$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/299/3qTHJFEQ7bFQ4BIfKU4NrmA_hdk.roa File: 3qTHJFEQ7bFQ4BIfKU4NrmA_hdk.roa (raw, json) Hash identifier: fGd7jyMJgVLP63yqJDZzSnwXQY48bHU+eOcpVVAQ0lk= Subject key identifier: DE:A4:C7:24:51:10:ED:B1:50:E0:12:1F:29:4E:0D:AE:60:3F:85:D9 Certificate issuer: /CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9 Certificate serial: 78 Authority key identifier: D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/3qTHJFEQ7bFQ4BIfKU4NrmA_hdk.roa Signing time: Tue 31 Mar 2026 07:52:00 +0000 ROA not before: Tue 31 Mar 2026 07:52:00 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 63789 IP address blocks: 202.9.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9 Validity Not Before: Mar 31 07:52:00 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=DEA4C7245110EDB150E0121F294E0DAE603F85D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:86:e4:d0:dc:d5:6d:b6:61:3f:14:18:71:ac: b9:81:e5:42:92:3c:a3:4b:b0:92:00:b9:f7:0a:68: dc:ff:11:c5:bc:4c:41:8b:ec:b3:dd:40:1d:6b:75: 29:1c:64:99:3f:28:9c:7a:da:30:0f:d5:b4:34:d9: a0:cd:10:73:ab:8f:04:7e:51:e1:32:31:63:30:bb: 87:a2:19:ac:00:70:e7:02:ad:3f:21:61:b5:29:39: e1:31:b1:7e:76:67:53:4b:6d:6b:a9:fb:d5:0e:49: 4f:fa:d1:e0:c8:22:ae:f6:1b:b1:29:73:27:2a:99: c8:f7:ed:47:d3:ae:ab:ce:af:ac:ad:ec:22:1a:7f: f3:bb:5f:29:1b:e0:79:bf:06:63:f9:27:32:b3:2b: 12:bb:e7:a2:f6:b1:2a:c8:63:fc:26:f9:27:02:d2: ae:ca:2d:ce:f6:e4:a3:da:70:b4:74:4a:d0:eb:81: 74:57:45:a8:66:01:3e:f2:ee:e0:d1:1f:8b:52:fb: 18:0e:03:12:d8:7c:77:84:6e:2b:16:39:e8:30:97: d2:d6:4b:09:04:ca:79:6c:e2:ef:5e:ef:27:2a:3c: a3:63:98:47:5e:58:12:87:fe:85:3e:df:ac:ab:ed: 7c:14:5e:70:03:08:1c:aa:f0:25:ec:0b:00:9c:9c: 20:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:A4:C7:24:51:10:ED:B1:50:E0:12:1F:29:4E:0D:AE:60:3F:85:D9 X509v3 Authority Key Identifier: keyid:D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/3qTHJFEQ7bFQ4BIfKU4NrmA_hdk.roa sbgp-ipAddrBlock: critical IPv4: 202.9.209.0/24 Signature Algorithm: sha256WithRSAEncryption 44:31:1f:81:f5:1c:88:25:dc:cf:48:8b:2c:2a:b6:5e:d2:56: 6f:65:27:ab:89:2e:8e:25:21:a7:74:b7:1f:51:f4:4f:e2:9b: 25:f6:2f:ad:1c:f8:9b:4d:c9:3d:fd:51:ea:ef:ce:c1:ce:e5: 38:1b:b2:d4:3c:d0:b7:b6:b5:c0:e0:8d:0b:5d:6f:b0:bc:df: fc:67:b0:b9:97:ec:22:77:9e:72:2e:7d:e1:6c:14:21:48:4b: c0:08:75:dd:24:c7:2a:95:ee:14:30:d3:5d:1d:77:18:3c:e9: 06:93:6c:98:9b:c9:6e:10:a2:c8:bc:ff:3c:ae:82:43:67:53: 9b:28:a0:3e:e0:75:11:c2:61:0b:71:f6:07:b0:52:b5:77:c3: 64:cc:41:b2:21:1a:2a:9b:59:e3:81:b1:4d:9a:89:35:86:8f: b4:ea:40:d4:9f:e7:e2:fb:d5:a0:a8:b3:90:a7:27:b6:e4:83: aa:0d:ce:78:35:22:4f:62:5e:bb:20:8e:b0:de:bd:d5:f1:88: f0:d7:16:99:05:af:dc:82:ba:45:8b:6b:1b:6c:8a:80:db:10: 67:d6:6c:53:31:28:4f:7f:e0:df:a7:8c:6b:b5:b9:96:47:3a: b5:01:09:23:79:d8:25:b8:f0:30:43:2a:13:ea:88:2c:29:63: 63:c3:b0:5a -----BEGIN CERTIFICATE----- MIIEvDCCA6SgAwIBAgIBeDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEOEYx NTE0NTA4QUZDMzhFNTE3NDNCNkNCNThCQTY1NjFFREQzQkI5MB4XDTI2MDMzMTA3 NTIwMFoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoREVBNEM3MjQ1MTEwRURC MTUwRTAxMjFGMjk0RTBEQUU2MDNGODVEOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANaG5NDc1W22YT8UGHGsuYHlQpI8o0uwkgC59wpo3P8RxbxMQYvs s91AHWt1KRxkmT8onHraMA/VtDTZoM0Qc6uPBH5R4TIxYzC7h6IZrABw5wKtPyFh tSk54TGxfnZnU0tta6n71Q5JT/rR4MgirvYbsSlzJyqZyPftR9Ouq86vrK3sIhp/ 87tfKRvgeb8GY/knMrMrErvnovaxKshj/Cb5JwLSrsotzvbko9pwtHRK0OuBdFdF qGYBPvLu4NEfi1L7GA4DEth8d4RuKxY56DCX0tZLCQTKeWzi717vJyo8o2OYR15Y Eof+hT7frKvtfBRecAMIHKrwJewLAJycIPUCAwEAAaOCAdkwggHVMB0GA1UdDgQW BBTepMckURDtsVDgEh8pTg2uYD+F2TAfBgNVHSMEGDAWgBTY8VFFCK/DjlF0O2y1 i6ZWHt07uTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjk5LzJQRlJSUWl2dzQ1UmREdHN0WXVtVmg3ZE83ay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzJQRlJSUWl2dzQ1UmREdHN0WXVtVmg3 ZE83ay5jZXIwDgYDVR0PAQH/BAQDAgeAMHEGCCsGAQUFBwELBGUwYzBhBggrBgEF BQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5MUE3 MzgxMDAwMC8yOTkvM3FUSEpGRVE3YkZRNEJJZktVNE5ybUFfaGRrLnJvYTAfBggr BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoJ0TANBgkqhkiG9w0BAQsFAAOCAQEA RDEfgfUciCXcz0iLLCq2XtJWb2Unq4kujiUhp3S3H1H0T+KbJfYvrRz4m03JPf1R 6u/Owc7lOBuy1DzQt7a1wOCNC11vsLzf/GewuZfsIneeci594WwUIUhLwAh13STH KpXuFDDTXR13GDzpBpNsmJvJbhCiyLz/PK6CQ2dTmyigPuB1EcJhC3H2B7BStXfD ZMxBsiEaKptZ44GxTZqJNYaPtOpA1J/n4vvVoKizkKcntuSDqg3OeDUiT2JeuyCO sN691fGI8NcWmQWv3IK6RYtrG2yKgNsQZ9ZsUzEoT3/g36eMa7W5lkc6tQEJI3nY JbjwMEMqE+qILCljY8OwWg== -----END CERTIFICATE-----Generated at Tue Apr 7 21:01:42 2026 by rpki-client