$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30136/g3KEnWWeUj7QooGd_9266NqKsG8.roa File: g3KEnWWeUj7QooGd_9266NqKsG8.roa (raw, json) Hash identifier: AI+N4ilcEyR7E/Jp8Ln/Bt08tdMjAH7HI30kkPwnRgw= Subject key identifier: 83:72:84:9D:65:9E:52:3E:D0:A2:81:9D:FF:DD:BA:E8:DA:8A:B0:6F Certificate issuer: /CN=D3FE27155314C148DD85B7223FA0D1F8FD2B2678 Certificate serial: 14 Authority key identifier: D3:FE:27:15:53:14:C1:48:DD:85:B7:22:3F:A0:D1:F8:FD:2B:26:78 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0_4nFVMUwUjdhbciP6DR-P0rJng.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30136/g3KEnWWeUj7QooGd_9266NqKsG8.roa Signing time: Tue 31 Mar 2026 08:45:49 +0000 ROA not before: Tue 31 Mar 2026 08:45:49 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 18077 IP address blocks: 2402:5a00::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30136/0_4nFVMUwUjdhbciP6DR-P0rJng.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30136/0_4nFVMUwUjdhbciP6DR-P0rJng.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0_4nFVMUwUjdhbciP6DR-P0rJng.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FE27155314C148DD85B7223FA0D1F8FD2B2678 Validity Not Before: Mar 31 08:45:49 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=8372849D659E523ED0A2819DFFDDBAE8DA8AB06F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5d:2b:33:ee:55:f7:b4:73:d7:69:4e:4f:44: d5:27:6c:7f:b5:98:5d:b2:0c:db:47:c4:9f:d9:a5: 4c:7e:2c:a9:a3:b9:43:5c:f8:33:6a:05:da:0f:80: 61:3b:a2:91:09:78:0b:eb:0a:0c:ab:21:dc:d3:46: be:4e:cf:e8:19:2e:62:2b:5c:1c:bb:ed:34:08:77: ec:0a:ce:8f:71:9d:2b:de:37:9e:0e:a2:bd:2c:89: aa:cf:e5:7c:1f:ef:f2:1f:7e:94:5c:86:5f:5f:09: 5d:e0:6f:ac:df:d4:15:d9:a3:0e:bd:e0:b5:e9:32: 84:02:07:6a:8f:90:ef:4c:5c:8b:3e:5b:d2:c0:cf: 5a:9e:d2:19:e9:ee:df:24:23:b4:54:31:6a:9d:4e: 3f:2c:3d:aa:47:50:75:c7:55:7b:74:6b:7d:e3:45: dd:7e:c5:ab:8d:55:86:7a:72:c0:d4:82:ca:c4:6e: f1:b9:ce:f8:f8:df:3e:9e:33:b9:17:bd:28:30:5b: 63:b7:41:b4:51:28:8d:23:36:54:9a:30:bf:29:fd: 83:b1:a2:24:ce:41:b0:94:c3:15:d2:23:d0:11:60: 31:d9:aa:e1:ce:29:22:63:99:3b:f6:98:69:c6:81: 3d:39:ea:06:20:8e:02:dc:7c:3e:74:fa:76:57:b9: bd:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:72:84:9D:65:9E:52:3E:D0:A2:81:9D:FF:DD:BA:E8:DA:8A:B0:6F X509v3 Authority Key Identifier: keyid:D3:FE:27:15:53:14:C1:48:DD:85:B7:22:3F:A0:D1:F8:FD:2B:26:78 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30136/0_4nFVMUwUjdhbciP6DR-P0rJng.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0_4nFVMUwUjdhbciP6DR-P0rJng.