$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/249/kduRknOXPHsPcJdD-ABr4iJAR4Y.roa File: kduRknOXPHsPcJdD-ABr4iJAR4Y.roa (raw, json) Hash identifier: KcJGdtJSKHnXqP/TRx6zbfHTeb4kcIpRcU0j9cxIUwE= Subject key identifier: 91:DB:91:92:73:97:3C:7B:0F:70:97:43:F8:00:6B:E2:22:40:47:86 Certificate issuer: /CN=275D9782B13E99128CD34F22C09FE8E7B5CBA70B Certificate serial: 98 Authority key identifier: 27:5D:97:82:B1:3E:99:12:8C:D3:4F:22:C0:9F:E8:E7:B5:CB:A7:0B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/J12XgrE-mRKM008iwJ_o57XLpws.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/kduRknOXPHsPcJdD-ABr4iJAR4Y.roa Signing time: Tue 31 Mar 2026 08:37:08 +0000 ROA not before: Tue 31 Mar 2026 08:37:08 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 7679 IP address blocks: 119.47.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/J12XgrE-mRKM008iwJ_o57XLpws.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/J12XgrE-mRKM008iwJ_o57XLpws.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/J12XgrE-mRKM008iwJ_o57XLpws.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=275D9782B13E99128CD34F22C09FE8E7B5CBA70B Validity Not Before: Mar 31 08:37:08 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=91DB919273973C7B0F709743F8006BE222404786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:62:04:7f:b7:5b:33:5e:99:26:99:f9:cc:be: 04:24:aa:cc:be:df:9b:c5:e8:0b:22:8b:bb:f6:ba: 5a:23:b3:dd:29:4f:95:1f:7b:64:2d:73:86:bf:d5: 54:2d:43:3c:4b:cb:6c:f1:f6:0f:66:1d:f7:ec:5e: b2:8f:6e:d7:8d:42:9a:82:5c:77:6c:48:bf:89:81: 38:ef:3b:fc:6b:82:22:5b:05:51:58:f2:06:36:2e: bc:e8:ef:25:dd:83:06:90:3e:c8:d3:cd:d2:36:44: f6:ec:ec:8a:3e:68:ed:ca:fb:9a:53:26:61:cf:39: 91:d2:b1:a5:aa:c2:90:fb:51:db:83:36:e9:8f:d3: 74:49:f8:2d:be:fa:cc:e9:97:2c:d2:b2:81:a4:e6: ee:cf:42:e9:22:53:31:7a:46:d9:e3:55:30:a4:48: da:fc:9f:43:79:96:b4:e7:68:b0:9e:31:f4:bd:b1: da:aa:be:36:13:f7:a6:08:22:10:14:e9:fd:45:42: 1c:32:ae:ad:42:2c:ca:1b:ea:5f:1c:16:06:64:ae: 9f:65:ad:51:f3:2e:02:c4:07:25:9a:62:a4:b8:b5: 2f:5c:43:91:c4:22:a9:c1:a4:13:e0:b3:80:8d:ac: e5:29:d0:e8:45:52:92:ee:6b:a1:b6:a8:de:bd:31: 86:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:DB:91:92:73:97:3C:7B:0F:70:97:43:F8:00:6B:E2:22:40:47:86 X509v3 Authority Key Identifier: keyid:27:5D:97:82:B1:3E:99:12:8C:D3:4F:22:C0:9F:E8:E7:B5:CB:A7:0B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/J12XgrE-mRKM008iwJ_o57XLpws.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/J12XgrE-mRKM008iwJ_o57XLpws.