$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/233/oZ1yfATiacdGat8TmWe7487k25g.roa File: oZ1yfATiacdGat8TmWe7487k25g.roa (raw, json) Hash identifier: 7HP3RsN/2FCcihLcGZRtlWemHXUr44FOm69H85Ffw1Q= Subject key identifier: A1:9D:72:7C:04:E2:69:C7:46:6A:DF:13:99:67:BB:E3:CE:E4:DB:98 Certificate issuer: /CN=D788678E64D29184C23DAAADB594BFD9BAE2405C Certificate serial: 6E Authority key identifier: D7:88:67:8E:64:D2:91:84:C2:3D:AA:AD:B5:94:BF:D9:BA:E2:40:5C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/14hnjmTSkYTCPaqttZS_2briQFw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/oZ1yfATiacdGat8TmWe7487k25g.roa Signing time: Tue 31 Mar 2026 07:50:26 +0000 ROA not before: Tue 31 Mar 2026 07:50:26 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 7670 IP address blocks: 211.1.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/14hnjmTSkYTCPaqttZS_2briQFw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/14hnjmTSkYTCPaqttZS_2briQFw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/14hnjmTSkYTCPaqttZS_2briQFw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D788678E64D29184C23DAAADB594BFD9BAE2405C Validity Not Before: Mar 31 07:50:26 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=A19D727C04E269C7466ADF139967BBE3CEE4DB98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c8:11:fe:e2:d5:c1:1c:66:c4:a4:e0:04:8e: 18:f1:1b:c9:c5:90:6c:81:74:4b:09:41:b2:56:d2: b6:f8:61:7a:2c:12:ff:17:34:1d:c9:45:be:5d:d4: 59:23:f3:ba:6e:4b:80:66:5b:60:76:89:59:cb:a6: 99:3a:be:e8:48:66:58:6f:e8:d9:67:05:9e:7f:4d: d3:9e:18:df:a7:d3:0d:fe:5b:71:e4:bb:8a:80:59: 39:19:fc:0a:33:cc:f2:13:6e:c0:96:58:66:36:f9: 91:e3:02:d9:43:3c:3e:6b:a8:84:2a:2d:b3:9e:71: 72:c5:b9:93:e4:40:9d:58:ac:71:2d:5e:ea:26:51: 11:67:f9:f9:0a:02:a1:93:45:26:01:eb:e7:0d:32: 75:e5:34:4f:f1:df:0b:82:99:3c:15:36:0a:b7:58: c9:b5:20:88:65:35:a1:60:0c:9c:dc:c4:82:27:02: 58:b2:4d:1b:8b:33:22:4b:34:a6:68:f7:ff:0e:96: 5b:d2:90:23:a8:0f:54:8c:cf:ff:5c:36:dc:86:6b: b9:67:8f:26:32:7e:dc:61:a1:2f:b4:58:c8:38:cd: 87:e6:b0:4c:bc:57:5f:09:2e:27:d5:8b:e2:cd:0c: 9f:84:de:60:e6:28:6a:8e:31:aa:ac:d2:db:23:4b: 53:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:9D:72:7C:04:E2:69:C7:46:6A:DF:13:99:67:BB:E3:CE:E4:DB:98 X509v3 Authority Key Identifier: keyid:D7:88:67:8E:64:D2:91:84:C2:3D:AA:AD:B5:94:BF:D9:BA:E2:40:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/14hnjmTSkYTCPaqttZS_2briQFw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/14hnjmTSkYTCPaqttZS_2briQFw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/oZ1yfATiacdGat8TmWe7487k25g.roa