDsqriLKWAPthjFvZIeC8FgVgG1Qol8LCR5m9 242KMbHjncm8gVENOODD1pCsKT3y20L1b4sCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBQdtANIs0/dDjLaCYv4PedAGLDRyzAfBgNVHSMEGDAWgBR6fSBuURPCcoX9qoU2 K09vm9jXDTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjA4L2VuMGdibEVUd25LRl9hcUZOaXRQYjV2WTF3MC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2VuMGdibEVUd25LRl9hcUZOaXRQYjV2 WTF3MC5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yMDgvSGJRRFNMTlAzUTR5MmdtTC1EM25RQml3MGNzLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdOAQDANBgkqhkiG9w0BAQsFAAOCAQEA rxoyZSLq+9/xM7O8DdmTwqJXTbgut5lC5RLiK/Zl2mrwMjCcaFfqoBHQ/yUkWxRh F9OeAkKVs75iH2/V4XTSBQ5oMI0jvah2rNiVttw1WWtRRsImSdba4jbdB6WFbGFr XtY49T5p7mZLrG3roh1JJN9gCVRW0HIB6j653YNvOzJRPZIC77PgRTqdF9od1s5e uKs5baozYIdsDVX7kVzGBa2m92hdQTTA21tTMRqpUaSwx7Czg+z5Dr2UJp2HUQDY kAI50oLMuw40ZoqpvwomDt4qu+vfoVro/wvSMTcsCasdEFMI9HHm9llyvDj8J0Hm WPvzI3BFXhwYmUoJYIB88g== -----END CERTIFICATE-----Generated at Tue Apr 7 19:42:55 2026 by rpki-client