$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/208/xBIGla2kDHq_u3aVjV-SyQ5_3AE.roa File: xBIGla2kDHq_u3aVjV-SyQ5_3AE.roa (raw, json) Hash identifier: GXX6vM8hCIcghfqK+hTOZimm6WcZieKyTRVtInxxPqk= Subject key identifier: C4:12:06:95:AD:A4:0C:7A:BF:BB:76:95:8D:5F:92:C9:0E:7F:DC:01 Certificate issuer: /CN=7A7D206E5113C27285FDAA85362B4F6F9BD8D70D Certificate serial: 3B Authority key identifier: 7A:7D:20:6E:51:13:C2:72:85:FD:AA:85:36:2B:4F:6F:9B:D8:D7:0D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/en0gblETwnKF_aqFNitPb5vY1w0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/208/xBIGla2kDHq_u3aVjV-SyQ5_3AE.roa Signing time: Tue 31 Mar 2026 08:33:14 +0000 ROA not before: Tue 31 Mar 2026 08:33:14 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 7682 IP address blocks: 202.89.112.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/208/en0gblETwnKF_aqFNitPb5vY1w0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/208/en0gblETwnKF_aqFNitPb5vY1w0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/en0gblETwnKF_aqFNitPb5vY1w0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7A7D206E5113C27285FDAA85362B4F6F9BD8D70D Validity Not Before: Mar 31 08:33:14 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=C4120695ADA40C7ABFBB76958D5F92C90E7FDC01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:66:95:6e:12:a5:05:84:03:25:20:6b:03:22: 0c:f8:77:ff:17:be:27:d7:44:11:ed:58:82:c4:24: 81:f7:2c:4f:7e:0d:02:c3:62:89:01:ce:ab:49:b2: f2:04:3f:23:df:41:fd:57:87:f5:65:95:27:d1:87: 0d:ff:e5:df:f4:ba:1a:3a:3b:69:04:bc:85:7a:dc: e2:ae:21:0c:0e:18:1b:3e:92:40:24:af:02:03:bb: 51:68:60:42:e3:1f:82:b0:44:93:aa:dd:dc:68:4e: c3:9c:9a:95:c9:8f:4d:a1:21:7a:ef:8d:56:1b:67: 42:5f:c3:74:b2:a2:90:63:68:e3:c8:d4:11:1f:87: 80:09:5d:af:ac:7a:6c:39:8a:33:4b:36:b5:f2:d1: 90:2a:55:6e:af:14:6d:85:49:88:74:00:84:68:04: 48:28:ce:b2:a7:b4:d3:44:e5:bd:45:f1:98:8d:85: 5c:6c:e3:2d:7b:f4:94:b7:70:25:59:74:f2:02:e2: b3:30:47:90:12:b1:0c:dc:7c:7c:33:4d:4e:f7:30: 8f:b9:51:d0:26:0c:6c:12:2c:cd:a1:d6:b0:b7:c4: 83:ba:24:dc:70:e0:59:82:25:41:2e:7c:dc:7e:d6: 1f:24:4c:c9:8d:cb:f1:9d:49:06:e4:1f:79:b2:57: 48:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:12:06:95:AD:A4:0C:7A:BF:BB:76:95:8D:5F:92:C9:0E:7F:DC:01 X509v3 Authority Key Identifier: keyid:7A:7D:20:6E:51:13:C2:72:85:FD:AA:85:36:2B:4F:6F:9B:D8:D7:0D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/208/en0gblETwnKF_aqFNitPb5vY1w0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/en0gblETwnKF_aqFNitPb5vY1w0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/208/xBIGla2kDHq_u3aVjV-SyQ5_3AE.roa