sbgp-ipAddrBlock: critical IPv4: 211.1.128.0/19 Signature Algorithm: sha256WithRSAEncryption a0:f5:24:fd:f6:cb:f4:b5:87:b7:46:87:65:d5:6d:ad:bd:c3: 01:8a:63:5f:75:ba:d5:6f:ef:4c:8c:aa:6d:3e:58:d3:d1:5b: 5b:90:45:ef:09:2a:a7:50:5f:c0:37:47:2e:89:9e:fc:37:e3: fd:be:cd:fb:74:a8:59:56:0d:4c:f3:e3:74:53:7c:6a:05:83: f5:69:a4:f6:96:2c:e1:2d:5b:44:0e:0f:e3:72:08:cf:00:98: 07:c1:7e:cf:2e:33:0f:19:bf:fa:5d:48:78:6b:9f:2f:7b:40: 87:7d:3a:d6:a0:e1:fc:cc:e6:13:2a:43:2f:fd:dc:ec:d2:13: 7a:f6:1f:f8:d9:ae:bc:ba:30:24:25:60:fe:e8:19:2a:0c:57: 2e:e8:af:f4:7c:52:63:d0:06:56:15:3d:e0:ae:a2:59:bc:26: bc:ad:06:3e:d5:39:40:f7:01:fe:5d:bf:00:ee:f2:f9:7e:75: 1f:d5:6b:0a:ce:bb:af:ea:01:94:8f:8a:0c:85:e0:c9:27:c5: 77:27:3a:5f:f0:22:0f:3f:fe:53:3e:44:2b:7f:7c:a3:4a:0b: 23:ee:c5:86:9f:77:3f:fd:b4:8a:eb:2e:70:c0:c0:9e:45:bc: c5:94:a0:9f:32:8c:75:2f:45:02:f5:ed:68:3d:e5:13:89:b0: 95:65:e9:76 -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBbjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENzg4 Njc4RTY0RDI5MTg0QzIzREFBQURCNTk0QkZEOUJBRTI0MDVDMB4XDTI2MDMzMTA3 NTAyNloXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoQTE5RDcyN0MwNEUyNjlD NzQ2NkFERjEzOTk2N0JCRTNDRUU0REI5ODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM7IEf7i1cEcZsSk4ASOGPEbycWQbIF0SwlBslbStvhheiwS/xc0 HclFvl3UWSPzum5LgGZbYHaJWcummTq+6EhmWG/o2WcFnn9N054Y36fTDf5bceS7 ioBZORn8CjPM8hNuwJZYZjb5keMC2UM8PmuohCots55xcsW5k+RAnViscS1e6iZR EWf5+QoCoZNFJgHr5w0ydeU0T/HfC4KZPBU2CrdYybUgiGU1oWAMnNzEgicCWLJN G4szIks0pmj3/w6WW9KQI6gPVIzP/1w23IZruWePJjJ+3GGhL7RYyDjNh+awTLxX XwkuJ9WL4s0Mn4TeYOYoao4xqqzS2yNLUy0CAwEAAaOCAdkwggHVMB0GA1UdDgQW BBShnXJ8BOJpx0Zq3xOZZ7vjzuTbmDAfBgNVHSMEGDAWgBTXiGeOZNKRhMI9qq21 lL/ZuuJAXDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMzLzE0aG5qbVRTa1lUQ1BhcXR0WlNfMmJyaVFGdy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzE0aG5qbVRTa1lUQ1BhcXR0WlNfMmJy aVFGdy5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yMzMvb1oxeWZBVGlhY2RHYXQ4VG1XZTc0ODdrMjVnLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdMBgDANBgkqhkiG9w0BAQsFAAOCAQEA oPUk/fbL9LWHt0aHZdVtrb3DAYpjX3W61W/vTIyqbT5Y09FbW5BF7wkqp1BfwDdH Lome/Dfj/b7N+3SoWVYNTPPjdFN8agWD9Wmk9pYs4S1bRA4P43IIzwCYB8F+zy4z Dxm/+l1IeGufL3tAh3061qDh/MzmEypDL/3c7NITevYf+NmuvLowJCVg/ugZKgxX Luiv9HxSY9AGVhU94K6iWbwmvK0GPtU5QPcB/l2/AO7y+X51H9VrCs67r+oBlI+K DIXgySfFdyc6X/AiDz/+Uz5EK398o0oLI+7Fhp93P/20iusucMDAnkW8xZSgnzKM dS9FAvXtaD3lE4mwlWXpdg== -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:51 2026 by rpki-client