$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/Ic072S-CITCOtBO0cwvyZHPqybA.roa File: Ic072S-CITCOtBO0cwvyZHPqybA.roa (raw, json) Hash identifier: vE/OwvlPGsOri+02tub6+d4ks1YANOp0pabNAdbdIrc= Subject key identifier: 21:CD:3B:D9:2F:82:21:30:8E:B4:13:B4:73:0B:F2:64:73:EA:C9:B0 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 072C Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/Ic072S-CITCOtBO0cwvyZHPqybA.roa Signing time: Tue 31 Mar 2026 08:27:20 +0000 ROA not before: Tue 31 Mar 2026 08:27:20 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 240a:61:3000::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1836 (0x72c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Mar 31 08:27:20 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=21CD3BD92F8221308EB413B4730BF26473EAC9B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e9:b2:d1:f9:2d:2a:29:02:eb:c6:d6:22:79: a0:f3:8a:64:17:81:18:f3:a6:2c:c8:3d:38:85:e0: b0:c8:80:1c:71:a9:5e:3b:65:95:0a:be:75:7f:c8: 6d:a8:ea:e8:4d:f2:8e:75:16:6d:27:bf:bd:ca:89: af:b7:7c:7a:3d:dc:49:4b:aa:f1:99:76:f4:8d:0b: f4:4d:e0:dc:72:35:03:95:3b:1b:f8:8b:68:11:38: 12:fd:f7:6f:16:d9:41:f4:6d:7b:92:ef:e1:2f:99: 54:48:20:2d:48:3c:23:07:12:4d:88:f6:44:76:0d: 36:d9:ca:98:8d:a8:4f:70:6f:c5:a0:5a:49:36:a4: 8f:0e:e3:58:d6:6b:9f:fb:da:61:ae:37:3e:98:9b: 64:ee:d9:44:42:23:72:a5:ed:cd:0a:a7:99:5e:51: 3c:04:df:e8:9f:62:fc:33:2a:ab:03:26:d2:26:c3: 6e:9c:fa:b5:10:9f:00:a6:9e:34:c9:f3:12:41:0e: f1:d8:86:e4:5f:6b:c7:71:14:0b:1b:25:58:03:43: a5:8d:ee:51:34:02:2e:0d:14:43:bf:cf:ae:4e:65: 63:e7:5b:0d:0d:0f:d6:2f:95:50:6b:9e:6b:67:86: fe:8e:7c:07:c1:80:31:0c:8e:9c:82:da:79:5d:8d: de:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:CD:3B:D9:2F:82:21:30:8E:B4:13:B4:73:0B:F2:64:73:EA:C9:B0 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/Ic072S-CITCOtBO0cwvyZHPqybA.roa sbgp-ipAddrBlock: critical IPv6: 240a:61:3000::/37 Signature Algorithm: sha256WithRSAEncryption 27:34:4a:79:4a:17:e0:99:cb:9c:2f:4b:90:f0:21:95:6c:12: b5:5f:5c:a5:ea:d4:ee:1e:69:5d:37:ac:f8:59:e9:27:a5:46: 73:3f:e2:0d:48:98:a6:14:e0:cb:ac:2e:dd:36:21:e5:9e:d4: 79:f9:ea:c2:fb:2d:07:fd:d4:73:a8:48:f4:10:39:d2:af:8e: 40:df:b4:bf:b4:08:71:05:d8:05:46:e3:b2:9c:f5:8e:2f:f5: 97:0e:c0:f7:ce:80:5e:30:d0:4a:41:7b:91:6e:b5:e3:34:23: a3:f4:f8:41:7c:89:a5:1f:f7:8d:e8:04:6e:bf:1a:ee:c6:f2: 58:53:f5:0c:92:d2:23:f0:6c:e9:f8:82:5d:b9:1b:a7:72:10: 65:f0:41:97:f6:a4:29:69:33:75:d3:7d:44:78:ba:65:9a:da: 28:63:5e:df:10:f6:66:31:dc:76:c4:ae:1a:18:9c:2e:a3:90: ae:a1:b3:04:71:2c:fd:fc:9d:58:3e:f6:ae:ed:0e:d7:34:9b: 75:d0:c0:99:76:0c:72:85:3c:87:67:2c:b6:02:d1:a8:a0:83: c6:38:8c:5a:47:6c:03:1a:21:19:e0:2d:00:dd:18:60:28:91: 8e:72:77:cc:96:07:36:fd:1f:60:43:21:34:c7:47:d4:bc:c9: c9:4d:88:30 -----BEGIN CERTIFICATE----- MIIEwzCCA6ugAwIBAgICBywwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNjAzMzEw ODI3MjBaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDIxQ0QzQkQ5MkY4MjIx MzA4RUI0MTNCNDczMEJGMjY0NzNFQUM5QjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCz6bLR+S0qKQLrxtYieaDzimQXgRjzpizIPTiF4LDIgBxxqV47 ZZUKvnV/yG2o6uhN8o51Fm0nv73Kia+3fHo93ElLqvGZdvSNC/RN4NxyNQOVOxv4 i2gROBL9928W2UH0bXuS7+EvmVRIIC1IPCMHEk2I9kR2DTbZypiNqE9wb8WgWkk2 pI8O41jWa5/72mGuNz6Ym2Tu2URCI3Kl7c0Kp5leUTwE3+ifYvwzKqsDJtImw26c +rUQnwCmnjTJ8xJBDvHYhuRfa8dxFAsbJVgDQ6WN7lE0Ai4NFEO/z65OZWPnWw0N D9YvlVBrnmtnhv6OfAfBgDEMjpyC2nldjd7lAgMBAAGjggHfMIIB2zAdBgNVHQ4E FgQUIc072S+CITCOtBO0cwvyZHPqybAwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMHMGCCsGAQUFBwELBGcwZTBjBggr BgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDEyOS9JYzA3MlMtQ0lUQ090Qk8wY3d2eVpIUHF5YkEucm9h MCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYDJAoAYTAwDQYJKoZIhvcNAQEL BQADggEBACc0SnlKF+CZy5wvS5DwIZVsErVfXKXq1O4eaV03rPhZ6SelRnM/4g1I mKYU4MusLt02IeWe1Hn56sL7LQf91HOoSPQQOdKvjkDftL+0CHEF2AVG47Kc9Y4v 9ZcOwPfOgF4w0EpBe5FuteM0I6P0+EF8iaUf943oBG6/Gu7G8lhT9QyS0iPwbOn4 gl25G6dyEGXwQZf2pClpM3XTfUR4umWa2ihjXt8Q9mYx3HbErhoYnC6jkK6hswRx LP38nVg+9q7tDtc0m3XQwJl2DHKFPIdnLLYC0aigg8Y4jFpHbAMaIRngLQDdGGAo kY5yd8yWBzb9H2BDITTHR9S8yclNiDA= -----END CERTIFICATE-----Generated at Tue Apr 7 19:45:47 2026 by rpki-client