sbgp-ipAddrBlock: critical IPv4: 202.89.112.0/22 Signature Algorithm: sha256WithRSAEncryption c5:11:76:6b:66:ac:26:42:75:79:58:b2:d3:5b:eb:1d:06:b8: 1a:ed:af:a2:6a:a6:0e:7c:65:d5:5f:86:ec:d3:76:52:e2:6e: 6d:9a:37:05:88:a9:49:d0:ab:9d:23:93:75:dd:df:57:f4:de: 72:d0:61:72:20:c2:a9:4a:72:e0:75:14:b6:06:14:0d:f8:d7: 89:b2:60:b2:34:4b:6f:6f:2d:40:58:8c:92:9a:9f:f7:aa:07: 3a:ee:e1:81:75:fc:1c:b3:14:88:cd:14:71:03:f4:b3:a3:95: e4:dc:71:4b:83:03:d3:5c:cf:11:9c:8e:e8:63:be:43:3a:9f: e0:43:18:7c:ff:e1:75:50:be:52:6f:3e:d2:63:fd:dc:52:7e: 34:21:4b:20:e3:60:ad:0f:80:6c:7a:de:0a:21:34:d0:dd:72: 62:45:8f:82:b4:91:12:08:a8:80:9f:78:a9:90:1f:c7:85:79: 08:c8:d1:21:f2:ce:2e:e0:09:f2:9f:eb:9a:24:62:08:6b:27: e0:2e:cd:b1:46:20:3c:e5:4a:95:eb:d0:20:6f:33:39:29:ac: 22:98:ce:3c:58:f0:6a:db:5d:70:8d:22:f0:b3:b3:08:a9:9d: b8:22:fb:57:2c:e2:a7:63:60:3d:e8:f9:bb:be:76:3d:68:ad: f8:50:9a:c4 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBOzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3QTdE MjA2RTUxMTNDMjcyODVGREFBODUzNjJCNEY2RjlCRDhENzBEMB4XDTI2MDMzMTA4 MzMxNFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoQzQxMjA2OTVBREE0MEM3 QUJGQkI3Njk1OEQ1RjkyQzkwRTdGREMwMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL9mlW4SpQWEAyUgawMiDPh3/xe+J9dEEe1YgsQkgfcsT34NAsNi iQHOq0my8gQ/I99B/VeH9WWVJ9GHDf/l3/S6Gjo7aQS8hXrc4q4hDA4YGz6SQCSv AgO7UWhgQuMfgrBEk6rd3GhOw5yalcmPTaEheu+NVhtnQl/DdLKikGNo48jUER+H gAldr6x6bDmKM0s2tfLRkCpVbq8UbYVJiHQAhGgESCjOsqe000TlvUXxmI2FXGzj LXv0lLdwJVl08gLiszBHkBKxDNx8fDNNTvcwj7lR0CYMbBIszaHWsLfEg7ok3HDg WYIlQS583H7WHyRMyY3L8Z1JBuQfebJXSMECAwEAAaOCAdkwggHVMB0GA1UdDgQW BBTEEgaVraQMer+7dpWNX5LJDn/cATAfBgNVHSMEGDAWgBR6fSBuURPCcoX9qoU2 K09vm9jXDTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjA4L2VuMGdibEVUd25LRl9hcUZOaXRQYjV2WTF3MC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2VuMGdibEVUd25LRl9hcUZOaXRQYjV2 WTF3MC5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yMDgveEJJR2xhMmtESHFfdTNhVmpWLVN5UTVfM0FFLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAspZcDANBgkqhkiG9w0BAQsFAAOCAQEA xRF2a2asJkJ1eViy01vrHQa4Gu2vomqmDnxl1V+G7NN2UuJubZo3BYipSdCrnSOT dd3fV/TectBhciDCqUpy4HUUtgYUDfjXibJgsjRLb28tQFiMkpqf96oHOu7hgXX8 HLMUiM0UcQP0s6OV5NxxS4MD01zPEZyO6GO+Qzqf4EMYfP/hdVC+Um8+0mP93FJ+ NCFLIONgrQ+AbHreCiE00N1yYkWPgrSREgiogJ94qZAfx4V5CMjRIfLOLuAJ8p/r miRiCGsn4C7NsUYgPOVKlevQIG8zOSmsIpjOPFjwattdcI0i8LOzCKmduCL7Vyzi p2NgPej5u752PWit+FCaxA== -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:20 2026 by rpki-client