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30136/g3KEnWWeUj7QooGd_9266NqKsG8.roa sbgp-ipAddrBlock: critical IPv6: 2402:5a00::/32 Signature Algorithm: sha256WithRSAEncryption 04:c5:da:7a:f9:09:31:e7:e0:1b:65:5e:b7:e7:43:aa:59:ed: 0d:75:c5:a5:1e:e4:7f:28:df:79:04:6e:c5:81:b8:a5:1a:f6: 26:7b:35:16:6e:31:ea:fe:7e:79:2d:18:82:ee:c1:c8:6f:47: 7c:49:a1:fe:52:3f:db:b2:c3:c9:96:19:10:38:d6:6e:c0:c4: 1a:04:a5:81:66:96:91:f3:02:ae:bc:1a:6b:d7:58:30:72:63: 0b:1e:0c:f1:59:40:51:12:25:d4:4b:11:dd:07:f3:f8:99:e0: 96:2e:65:aa:07:4d:4b:d3:90:66:38:42:29:55:2a:43:39:a3: 77:f0:fb:13:9b:1c:62:3a:4f:ae:1a:67:25:a4:39:59:9a:a6: 38:39:72:5a:ed:f3:5f:b1:71:d2:28:2a:c3:ae:11:e5:80:7e: d2:0e:87:fb:f3:4b:6b:9e:d8:bb:5b:f1:e5:e4:cd:e8:26:a1: b1:a6:e6:40:49:85:4b:0e:3b:31:89:7e:7a:0c:bc:72:f9:b9: 57:cb:36:b6:cf:0e:fd:24:d8:0b:a9:ac:28:21:22:db:41:e9: 67:e2:87:bf:a7:8d:ae:ee:73:b5:38:33:2d:10:da:a9:0b:85: 03:77:75:03:40:3a:18:9c:fc:3c:59:c6:51:a6:bd:3c:62:25: 31:2b:c4:f9 -----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgIBFDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEM0ZF MjcxNTUzMTRDMTQ4REQ4NUI3MjIzRkEwRDFGOEZEMkIyNjc4MB4XDTI2MDMzMTA4 NDU0OVoXDTI3MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoODM3Mjg0OUQ2NTlFNTIz RUQwQTI4MTlERkZEREJBRThEQThBQjA2RjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKZdKzPuVfe0c9dpTk9E1Sdsf7WYXbIM20fEn9mlTH4sqaO5Q1z4 M2oF2g+AYTuikQl4C+sKDKsh3NNGvk7P6BkuYitcHLvtNAh37ArOj3GdK943ng6i vSyJqs/lfB/v8h9+lFyGX18JXeBvrN/UFdmjDr3gtekyhAIHao+Q70xciz5b0sDP Wp7SGenu3yQjtFQxap1OPyw9qkdQdcdVe3RrfeNF3X7Fq41VhnpywNSCysRu8bnO +PjfPp4zuRe9KDBbY7dBtFEojSM2VJowvyn9g7GiJM5BsJTDFdIj0BFgMdmq4c4p ImOZO/aYacaBPTnqBiCOAtx8PnT6dle5vSsCAwEAAaOCAd4wggHaMB0GA1UdDgQW BBSDcoSdZZ5SPtCigZ3/3bro2oqwbzAfBgNVHSMEGDAWgBTT/icVUxTBSN2FtyI/ oNH4/SsmeDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAxMzYvMF80bkZWTVV3VWpkaGJjaVA2RFItUDBySm5nLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMF80bkZWTVV3VWpkaGJjaVA2RFIt UDBySm5nLmNlcjAOBgNVHQ8BAf8EBAMCB4AwcwYIKwYBBQUHAQsEZzBlMGMGCCsG AQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzMwMTM2L2czS0VuV1dlVWo3UW9vR2RfOTI2Nk5xS3NHOC5yb2Ew IAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAloAMA0GCSqGSIb3DQEBCwUA A4IBAQAExdp6+Qkx5+AbZV6350OqWe0NdcWlHuR/KN95BG7FgbilGvYmezUWbjHq /n55LRiC7sHIb0d8SaH+Uj/bssPJlhkQONZuwMQaBKWBZpaR8wKuvBpr11gwcmML HgzxWUBREiXUSxHdB/P4meCWLmWqB01L05BmOEIpVSpDOaN38PsTmxxiOk+uGmcl pDlZmqY4OXJa7fNfsXHSKCrDrhHlgH7SDof780trnti7W/Hl5M3oJqGxpuZASYVL DjsxiX56DLxy+blXyza2zw79JNgLqawoISLbQeln4oe/p42u7nO1ODMtENqpC4UD d3UDQDoYnPw8WcZRpr08YiUxK8T5 -----END CERTIFICATE-----Generated at Tue Apr 7 19:40:24 2026 by rpki-client