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/kduRknOXPHsPcJdD-ABr4iJAR4Y.roa sbgp-ipAddrBlock: critical IPv4: 119.47.128.0/17 Signature Algorithm: sha256WithRSAEncryption 65:7e:ec:91:1a:b4:27:16:49:24:fe:36:b4:3b:3c:2f:73:8a: 46:72:69:cb:b5:fd:4f:a8:7c:02:61:8e:67:29:65:23:23:e9: 53:06:3d:54:16:19:eb:20:f9:ff:3a:7d:98:68:8c:c9:61:79: 8d:be:20:53:34:75:6d:2f:42:a4:8e:c3:b1:ed:0c:82:93:48: be:4b:cc:f8:4c:e5:02:c2:14:52:cb:29:f7:82:77:13:bd:50: 3a:dd:42:a9:8c:da:6e:1f:f2:c4:71:6e:da:e1:fc:99:e7:29: 00:cb:d0:17:dc:85:1e:bd:ce:c4:3a:c8:fe:4d:55:1f:30:c2: 59:5d:cd:30:81:92:ac:1f:4e:19:38:dc:6d:cc:ab:55:a9:d7: 28:60:f2:7e:12:7a:75:c1:c2:da:cb:19:06:24:46:04:4e:3a: bc:53:ba:94:b8:cf:4b:79:ec:60:52:f2:4e:7f:02:42:b5:d0: fd:af:59:d5:c5:d3:c4:e4:b3:3d:31:dc:d5:7f:22:1a:81:57: 67:88:da:89:21:e6:42:46:06:75:24:37:81:ee:f5:52:25:11: c2:95:93:50:6a:bf:18:e5:02:20:88:14:b0:ea:78:94:ed:eb: fe:78:20:46:f6:01:27:04:cd:c4:9c:26:90:2f:be:ce:a9:6e: 28:d3:32:8d -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjc1 RDk3ODJCMTNFOTkxMjhDRDM0RjIyQzA5RkU4RTdCNUNCQTcwQjAeFw0yNjAzMzEw ODM3MDhaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDkxREI5MTkyNzM5NzND N0IwRjcwOTc0M0Y4MDA2QkUyMjI0MDQ3ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtYgR/t1szXpkmmfnMvgQkqsy+35vF6Asii7v2ulojs90pT5Uf e2Qtc4a/1VQtQzxLy2zx9g9mHffsXrKPbteNQpqCXHdsSL+JgTjvO/xrgiJbBVFY 8gY2Lrzo7yXdgwaQPsjTzdI2RPbs7Io+aO3K+5pTJmHPOZHSsaWqwpD7UduDNumP 03RJ+C2++szplyzSsoGk5u7PQukiUzF6RtnjVTCkSNr8n0N5lrTnaLCeMfS9sdqq vjYT96YIIhAU6f1FQhwyrq1CLMob6l8cFgZkrp9lrVHzLgLEByWaYqS4tS9cQ5HE IqnBpBPgs4CNrOUp0OhFUpLua6G2qN69MYalAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUkduRknOXPHsPcJdD+ABr4iJAR4YwHwYDVR0jBBgwFoAUJ12XgrE+mRKM008i wJ/o57XLpwswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI0OS9KMTJYZ3JFLW1SS00wMDhpd0pfbzU3WExwd3MuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9KMTJYZ3JFLW1SS00wMDhpd0pfbzU3 WExwd3MuY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMjQ5L2tkdVJrbk9YUEhzUGNKZEQtQUJyNGlKQVI0WS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAd3L4AwDQYJKoZIhvcNAQELBQADggEB AGV+7JEatCcWSST+NrQ7PC9zikZyacu1/U+ofAJhjmcpZSMj6VMGPVQWGesg+f86 fZhojMlheY2+IFM0dW0vQqSOw7HtDIKTSL5LzPhM5QLCFFLLKfeCdxO9UDrdQqmM 2m4f8sRxbtrh/JnnKQDL0BfchR69zsQ6yP5NVR8wwlldzTCBkqwfThk43G3Mq1Wp 1yhg8n4SenXBwtrLGQYkRgROOrxTupS4z0t57GBS8k5/AkK10P2vWdXF08Tksz0x 3NV/IhqBV2eI2okh5kJGBnUkN4Hu9VIlEcKVk1BqvxjlAiCIFLDqeJTt6/54IEb2 AScEzcScJpAvvs6pbijTMo0= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:39 2026 by rpki-client